LELA M. BARBEE

ad2qrg@r.postjobfree.com www.linkedin.com/in/lela-barbee-88a81696

317-***-****

EDUCATION & CERTIFICATIONS

Bachelor of Science (BS) in Business Information Systems

Certified: CompTIA A+ N+ Security+ AZ-900 MS-900 Fortinet NSE 3 Fortinet Certified Fundamentals Cybersecurity

TECHNICAL SKILLS AND TOOLS

Security Tools: Splunk Enterprise Security, IBM QRadar SOAR, Nmap, SentinelOne, CrowdStrike Falcon, Fortinet, Proofpoint, Resilient, Jira Ticketing, VirusTotal, AnyRun, AbuseIPDB, PhishTool, Mx Toolbox, Tenable.io, Nessus, Kali Linux, NetSparker, Armis, Metasploitable

Networking: WireShark PCAP Analysis, DNS, Whois, Virtual Box,TCP/IP, IDS/IPS, Bomgar

Programing Languages: Bash, Windows Powershell, Python, CSS, KQL

Frameworks: NIST, MITRE ATT&CK, OWASP top 10, OSINT, Cyber Kill Chain

Operating Systems: Windows 10, Linux (Kali)

EndPoint Encryption: Symantec Endpoint Encryption (SEE), BitLocker, Tanium

Cloud Technology: Azure, Azure Active Directory, Azure Sentinel, Microsoft Defender, Office365, ServiceNow

Collaboration Skills: Relationship builder with 3rd party vendors, cross IT teams

PROFESSIONAL EXPERIENCE

L2 Desktop FSO, Ascension St Vincent Health, HCL - IronSystems July 2023 – Present

Manually process of decryption of Symantec Endpoint Encryption, uninstall Symantec Endpoint Encryption, restart device, encrypt device with BitLocker, and verify the end point device is encrypted by way of Tanium end point client software.

Troubleshoot end user device, with web based Healthcare SaaS applications configuration, and login permissions.

Troubleshoot Cisco switch connectivity to Wireless Access Points, Network printers, Power Over Ethernet Cisco, Avaya and Siemens phone.

Coordinate with 3rd party software vendors for end point specific software configuration issues.

Review business processes to determine the most efficient process for IT Support, and network support.

CyberNow Labs, SOC Analyst Engineer August 2023 - Present

Actively searching for indicators of compromise (IOC’s) in our internal email environment by using Proofpoint TAP and reviewing the metadata in the email header to determine the root cause of alert.

Review events and alerts using OSINT tools, such as AbuseIPDB, VirusTotal, PhishTool, Mx Toolbox, Message Header Analyzer and many more.

Daily review of MITRE ATT&CK Groups for tactics and techniques used and find a correlation of current alerts and events in current SOC environment.

Actively respond to EDR/XDR security alerts to analysis and remediate by using SentinelOne and/or CrowdStrike

Review incidents in the Sentinel One and CrowdStrike dashboard to determine which combination OSINT tools

Which include AbuseIPDB, VirusTotal, PhishTool and more to determine best encompassing picture of the event.

Microsoft Azure Active Directory Engineer, Microsoft - Kforce Staffing Agency Jul 2022-May 2023

Provide troubleshooting support for Microsoft customers utilizing Microsoft Azure Active Directory sync engine (ADConnect) issues between Active Directory Domain Services and Azure Active Directory Connect for premium clients resulting in a high customer satisfaction rate of 93%.

Create and modify Powershell scripts found on GitHub to provide additional troubleshooting tools.

Research Microsoft Azure Active Directory Connect sync engine hardware requirements and dependencies for customers ensuring optimal system performance and security integrity.

Utilized Kusto Query Language in Azure to determine SaaS provisioning issues with Azure Active Directory and SaaS integration for provisioning of users/and or groups.

