Security Information

Robert Lame

Senior Information Security Analyst

********@*****.*** • 732-***-****

LinkedIn URL • Maricopa AZ 85138

Analytical and technically-minded professional with 15+ years of experience in information security and network administration. Proven track record of excellence in investigating potential security incidents, delivering tier-II security support of large scale enterprise network, and analyzing security threats, vulnerability assessments, and audit results to build security solutions and organization security stance/framework. Solid history of success in developing and implementing security incident response and test strategies, ensuring ongoing continuity of operations plan drills at disaster recovery sites, and maintaining health and compliance of security tools on all approved endpoints. In-depth knowledge and understanding of NIST security regulations and standards and systems, such as Firewall, IDS/IPS, SIEM, EDR, and vulnerability management system.

Areas of Expertise

Information & Cyber Security

Security Event Analysis

Industry Security Audit

IT Project Management

Asset Management

Risk Assessment & Mitigation

System & Network Infrastructure

Security Tool Management

Escalation Management

Disaster Recovery & Backup

System Performance Optimization

Team Training & Leadership

Technical Proficiencies

Tools & Technologies:

C++, Java, JavaScript, Cisco Umbrella, MacAfee ePO, MacAfee SIEM, MacAfee DLP, Crowd strike, Splunk ES and Splunk Core Enterprise, IBM Resilient, Akamai WAF, Microsoft Teams, ServiceNow

Career Experience

Santander Investment Securities, New York, NY 2019 to Present

Senior Security Analyst

Ensure regular remediation of potential cyber threats by overseeing vulnerabilities through Slunk ES and Splunk Enterprise as well as IBM Crowd strike. Use IBM resilient ticketing system for documenting all procedures. Identify and escalate incidents to incident response team in line with Santander bank's documented incidence response procedures. Ensure overall operations in compliance with NY SIS and BSNY standards, policies, SOX, GLBA, and NIST. Prepare and deliver comprehensive status reports to NY CISO on project progress. Enable regulation and triage of SBNA alerts at SBNA cyber fusion center. Utilize Akamai to oversee web services of Web Application Firewall (WAF). Design SIEM alerts, SIEM reports and use cases, and informational slide decks in close collaboration with NY CISO.

Developed effective dashboards for SIS assets reporting and not reporting in Splunk ES and Splunk Enterprise while integrating devices by cooperating with Splunk engineering team.

Represented company at IBM’s force command incident response crisis exercise at IBM’s Force Command Center NY.

Ensured protection of USB device plug, web, removable storage, and printer through DLP triage, analysis, documentation, and reporting of any potential vulnerability to insider threat team.

Validated accuracy of New York cybersecurity use cases during third party testing and auditing by coordinating with data validation team.

Telcordia-DBA-iconectiv, Bridgewater, NJ 2016 to 2019

Cyber Security Analyst

Executed access control software, such as CCure and develop employee/contractor access badges while enabling and disabling badging access for data and DR centers. Utilized security tools, including MacAfee SIEM, F5 BIG IP ASM (WAF), OSSEC HIDS, MacAfee NSM/IPS, and Splunk for continuous monitoring, detection, clarification, and analysis of security events. Identified all system logs and managed incident tickets in detail via ServiceNow by performing investigation of potential security incidents.

Implemented CCTV cameras to provide physical security monitoring of data center cages.

Designed and launched M&Ps and runbooks for startup SOC and delivered training framework for future analysts.

Examined vulnerability of development and staging environments using Nessus Security Center and suggested remedial actions based on NVD and CWE analysis.

Gaming Labs International, Lakewood, NJ 2003 to 2015

Test Engineer Level II

Evaluated packet capture detail for security events and responses by conducting proprietary protocol testing using Putty and Wireshark. Carried out security event analysis between host and network communications to detect security threats and incidents. Performed regulatory compliance testing through the development and management of test plans and use cases. Assessed, tested, and validated source code modifications written in C++, Java, and JavaScript.

Tested and certified communication protocol for first cashless game for Canadian manufacturer Spielo.

Often requested by clients when providing field service.

Achieved gift card of $200 from company after receiving an outstanding customer service report from a client.

Education & Credentials

Accumulated credits toward an Associate Degree in Business Administration

Ocean County College, Toms River NJ

Professional Certifications

Certificate of Computer Programming- Brick Computer Science Institute

Currently pursuing CISSP (ISC)

Security + CE - CompTIA

Network + - CompTIA

A+ - CompTIA

Web Development Certificate – Cittone Institute

Volunteer Experience

Entertainer for Fund Raising Functions, Carmie Brady Foundation - Non-Profit Organization for Breast Cancer (2015 to Present)

Contact this candidate