Security Analyst

Sundeep Dhillon

** ********* *****, **** *******, NJ 08550

609-***-**** adcwy9@r.postjobfree.com

SUMMARY

• Experienced Cyber Security Analyst having around 4 years of professional industry experience.

• Hands on experience on Identity and access management (IAM) Tools and fundamentals.

• Deep understanding of cyber security defense mechanisms.

• Familiarity with encryption, digital signature tools like Cryptool, Kleopatra and use of digital certs for authentication

• Understanding of port scanning tools like nmap, Firewall tool Zonealarm, MMC for security configurations and analysis.

• Investigation of malicious codes using Basic and Advanced static analysis technique.

• Deep understanding with software and security architectures as well as Intranet and Extranet security practices

• Industry experience on drafting security policy and implementing as per standards and procedures.

• Highly detailed oriented, self-motivated and able to manage multiple priorities.

• Strong analytical skills, including the ability to problem solve to make value-added control recommendations.

• Risk, Compliance, audit experience.

SUMMARY OF SKILLS:

Network Tools

Wireshark, nmap, LCP, trace route, nslookup, MMC, Kleopatra

Identity and accesss management tools

Active Directory, Lightweight Directory Services (LDS), LDAP, CA Identity Manager, Identity Goverance, CA Sigma Portal, CyberArk, SailPoint

Operating System

UNIX, LINUX, Windows

Frameworks

NIST SP 800-53, ISO 27001, PCI DSS, GDPR

protocols

TCP/IP,UDP,DHCP,DNS,RIP,OSPF,IPSEC,RADIUS,SMTP,SNMP,ICMP,IEEE 802..11b, VLAN,QOS,SSL,TLS,IPv4,IPv6,FTP

TRAINING:

• System and Network Security Intro: Learning Tree April 2018

EDUCATION:

• Graduate Certificate, Cyber Security: Rutgers University, New Brunswick, NJ 2018

• Bachelor of Arts, Studied Information Technology and Anthropology: Rutgers University, New Brunswick, NJ 2015

Certifications:

• CyberArk Trustee

• IBM Blockchain Essentials Badge

Experience

Comcast

Information Security Analyst - IAM (June 2018 – Present)

• Plan and coordinate a varied workload related to Identity and Access management technologies working with all levels within the organization.

• Monitor security systems to ensure proper protection and check for possible threats.

• Work with Identity Minder, Identity Governance, Sigma portal, privileged access management solutions, and maintain best practices and multi-factor authentication solutions and other similar solutions.

• Ensure compliance with audit requirements for security access and administration functions.

• Team leadership experience. Lead team meetings, come up with plans and schedules, lead reporting and perform presentations to higher ups.

• Work with teams across geographic regions on various issues and projects.

• Solely responsible for creating monthly discrepancy reports to ensure accuracy in order to stay compliant with necessary security measures.

• In charge of testing and working on user submitted tickets.

• Help implement configuration changes to applications to meet business needs.

• Document functional specifications, upgrades, conversions, forms, reports, interfaces, and workflows.

• Participate in technology initiatives and business processes to improve overall business performance.

• Participate in implementing new business processes and functions as a result of divisional and national initiatives.

• Participate in implementing new business processes and functions as a result of divisional and national initiatives.

Delta International, NJ

Cyber Security Analyst (July 2017 – June 2018)

• Played key role as Subject Matter Expert in ensuring security baseline met Cyber criteria for excellent rating during security audit. Guided leadership, peers and subordinates in tactics techniques and procedures.

• Developed awareness campaign for the cyber security awareness program using numerous marketing tools and strategies.

• Conducted system security assessments based on NIST 800-53 framework. Worked with Compliance department to update policies. Supported the operations to ensure that applications comply with PCI DSS standards.

• Provided detailed status updates on existing cyber security incidents daily to include follow up with client/customer to ensure satisfactory resolution.

• Interacted with cyber intelligence analysts conducting threat analysis operations as well as numerous IT professionals performing varying technical roles within the client organization.

• Acted as alternate shift lead as necessary, mentor new associates on process and procedure, manage group mailbox, and open tickets for new incidents.

• Provided security support and evaluation to development teams in order to integrate information assurance/security throughout the System Life Cycle Development of major and minor application releases.

• Updated software antivirus on regular basis and monitored the network to ensure security using cyber security knowledge. Monitoring security patch levels of the servers, workstations and network environments, and anti-virus systems. Formulated resolution of highly visible vulnerabilities identified during Cyber Readiness Inspection, resulting in exceeding milestone date expectations.

• Observed and analyzed traffic in order to learn valuable lessons from known malicious actors and to determine countermeasures against such threats.

• Generated security documentation, including: security assessment reports; system security plans; contingency plans; and disaster recovery plans. Wrote and maintained proper documentation for project plans, security plans.

• Developed coordinated, implemented and maintained standards and procedures to protect the security & integrity of information systems and data.

First Commerce Bank

Cyber Security Analyst (Jan 2016 – July 2017)

• Maintained branch security, identified and resolved issues for cameras and ATM at all eight branches. Monitored branch activity on security monitors for possible threats and viewed tapes in instances of possible occurrences.

• Performed phishing tests with employees, documented findings, and provided necessary security awareness. Sent out phishing emails to all employees and kept track of which employees were victims to it and provided awareness accordingly.

• Worked with team on disaster recovery procedures and risk assessment plans. Helped to come up with solutions for DR and RA and also carried out disaster recovery testing.

• Analyzed employee security logs and other various bank information from various applications. Took monthly snapshots of data/information and compiled into excel logs and filed paperwork for bank records and record retention.

• Monitored server and network backups to ensure consistent and accurate completion. Made sure backups were running timely and responded promptly when problems occurred.

• Worked with third party vendors to help perform multiple bank functions.

• Served as manager for 3 months of entire IT department during VP of IT’s maternity leave. Dealt with executive support team for tickets/tasks, meetings with upper management, and third party partners.

• Worked with employees regarding hardware software related issues, including several different applications used by bank and diagnosed employee problems. Performed Password resets, account unlocks, and changes in the system for employees. Worked in Active Directory to fix Windows lockouts and permission changes and worked with different application problems with logging in. Administered user accounts across various platforms and programs.

• Identified on-board/off-board gap impacting Access Management, resolved by updating organizational procedure/work instruction shortfalls.

• Produced documentation regarding best practices and implementation procedures for several key systems including Microsoft Active Directory, Microsoft Exchange 2010.

Contact this candidate