IT Consultant, Bross Group LLC Apr 2022-Jul 2022

Reviewed client's Microsoft Endpoint Manager environment and provided guidance on Autopilot configuration, JAMFPro integration, and Microsoft Defender for Endpoint configuration resulting in SaaS for enhanced security measures.

Provide remote customer service support and technical assistance to end clients.

Troubleshoot customer issues using Intune for Windows end point devices.

Sr. Help Desk Analyst, Fiserv – Insight Global contract Sep 2021-Mar 2022

Provided technical desktop support to end users and input data into service point - Service Now IT service request tickets, ensuring timely resolution of user issues within 4 hours and provided efficient IT service management

Troubleshoot end user devices connectivity issues to SaaS finance applications and the Windows OS.

Installed and configured Windows 10 images on HP OEM devices to Dell OEM devices, ensuring smooth deployment of standardized operations systems by way of SCCM imaging for the specific Dell OEM device.

IT Administrator, DFAS (Defense Finance and Accounting Service) - Intrepid Inc Apr 2021-Aug 2021

Created workflows using Power Automate and Power Apps, streamlining business processes and improving productivity by 30%.

Provided access to M365 Entitlements and troubleshoot Exchange Online and on-premise connectivity issues, ensuring smooth collaboration and communication among users.

Troubleshoot authentication and authorization issues with Active Directory On-premises and Azure Active Directory, leading to authentication for more secure and seamless access to resources.

Troubleshoot HP OEM devices connectivity to Department of Finance and Accounting Services SaaS applications, specifically M365.

IT Administrator, State of Indiana - Indiana Department of Education Jul 2017-Jan 2021

Added users and troubleshooting SharePoint on-premise pages access and modification, using Dynamics 365 Online instance connection issues for easier access to collaboration tools and resolving access issues quickly.

Created Onboarding and Offboarding process for Department of Education users.

Conducted Onboarding and Offboarding process for new Department of Education users.

Collaborated with cross-functional teams and SCCM technicians to support DOE software package deployment to Azure Cloud services, resolving technical issues and ensuring successful deployment.

Troubleshoot HP OEM devices connectivity issues with Cisco VPN, Google Drive, and M365.

Manage SIP and Cisco call flow by configuring specific features for Cisco SIP that included shared folder and user persmissions.

Troubleshoot D365 connectivity issues to specific on-premise and cloud instances.

Setup and configure D365 cloud instances for specific users in Indiana Department of Education.

Verify Department of Education users permissions in an on-premise and cloud instance of D365.

System Analyst, Corsi Cabinets Jan 2016 - Jul 2017

Troubleshoot user end device connectivity issues to the network or network printers

Troubleshoot user exchange/email connectivity issues.

Reset Active Directory user passwords and managed Virtual Private Connection to Terminal Server network resources through VMWare, enhancing system security and accessibility.

Established relationships with vendors to bolster IT support capabilities across two geographically disparate manufacturing facilities, thereby improving IT service provision.

Troubleshoot user end devices connectivity to wired and wireless network resources and SaaS applications.

Senior Information Technology Support Engineer, Walmart eCommerce - SSI SChaefer Feb 2015 - Jan 2016

Leveraged my skills in PL/SQL Developer and Oracle 11g for effective data mining, improving daily report generation and data analysis.

Maintained data accuracy on the production database by creating and implementing T-SQL queries and monitored code quality by reviewing changes through the SVN repository.

Client Technology Analyst, Ascena eCommerce Tata Consultancy Services Feb 2015 – May 2014

Image and re-image WYSE thin client equipment with Windows 7 image.

Image and re-image Motorola mobile scanners.

Configure HP printers and Zebra thermal printers’ initial setup and configuration at associates work stations

Troubleshoot end user thin clients and Motorola mobile devices network connectivity to wired or wireless LAN networks.

Troubleshoot Zebra thermal printers and replace entire thermal printer or replace Zebra thermal parts, which include the thermal head.

Contact this candidate