Project Management Incident Response

Shadrach Nzewunwa Sec+ - Cybersecurity Profession, CAPM, CSC

Upper Marlboro, MD 20792 301-***-**** ********.*.********.***@*****.***

PROFESSIONAL SUMMARY

PROFESSIONAL SKILLS

Threat Analysis and Intelligence

Incident Response and Management

Vulnerability Assessment and Penetration Testing

Security Information and Event Management (SIEM)

Network Security

Malware Analysis

Security Policies and Procedures

Compliance (e.g., GDPR, HIPAA, PCI-DSS)

Firewall and Intrusion Detection/Prevention Systems (IDS/IPS)

Scripting and Automation (e.g., Python, PowerShell)

Good Understanding of Control Frameworks such as COBIT, COSO, PCI DSS, NIST 800-37, NIST 800-53 and ISO 27001.

Certifications

Certified Information Systems Security Professional (CISSP) in view.

Certified Information Security Auditor (CISA) in view.

CompTIA Security+

Certified cybersecurity professional.

Certified Project management Associate.

Professional Experience

Associate Cyber Security Analyst.

DPSCS, Jessup.

01/2020 – Present

Monitor and analyze network traffic for security events and potential incidents using SIEM tools.

Conduct vulnerability assessments and penetration tests to identify security weaknesses within the institution IT infrastructure.

Investigate security breaches and incidents, perform root cause analysis and provide remediation and recommendations.

Develop and implement security policies, procedures, and guidelines.

Collaborate with IT and development teams to ensure security best practices are integrated into all aspects of the organization's operations.

Stay up to date with the latest cyber threats and trends, providing timely updates to the security team and management.

Performs internal and external IT risk assessments, conducted gap analysis against industry standards, and provided recommendations on mitigation options.

Continuously update facility security posture using updated vendor recommended software.

IT Security Specialist

Aco1-224 Avn Reg, Fort Belvoir

09/2021 – Till date.

Managed and configured firewalls, VPNs, and other security infrastructure.

Conducted forensic analysis of compromised systems to determine the extent of the breach and data exfiltration.

Implemented and managed endpoint security solutions, ensuring devices were protected against threats.

Assisted in the development and maintenance of disaster recovery and business continuity plans.

Coordinated with external vendors and partners to enhance the organization's security posture.

Security Compliance Analyst

Ezek Systems LLC, Washington.

04/2018 – 01/2020

Performed malware analysis and reverse engineering to understand threats and develop countermeasures.

Conducted regular security audits and risk assessments, documenting findings and recommending improvements.

Participated in incident response drills and developed incident response plans.

Perform SOX 404 annual compliance testing, conduct walkthrough and test effectives of IT General Controls such as access control and change management control.

Provided training and support to junior analysts and other staff on cybersecurity awareness and best practices.

Conduct root-cause analysis of vulnerabilities and coordinate with appropriate stakeholders to remediate findings on IT audit engagements within schedule and budget constraint.

Education

Master of Science in Computer and Cloud Computing Science

University of Maryland, Maryland USA.

04/2024 – 08/2026

Master of Science in Engineering project Management.

Coventry University, Coventry.

08/2015 – 04/2017.

Professional Affiliations

Member, (ISC)

Project Management Professional, PMI.

Member, Information Systems Security Association (ISSA).

Contact this candidate