Eddie Kuykendall
Atlanta, GA • adz5vo@r.postjobfree.com • 678-***-****
SUMMARY
I am looking for a remote SOC Analyst position. I have 2 year of experience working as a SOC Analyst and I really enjoy this type of work. I have experience working with threat detection and mitigation work a SOC environment and I enjoy the work that I do. I have experience working with AlienVault SIEM tool and documenting ticket notes in Service Now. I have great organizational skills and a strong sense of teamwork. I am experienced in security monitoring and threat mitigation technologies, experience. I have strong organizational and analytical skills with attention to detail. I have the ability to clearly communicate and present to various levels of an organization. I also have IT project management experience and leadership skills.
Industry Knowledge:
Tools:
Network Exp:
Security Experience:
Security+
CCNA
SOAR
HDI Certified
MITRE ATT&CK &
Cyber Kill Chain
Cybersecurity
Threat Investigation
Incident Response
Security Operations
Cyber Threat Intelligence
TIP platforms
Solar Winds
SentinelOne
Remedy
Service Now
TCP/IP
TACACS+
VLANs
Stealth Watch
Wi-Fi (802.x)
Stealth Watch
AlienVault (Siem)
Splunk
Data Privacy
Cybersecurity Incident Response
Communication
Sense of Urgency
Service Now
CyberArk
Cyber Threat Hunting
Data Loss Prevention (DLP)
MITRE ATT&CK
Ransomware, Phishing, Malware, Brute Force
PROFESSIONAL EXPERIENCE
Coretelligent MSP – GA 8/2022 – 8/2023 Security Analyst – SOC
Actively participates in handling security alerts and investigating potential threats coming into the cybersecurity Incident Response Team (CSIRTs).
Experience working in a Security Operations Center environment.
Experience with SIEM systems.
Recognize attacker and APT activity, tactics, and procedures as indicators of compromise (IOCs) that can be used to improve monitoring, analysis and incident response.
Experience with Qualys, SentinelOne, Fortinet, and AlienVault.
Team-oriented individual who works well with others and places a premium on the group’s knowledge and success.
Analyze security event data from Endpoint Detection and Response, SIEM using (AlienVault USM Anywhere) and Dashboards, etc.
Maintains and analyzes accurate and concise records in tickets for all cases.
Excellent investigative and problem-solving skills.
Conduct proactive monitoring, investigations, and mitigation of security events.
Experience with enterprise ticketing systems like ServiceNow.
Responsible for the vulnerability risk evaluation to ensure each vulnerability is properly evaluated, mitigated, and documented.
Experience with using a Security Information Event Management (SIEM) platform.
Experience with operational security, including security operations center, incident response, SOAR and SIEM platforms (Microsoft Sentinel One and Splunk)
Assist in the deployment and management of security technologies such as multi-factor authentication (MFA), data loss prevention (DLP), and security information and event management (SIEM) SPLUNK and AlienVault systems.
Experienced with analyzing indicators of compromise (IOCs).
Analyze security event data from EDR, SIEM, Dashboards.
Soc, Incident response, Cyber security, Threat hunting, Siem, security operations.
Knowledge of Cyber Kill Chain/Mitre ATT&CK frameworks and application within a cyber security command center.
Used advanced threat hunting, defense validation and counterintelligence services provide additional layers of security.
EDR: CrowdStrike, SentinelOne, Defender
Familiar with MITRE ATT&CK framework.
Interact with various industry-leading security products and platforms, including: AlienVault, Fortinet, Mimecast, Cylance, SentinelOne, and others
Able to serve as a contributor to a cross-functional teams.
Execute Phishing email campaigns via KnowBe4.
Defined, implement, and maintain organizational security policies.
Assist with virtual and in-person end-user cyber security awareness training using Know Before.
A strong, confident communicator who can collaborate with and provide security
Provided guidance to members of the organization across departments and at all levels of management as well as our external clients and partners.
Maintained current knowledge of security vulnerabilities, threats, and industry-standard methodologies.
Participated in appropriate and relevant conferences and courses to maintain technical proficiency.
Collaborated with both technical and non-technical areas of the organization to improve security compliance, manage risk, and bolster effective company-wide security practices.
Strive to maintain current knowledge of security vulnerabilities, threats, and industry-standard
methodologies.
Hexaware/Google – Atlanta, GA 8/2021 – 4/2022 Security Analyst – NOC/SOC Analyst
Actively participates in handling security alerts and investigating potential threats coming into the Cybersecurity Incident Response Team (CSIRTs).
Used Crowd Strike is the pioneer of cloud-delivered endpoint protection.
Proactively contributes in a diverse security infrastructure environment including monitoring SIEM, DLP, secure web gateways, endpoint security, and vulnerability scanners.
Performs intrusion detection, analysis, and incident handling and an understanding of security tools such as SIEM, IDS/IPS, web proxies, DLP, CASB, SIEM, DNS security,
Performs initial triage and full Cyber Kill Chain + MITRE ATT&CK analysis as part of our investigations.
Experienced with analyzing indicators of compromise (IOCs).
Monitors hardware, network firewalls, intrusion detection systems, EDR systems, and a strong understanding of Info-Sec principles.
Experience with network security devices such as, Intrusion Detection/Prevention, Cisco firewalls and web application firewalls (WAFs), Wireless Intrusion Prevention, Vulnerability Management and SIEM tools.
