Surrayya Kapri

Princeton, NJ

ad3dtz@r.postjobfree.com

516-***-****

Experience Depth

An Information Technology professional with a master’s degree in information assurance concentration, working as an adjunct professor for Graduate students. I have skills in many cyber areas including, but not limited to; Information Assurance, Identity Management, Computer Security Incident Response (CSIR), Business Continuity Plan, Penetration Testing, Systems Application, Vendor Risk Analysis, Firewall Configuration, Network Traffic Monitoring, Packet Analysis, Vulnerability Assessment, Risk Management Framework, SIEM, and Business Intelligence.

I have over 13+ years of experience in IT with a thorough grasp of Incident Response, Web, and Data Security & Risk Management. I have worked as an adjunct for Information Assurance and Cybersecurity online as well as face to face using the canvas platform. I have also worked as a corporate trainer. Prepared user manuals to train users on various IT tasks as well as cyber security issues and performed troubleshooting of hardware and software issues while working as Help Desk support for over 5 years.

My experience includes strong communication skills, problem solving, change & project management skills (such as scheduling), team building, attention to detail, and ability to multitask. I am Currently working to obtain my CISSP Certification.

Education

Wilmington University

Masters in IT (Information Assurance concentration) May 2021

University of Massachusetts Boston

Bachelors in economics

Certifications

ACM Advanced Diploma in Computer Studies (United Kingdom)

CISSP (in progress)

Computer Skills

Vulnerability Assessment tools: McAfee Virus Scan Enterprise, Malwarebytes, Super Antispyware Wireshark, Metasploit, Nmap, Web Inspect, MITRE Attack, Kali Linux, and Unix.

Microsoft Office; Access, Visio, Excel, Power Point, Word, MS Project, and Prezi.

Intermediate level Java programming & Database Management, Working knowledge of Tableaux, Python, MongoDB, AWS.

Professional History

IINFORMATION ASSURANCE ADJUNCT (online/Sat) 01/22-Present

Wilmington University, DE

Teach Web Application and Data Security, Operating Systems Security, Plan for Information Security, Cloud Security Essentials & Incident Handling and Response, Operating Systems Security and Information Assurance Integrate to 50 – 60 Graduate students per week online and face to face on Saturdays. One Undergraduate class; Computer Hardware & Operation online to 23 students. The skills I teach are as follows:

NIST standards such as 800 SPs include but not limited to NIST SPs 800-18, 800-30, 800-37, 800-53 & 53A, 800-60, FIPS (199 & 200), OMB, FISMA regulations.

ISO standards

Documenting and reviewing System Security Plan (SSP), Security Assessment Report (SAR), Security Plan of Action and Milestones (POA&M)

Computer Security Incident Response Team procedures.

OWASP i.e., Knowledge of security vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF) and Unencrypted Authentication, methodologies

Understanding of network fundamentals, protocols, network addressing and infrastructure, enterprise structure, telecommunications theory, and data communications.

Monitor, identify, collect, and analyze network and host data to enhance vulnerability assessment, threat hunting, and risk mitigation, and SIEM.

Firewall, Intrusion detection system, Intrusion prevention System.

Vulnerability assessment analysis using Nessus vulnerability scanner.

Analyzing and classifying malware.

Understanding of current threats and trends in Information Security

Ability to create technical event reports for understanding by non-technical clients.

Using power shell scripts

Project Management skills such as scheduling and development of scope.

Skills mapping to A+ Certification.

IT/MATH INSTRUCTOR 02/21-06/21

New Hope Academy, Yardley, PA

Taught at least 50 students each week in this Special Ed. Private school. My duties were:

Developed a Cyber Security course from scratch for high school seniors.

Taught the course including security policies, procedures, and best practices.

Taught Computer Concepts and Programming (including algorithms, pseudocode, flowcharts, basic source code using Java, Python, Linux, MongoDB, and hardware components to a class of valedictorians)

Taught Statistics, Algebra, Conceptual Physics to a class of Valedictorians, Geometry and Trigonometry to middle schoolers.

