Cybersecurity Analyst Security

Mehmet Aksu

Manassas, VA 773-***-**** **********@*****.*** /in/usmehmetaksu

Greencard Holder - No Visa Sponsorship Required

PROFESSIONAL SUMMARY

An enthusiastic, detail oriented Cyber Security Analyst with CompTIA CSAP, CySA+ and Security+ certifications. I excel at identifying, evaluating, treating, and reporting on security vulnerabilities in systems and the software that runs on them. I identify computer system security weaknesses, prioritize assets, assess, report, and verify that they have been eliminated with plugin or report validations. I am constantly improving my skills in cyber security, keeping up to date with the latest trends, and creating a positive attitude in cybersecurity. TECHNICAL SKILLS

Tools: Splunk, IBM QRadar, FireEye HX, Nessus, Qualys, CrowdStrike, Nmap, Wireshark, Metasploitable, Jira, Resilient, Linux Command Line Tools, OWASP 10, Phishing and Malware Analysis, Virus-Total, Any-Run, MX Toolbox, Python Networking: Packet analysis (Wireshark, Tcpdump), TCP/IP, IDS, IPS, DNS Certifications: CompTIA CSAP, CySA+, Security+, Splunk 7.x Fundamentals Part 1, Splunk Core Certified User, IBM Cybersecurity Analyst, Fundamentals of Network Communication, TCP/IP and Advanced Topics, Introduction to Packet Tracer, Google IT Support, OS: Windows, Unix/Linux, IOS, VMware, Virtual Box

Vulnerability: Nessus, Qualys, Nmap, Kali Linux, Shodan, Metasploit Framework PROFESSIONAL EXPERIENCE

Vulnerability Management Analyst (Contractor) May, 2021 – Present Yahoo (Former Verizon Media), Dulles, Virginia

● Support the New Vulnerability/Zero Day program with detection, assessment, communication, and remediation coordination of security vulnerabilities.

● Perform vulnerability scan, analysis, validation and remediation activities.

● Validate vulnerabilities discovered through scan and code analysis.

● Classify and prioritize the risk of new vulnerabilities according to the specifics of Yahoo’s risk level, mitigating factors, and assessment of the impacts of internal and external threats.

● Perform analysis on large data sets using Splunk in order to address vulnerabilities across the company.

● Monitor public and proprietary sources for vulnerability information.

● Work with stakeholders to oversee remediation of identified security issues.

● Provide security subject matter expertise to Yahoo product teams including developers and system administrators.

● Perform technical and non-technical compliance activities.

● Perform security validation for configuration settings on different systems.

● Assist engineers responsible for remediating vulnerabilities.

● Develop metrics and dashboards for vulnerability management functions.

● Maintain and compose operational process documentation regarding program execution.

● Improve Vulnerability Management (VM) Team for maintaining appropriate documentation that defines the Threat & Vulnerability Management Program, Policy and Procedures.

● Participate in the calls to resolve information vulnerability incidents including internal events and targeted threats.

● Redesign the external scan dashboard to facilitate automation and do vulnerability assessment to improve operational efficiency.

● Monitor intrusion detection systems and other cyber security dashboards.

● Research, evaluate, and assess emerging cyber security threats, incidents, and vulnerabilities.

● Assisted in the design and maintenance of a vulnerability intelligence process that monitors for emerging systems vulnerabilities.

● Monitor the cloud security baseline settings for AWS/Azure and act on alerts and work with asset owners on remediation.

● Process AWS alert suppressions and renewals.

● Create and execute Nessus scans when required.

● Work with asset owners on container (Docker and Kubernetes) compliance and vulnerabilities.

Cybersecurity Analyst May, 2020 – May, 2021

Cyber Now Labs, Sterling, Virginia

● Conducted log analysis generated by IBM QRadar such as firewall denies, authentication failures, connection to a known malware site, traffic from an untrusted network, and potential data loss.

● Monitored and analyzed SIEM alerts through Splunk and IBM QRadar and identified security anomalies for investigation and remediation.

● Conducted analysis to determine the legitimacy of files, domains and emails using online resources such as VirusTotal, AnyRun, and MX Toolbox.

● Led investigations on end point devices via FireEye HX (Endpoint Detection & Response Solution).

● Analyzed security system logs and reviewed the indicators of compromise (IOCs).

● Analyzed PCAP files, narrowed down anomaly traffic with Wireshark, examined the details of the infected hosts and wrote IOC on executive summary reports.

● Experienced in using various tools like FireEye HX, Burp Suite, Nmap, Tenable Nessus, Kali Linux and Metasploit.

● Leveraged an understanding of risk management frameworks and NIST security standards. Sales Manager March, 2019 – May, 2020

Badger Granite, Oak Creek, Wisconsin

● Developed relationships with custom builders, interior designers, and retail customers.

● Conducted all digital marketing in social media.

● Configured new software, hardware and wireless network.

● Trained the templator about the new laser templating software.

● Increased the sales by 30% by applying digital marketing strategies. LANGUAGES

● English - Fluent

● Turkish - Native

EDUCATION

Bachelor of Arts (BA), ELT

Istanbul University, Istanbul, Turkey

Reference available upon request.

Contact this candidate