George Jumbo
Dallas, Tx
*** -*** -****, ********@*****.***
PROFESSIONAL SUMMARY:
Cyber Security Analyst with proficient and thorough experience and a good understanding of information technology. Specialized in proactive network monitoring of SIEM. Have a deep knowledge in identifying and analyzing suspicious event. Ability to manage sensitive materials. Able to use various security tools to perform logs and packet analysis. Finally, can perform malware analysis with the overall objective to ensure confidentiality, integrity and availability of the systems, networks, and data. CERTIFICATION:
CompTIA Security Plus (701)
CompTIA NETWORK +
Project in progress CEH, CISSP.
TECHNICAL SKILLS:
Network Security Tools: Palo Alto, VPN, Proxy (Umbrella), Firepower IDS/IPS. Scanning Tools: Nessus, Stealthwatch Cloud.
EDR Tools: Crowdstrike, Darktrace, Endgame, Carbon Black, Cylance. Malware Analysis: AMP (Antivirus).
SIEM: FortiSIEM, Cortex Xsoar, Alien Vault, Swimlane, SPLUNK, IBM QRADAR. Ticketing Tools: Service Now, ConnectWise.
PHISHING: Microsoft defender for Cloud Apps/Azure AD, IronPort, Proofpoint OTHER SKILLS:
AML/OFAC/FinCEN Regulatory Policies, LexisNexis, Actimize, CDD, EDD, SAR Writing and Filing, SQL, Microsoft Office Suite (Word, Excel, PowerPoint, Outlook, Visio). PROFESSIONAL EXPERIENCE:
SOC Analyst 02/02/2023 - Present
Pitch Technologies.
• Ensure the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.
• Investigated email attachments and links for embedded malware as a requirement to protect against phishing emails and confidential data loss.
• Utilizes industry standards and frameworks such as NIST Standards, MITRE ATT&CK & Defend Framework, and the Cyber threat Kill Chain.
• Notify assigned customers of security incidents Interface with customers to provide investigatory support and additional information as needed.
• Document new tools and techniques and disseminate them to the rest of the team.
• Investigate malicious phishing emails, domains and IPs using Open-Source tools and recommend proper blocking based on analysis.
• Search firewall, email, web, or DNS logs to identify and mitigate intrusion attempts.
• Mentor and assist new analysts with professional development. SOC Security Analyst 1 05/15/2020 - 10/20/2022
DefendEdege.
• Worked in a 24x7 Security Operations Center.
• Performed real - time log monitoring in the Security Operations Centre from different devices such as Firewalls, IDS, IPS, Operating Systems like Windows, Proxy Servers, Windows Servers, System Application, Web Servers, and Networking Devices.
• Report security incidents using ServiceNow ticketing system for events that signal an incident and require Tier 3 or 2 Incident Response review.
• Identified, verified, and ingested indicators of compromise and attack (IOC’s, IOA’s) (e.g., malicious IPs/URLs, etc.) into network security tools/applications to protect the network.
• Monitor the health of security devices and syslog instances and responded to anomalies as defined in the SOP.
• Investigate, analyze, and process endpoint alerts using SIEM, Cisco Firepower, Symantec End Point Protection, Crowd Strike, and OSINT tools.
• Evaluate and process Web Site Review Requests from internal users to access blocked websites using OSINT tools and business justification. Network Administrator 10/22/2018 – 04/13/2020
Asher college campus.
• Perform name and account-based research on lists and reports provided through established resources to determine if evidence of money laundering activities exists.
• Prepare required reports including Suspicious Activity Reports (SARs)
• Evaluate transactions and customer relationships for Money laundering activities, identifying red flag issues and escalates within AML framework for further investigation.
• Provide additional support with AML compliance organization on more complex issues, including research techniques and capabilities, as well other solutions as appropriate
• Draft AML Compliance training guides to reinforce knowledge of key information and policies
• Solicited feedback from attendees, ensuring full understanding of material presented.
• Review negative news and OFAC/Watch List/PEP alerts generated by automated systems.
• Review monthly and daily transaction alerts, client trading activity, client file review, conduct due diligence searches and metrics.
• Collect and examine financial statements and documents to assist in identifying unusual transaction patterns.
• Document all research and analysis conducted in Case Management System. EDUCATION:
Associates degree in Network and security operations. Bachelor’s degree, University of Yaounde 2 - Cameroon