Incident Response Loss Prevention
Resume:
Divine Muchanui Nde
Email: ***********@*****.***
Tel: 513-***-****
EXPERIENCE SUMMARY:
Enthusiastic SOC/IR Analyst with over 5 years of experience in investigating and preventing network, host, and email-based attacks. Highly proficient in malware analysis, incident response, data loss prevention, threat hunting, and enhancing SOC processes with top-tier security solutions. Adept at seamlessly adapting to diverse environments, thriving both independently and in team settings. Driven by goals, customer-focused, and equipped with outstanding communication skills. Expert at prioritizing and managing multiple tasks concurrently, resolving complex issues swiftly and efficiently in high pressure scenarios. Eager to contribute to a dynamic team, sharing my expertise and collaborating on innovative solutions to complex SOC challenges. Committed to helping organizations achieve strategic objectives while pursuing continuous professional and personal growth in the field of Cybersecurity.
TECHNICAL SKILLS
Malware Analysis/Endpoint Security
Incident Response/Cyber Threat Intelligence
Network Security Protocols/TCP/IP
Splunk/Wireshark/Nessus/Demisto XSOAR
PCI-DSS/FIPS/NIST 800 Series/ISO 27001
Snort/Firepower/FireEye/CrowdStrike/Carbon Black/Proofpoint
McAfee/Bluecoat
Palo Alto/Cisco IronPort
Linux/Windows/MacOS
Archer/ServiceNow/Confluence/Solar winds/ IBM Remedy
Microsoft Office 365 Suite/SharePoint/OneDrive/Sentinel/Power Apps
Threat Grid, Any. Run Sandbox/Cuckoo Sandbox/Silo Cloud Browser
Virus Total, Domain Tools, IP/URL void, IBM X-Force, Any run
MX Toolbox/CyberChef
Virtualization/Virtual Box/VMware
Vulnerability Management
Compliance
Risk Management
PROFESSIONAL EXPERIENCE:
NEOTECC Solutions Oct 2020 - Present
SOC Analyst
Responsibilities:
Managing over 200 incident response cases annually, utilizing automation tools to streamline workflows and reducing response times by 40%.
Supporting a team managing 500+ phishing emails per month, leveraging advanced toolsets to enhance detection and response efficiency.
Leveraging CrowdStrike’s advanced threat detection capabilities to identify and respond to over 150 potential security incidents monthly, reducing incident resolution time by 35% and minimizing the impact on business operations.
Implementing and optimizing SIEM solutions for a 65000+ endpoints environment, resulting in a 30% improvement in threat detection accuracy.
Applying frameworks (Cyber Kill Chain/MITRE ATT&CK Frameworks) in a cybersecurity command center, enhancing threat hunting capabilities and reducing incident response time by 25%.
Assisting in Deploying comprehensive logging and monitoring systems, increasing visibility into network activities and reducing mean time to detect (MTTD) by 20%.
Leading Agile sprints for a cybersecurity team, improving project delivery timelines by 15% and ensuring regular progress through daily scrum meetings
Executed varied tasks and projects with precision, consistently delivering high-quality results within tight deadlines.
Managing and executing complex cybersecurity projects both domestically and internationally, ensuring compliance with local regulations and standards.
Monitoring and responding to Proofpoint TAP alerts, successfully mitigating targeted threats and reducing false positives by 35%.
Fully documenting over 300 incident response tickets annually, ensuring compliance with SLRs and maintaining detailed records of all actions taken.
Developing technical solutions to a wide range of difficult problems. Solutions are innovative and consistent with organizational goals.
Completing work independently; receiving general guidance on new projects and tasks.
Acting as a mentor to 10+ junior colleagues, providing guidance and training to enhance their skills and knowledge in incident response.
Providing a risk-based approach to remediate sensitive assets, reducing overall risk exposure by 20%.
Presenting data findings to stakeholders at multiple organizational levels, influencing decision-making and driving strategic initiatives.
Establishing robust reporting metrics to support the cybersecurity program, leading to a 15% improvement in program effectiveness.
Acting as a liaison, ensuring alignment of cybersecurity strategies with IT and business objectives, enhancing cross-functional collaboration.
9 Solution Inc June2019 – June 2020
Incident Response Analyst
Responsibilities
Triaged and investigated over 1000 incoming alerts generated from Splunk ES monthly, accurately determining the severity and impact of events or incidents, leading to a 30% reduction in false positives.
Analyzed and collected asset data, including indicators of compromise, logs, configurations, and running processes, contributing to over 200 detailed investigation reports annually.
Played a key role in planning and implementing preventative security measures, contributing to a 25% decrease in security incidents, and building robust incident response and disaster recovery plans.
Investigated, analyzed, and processed over 200 phishing email alerts monthly from IronPort, using O365 Threat Explorer to analyze scope and identify recipients, enhancing phishing defense capabilities by 40%.
Evaluated and processed more than 50 Web Site Review Requests monthly from internal users, using OSINT tools to assess and provide access to necessary blocked websites, improving user productivity by 20%.
Analyzed and resolved over 300 DLP alerts monthly from McAfee DLP Manager and Splunk ES, escalating significant cyber privacy incidents to the Privacy Team, leading to a 15% improvement in data loss prevention.
Managed and resolved over 200 incidents from initial assignment to final resolution monthly, maintaining a high-resolution rate and ensuring minimal business disruption.
Assisted in developing and updating over 10 Standard Operating Procedures (SOPs) annually to enhance SOC operations and processes, improving operational efficiency by 20%.
Fully documented over 200 assigned tickets monthly, ensuring all work performed and required artifacts were attached to pass SLAs, achieving a 100% compliance rate.
Performed Root Cause Analysis on over 100 incidents annually, providing preventative recommendations that resulted in a 30% reduction in recurring incidents
Conducted forensics and investigations using security tools such as CrowdStrike, Splunk, FireEye, Cisco IPS, and OSINT on over 150 incidents annually, leading to the identification and mitigation of advanced threats.
Recognized and responded to over 200 potential, successful, and unsuccessful intrusion attempts annually through reviews and analysis of security tools, improving threat detection capabilities by 25%.
Assisted in creating daily SOC reports and shift reports, providing detailed pass-down emails to incoming shift members, enhancing communication and continuity between shifts.
Participated in daily security meetings with team members and customer teams, contributing to strategic discussions and action plans that improved overall security posture by 15%.
Infinite Technology March 2017 – March 2019
Help Desk Support Technician
Responsibilities:
Installed/Reimaged, configured and maintained staff computers, and file servers.
Resolve complex technical issues that arose on client computer using troubleshooting techniques
Effectively made recommendations to IT users on selection of hardware and distribution
Successfully administered Users accounts, Exchange mailboxes, and Security and distribution
Installed and maintained Windows and desktop software, service packs, patches, and Anti-virus
Managed assets inventory and deploy desktop images to end users
Provided support in setting up audio and visual technology for conference and meetings
Worked with third party vendors to resolve issues with hardware or software covered by annual maintenance agreement
Troubleshoot various technical issues dealing with printers, network, and phone Systems
Participated in revolving on-call schedule to provide 24/7 service to users.
EDUCATION
Cincinnati state Technical Community College 2020-2024
Associate in Computer networking engineering and cybersecurity major
The University of Buea, Cameroon 2014
Department of Information Technology
CERTIFICATIONS
CompTIA CySA+
CompTIA Security Plus (601)
Contact this candidate