Incident Response Soc Analyst
Resume:
Obed Alimah
Lorton, VA 571-***-**** ********@*****.***
Detail-oriented and highly skilled SOC Analyst with over four years of experience in diverse security environments. Proven ability to monitor, detect, analyze, and respond to cybersecurity incidents while ensuring the integrity, confidentiality, and availability of information assets. Seeking to leverage expertise in threat detection and incident response to contribute to a dynamic security operations team.
Technical Skills
Windows, Linux
Threat hunting & intelligence analysis
Incident Detection & Response
Risk Analysis
PowerShell & Wireshark
Risk Management
Intrusion Detection System and Intrusion Prevention Systems (IDS/IPS)
Security Policy Development
Compliance Adherence
Network and Endpoint Security
Security Policies and Procedures
Splunk, Burp Suite, Nessus, Nmap, QRadar
Security Awareness & Training
Vulnerability Assessment
Malware & Phishing Analysis
SIEM Tools
Data Loss Prevention (DLP)
TCP / IP
Forensic Analysis
Threat analysis
Web Content Filtering
Professional Experience
Triple A Insurance Company, Tysons, VA August 2022 - Present
Senior SOC Analyst
Lead a team of SOC analysts in monitoring and responding to security events and incidents across a global enterprise environment.
Develop and implement advanced threat detection and response strategies, reducing incident response time by 30%.
Perform detailed forensic analysis of compromised systems, identifying root causes and implementing preventive measures.
Create and maintain playbooks for common incident types, ensuring consistent and effective responses.
Collaborate with IT and security teams to design and enforce security policies and procedures.
Conduct regular threat hunting exercises, identifying and mitigating potential risks before they escalate.
Actively participate in large scope high impact cyber breaches and manage Incident Response workflow and activities to support response and remediation.
Identified security issues and risks associated with security events and managed incident response process.
Use the Security Incident Event Management (SIEM) platform to perform incident response identification.
A.J Dwoskin Inc., Fairfax, VA July 2020 – August 2022 Incidence Response Analyst
Monitored security information and event management (SIEM) systems to detect and analyze potential security threats and incidents.
Investigated and responded to a wide range of security incidents, including malware infections, phishing attacks, and insider threats.
Utilized intrusion detection systems (IDS) and intrusion prevention systems (IPS) to protect network infrastructure.
Provided regular reports on incident trends, vulnerabilities, and potential areas for improvement to senior management.
Participate and assist in threat actor-based investigations, provide auxiliary support to incident response and monitoring functions, and advise on new detection methodologies.
Assist in incident response activities such as host triage and retrieval, malware analysis, remote system analysis, end-user interviews, and remediation efforts.
Analyze network traffic, IDS/IPS/DLP events, packet capture, and FW logs.
Amazon (Remote, VA) February 2019 - July 2020
Customer Service / Tech Support
Monitored network traffic and system logs for suspicious activity, escalating incidents as necessary.
Conducted vulnerability assessments and provided recommendations for mitigating identified risks.
Managed security incidents from detection through resolution, including coordinating with external response teams when necessary.
Participated in security audits and assessments, ensuring compliance with industry standards and regulations.
Contributed to the development of threat intelligence capabilities, enriching the organization's ability to anticipate and mitigate emerging threats.
Certifications
CompTIA SECURITY + April 2023
University of Education, Winneba July 2017
Bachelor’s Degree in Information Technology
Contact this candidate