Cyber Security Incident Response / Logging Compliance and Strategy

Location:

Chicago, IL

Posted:

July 24, 2024

Contact this candidate

Resume:

Scott Kolsto

***** ****** **. ******, ** ***** 708-***-**** *******@*****.***

Objective

Seeking a growth-oriented role, where I am able to continuously learn, contribute and teach others.

Education

DePaul University - Chicago, IL Master of Science, Cyber Security November 2016

Joliet Junior College - Joliet, IL Cisco Networking, Cyber Security June 2012 – May 2019

Western Illinois University - Macomb, IL Bachelor of Science, Multimedia/Photography May 1995

Technical Skills

Operating Systems: Windows XP/7/8/10, Linux: Ubuntu, Kali

Networking: IPv4, IPv6, TCP/IP, LANs, WANs, Cisco: Routers, Switches, Firewalls, IPv4 Subnetting

Ruckus Wireless, Cisco-Meraki, Zyxel, Dell Sonicwall

Hardware: Axis, Honeywell and Dahua Security Cameras. Cisco/Meraki, Ruckus, Unifi Wireless Access Points

Applications: Splunk, Rapid7 – Nexpose and InsightVM, Carbon Black Response, BigFix, Putty, Wireshark, John the Ripper, VMWare, NMap,

Ettercap, Metasploit, Safend Data Protection Suite, Carbon Black Threat Hunter, ProofPoint, XSOAR (Demisto), Threat Connect.

Soft Skills

Leadership: Take the initiative, offer solutions, and volunteer to take on a project or assist others.

Teaching: Not all team members have the same level of expertise. Lift them up by helping them learn a new piece of knowledge.

Relationships: Communication builds trust, breaks down barriers allowing relationships to develop.

Helping Others: Offer to help others with their needs. It helps build relationships.

Questioning: Asking questions of peers and management improves productivity and problem solving.

Problem Solving: Don't just complain. Look for ways or find help to resolve an issue.

Curiosity: Continue to learn. Apply the knowledge and most important, teach others.

Certifications

CompTia: Network+ Code: GNJSLWEPMLF1165D Certification Coursework completed:

Splunk Certified Core User: Cert-360501 Using Splunk Enterprise Security 7.0

CISSP: ISC2 Candidate 2212396 SANS Sec 504

Work History

IT Security Specialist IV – Global Information Security (contract) October 2023 - Present

Application Security

Responsible for evaluations of cyber security threats and enhancing defensive capabilities to reduce the bank's risk of exposure.

Partner with application owners and logging platform owners to identify and remediate control coverage gaps.

Supplied Privilege Access responses to GRC Audit Requests for Information.

September 2018 – October 2023

Senior Security Engineer – Threat Response Team: Threat Hunting, Incident Response and Logging and Monitoring

Application Log Monitoring: Developed program to coordinate with application teams to create logs and enable application monitoring in Splunk

Coordinate Splunk training based on needs for various security teams

Splunk: Threat hunting dashboard creation for faster Threat Hunting and Incident Response

Rapid 7 InsightVM: Coordinated with network teams to identify and patch vulnerabilities

Incident Response: Lead an investigative team, including MSI Privacy Counsel as well as Investigated incidents individually

Collaboration with Governance Risk & Compliance

Penetration and Purple Team testing: procurement, management of tests and remediation of findings

Scott Kolsto

12258 Warren Dr. Mokena, IL 60448 708-***-**** *******@*****.***

May 2018 – August 2018

Security Analyst – Cyber Security Governance, Risk Management and Compliance (contract)

Completing Rapid7 Nexpose vulnerability scans. Meeting with Application teams to assist in the remediation process

Creation of the audit questions to ensure Hyatt Applications are compliant with GDPR

Drafting the Security Section for each Application’s Profile

Building out and managing the Cyber Security GDPR audit process

April 2016 – March 2018

Security Analyst – Security Operations

●Splunk – Creation of new Dashboards and Panels to monitor the network for new threats, make existing panels more efficient and effective in order to reduce false positives

●Safend – Apply DLP policies to new employees based on their position, monitor movement of sensitive information to unauthorized devices

●Rapid7 Nexpose – Create/configure vulnerability scans for datacenters, monitor vulnerabilities and provide CVE and KB numbers to the SaaS Support team for patching

●Minimize the need to login to Nexpose and Safend by creating Splunk Dashboards / Panels, Reports and Alerts so monitoring can be achieved as much as possible through Splunk

Wireless Outfitters (Distribution) November 2014 – February 2016

Inside Sales Representative – Sales Support

●Employed excellent listening skills and going above and beyond to provide a high level of customer service resulted in becoming a trusted advisor through consultative sales

