Information Security Air Force
Resume:
ALEX CARRAWAY
****.**********@*****.***
EMPLOYMENT
ePlace Solutions, Inc. April 2020 - Present
Cybersecurity Risk Consultant
• Reported directly to Chief Information Security Officer & Cyber Risk Practice Manager
• Performed vulnerability assessments, generated and analyzed vulnerability reports, and advised remediation recommendations for clients, and cybersecurity best practices and cyber risk mitigation.
• Advised clients on the creation, implementation and management of information security trends and news, and information security solutions and procedures (endpoint protection, multi-factor authentication, backups, etc.)
• Prepared phishing simulation campaigns and online training and guidance articles/materials for clients
• Triaged “data breach hotline” calls from clients and oversee the required breach response services Air Force Life Cycle Management Center / HIZ Cybersecurity April 2020 – February 2021 Web Application Penetration Tester Part-time
• Secret Clearance
• Reported directly to Application Tools and Test Service Owner and Pentest Service Manager
• Supported technical assessments of IT systems to include web applications, application servers, web servers, access control, and databases
• Conducted automated testing of web applications and APIs for susceptibility to SQL injections, command injections, Cross-Site Scripting, and Cross Site Request Forgery vulnerabilities using commercial and open-source tools: OWASP ZAP, Burp Suite Professional
• Conducted automated vulnerability scanning against supporting infrastructure components using commercial and open-source scanning tools: Nikto, Nessus, Nmap, and Metasploit
• Conducted automated credentialed vulnerability scanning against databases using commercial and open-source scanning tools
• Conducted manual testing and proof-of-concept (POC) of infrastructure and web applications to identify, test, and validate security vulnerabilities
• Conducted code review and analysis to assess the security posture using static code analysis tools: CheckMarx
• Performed pre-assessment research and preparation including reconnaissance, documentation and configuration review, and customer interviews
• Conducted reviews of system configurations for identification of security weaknesses or misconfigurations
• Assessed compliance posture against regulatory requirements such as NIST SP 800-53.
• Analyzed security findings, including risk analysis and root cause analysis
• Produced Security Test Report to document security testing, validated vulnerabilities, and recommended mitigation/remediation for Program Management Offices OnDefend February 2020 – April 2020
Penetration Tester Part-time
• Vulnerability scans and assessments
• External black-box network and web application penetration testing
• Cyberattack and threat simulations
• Penetration testing report writing
Simmons Bank April 2019 - April 2020
Information Security Engineer
• Network, OS, application and physical security testing and vulnerability exploitation - endpoints, internal and external network, firewalls, access controls, software, mobile and web apps, social engineering
• Vulnerability scans and assessments - Nessus, OpenVAS, Tripwire IP360
• Web Application security testing – Burp Suite Community, OWASP ZAP
• Internal/private and external/public host discovery, port scanning and service enumeration - Nmap, Zenmap, Masscan, Shodan
• Windows NTLM password cracking projects and pass-the-hash testing - oclHashcat, Mimikatz
• Network traffic protocol packet analysis and port mirroring - Wireshark, tcpdump, Cisco ASDM
• OSINT projects gathering information on the corporate external infrastructure - Maltego
• Social engineering end-users via Phishing and Vishing campaigns
• Whitelist/Blacklist URLs, email addresses, IPs, file names, hashes and HID devices
• Web, HID device and email Data Loss Prevention (DLP) review
• Cisco ASA and Palo Alto firewall change review
• Review and present threat intelligence, vulnerability, change and patch management reports
• Review and present application and host inventory delta reports
• File and data organization and classification (Azure Information Protection) Simmons Bank April 2018 - April 2019
SOC Analyst/Information Security Specialist II
• SIEM and local log monitoring, response, investigation and review
• Network threat monitoring and response; Served as Incident Monitoring and Response analyst, focused on malware and network threats
• Review, respond, and resolve security alerts and incidents
• Privilege escalation alert response and report review
• External vendor access alert response and report review
• Cyber incident process swim lane development
• Designed Security Operations Center playbooks/runbooks and technical operations procedure manuals
• Cylance antivirus server monitoring, review, response, whitelisting, and quarantining threats
• DHCP host potential threat monitoring and investigation
• Lead mitigation efforts related to online identity threats and such as brand hijacking and cybersquatting
• AS/400 and SecureLink access monitoring and reports on elevated-privileged account IDs
• Report on AS/400 changes performed outside of UAT
• IT Security Help Desk Ticket resolution
• Remote access tools
• Remote video surveillance monitoring and review, and physical robbery response
• Conduct Change Advisory Board (CAB) meetings
Freedom Learning Group - SME Part-time July 2018 – July 2020 Subject Matter Expert
• Content review, copy-edited, developed, and authored security-related questions for CompTIA exams - Pentest+, CySA+, Security+, Network+, Linux+, A+, IT Fundamentals, GoogleIT Coursera
• CompTIA Pentest+ exam Video Review project
• Ticket Cleanup project for learn.comptia.org Security+ exam questions School Apparel, Inc. September 2016 – April 2018
Assistant Information Systems Administrator
• End-User Phishing Awareness Training
• Vulnerability Scanning
• Antivirus Review and Response
• Cisco Router Configurations
• Ethernet and Fiber Optic Cable Warehouse and Office Installations
• Wi-Fi AP Installations
• PC Help Desk (Remote and On-site)
• End-User Device and Software Troubleshooting
• Active Directory Services and Group Policies
• IT-related Purchase Orders
• IBM AS/400 Tape Backups
• Hardware and Software Upgrades
• RF Scanner Device Set-up
• End-user Technical Support
• Network Hardware and Application Software Troubleshooting Southeast Arkansas College Part-time
Adjunct Faculty Online and Face-to-Face Lectures and Computer Labs
• Computer Forensics January 2018 - May 2018
Recovering/analyzing data, presenting it in court
• PC Maintenance (CompTIA A+) January 2016 - May 2018 Computer hardware, building and repair
• Networking (CompTIA Network+) August 2015 - May 2018 TCP/IP and OSI networking models, subnetting, topology
• Microsoft Office January 2013 - May 2018
Word, Excel and PowerPoint
EDUCATION, CERTIFICATIONS, RESEARCH, EVENTS AND ORGANIZATIONS Offensive Security – Proving Grounds Pentesting Labs Currently studying
HackTheBox.eu Member
Windows, Linux and BSD penetration testing lab testing research (on-going) VulnHub Research
Hundreds of pages of documentation on 60+ vulnerable Linux VMs (VirtualBox/VMWare) IBM QRADAR EDR and SIEM Analyst Certificates
February 2020
CompTIA Security+ Certification
October 2019
Jolt Cyber Challenge Venture Center, Little Rock, AR October 2019
Technical Certificate in Computer Network Technology Southeast Arkansas College August 2017, GPA 4.0
Metasploit Unleashed Offensive Security
July 2016
Java Achievement Award University of Arkansas at Little Rock August 2015
Master of Arts in Art History University of Arkansas at Little Rock December 2012, GPA 4.0, Summa Cum Laude
Bachelor of Arts in Art History University of Arkansas at Little Rock May 2010, GPA 3.8, Magna Cum Laude
Central Arkansas Hackers Member
Monthly meetings, CTF Bash Bunny award, conducted hacking and pen testing lectures Central Arkansas ISACA Chapter
Monthly meetings on a wide range of Cybersecurity topics
Contact this candidate