Ahmed Mohamed 619-***-**** adktyq@r.postjobfree.com

Experienced consultant with 3 years experience in the information security and IT field. Security+ and ITF+ (DoD) certified. CYSA+ in progress. My objective is to further my career in information security that provides more opportunities for learning, building on my current skills and knowledge. I am able to obtain a DoD security clearance.

Professional Experience

LPL Financial April 2020 – Dec-2020

Information Security Risk Analyst

●Managed and updated technology controls, findings, remediations, and risk in the enterprise risk management framework Archer.

●Performed remediation validation testing on identified technology issues to provide assurance that the issues have been resolved.

●Liaison between the information security team and compliance, audit, legal and HR management teams.

●Gained valuable experience with frameworks and regulations such as ISO 27001, SOC2, NIST CSF, NIST 800-53, and GDPR.

●Conducted vendor risk management activities (vendor security assessments/reviews)

●Reported directly to AVP, providing high-level visibility.

●Drove audit requests to completion using ServiceNow.

●Drove completion of critical application risk questionnaires through collaboration with technology and business owners.

Procede Software November 2018 – March 2020

Information Technology Consultant

●Collaborated directly with customers to research, analyze, and resolve issues tracked using Zendesk.

●Accessed and troubleshooted SQL production environment, logged bugs for developers, worked with developers to identify solutions and workarounds for company software.

●Assisted customers in setting up SQL backups to maintain data integrity.

●Configured and troubleshooted VPN/RDP access for customers.

●Implemented KnowBe4.com phishing simulation emails.

Grossmont-Cuyamaca CCD August 2018 – December 2018

Systems Analyst Intern

●Conducted weekly vulnerability assessments using Qualys.

●Assisted senior analysts in discovering indicators of compromise.

●Managed and submitted IOCs for detection and blocking.

●Delivered a security awareness presentation based around password security and password management using LastPass.

●Managed weekly desktop user issues that were reported via ServiceNow and installed/configured applications for office staff

Education & Certifications

Grossmont Community College / National University, San Diego, CA

●Certifications: Security+, CompTIA ITF+, (IP) CYSA+

●Capstone projects: Social engineering reconnaissance, data encryption, scanning and remediating vulnerabilities with OpenVAS, implement patching using WSUS, password cracking tools, scripting Python automation.

●National University: Bachelors of Science in Cyber Security (IP)

AS: CSIS

Self-Education & Affiliations

●Enrolled in the National Cyber League at Cybrskyline.com played through preseason, gymnasium, and the individual games and scored in the Top 20.

●Sentek Global - Haiku Cyber Range (hands on experience in virtual cyber range)

●TraceLabs - OSINT volunteer (assisting with missing persons cases using TraceLabs OSINT VM)

●ISACA Member – Networking and attending meetings with the InfoSec auditing community/ reading ISACA journals.

●HackTheBox member and OWASP member

Technical Summary

●Tools: VMware, Wireshark, Nmap, Tor, Archer RMF, MySQL, Qualys.

●Additional Skills: Java, HTML, CSS, Python, C++, SQL, MS SQL Server, IIS, VPN, OSINT, ServiceNow, Zendesk, Vulnerability Scanning.

●Platforms: (Linux/Unix, Fedora, Kali Linux, Windows, mac)

Contact this candidate