Security Health Information

CHIMENE SYLVIE TCHOKOKO DIBOMA

***** **** ** *** ***, MD 20904

(C) 301-***-**** (W) 202-***-****

adcp0c@r.postjobfree.com

SUMMARY:

About three years of Cyber security operations with professional knowledge in Computer Network Defense (CND), Information Assurance, Vulnerability Management and Security Operations. Provide security solutions for Data, Networks and organizational assets using best practices and customized solutions in a fast-paced Security Operations Centers (SOC). Good hands on experience in security operation center processes, tools and technologies, CND tools and best practices at Tier one and two levels.

KEY SKILLS:

●Network & System Security

●Vulnerability Management

●Authentication & Access Control

●Cyber Security Operations

●Security Assessments and testing

Change Control and Configuration Management

Security Incident Event Management (SIEM)

Cyber Security Incident Response Plan (CSIRP)

Regulatory Compliance

Information Systems audits

TECHNICAL SKILLS

●Security Technologies: Cisco Ironport, F5 WAF, Guardium (DAM), Nessus Security Center, SIEM tools; (HP ArcSight, Splunk), TCPDump/Wireshark, IDS/IPS; (FireEye, FirePower); Log Management, Anti-Virus Tools (Symantec Protection Engine), Service Now and JIRA ticketing systems, ForeScout CounterAct

●Operating Systems: Unix-Based Systems (Solaris, Linux, BSD); Windows (all)

●Networking: LANs, WANs, VPNs, Routers, Firewalls, TCP/IP protocols

●Software: MS Office (Word, Excel, Outlook, PowerPoint), MS VISIO

●Access Control: SAML, SSO, RAM, PAM

●Virtualization: VMWare Workstation, VMWare vSphere

●Network Monitoring: Nagios, SiteScope, Extrahop

●Database Management Systems (DBMS): MySQL

PROFESSIONAL EXPERIENCE

Security Operation Center (SOC) Analyst at Howard University Hospital February 2017 Present)

Duties Performed

Real Time Log analysis from different network devices such as Firewalls, IDS, IPS, Operating Systems like UNIX, Proxy Servers, Windows Servers, System Application, Databases, Web Servers and Networking Devices.

Performs real-time monitoring, security incident handling, investigation, analysis, reporting and escalations of security events from multiple log sources.

Handles end users, report Incidents, problem ticketing and change management ticketing with respect to Network Security within the agreed SLA.

OWASP Top Ten Vulnerabilities investigation especially XSS, Injection attacks, XSFR, etc.

Preparation of daily shift reports to the clients and creation of correlation rules, dashboards and knowledge objects in Splunk and ArcSight.

Optimizing, managing and monitoring real time events from devices like firewalls A, web proxy, antivirus vendors.

Tasked to perform the role of a SOC analyst to analyze data from different security logs and correlating /associating them together to determine the existence and nature of security incidents and alert the SOC analyst and then create an incident ticket during escalation.

Experience with malware analysis and OWASP top ten vulnerabilities.

I also use these tools to find suspicious or malicious activity by analyzing alerts; investigating indicators of compromise (IOCs like file hashes, IP addresses, domains, etc.); reviewing and editing event correlation rules; performing triage on these alerts by determining their criticality and scope of impact; evaluating attribution and adversary details; sharing our findings with the threat intelligence community; etc.

Ensure customers are following security policies and procedures following NIST 800-53 and NIST 800-53A

SOFT SKILLS

Practical insight to Creating Rules, Dashboard, Filters, Reports, Queries etc. in ArcSight and other technical tools to track incidents

Proficient in Microsoft office (SOPs drafts, runbooks, excel, power points, spread sheets, Visio and office 365)

HOWARD UNIVERSITY HOSPITAL 03/ 2009- 2/2017

Medical Record Department

Electronic Health Records Coordinator

Responsibilities:

Provide high quality, professional health information management, and database documentation requirement services to medical, scientific, administrative, and allied health professionals.

Contribute to the development, maintenance, evaluation and adaptation of systems and procedures for the storage, retrieval and dissemination of records and other information related to the delivery of health care in a clinical research environment.

Researches potential multiple medical record numbers. Performs merges, corrections and deletions in the MPI, SoftMed applications, 3M application, release of information application and dictation/transcription application. Also may physically merge paper records and microfilm.

Work closely with the Committees, the Health Information Management Directors and facility Health Information Informatics Committees to update on MPI concerns and review and approve forms for use in the patient’s medical record.

Works with Health Information Management Directors and form owners to transition existing paper-based forms into a document-imaging ready format and to eliminate the use of all non-bar-coded forms according to an established timeline.

Ensures all forms meet the specifications for document scanning related to layout, font, colors and shading.

Attend annual and periodic mandatory Compliance Program training including the Health

Insurance Portability and Accountability Act (HIPAA) Privacy training

PERSONAL SKILLS & ASSETS

Ability to handle designated tasks timely, confidently and efficiently.

Capable of managing multiple tasks in a pressurized environment.

Motivated team player and coordinate activities in a team.

Good interpersonal skills with exceptional versatility and adaptability.

Self-disciplined and dedicated as a hard-working individual.

EDUCATION AND CERTIFICATIONS

oUniversity of Maryland Global Campus MS, Cybersecurity Technology 2020

oWashington Adventist University MS in Healthcare Administration 2015

oWashington Adventist University Bachelor of Science in Healthcare Administration 2012

and minor in Social Science Organizational Management 2012

oMontgomery College Associate of Science in Health Information Management 2009

oMontgomery College certificate in Medical Billing and Coding 2009

oLycee d’Akwa Douala (Cameroon) High school diploma 1995

Certification:

CompTIA Security Plus certification SY0 501 in process

AWS Cloud Practitioner

RHIA

Splunk Admin

CPR and First Aid

Two days Volunteer @ 2019 (ISC) Secure Summit DC 2019

URE ISC) Secure Summit DC evolved from (ISC) CyberSecureGov to assemble the best minds in cybersecurity for two days of insightful discussions, workshops and best-practice sharing that will better equip me to tackle today’s threats and advance my career in the ever dynamic workplace. Enrich my mind by learning from the most experienced and brightest in my profession. Their thought-provoking and fresh perspectives will enable me to achieve my career goals while strengthening organizations security posture. It’s time for me to excel at everything I do. SU DC / PRL23-24, 2019 / WASHINGTON, DC

This year’s Summit focus is “Defining Cybersecurity” and feature four distinct tracks:

Defining the Profession

Defining Threats

Defining New Technologies

Defining Industrial Control Systems and IoT

Contact this candidate