●Experienced in technology K-12 sales. E-Rate. TCPN contracts

●Experience with Ruckus Wireless, Huawei, Cambium, RGNets and Zyxel

N2N Holdings – BoardShare May 2014 – October 2014

Channel Manager/Account Manager - Promoting and sales of BoardShare, interactive White Board

●Sales into K-12 and Higher Education

●Consistent profiling of customers to uncover short term and long term opportunities to keep the pipeline full

Intelligent Solutions Inc. April 2013 – September 2013

Account Executive – Consultative sales of IT managed services to small to medium sized businesses

●Preparing bids for RFP’s that adhere to the strict regulations set forth in the RFP as well as ensuring compliance with local state and federal laws and regulations

●Won first RFP/Bid with a GP of 25%

●Deals ranging in size up to $600,000

January 2012 – April 2013

Account Manager – Selling IT Solutions to schools grades K-12 in Texas, Arkansas and New Mexico

●Build lasting relationships with the Technology Directors at each of the schools

●Exceeded 2012 sales goals by the end of 3rd quarter and 1st quarter 2013 sales goals

●Profile and understand the pain points the school is experiencing so as to better recommend a solution

●Scored 100% on the CDW customer satisfaction survey.

●Increase zero or slow spend accounts to over $100,000 revenue

●E-Rate experience and TCPN, Tips/Taps and NJPA contracts

Scott Kolsto

12258 Warren Dr. Mokena, IL 60448 708-***-**** *******@*****.***

Sales & Managerial Experience

E Marketing & Communications (Self Employed) February 2010 – January 2012

President – E Marketing & Communications focuses on helping businesses market online and through electronic media. The services offered to businesses are;

●Mobile Media Marketing campaigns, Online Advertising, Web Design / SEO, Social Media and Clear Super Fast Mobile Internet

●Set up Clear equipment, taught clients how to use the software for Mobile Media

●Networked through chambers of commerce and other groups to bring in new business as well as prospected door to door

October 2008 – January 2010

Bank Officer– Accredited in Business Banking the primary objective was to acquire new business relationships by working with the existing consumer base.

●Profiled consumer clients to uncover needs that were not currently being serviced by Chase or were being serviced by other institutions

●Identified the needs of a business, profiled the business and recommended products and services that saved time and money

●Met or exceeded goals in all categories. Created business relationships with revenue sizes $500K to $1 Million

George Washington Savings Bank (acquired by First Merit Bank) October 2007- October 2008

Small Business Banking Manager’s duty was to create and build the small business department at George Washington Savings Bank

●Oversight of the implementation of new banking products such as Remote Deposit

●Liaison with the Remote Deposit Service Provider to integrate R.D. into the bank’s computer systems

●Installed Remote Deposit hardware and software on to client’s computers

●Created the incentive plan for the Personal Bankers and developed the training program that would grow the Personal Bankers sales abilities

●Client base served from small to $5 million in revenue

September 2003 – October 2007

Branch Manager’s position was to coach and train Personal Bankers to uncover needs and recommend appropriate products and services.

●Oversaw a $2 million profit and loss sheet

●Managed the opening of a new build branch which exceeded goals and expectations

●Recognized success and coached to underperformance issues

●New Build Branch first year Growth Score 126%

●Coached personal bankers how to profile and uncover business opportunities

●Exceeded Branch Audit expectations

●Managed investments for clients up to $500K

Business Banking Manager: Managed the business banking departments of multiple locations. Coached and trained the bankers to uncover needs

and opportunities. All locations sales requirements were in the black within 6 months of assuming this role. Loan amounts closed $500K

per month on average. Largest loan closed $2 million

Great Lakes Bank (acquired by First Midwest Bank now Old National Bank) February 2002 – September 2003

Branch Manager opened a new build in-store location with 5 employees

●Motivating and assisting personal bankers in reaching their deposit, account and loan goals

●Significant business relationships were established through face to face visits, phone conversations and community events

●Underwrote and closed loans up to $250K.

●Acted as Liaison/ Advisor to the bank’s IT department to set up the computers and printers in the new branch

53 63 6F 74 74 20 4B 6F 6C 73 74 6F **-**-**-**-**-** **-**-**-**-**-** 6E 20 44 72 20 4D 6F 6B 65 6E 61 20 49 4C **-**-**-**-**-** 20 37 30 38 2D 34 37 36 2D **-**-**-**-**-** 6B 6F 6C 73 74 6F 40 67 6D 61 69 6C 2E 63 6F 6D

Contact this candidate