Eddie Kuykendall

Atlanta, GA • adz5vo@r.postjobfree.com • 678-***-****

SUMMARY

I am looking for a remote SOC Analyst position. I have 2 year of experience working as a SOC Analyst and I really enjoy this type of work. I have experience working with threat detection and mitigation work a SOC environment and I enjoy the work that I do. I have experience working with AlienVault SIEM tool and documenting ticket notes in Service Now. I have great organizational skills and a strong sense of teamwork. I am experienced in security monitoring and threat mitigation technologies, experience. I have strong organizational and analytical skills with attention to detail. I have the ability to clearly communicate and present to various levels of an organization. I also have IT project management experience and leadership skills.

Industry Knowledge:

Tools:

Network Exp:

Security Experience:

Security+

CCNA

SOAR

HDI Certified

MITRE ATT&CK &

Cyber Kill Chain

Cybersecurity

Threat Investigation

Incident Response

Security Operations

Cyber Threat Intelligence

TIP platforms

Solar Winds

SentinelOne

Remedy

Service Now

TCP/IP

TACACS+

VLANs

Stealth Watch

Wi-Fi (802.x)

Stealth Watch

AlienVault (Siem)

Splunk

Data Privacy

Cybersecurity Incident Response

Communication

Sense of Urgency

Service Now

CyberArk

Cyber Threat Hunting

Data Loss Prevention (DLP)

MITRE ATT&CK

Ransomware, Phishing, Malware, Brute Force

PROFESSIONAL EXPERIENCE

Coretelligent MSP – GA 8/2022 – 8/2023 Security Analyst – SOC

Actively participates in handling security alerts and investigating potential threats coming into the cybersecurity Incident Response Team (CSIRTs).

Experience working in a Security Operations Center environment.

Experience with SIEM systems.

Recognize attacker and APT activity, tactics, and procedures as indicators of compromise (IOCs) that can be used to improve monitoring, analysis and incident response.

Experience with Qualys, SentinelOne, Fortinet, and AlienVault.

Team-oriented individual who works well with others and places a premium on the group’s knowledge and success.

Analyze security event data from Endpoint Detection and Response, SIEM using (AlienVault USM Anywhere) and Dashboards, etc.

Maintains and analyzes accurate and concise records in tickets for all cases.

Excellent investigative and problem-solving skills.

Conduct proactive monitoring, investigations, and mitigation of security events.

Experience with enterprise ticketing systems like ServiceNow.

Responsible for the vulnerability risk evaluation to ensure each vulnerability is properly evaluated, mitigated, and documented.

Experience with using a Security Information Event Management (SIEM) platform.

Experience with operational security, including security operations center, incident response, SOAR and SIEM platforms (Microsoft Sentinel One and Splunk)

Assist in the deployment and management of security technologies such as multi-factor authentication (MFA), data loss prevention (DLP), and security information and event management (SIEM) SPLUNK and AlienVault systems.

Experienced with analyzing indicators of compromise (IOCs).

Analyze security event data from EDR, SIEM, Dashboards.

Soc, Incident response, Cyber security, Threat hunting, Siem, security operations.

Knowledge of Cyber Kill Chain/Mitre ATT&CK frameworks and application within a cyber security command center.

Used advanced threat hunting, defense validation and counterintelligence services provide additional layers of security.

EDR: CrowdStrike, SentinelOne, Defender

Familiar with MITRE ATT&CK framework.

Interact with various industry-leading security products and platforms, including: AlienVault, Fortinet, Mimecast, Cylance, SentinelOne, and others

Able to serve as a contributor to a cross-functional teams.

Execute Phishing email campaigns via KnowBe4.

Defined, implement, and maintain organizational security policies.

Assist with virtual and in-person end-user cyber security awareness training using Know Before.

A strong, confident communicator who can collaborate with and provide security

Provided guidance to members of the organization across departments and at all levels of management as well as our external clients and partners.

Maintained current knowledge of security vulnerabilities, threats, and industry-standard methodologies.

Participated in appropriate and relevant conferences and courses to maintain technical proficiency.

Collaborated with both technical and non-technical areas of the organization to improve security compliance, manage risk, and bolster effective company-wide security practices.

Strive to maintain current knowledge of security vulnerabilities, threats, and industry-standard

methodologies.

Hexaware/Google – Atlanta, GA 8/2021 – 4/2022 Security Analyst – NOC/SOC Analyst

Actively participates in handling security alerts and investigating potential threats coming into the Cybersecurity Incident Response Team (CSIRTs).

Used Crowd Strike is the pioneer of cloud-delivered endpoint protection.

Proactively contributes in a diverse security infrastructure environment including monitoring SIEM, DLP, secure web gateways, endpoint security, and vulnerability scanners.

Performs intrusion detection, analysis, and incident handling and an understanding of security tools such as SIEM, IDS/IPS, web proxies, DLP, CASB, SIEM, DNS security,

Performs initial triage and full Cyber Kill Chain + MITRE ATT&CK analysis as part of our investigations.

Experienced with analyzing indicators of compromise (IOCs).

Monitors hardware, network firewalls, intrusion detection systems, EDR systems, and a strong understanding of Info-Sec principles.

Experience with network security devices such as, Intrusion Detection/Prevention, Cisco firewalls and web application firewalls (WAFs), Wireless Intrusion Prevention, Vulnerability Management and SIEM tools.

Comcast – Atlanta, GA 11/2020 – 8/2021

Network Operations Center Technician – NOC - Contract

Actively participates in monitoring network alarms and reacts according with the proper sense of urgency.

