Majid Balideh
Ashburn VA *****
ad0qsr@r.postjobfree.com
PROFESSIONAL SUMMARY
Information Security Analyst with over 3 years of experience and a strong analytical mindset. Specialized in security analysis, incident response, vulnerability assessment, and threat detection. Proficient in a wide range of security tools and technologies, including Splunk, Nessus, Burp Suite, and Metasploit. Experienced in collaborating with cross-functional teams and familiar with industry frameworks like MITRE ATT&CK. Committed to staying current with cybersecurity trends and threats, aiming to contribute to a dynamic organization's success. TECHNICAL SKILLS
Security Tools: Splunk, Tenable Nessus, Burp Suite, Metasploit, Nmap, Wireshark
Security Technologies: SIEM, IDS/IPS, EDR, Symantec, Firewall (Palo Alto, Sophos), VPN, DLP, DMZ
Networking: TCP/IP, OSI Model, DNS, DHCP, SSH, VLAN, Proxy
Incident Management: Jira, ServiceNow
Security Concepts: Cloud Security, Cyber Kill Chain, MITRE ATT&CK Framework
Operating Systems: Linux (Kali/Ubuntu), Windows (XP/7/10/Server 2008/2012/2016/2019)
PROFESSIONAL EXPERIENCE
SOC Analyst Walmart, New York July 2022 - Present
Monitor and analyze SIEM alerts using Splunk, following established runbooks for incident investigation and remediation.
Collaborate with cross-functional teams, including NOC, DLP Engineers, Threat Intel Team, and others, to ensure effective incident response.
Conduct detailed analysis of security incidents, differentiating between potential intrusion attempts and false alarms.
Perform vulnerability scans with Nessus, providing actionable reports and working closely with IT teams on mitigation strategies.
Utilize Burp Suite for web application vulnerability assessments, enhancing overall security posture.
Apply MITRE ATT&CK framework for threat hunting to proactively identify and respond to adversarial tactics, techniques, and procedures (TTP).
Assist in the development of disaster recovery plans, ensuring business continuity.
Conduct employee security awareness training to enhance organizational security culture.
Collaborate with vendors to manage hardware warranties, repairs, and replacements, ensuring seamless operations.
SOC Analyst Citibank, New York April 2020 – May 2022
Monitored security threats in a 24x7 Security Operations Center (SOC) environment, analyzing logs from various sources, such as IDS/IPS and SIEM.
Conducted in-depth security log analysis to detect and respond to attack origins, patterns, and potential vulnerabilities.
Recognized and responded to previously undisclosed software and hardware vulnerabilities, enhancing overall security posture.
Assisted in the technical enforcement of security policies through vulnerability scanning devices.
Developed advanced queries and alerts to detect adversary actions and support incident response.
Provided strategic and tactical direction on information security and compliance, ensuring adherence to NIST Risk Framework.
Contributed to the improvement of incident response processes and procedures, enhancing SOC functionality.
EDUCATION
Cyber Security Bootcamp Syntax March 2020
Bachelor’s Degree in Banking Management
CERTIFICATIONS
CompTIA Security+
CompTIA Network+