Security Operations Center

Kimberly Reali 207-***-****

PO BOX ** · STANDISH, ME 04084 · Linkedin: kimberlyreali · E-MAIL: ******@**********.***

INTRODUCTION

Experienced and Certified Security Operations Center (SOC) Analyst with 8 years professional work experience in analyzing endpoint, network, and security logs and 1 year experience doing vulnerability testing. Seeking to leverage expertise in threat intelligence, malware analysis, log interpretation, vulnerability scanning and security analysis to contribute effectively and learn continuously with a forward-thinking organization's cybersecurity team.

CERTIFICATIONS

FBI Level 4 Security Awareness (CJIS) 2024

CySA (Cybersecurity Analyst) 2018

eJPT (Junior Penetration Tester) 2022

SSCP (Systems Security Certified Practitioner) 2016

CPP (AWS Certified Cloud Practitioner) 2021

Security+ 2015

WORK EXPERIENCE

Sage Data Security / Tyler Technologies, Inc.

Yarmouth, Maine May 2015 to July 2024

* Sage Data Security was acquired by Tyler Technologies, Inc in May 2018.

Security Operations Center (SOC) Analyst May 2015 – May 2023

Security Operations Center (SOC) Analyst with a Managed Detection and Response (MDR) and Endpoint Detection and Response (EDR) provider; specializing in threat detection, monitoring, analysis and interpretation of endpoint, network and security logs to detect security incidents for banks, healthcare and local municipalities across the US.

Key responsibilities:

Conduct in-depth contextual and behavioral analysis of endpoint, network and security logs.

Using artifacts to identify malicious activities, including command and control communications, lateral movement, and data exfiltration.

Collaborate with cross-functional teams, including SOC engineers and other threat hunters to share insights, and provide actionable information. Prepare daily client reports and technical documentation to report and document findings and to support a proactive approach to cybersecurity.

Integrate threat intelligence into analysis processes to enhance detection capabilities and stay informed about emerging malware threats and attack vectors.

Strong knowledge of information security principles and frameworks (e.g., NIST Cybersecurity Framework, CIS, ISO 27001 & 27002).

Tools: Experience with a proprietary SIEM platform using Microsoft Sysinternals to correlate and analyze network and system logs, Access Database and MITRE ATT&CK Framework.

Basic Knowledge and familiarity:

Bash, Python, cloud environments & infrastructure (AWS, Azure, Google), incident response, ELK (Elastic, Logstash and Kibana) SIEM, remediation, security policies, standards and procedures.

Cybersecurity Associate May 2023 – July 2024

As a Cybersecurity Associate, I perform network and endpoint scans for compliance and vulnerability assessments. I also perform social engineering engagements with banks, healthcare and local municipalities across the U.S.

Key responsibilities:

Perform External and Internal Vulnerability Assessments. (IVA/EVA) and Internal Configuration and Vulnerability Assessments (CAVA) using security assessment methodologies.

Perform Social Engineering Engagements (Pretexting) for banks, hospitals and Municipalities.

Document findings in detailed reports to include risk levels, potential impacts, and actionable recommendations for remediation.

Stay updated with the latest security trends, tools, and techniques to continually enhance testing methodologies.

Tools: Experience with Kali Linux, Nessus, Nmap, Metasploit, Burp Suite, Wireshark, Access Database, etc.

Maine Cyber Security Cluster at USM

Portland, Maine

Research Assistant Intern

February 2011 to May 2015

Web Development Team Leader: The Maine Cyber Security Cluster website

Research Analyst & Co-Contributor: FEMA’s cyber security training grant

Research Analyst: Report on source of escalation in cyber-attacks from 2008 to 2014

Independent Research: Report on techniques and mitigation of SQL injections

Python Developer: Develop penetration testing and DMCA processing tools

Maine Vigilant Guard Exercise 2013: participation and collaboration with the Maine Emergency Management Agency (MEMA) and the Maine Air National Guard for annual statewide vulnerability testing.

EDUCATION

SANS Institute

SEC555: SIEM with Tactical Analytics November 2018

University of Southern Maine Portland, Maine

Bachelor’s Degree in Technology Management May 2015

Information & Communication / Computer Science

Associate Degree in Business Administration May 1999

Accounting

PUBLICATIONS, PRESENTATIONS AND ASSOCIATIONS

Small Business Cyber Security Guide. Maine Cyber Security Cluster (MCSC) at University of Southern Maine, 2013, https://www1.maine.gov/ag/docs/Small-Business-Cyber-Security-Guide.pdf.

Reali, Kimberly and Lopez, Justin. “State of Phishing with MITRE ATT&CK”; Tyler Technologies Blog, 21, September 2022, https://www.tylertech.com/about-us/about-tyler/leadership-team/details/state-of-phishing-with-mitre-attck.

Reali, Kimberly. “PCI DSS 3.0 meets Security.” Thinking Matter’s Symposium, 15 April 2015. Poster Session. https://usm.maine.edu/thinking-matters.

Contact this candidate