Acts as first responder to all network alarms reported by network management tools in the network.

Works with Windows servers, diverse networks, and Unified Communications.

Proactively detects and analyzes network incidents.

Uses PagerDuty to send Incident notifications SMS, push notifications and emails to management, team leads and on call staff

Uses Sales Force ticketing system to manage queues, meet defined SLA's, followed documented procedures for ticket updates and communication with the customer.

Momentum Telecom – Cartersville, GA

5/2019 – 11/2020

Network Operation Center Engineer - NOC

Sets up, installs, maintains, and coordinates personal computers and peripheral equipment; installs new and upgraded software packages; installs hard disk drives and additional upgrades.

Participated in upgrading IT Infrastructure as well a computer peripherals.

I was tasked with upgrading hardware and software on computers.

Experience with Network Management tools.

Network engineering and system administration experience.

Assisted onsite field technicians with configuration and troubleshooting issues on routers and cable CMTS’s.

Managed Break-fix issues with employees computer and monitored all internal network systems. including Cisco routers, Cisco switches, and wireless access points (WAP) technologies.

Adhered to metrics dealing with timely responses to all incidents, outages, and performance alerts.

Much of my time was spent troubleshooting and resolving complex technical issues in a very technical environment.

Implemented patch management, operating system deployment, network protection and other various services.

Lowe’s – Atlanta, GA 11/2018 – 5/2019

Information Systems Technician

Provided support to resolve problems with employees computers, software, and hardware, and internal

approved and supported applications.

Understanding of Active Directory, Microsoft Operations Manager, OSI, TCP/IP, Ethernet, Internet.

Monitored and maintained internal network systems including Cisco routers, switches, and wireless

devices.

Provided support for Windows servers and maintenance of Cannon Oce and Lexmark printers.

Desktop support, Windows OS, MS O365, video conferencing, end-point protection, print/file services.

Monitored available disk space and processes running on Windows and Linux servers.

Network engineering and system administration experience.

Familiar with Bit-locker Drive Encryption for Windows PC’s.

Participated in IT Infrastructure Monitoring.

Created training documentation for new IT Support Analyst.

Xentit - Rush Medical University Hospital – Chicago, IL. 11/2017 – 11/2018

Cyber Security Compliance Analyst - Contract

Experienced in security incident management and response including analysis of events, review of suspected malicious activity.

Experience with IT compliance standards such as NIST CSF, ITIL, HIPAA, PCI using Splunk to address and mitigate issues.

Engaged with internal Google customers to perform routine vulnerability assessments and Cyber risk analysis on business processes and practices regarding information systems.

Monitored security event through SIEM management console.

Experience with HI-TRUST CSF framework with a list of prescriptive controls/requirements that demonstrates HIPAA compliance.

Responsible for the safe handling of highly sensitive and protected health information (PHI).

Knowledge of network and web related protocols (e.g., TCP/IP, UDP, HTTP, HTTPS, SSL/TLS).

Performed compliance assessments for HIPAA, PCI, SOX, ISO27000 and NIST Compliance Frameworks.

Created and developed and updated policies and regulatory requirements to meet standards.

Some experience with Linux and exceptional written and oral communication skills.

Working knowledge of security and compliance frameworks and practical implementation experience.

Responsible for security monitoring, detection, and response.

Monitored processes running on Windows and Linux servers.

Data loss prevention (DLP).

RPC Inc. – Atlanta, GA 6/2013 - 11/2017

Network Analyst/Lead Project Manager for Net-Ops

Lead project manager for 4 years on network operations projects in the oil and gas industry related to remote site Moves, Adds, and Changes as well as troubleshooting network issues.

Used Stealth watch to detect a wide range of attacks from a variety of threats including APTs (Advanced Persistent Threats), DDoS, zero-day malware and insider threats.

Information Security. Experience in implementing and operating security technology such as firewalls, multi-level security implementation, security assessment scanners, and security monitoring tools (e.g., IDS/IPS, SEIM, AV, Qualys, etc.)

Knowledge of network and web related protocols (e.g., TCP/IP, UDP, HTTP, HTTPS, SSL/TLS)

Monitored available disk space and processes running on Windows and Linux servers.

Worked with the business units to get budgetary numbers approved for the execution of projects, created realistic expectations regarding deliverables for a given project.

Changed out server and network hardware, faulty cables, and cards in our highly secure off-site co-lo facility.

Network engineering and system administration experience.

Knowledge of various security methodologies and processes and technical security solutions (firewall, intrusion prevention and intrusion detection systems).

Controlled access to information and resources and provided technical expertise with support.

Supported video/web conferencing tools for internal customers.

Managed and assigned tasks to team members and worked with peers to ensure network equipment was configured and delivered on time.

Managed general contractors, electricians, and low voltage cabling contractors to ensure that all work was completed to code standards in remote locations.

Education:

Kennesaw State University 1992 – 1996, Information Systems

Covid19 – I am fully vaccinated.

I am a United States citizen.

Soft Skills:

Excellent communication skills (half-geek, half-human)

A strong, confident communicator who can collaborate with and provide security

guidance to members of the organization across departments and at all levels as

Able to serve as a contributor to a cross-functional teams.

well as our external clients and partners.

Good Presentation Skills

Teamwork

Ability to derive a project plan

Strong leadership and organizational skills

Builds and maintains relationships with co-workers and stakeholders

Contact this candidate