Stephen Okonmah EA

Tel: ***- ***- **** Email: adt72k@r.postjobfree.com

PROFESSIONAL SUMMARY

SOC/IR Analyst with experience in investigating and preventing network, host, and email-based attacks. Experienced in malware analysis, incident response, data loss I am goal-orientated, and customer-focused with excellent communication skills. Prioritizing and managing multiple tasks simultaneously. Troubleshooting and resolving complex issues in demanding work environment quickly and efficiently. My skills and professional experience will afford me the ability to make an immediate and effective contribution within any organization.

EDUCATIONAL QUALIFICATIONS

BS Business Administration/Computers

CompTIA Security +

WORK EXPERIENCE

SOC Analyst / Incident Response, April 2019 to Present

FSC INC

Review and analyze security event alerts and identify IOCs at the level of the network, application, and endpoint to determine if they are false or true positives.

Process daily threat Intel and blocking malicious MD5 hashes, IP’s and Domains following standard operating procedure.

Investigate, analyze, process, and resolve network security event alerts using FireEye NX, Cisco Source fire.

Investigate, analyze, process, and resolve phishing email alerts using various tools; Cofense, IronPort and Microsoft Defender.

Execute detailed email header analysis to verify email authenticity and anti-spoofing.

Investigate, analyze, process, and resolve endpoint security event alerts using FireEye HX.

Actively take part in incident response to endpoint compromise such as host triage, dynamic malware analysis, end-user interviews, and remediation efforts.

IP/URL/Domain/Hash analysis with approved OSINT tools to determine reputation.

Utilize Splunk Logs to search, analyze, and investigate machine-generated alerts from the company’s network, application, and endpoint devices.

Perform Threat Intelligence by reviewing reports on threat actors, identifying IOCs, and checking for hits in our systems before blocking the malicious IOCs.

Follow, and update changes to SOPs and other similar documentation.

IT Support Specialist/Tax Analyst, January, 2011 - April 2019

Q-CARE INC

Processed accounts receivable and accounts payable.

Invoiced customers and recorded payments received on account.

Entered and paid bills and recorded other cash disbursements.

Maintained accounts receivable and accounts payable subsidiary ledgers.

Compiled time sheets, processed payroll and computed employer payroll taxes.

General bookkeeping tasks including bank and account reconciliation.

Carried out other duties as assigned by the Executive Director.

Provided prompt and appropriate response to phone and e-ticket inquiries and requests for assistance with the associated computer systems.

Performed initial problem analysis, triage, identified, troubleshoot customer issues.

Assisted, and appropriately referred technical issues to the network team or subject matter experts when appropriate.

Provided direct assistance to customers via telephone and email.

Coordinated efforts with staff associates and subject matter experts to resolve problems.

Conducted periodic customer satisfaction surveys and tracked customer problem trends.

Made recommendations for improvements to customer experience and created reports based on information provided from customer surveys and trend analyses.

Performed other related duties including unlocking user accounts and helping with password reset support.

TECHNICAL SKILLS

Google DLP, Splunk Enterprise, FireEye HX, NX, AX /Carbon Black, McAfee WEB proxy - Palo Alto/Cisco IronPort - Linux/Windows.

ServiceNow, Cofense Triage, ForeScout, Microsoft Defender for Identity - Microsoft Defender for Endpoint - Microsoft Azur