Post Job Free
Sign in

Security Analyst Soc

Location:
Irvine, CA
Posted:
September 02, 2021

Contact this candidate

Resume:

CYBERSECURITY ANALYST

CompTIA Security+ certified Cyber Security Analyst with 20 years of professional business experience in retail and manufacturing as a financial analyst and operations manager. Experienced in hands-on projects in monitoring and analysis of potential and active threats using security tools and processes. Excellent communication, teamwork skills, organizational skills with great attention to detail, goal, and growth mindset oriented. Currently working towards getting CySA+ certification.

TECHNICAL SKILLS & TOOLS

Security: Splunk Phantom (SOAR), Crowdstrike Falcon, FireEye ETP, Nessus, QRadar, Nmap, Wireshark, Kali Linux, VirtualBox, Metasploit, Metasploitable, Mitre Att&ck Framework, Linux Command Line Tools, NIST-800, Cyber Kill Chain, OWASP 10, Burp Suite, Phishing Analysis, Ticketing systems; The Hive, Resilient, Jira.

Networking: Wireshark packet analysis, DNS, Whois, TCP/IP

Certifications: CompTIA Security+, Splunk Core Certified User, CySA+ (In Progress)

EDUCATION

Master of Science in Cybersecurity Studies Sep 2019 – Dec 2021

American Public University, West Virginia, USA

Bachelor’s Degree in Finance Sep 1996 – June 2000

Marmara University, Istanbul, Turkey

PROFESSIONAL EXPERIENCE

Analyst, Sec Opt Center May 2021 – Present

Constellis, Herndon, VA

Conduct log analysis and provide recommendations to the technical teams.

Monitor and analyze alerts and identify security anomalies for investigation and remediation.

Work on Cloud-based email security through FireEye Email Threat Prevention Cloud (ETP).

Support daily SOC functions using Splunk Phantom SOAR (Security Orchestration, Automation, and Response system.

Monitor corporate network for malicious and unwanted activity through CrowdStrike Falcon.

Respond to Alerts, events, and incidents per our specified procedures and processes.

Identify weaknesses in customer infrastructures and suggest improvements.

Technical and analytical skills to handle security events, incidents, and threats.

Resolve or escalate events and incidents.

Provide timely and reliable service to our internal customers.

Stay up to date on latest vulnerabilities exploits and any other relevant threat information.

Operation, implementation, and maintenance of security solutions

Document solutions, processes, or procedures in written, verbal, phone, or in person.

Assist in creation and maintenance of documentation for SOC procedure and processes.

Ensuring Constellis staff is complying with all Information Security and Privacy Policies.

Ensuring all security and operational controls are followed and enforced to ensure data remains secure, available, and private, where applicable.

SOC Analyst May 2020 – Apr 2021

CyberNow Labs, Reston, VA

Conducted log analysis on Splunk and IBM QRadar SIEM solutions and provide recommendations to the technical teams via The Hive ticketing system.

Monitored and analyzed SIEM alerts through Splunk and IBM QRadar and identify security anomalies for investigation and remediation.

Conducted analysis to determine the legitimacy of files, domains, and emails using online resources such as VirusTotal, AnyRun, MX Toolbox, and ATT&CK Matrix for Enterprise.

Familiarity with fundamentals of information security including network technologies and tools, identity and access management, network security, implementing secure systems, and risk management.

Analyzed PCAP files, narrow down anomaly traffic with Wireshark, examine the details of the infected hosts, and write IOC on executive summary reports.

Experienced in using various tools like FireEye HX, Burp Suite, NMap, Tenable Nessus, Kali Linux, and Metasploit.

Studied common cyber-attack type, create examples using tools such as SEtoolkit in Kali Linux and Cyber kill chain approach to malware attacks.

Reviewed existing policies and guidance to ensure compliance with the National Institutes of Technology (NIST) Risk Framework.

Senior Operations Manager Mar 2016 – Apr 2021 United Granite LLC. DC, MD, VA

Implemented and managed Stone Profit Systems CRM Web Based Software program.

Administered G-Suite for business account security.

Restructured scheduling online to work flawlessly with SPS-CRM and G-suite for business.

Supervised the company’s IT needs, protocols, communication tools, and security procedures.

Lead the operation, multi-department variable volume distribution operations team, including productivity, financial, sale, and service objectives that meet the demands of the customers.

Served as a primary point of contact for all commercial and residential vendors (short and long-form) for any questions, concerns, and changes on the workflow.

Revitalized internal control procedures, Team training, and Quality Assurance to ensure that all warehouse and fabrication operations are following OSHA.

Operations Manager Mar 2008 – Feb 2016

United Floors-Kitchen and Bath, LLC. DC, MD, VA

Updated the WordPress website via FTP.

Managed and optimized the company website for SEO.

Implemented G-Suite for business company-wide to manage projects.

Renegotiated the advertisement deals by canceling/reconstructing the agreements to lower the advertisement budget by 40% without affecting the monthly estimate/sales numbers.

Automated the process of managing the projects from beginning to end including financial and budgeting responsibilities of operational with policies, procedures, and regulatory standards.

Financial Analyst / District Manager Oct 2002 – Feb 2008

Golf Coast Trading LLC. DC, MD, VA

Maintained the highest gross sale as a district while expanding business territory by 17 new retail locations in 10 different shopping malls and 2 amusement parks.

Achieved the highest gross sale in a single location in the country.

Automated the process of inventory/sale/purchasing among the junior and senior sales associates by minimizing the middle-level managers by assigning them to different roles.

CERTIFICATIONS

CompTia Security+

CySA (scheduled the exam Dec 2021)

Splunk Core Certified User

TRAINING

CyberNow Labs Cyber Security Analyst Hands-on Training, Splunk Fundamentals

Cybrary CompTIA Linux+, Cybrary CySA+, Cybrary Nessus Fundamentals



Contact this candidate