Aaron Villegas

Garfield, NJ ***** 862-***-**** ad2yed@r.postjobfree.com linkedin.com/in/aaron-villegas-877248169 Cyber Threat Analysis & Intelligence Security Standards Compliance Incident Response Technically astute and diligent cybersecurity professional with hands-on experience in safeguarding systems and networks against cyber threats and vulnerabilities. Proficient in a variety of security tools and technologies, including firewalls, intrusion detection systems and encryption methods. Analytical problem solver with expertise in identifying and mitigating security threats, assessing risks, executing security protocols and orchestrating incident response plans. Possess in-depth knowledge of current cyber threats, trends and practices and passion for fortifying cyber defense infrastructure. Skilled in monitoring networks, understanding multiple attack patterns and generating reports with confidentiality and integrity of sensitive data. CORE COMPETENCIES

Cyber Maturity Assessment Cyber Government Compliance Frameworks Network Security IDS/IPS Solutions Identity Access Management Firewall Configuration MITRE ATT&CK Framework Cross-team Coordination Constant Process Improvement Incident Management Cybersecurity Protocols Execution Threat Detection & Mitigation Vulnerability Management Technical Skills: Applications: Microsoft Suite, Google Suite Platforms: macOS, Microsoft Windows Server, Kali Linux, Ubuntu Server Tools: Python, Active Directory, SSO, Federated Access, DNS, DHCP, OSI Model, Cyber Kill Chain, SQL Injections Government Compliance Standards: NIST, GDPR, ISO 27001, PCI DSS WORK EXPERIENCE

KPMG LLP – New York, NY Jun 2022 – Sep 2023

Cyber Security Consultant

• Maturity Assessments: Led Cyber Maturity Assessments with specific objectives and orchestrated activities to propel the organization toward predefined maturity level aimed at enhancing cybersecurity resilience.

• Regulatory Compliance: Facilitated clients in achieving compliance by deploying Authentication Risk Assessment Frameworks that optimized authentication processes and alignment with regulatory standards.

• Cyber Risk & Threat Analytics Services: Yielded informed insights and actionable strategies for robust cybersecurity measures by delivering professional Cyber Risk and Threat Analytics Services.

• Constant Improvement: Enhanced efficiency in overall security infrastructure by uncovering and prioritizing ongoing improvement possibilities within security operations and platforms. Apple Inc. – Cupertino, CA Feb 2019 – May 2022

AppleCare Technical Advisor

• Technical Support: Addressed technical issues and troubleshot problems for customers by providing expert technical support for iOS, iPadOS and watchOS products, including iPhone, iPad and iPod, via phone.

• Customer Satisfaction: Demonstrated a deep understanding of Apple's Core beliefs to cultivate and nurture strong relationships with customers that fostered loyalty and credibility.

• Data Management: Stored, retrieved and analyzed customer data in compliance with privacy regulations by managing Customer Relationship Management (CRM) tools aimed at delivering tailored solutions.

• Customer Service: Offered exceptional customer service by promptly resolving customer inquiries and concerns with empathy that exceeded customer expectations and slashed complaints. EDUCATION & CREDENTIALS

Bachelor of Science in Cyber Security Analytics and Operations, Minor in Security Risk Analysis May 2022 Pennsylvania State University, College Information Science Technology – State College, PA Dean’s List Business Honor Society Outstanding Achievement Award Morgan Trustee and Bunton Waller Scholarship CompTIA Security + AWS Certified Cloud Practitioner AWS Certified Solutions Architect National Security Agency Certificate of Achievement

PROFESSIONAL DEVELOPMENT

Empower Intern Experience – Empower Coach KPMG LLP – New York, NY (June 2023 – August 2023) Exhibited dynamic leadership; managed a group of 20+ interns and delivered valuable opportunities to gain hands-on experience in professional tax and audit services.

Participant TryHackMe – Garfield, NJ (Jun 2022 – Present) Identified SQL injection and XSS vulnerabilities by carrying out comprehensive inspections for SQL injections and Cross-scripting (XSS) attacks within systems and networks. Uncovered known attack patterns/signatures and anomalies in network traffic by rolling out rules through Snort.

Competitor National Cyber League – State College, PA (Aug 2022) Participated in CTF competition and engaged under tight time restrictions to address a series of challenges of cybersecurity, such as vulnerability, cryptography and web security.