Joshua A. K. Smith

Senior Cyber Security Analyst

+001.808-***-**** ac7yr4@r.postjobfree.com

Seasoned security analyst with 17 years of IT experience and over 9 years of dedicated security experience in and around the Security Operation Center (SOC) environment. Combines deep industry knowledge with a strong work ethic and a passion for investigation to come up with innovative ways to detect and defend against today’s modern threats.

Skills & Expertise

●Intrusion Detection

●Incident Response

●Malware Analysis

●Vulnerability Scanning

●Full PCAP Analysis

●Network Forensics

●SEIM Analysis

●Firewall Management

●Playbook Creation

Professional Experience

Raytheon Foreground Security Lake Mary, FL (2015 -2018)

Foreground was purchased by Raytheon in 2015 and became Raytheon Foreground Security. Although the name changed slightly, their ability to offer consistent and engaging opportunities did not.

Cyber Hunter, Raytheon Cyber Herndon, VA

•Remotely monitored the internal network of multiple VSOC (Virtual SOC) customer’s environments.

•Gathered threat intelligence to proactively use to hunt for malicious activity.

•Analyzed suspected malware in a sandboxed environment to verify malicious activity and gathered IOCs which were then used to search for similar malware across all clients.

Security Analyst, Biri Group Abu Dhabi, United Arab Emirates

•Worked on a team that built the infrastructure, policies and procedures for the creation of a brand new security operations center from the ground up.

•Developed and created standard operating procedures for all SOC processes.

•Created and executed training programs to educate new analysts on their roles and job functions.

•Assisted in the tuning of security tools in conjunction with Security Engineering to get eliminate device misconfigurations and false positives.

Foreground Security Lake Mary, FL (2011 -2015)

My partnership with Foreground Security provided me with consistent access to quality opportunities in the Washington DC metro area and beyond. Some of these include:

Senior Security Analyst, US Centers for Medicare and Medicaid Baltimore, MD

•Conducted network hunting activities to detect malicious traffic and properly respond.

•Generated a “Playbook” for the usage of all tools in the CMS ESOC environment.

SOC Lead, US Customs and Immigration Services Stennis, MS

•Generated detailed standard operating procedures for all tools used in the environment.

•Developed “Hunting” procedures for proactive monitoring against threats.

•Implemented a malware analysis sandbox and training guidelines.

•Created and lead a new “Focused Operations” team dealing with specialized, sensitive and high profile security incidents.

SOC Lead / Security Engineer, US Dept. of Health and Human Services Washington DC

•Served as the team lead for the HHS Security Operations Center, HHS Security Operations group, and HHS Incident Response and Forensics team.

•Was responsible for managing the 40 plus CheckPoint firewalls within the organization.

•Monitored, identified, evaluated, investigated, escalated and prevented computer and network intrusions across enterprise-level infrastructure containing more than 80,000 endpoints.

•Developed and implement countermeasures for vulnerabilities, exploits, and malicious activity

•Documented incidents, resolutions and communication with all appropriate parties.

SRA International, Inc. Falls Church, VA (2010 – 2011)

Intrusion Detection Analyst, US Department of State Washington DC

•Monitored DoS network traffic using several different intrusion detection and prevention systems.

•Identified and responded to malicious code utilizing multi-vendor security monitoring suites.

•Captured and analyzed malicious logic utilizing various analysis tools in a sandbox environment.

•Performed incident handling in accordance with DoS standard operating procedures.

•Monitored the US-CERT portal and secure DoS channels for information regarding the latest threats to the DoS and the various threat vectors and actors these threats could potentially come from.

WareOnEarth Communications Charleston, SC (2009 – 2010)

Security Analyst / Lead, US Defense Research & Engineering Network Adelphi, MD

•Monitored network traffic for suspicious activity using commercial and proprietary intrusion detection systems and submitted incident reports accordingly.

•Deployed and managed McAfee ePolicy Orchestrator across more than 10,000 endpoints.

•Created and implemented an orientation and training program for new employees.

Product Experience

●Arcsight ESM

●Splunk Enterprise Security

●RSA Netwitness

●Tenable Security Center

●Fidelis Elevate

●Darktrace

●Checkpoint Firewalls

●FireEye NSM

●ForcePoint / Websense

●ENCASE

●Wireshark

●Cuckoo Sandbox

●FTK Imager

●Tipping Point

●McAfee ePO

Contact this candidate