Mosharrat Shams

**** ***** *** *****, ***** Center, Ohio 43035

614-***-****

ac6mle@r.postjobfree.com

CAREER OBJECTIVE:

I am seeking a position as a cybersecurity analyst in an organization, and I am eager to contribute my knowledge and experience to cybersecurity career path.

TECHNICAL SKILLS & LANGUAGES:

In-depth knowledge of understanding of network security architectures (internal/external), firewall technologies, and knowledge of TCP/IP protocol suite which includes secure protocol. Understand the network system, and application monitoring technologies (i.e. antivirus products, personal firewall, network, host based intrusion detection and intrusion prevention technologies).

Understanding of operating systems (Linux/Unix/Windows) and knowledge in OSI model and layers functionality.

Basic understanding of Windows Server environments and Active Directory, Firewall, Citrix, Cisco, VPN, VMware, WebEx.

Familiar with regulatory guidelines of Sarbanes-Oxley (SOX), HIPPA Act, PCI, Federal Financial Institution Examination Council (FFEIC), and FEMA compliance.

Understand information security "best practices" including principles, security protocols and standards material such as OWASP Top 10 and SANS/CIS Critical Security Controls

Understand and familiar with NIST framework, ISO 27002.

Basic understanding of scripting language such as JavaScript and SQL.

TOOLS:

Beginner to Intermediate level experience in tools:

oNessus, Zenmap, Rapid 7, MBSA, Cain & Abel, Wireshark, Open Vas, Our secret, Open Stego.

oFTK image for forensic analysis.

oEncryption tools: Snort, Crypt 2.

Experience in MS Office (Words, Excel, Outlook, Access, PowerPoint, MS project 2010), SharePoint, Service Now, Service Center, & CMDB.

WORK EXPERIENCE

NATIONWIDE, COLUMBUS, OH MAY 2018- PRESENT

Risk & Audit Coordinator-Database technologies (working as a Contractor in I&O)

• Managing an audit projects for Database Service team

• In process of preparing a document to create mitigation plan for identified an audit issues.

In the process of preparing the project plan and milestone.

Shadow team members to learn tool like (Gaurdium). Used for vulnerability assessment scan for database and learning CQL language.

NATIONWIDE, COLUMBUS, OH FEBRURY 2018- PRESENT

Information Risk Analyst (worked as a Contractor in IRM)

Responsibilities

Worked closely with Infrastructure &Operations (I&O) Firewall Team to collect firewall rules for business justification related to the annual PCI Audit.

Prepared Firewall Rules list and compared with previous year documentation.

Created SharePoint page for rules owners with privilege access.

Engaged necessary BSA’s and their executive leaders.

Exceeded expectation of project outcome.

Established strong relationship with I&O and IRM business teams.

Prepared process documentation for Firewall Rules reviews.

CARDINAL HEALTH, DUBLIN, OH JUNE 2016 – DECEMBER 2016

Business Analyst/Project Manager (Successfully completed 6-month contract)

Responsibilities

Executed multiple projects simultaneously.

Completed successfully data storage device migration, security patch updates, and security vulnerabilities projects.

Met project quarterly goals by meeting project timeline and milestone.

Provided a solution to run team enhancement projects effectively.

Created weekly project status report for executive members.

Managed projects using Microsoft Project 2010.

Initiated a meeting with resource manager to assign a resource for the projects.

Maintained resource schedule and tracked budget.

Tracked project risk, issues and provide mitigation plan.

CARDINAL HEALTH, DUBLIN, OH OCTOBER 2015 – JANUARY 2016

Project Analyst (Successfully completed 3 months contract)

Responsibilities

Helped team reducing 80% of the workload by certifying Application.

Maintained persistence communication with the owner of the application helped to maintain and achieve a team goal.

Prepared monthly meeting report for executive members to make a better decision on current or upcoming project based on the status.

Developed dashboard in Share Point for executive management to display matric levels data for the organization to ensure greater visibility.

Developed test scripts for Dashboard to measure the consistency of the matrices and executed test scripts for Service Now for the enhancement project.

CELLARIS (Phone accessories Business) MAY 2010- PRESENT

Started phone accessories business in the mall kiosk.

Purchased inventory for the store from a whole seller.

Researched on new whole seller vendors.

Kept track of payrolls also maintain financial records.

GENERAL ELECTRIC GIS, CINCINNATI, OH. OCTOBER 2008 – APRIL 2010

Incident Analyst (Consultant)

Responsibilities:

Initiated bridge line with command center for Sev1 issues.

Managed bridge conference calls and assigned tasks to relevant response team members; sent out critical event reports after conferences bridges at the end of each event.

Responded to direct customer requests by creating policies and procedures to handle and escalate issues.

Enforced agreed-upon policies and procedures while thriving for continuous improvement.

Worked with Audit Team for As400 tape library inventory process.

Prepared process document in relation to continuity management.

Worked with Network Team for internal technician refresh projects.

BLACKWELL CONSULTING LLC AUGUST 2007- SEPTEMBER 2008

Internship Program

Responsibilities:

Worked as an intern providing basic needs of the organization.

Worked with the Network Team to establish VMware infrastructure for the organization.

Set up office communicator for management level and Avaya phone lines along with adding them into a directory.

Assisted team to establish a report on certification authority (CA) for users.

Masters of Cybersecurity Technology GPA 3.8 Graduated June 2018

Bachelor of Science: Management Information System GPA 3.1 Graduated May 2007

CERTIFICATION & TRAINING

ITIL V3 Foundation (Information Technology Infrastructure Library) December 2009

Security + training completed, expected to finish by November 2018, CISSP training completed expected to finish by December 2018

AWS Cloud Practitioner Essentials (Digital) completed

Contact this candidate