Help Desk Associate/IT Corporate Trainer 01/10-12/18

Raritan Valley Community College, NJ

I worked in many departments of Raritan Valley Community College, I started there as a Programming Tutor, after one year of that I worked half of my time in the Academic Support Center and half of my time at the Help Desk. I was moved from the Help Desk in 2014 and worked at Children’s Campus, then assisted the director of the Youth Programs Department. The departments I worked for and the timelines are as follows:

Youth Programs Department

I worked in this department (01/17-12/18) assisting the Dept. Director with the following tasks:

Installed and update Security software on the staff and student computers.

Interfaced with cyber security subject matter experts to gather inputs and developed.

policy analysis and reports.

Acted as remediation analyst to work with vendors in remediating findings discovered during the onsite/virtual assessment.

Children’s Campus

I worked on this campus for a year 01/16-12/16) and provided IT support.

Ran scans to ensure security of the computers in use, using smart shield.

Provided IT Support to the Director

Implemented policies or procedures and tracked compliance.

Fixed hardware related issues

Completed tasks designed to ensure security of the organization's systems and information assets.

Performed other admin tasks as assigned, such as filling in as a substitute for teachers.

Help Desk Support

Most of my work at Raritan Valley Community College was working for this Technology Services department (09/11-09/14). I worked for the Help Desk and the did the following tasks among many:

Wrote User documentation for helping the end users to navigate the system.

Monitored, identified, collected, and analyzed network and host data to enhance vulnerability assessments, threats hunting and risk mitigation.

Managed user accounts, system updates, and password resets.

Worked with end users to determine the needs of individual departments.

Performed procedural tasks found within other security processes, such as information management, classification and protection, policy management.

Ensured system's security controls (using smart shield), policies and procedures were examined and validated.

Generated security documentation, including security assessment reports; system security plans; contingency plans; and disaster recovery plans.

Conducted scans of networks to find vulnerabilities using Malwarebytes and Super Antispyware

Monitored and analyzed network traffic and performed triage and resolved tickets.

Protected against unauthorized access, modification, or destruction and developed IT security policies and standards.

Corporate Trainer

I worked as a corporate trainer and manger for the Workforce Department of Raritan Valley Community College (05/13-06/14) to train corporate clients in IT and performed the following duties:

Designed and taught IT courses to facilitate learning of core computer security principles by adults.

Evaluated results of the training by small exercises.

Math/Programming Tutor

I was hired (01/10) by the Raritan Valley Community College to work in the Academic Support Center to tutor IT courses and did so till 08/13 and then split my time between this and Help Desk before moving on to other departments. The courses I tutored are:

Statistics 1 and II, Algebra, Java programming, Unix/Linux scripting, Database Management, Systems Analysis & Design, HTML, CSS

Algebra and Economics

English/ESL

Performed admin work to manage the office for the director when needed.

TECH SUPPORT 06/12-09/12

Access Property Management, NJ

This is a property management company. I did a summer internship there.

Ensured network security by configuring & installing security software on computers.

Manage risk with a pragmatic perspective, understanding that security is important but needs to support the success of the business.

Champion and build appropriate security policies.

Provided IT support for printers, scanners, PCs, laptops connected to a LAN.

Maintained and installed windows software as well as security software on PCs.

IT/MARKETING Associate 01/11-05/12

Custom Calibration, NJ

This is a Calibration company run by a veteran located in several areas of NJ.

Maintained and updated site asset inventory using Asset Management software.

Used MS Excel to monitor 3rd party (vendor) engagement.

Take ownership of establishing and enforcing security standards both within the team and across the organization. Work proactively and collaboratively to achieve change management.

Edited the company website to make it more attractive to customers.

Utilized video editing software (Adobe Premier) to create a marketing video for the company.

Utilized HTML to maintain & update the company website.

Sat in as a proxy for the CEO during meetings with vendors in United Kingdom (via Skype) to evaluate reports.

Contact this candidate