Comcast – Atlanta, GA 11/2020 – 8/2021
Network Operations Center Technician – NOC - Contract
Actively participates in monitoring network alarms and reacts according with the proper sense of urgency.
Acts as first responder to all network alarms reported by network management tools in the network.
Works with Windows servers, diverse networks, and Unified Communications.
Proactively detects and analyzes network incidents.
Uses PagerDuty to send Incident notifications SMS, push notifications and emails to management, team leads and on call staff
Uses Sales Force ticketing system to manage queues, meet defined SLA's, followed documented procedures for ticket updates and communication with the customer.
Momentum Telecom – Cartersville, GA
5/2019 – 11/2020
Network Operation Center Engineer - NOC
Sets up, installs, maintains, and coordinates personal computers and peripheral equipment; installs new and upgraded software packages; installs hard disk drives and additional upgrades.
Participated in upgrading IT Infrastructure as well a computer peripherals.
I was tasked with upgrading hardware and software on computers.
Experience with Network Management tools.
Network engineering and system administration experience.
Assisted onsite field technicians with configuration and troubleshooting issues on routers and cable CMTS’s.
Managed Break-fix issues with employees computer and monitored all internal network systems. including Cisco routers, Cisco switches, and wireless access points (WAP) technologies.
Adhered to metrics dealing with timely responses to all incidents, outages, and performance alerts.
Much of my time was spent troubleshooting and resolving complex technical issues in a very technical environment.
Implemented patch management, operating system deployment, network protection and other various services.
Lowe’s – Atlanta, GA 11/2018 – 5/2019
Information Systems Technician
Provided support to resolve problems with employees computers, software, and hardware, and internal
approved and supported applications.
Understanding of Active Directory, Microsoft Operations Manager, OSI, TCP/IP, Ethernet, Internet.
Monitored and maintained internal network systems including Cisco routers, switches, and wireless
devices.
Provided support for Windows servers and maintenance of Cannon Oce and Lexmark printers.
Desktop support, Windows OS, MS O365, video conferencing, end-point protection, print/file services.
Monitored available disk space and processes running on Windows and Linux servers.
Network engineering and system administration experience.
Familiar with Bit-locker Drive Encryption for Windows PC’s.
Participated in IT Infrastructure Monitoring.
Created training documentation for new IT Support Analyst.
Xentit - Rush Medical University Hospital – Chicago, IL. 11/2017 – 11/2018
Cyber Security Compliance Analyst - Contract
Experienced in security incident management and response including analysis of events, review of suspected malicious activity.
Experience with IT compliance standards such as NIST CSF, ITIL, HIPAA, PCI using Splunk to address and mitigate issues.
Engaged with internal Google customers to perform routine vulnerability assessments and Cyber risk analysis on business processes and practices regarding information systems.
Monitored security event through SIEM management console.
Experience with HI-TRUST CSF framework with a list of prescriptive controls/requirements that demonstrates HIPAA compliance.
Responsible for the safe handling of highly sensitive and protected health information (PHI).
Knowledge of network and web related protocols (e.g., TCP/IP, UDP, HTTP, HTTPS, SSL/TLS).
Performed compliance assessments for HIPAA, PCI, SOX, ISO27000 and NIST Compliance Frameworks.
Created and developed and updated policies and regulatory requirements to meet standards.
Some experience with Linux and exceptional written and oral communication skills.
Working knowledge of security and compliance frameworks and practical implementation experience.
Responsible for security monitoring, detection, and response.
Monitored processes running on Windows and Linux servers.
Data loss prevention (DLP).
RPC Inc. – Atlanta, GA 6/2013 - 11/2017
Network Analyst/Lead Project Manager for Net-Ops
Lead project manager for 4 years on network operations projects in the oil and gas industry related to remote site Moves, Adds, and Changes as well as troubleshooting network issues.
Used Stealth watch to detect a wide range of attacks from a variety of threats including APTs (Advanced Persistent Threats), DDoS, zero-day malware and insider threats.
Information Security. Experience in implementing and operating security technology such as firewalls, multi-level security implementation, security assessment scanners, and security monitoring tools (e.g., IDS/IPS, SEIM, AV, Qualys, etc.)
Knowledge of network and web related protocols (e.g., TCP/IP, UDP, HTTP, HTTPS, SSL/TLS)
Monitored available disk space and processes running on Windows and Linux servers.
Worked with the business units to get budgetary numbers approved for the execution of projects, created realistic expectations regarding deliverables for a given project.
Changed out server and network hardware, faulty cables, and cards in our highly secure off-site co-lo facility.
Network engineering and system administration experience.
Knowledge of various security methodologies and processes and technical security solutions (firewall, intrusion prevention and intrusion detection systems).
Controlled access to information and resources and provided technical expertise with support.
Supported video/web conferencing tools for internal customers.
Managed and assigned tasks to team members and worked with peers to ensure network equipment was configured and delivered on time.
Managed general contractors, electricians, and low voltage cabling contractors to ensure that all work was completed to code standards in remote locations.
Education:
Kennesaw State University 1992 – 1996, Information Systems
Covid19 – I am fully vaccinated.
I am a United States citizen.
Soft Skills:
Excellent communication skills (half-geek, half-human)
A strong, confident communicator who can collaborate with and provide security
guidance to members of the organization across departments and at all levels as
Able to serve as a contributor to a cross-functional teams.
well as our external clients and partners.
Good Presentation Skills
Teamwork
Ability to derive a project plan
Strong leadership and organizational skills
Builds and maintains relationships with co-workers and stakeholders