Samuel S. Appah • Alexandria • 703-***-**** • ad24gy@r.postjobfree.com
Page 1 of 2
SAMUEL S. APPAH
Alexandria, VA • 703-***-**** • ad24gy@r.postjobfree.com
SUMMARY
I am an experienced cybersecurity professional with more than 5 years of dedicated service in security research, planning, execution and ongoing maintenance of security systems. I am highly skilled in training personnel on essential cybersecurity protocols and preventative measures. I also specialize in Computer Network Defense, adept at incident triage, and leverage extensive knowledge of threat actor’s tactics, techniques, and procedures to proactively safeguard against cyber-attacks, particularly in business and corporate environments, through rapid investigation and remediation.
CERTIFICATIONS
Comptia Security +
Microsoft Azure Fundamentals
Certified Information Systems Auditor (CISA)
Certified Information Security Manager (CISM)
SKILLS
Windows, Linux
Critical Thinking
Incident Response
Risk Analysis
PowerShell
Risk Management
Intrusion Detection and Prevention
Systems (IDS/IPS)
Threat analysis
Excellent Communication
Network Security
Security Policies and
Procedures
Splunk, Burp Suite,
Nessus, Nmap, QRadar
Security Awareness &
Training
Web Content Filtering
Vulnerability
Assessment
Malware &
Phishing Analysis
SIEM Tools
Forensic
Data Loss
Prevention (DLP)
TCP / IP
PROFESSIONAL EXPERIENCE
BytePath LLC Manassas, VA Jan 2022 – To date
Sr. Cybersecurity Analyst
Monitor servers, network gears, and applications in operation center environment.
Monitor Intrusion Detection and Prevention Systems (IDS/IPS) to identify security issues for remediation.
Actively participate in large scope high impact cyber breaches and manage Incident Response workflow and activities to support response and remediation.
Provides incident response and ownership based on escalation and handoff procedures from junior or mid-career team members.
Identify security issues and risks associated with security events and managed incident response process.
Samuel S. Appah • Alexandria • 703-***-**** • ad24gy@r.postjobfree.com Page 2 of 2
Use the Security Incident Event Management (SIEM) platform to perform incident response identification.
Experience in analyzing phishing emails when detected using Proofpoint, analyze malicious links and attachments, analyze user impact via Splunk, remove/delete phishing emails from exchange servers and block unwanted senders.
Push monthly Windows security patch across company wide network for machines to stay compliant.
Analyze a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident.
Perform incident response management role during major outages and cyber-attacks.
Document and track the timeline of events that occurred in the process to resolution for each of the incidents managed in support of postmortem/root cause analysis.
Assist with the remediation efforts from penetration tests and assessments. Steadfast Solutions Boston, MA August 2018 – Jan 2022 Incident Response Analyst
Assisted and provided guidance to other stakeholders during the incident response process.
Participated and assisted in threat actor-based investigations, provide auxiliary support to incident response and monitoring functions, and advise on new detection methodologies.
Used data analysis, threat intelligence, and other security technologies.
Assisted in incident response activities such as host triage and retrieval, malware analysis, remote system analysis, end-user interviews, and remediation efforts.
Analyzed network traffic, IDS/IPS/DLP events, packet capture, and FW logs.
Accomplished ongoing weekly activities required to access, review, analyze and report security findings or events related to systems, subscribed platforms, and personnel.
Provided input for dashboard visualization of security issues by system, including issue severity, system authorization status, and system PO&AM remediation.
Participated in periodic forums and provide input and expertise aligning existing security standards as compared to proposed investments.
Provided policy interpretation and guidance in response to stakeholder or project inquiry. EDUCATION
BSc. Computer Science
University of Ghana 2004
Master in Business Administration (MBA)
Kwame Nkrumah University of Science and Technology 2019 REFERENCES
Available upon request.