Security Network

Ebukubong Imeyen Okonna

OKLAHOMA CITY, *****

E-mail: ***************@*****.***

Cell: 425-***-****

https://www.linkedin.com/in/ebukubong-okonna-8a3925142

Summary

Cyber Security Analyst with 4+ years of experience monitoring and analyzing security events, network traffic, and email logs for malicious content, collaborating with cyber incident response teams (CIRTs) on investigation and resolution. Effective communicator who builds consensus among diverse groups of analysts, programmers, developers, and engineers. Adept at handling complex responsibilities in demanding environments.

SKILLS AND TECHNOLOGIES USED

Intrusion Detection Systems (IDS) Intrusion Prevention Systems (IPS) Data Leakage Prevention (DLP), Security Information & Event Management (SIEM) Vulnerability Assessments Incident Response Malware Analysis Risk Assessment Project Management Process Improvement Report Writing User Support.

Technical Skills

TCP/IP/VPN Jira ServiceNow Confluence RSA Microsoft Office NIST 800-Series McAfee Bluecoat FireEye Splunk Any.Run Sandbox NetWitness Nessus Carbon Black Oracle Java WordPress Cisco Packet Tracer Wireshark FISMA VirusTotal DomainTools IP/URLVoid IBM X-Force CrowdStrike QRader.

PROFESSIONAL EXPERIENCE

DELTAAHTECH CONSULTING – BERWYN HEIGHTS, MD (REMOTELY)

Cyber Security Analyst /Tier 1 SOC

(JULY 2017 – PRESENT)

•Perform continuous security events monitoring from multiple sources, such as DLP, IPS, IDS, Firewalls, Proxies, antivirus and system security logs, analyze results and escalate if necessary to appropriate teams for remediation.

•Work with security operation center engineers to configure and update rule sets within IDS/IPS such as SNORT to analyze and detect vulnerability exploit attempts.

●Utilized Security Information and Event Management (SIEM), Intrusion Detection and Prevention (IDS/IPS), Data Leakage Prevention (DLP), forensics, sniffers and malware analysis tools.

●Utilize the incidence response process to ensure adequate response to incidents to protect enterprise Assets.

●Block malicious domains, hashes and IPs following company’s Standard Operation Procedures.

●Extensive troubleshooting and testing skills (i.e. analytic, able to narrow down on a problem to find the root cause, use documentation, tools to troubleshoot).

●Use Splunk to search and analyze email logs to confirm malicious emails were not delivered or are quarantined and malicious attachment dropped.

●Investigate, process, and resolve security emails alerts from Splunk, FireEye, and Source Fire

●Coordinate with the CIRT team to investigate and resolve security incidents.

●Utilize Autopsy, Encase and FTK for collecting, analyzing, preserving digital evidence and ensuring that incidents are recorded and tracked in accordance with organizational SOC requirements.

●Stay current with vulnerabilities, attacks, and countermeasures through personal research and security blogs and organizations such as ISC2, SANS Institute, CompTIA etc.

●Prioritize and differentiate between potential intrusion attempts or false alarms.

●Assists with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions.

Jackie Jay Engineering Works, Akwa Ibom State, Nigeria

Network/Tech Support Analyst (MAY 2013- JAN 2015)

●Perform extensive troubleshooting of various Hardware and software issues from employee’s both face-to-face and over the phone.

●Use of Microsoft Suite and MS Active Directory

●Used of help desk ticket tracking systems and maintain daily performance of computer systems

●Daily reviewed any open issues or requests from end-users and followed-up accordingly.

●Installed updated software to end users and respond to email messages for customers seeking help.

●Provide network support and perform troubleshoot to resolve various WAN/LAN connectivity issues.

●Assist various departments to maintain network security and configure remote routers and firewalls and provide engineering support.

●Analyze and recommend solutions, upgrades services to streamline process and recommend improvements.

●Maintain hardware and software for network perform troubleshoot and assist in installation and upgrade workstations and Servers.

●Install and maintain data and voice circuits through routers, switches, and Wide Area Network devices.

●Perform System Administration tasks on Windows 7, 8/10 and Servers 2008, and2012.

●Install and maintain Voice over IP and VTC devices and ensure customer availability for various networks.

●Administer and prepare program for IP addresses, develop network resources and train support personnel to provide Tier I support to end users.

●Monitor all Information Assurance policies and enforce compliance to all network security policies.

●Coordinate with various teams for disaster planning and perform network backup and monitor recovery processes.

●Manage and document network systems, operational procedures and monitor hardware inventory for network.

●Administer software licensing and purchasing for effective installation of network.

●Participate in network on-call support on rotational basis.

●Ensure and provide effective customer service to in-unit managers and customers.

Education/Certifications

Bachelor of Science in Information Technology and Networking Systems

Certifications

CompTIA Sec+

CompTIA Net+

CompTIA CYSA+ in progress

Contact this candidate