Cybersecurity Analyst Incident Response

Yousuf H. Dogru

Philadelphia, PA ***** 646-***-**** ************@*****.*** -

in/yousufhdogru

Fully Work Authorized No Visa Sponsorship Required Open to Relocation PROFESSIONAL SUMMARY

CompTIA Security+ certified Cybersecurity Analyst with 1+ years of professional experience in cybersecurity field experience. Specialized in security analysis and incident response. Experience with hands-on projects in monitoring and analyzing potential and active threats using security tools, currently working towards obtaining CompTIA CySA+ certification. TECHNICAL SKILLS

• Incident Response, Endpoint Security, Phishing Email Analysis, Malware Analysis, Vulnerability Scanning, Threat Intelligence

• Security: QRadar, Splunk, Trellix ETP, Trellix HX, Redline, Trellix DoD Sandbox, Misp, Nessus, Nmap, Wireshark, Kali Linux, Metasploitable, Linux Command Line Tools, NIST-800, OWASP 10, The Hive, Jira

• Networking: Wireshark packet analysis, DNS, Whois, TCP/IP & OSI Layers, Firewall, IDS/IPS

• Operating Systems: Windows, Linux, Mac

• Languages: Bilingual in English and Turkish

PROFESSIONAL EXPERIENCE

09/2022 - Present

Cybersecurity Analyst

CyberTech Labs, NJ

• Conduct log analysis on the IBM QRadar SIEM solution and provide recommendations to the technical teams via The Hive ticketing system

• Monitor and analyze SIEM alerts through IBM QRadar and identify security anomalies for investigation and remediation such as firewall denies, authentication failures, connection to a known malware site, traffic from an untrusted network, and potential data loss

• Leverage Splunk to analyze logs and other security events to find targeted attacks against the network

• Create and manage dashboards and views in Splunk

• Acquire and analyze triages when necessary to gain insight on the incidents and consequently request containment for malicious machines and servers on Trellix HX EDR solution

• Analyze phishing emails on Trellix ETP email security solution

• Investigate the alerts on The Hive.

• Gather information about cyber threats using the MISP Threat Intelligence Platform.

• Conduct analysis to determine the legitimacy of files, domains, and emails using online resources such as VirusTotal, URLscan, AbuseIPDB, Who. is and MX Toolbox

• Conduct malware analysis on Trellix DoD Sandbox

• Knowledge of National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF)

• Knowledge of risk management, identity and access management, cyber threat intelligence (MITRE ATT&CK and Cyber Kill Chain), network technologies/tools, OWASP vulnerabilities

Human Resources and Community Manager 07/2013 - 08/2016 Philadelphia Dialog Forum, PA

• Built and managed online communities while driving conversations and engagement

• Worked on community strategy, in partnership with company or community executives

• Managed members' relationships and responded to inbound communications phone, email, etc

• Organized and hosted community events

• Reported on community metrics

Event Cordinator 06/2011 - 06/2013

NEICC, NY

• Planned, coordinated, and executed local and regional community events

• Contracted for services from vendors including caterers, florists, parking services, photography, etc

• Prepared formal briefing materials with final details for gift officers and event hosts

• Developed staffing plans to ensure quality standards are met.

• Collaborated with the Development Services Associate in the creation and distribution of event invitations and the tracking of responses

ADDITIONAL WORK EXPERIENCE

Volunteer at TCC PA

• Supporting integration of refugees or other community members who need information or help in their new life in the US

Religion Instructor/Imam (Volunteer), NEICC

• Handling speech about the Islamic Religion and beliefs also relates to other religions and their followers

EDUCATION

Bachelor of Science (BS), Social Sciences/Theology, Ataturk University, Erzurum, Turkey

PROFESSIONAL DEVELOPMENT/AFFILIATIONS

• CompTIA Cybersecurity Analyst (CySA+), In Progress, Expected 2024

• CompTIA Security+, 2022

• Splunk Core Certified User, 2022

• IBM QRadar SIEM Foundation, 2022

• Cyber Security Analyst Hands-on Training, 2022

Contact this candidate