Cybersecurity Analyst
Resume:
Milashu Gebrehiwet
Seattle, WA Email: ***********@*****.*** Phone: 928-***-****
Professional Summary
Accomplished cybersecurity professional with over 7 years of experience specializing in IT infrastructure, cyber engineering, and advanced threat detection. Demonstrated expertise in developing cyber detection techniques, conducting penetration testing, and leveraging AI/ML technologies to optimize security operations. Proficient in designing secure IT ecosystems, responding to incidents, and implementing proactive threat-hunting methodologies. Certified in CISSP, CompTIA Security+, and Microsoft Security, Compliance, and Identity Fundamentals. Core Competencies
Cybersecurity Frameworks: Proficient in STRIDE, DREAD, and PASTA threat modeling methodologies.
Penetration Testing: Skilled in vulnerability assessments, exploitation, and post- exploitation techniques.
Cyber Engineering: Advanced capabilities in SIEM, EDR, and SOAR platforms.
Threat Hunting: Expertise in proactive identification and mitigation of emerging threats.
AI/ML in Security: Applied knowledge of machine learning models for anomaly detection and automation.
Incident Response: Proficient in coordinating and managing security incidents using industry frameworks like MITRE ATT&CK.
Compliance: Strong understanding of NIST CSF, CIS Controls, and ITIL standards. Certifications
Certified Information Systems Security Professional (CISSP)
CompTIA Security+
Microsoft Security, Compliance, and Identity Fundamentals
Digital Forensic Analyst Diploma
Education
Master of Science in Cybersecurity & Information Assurance Virginia Institute of Science & Technology 2023 GPA: 3.94
Bachelor of Science in Management of Information Technology Arizona State University
2015 GPA: 3.96
Professional Experience
Security Operations Center (SOC) Analyst CyberNow Labs Sterling, VA Jan 2023 – Present
Conducted penetration testing to identify vulnerabilities and recommend remediation measures.
Implemented STRIDE, DREAD, and PASTA methodologies for threat modeling and risk analysis.
Administered and optimized multi-cloud security tools, including EKS and Kubernetes.
Automated incident response processes using SOAR platforms, enhancing operational efficiency.
Leveraged machine learning models to improve threat detection and response.
Developed custom detections and alerts using advanced query and search techniques.
Conducted root cause analysis and post-incident reviews to strengthen the organization’s security posture.
IT Security Analyst Royal Paper Converting Inc. Phoenix, AZ Jan 2016 – Dec 2022
Designed and maintained secure server environments, including virtual and physical systems.
Conducted penetration testing and vulnerability assessments to ensure compliance with security standards.
Utilized STRIDE and PASTA frameworks to identify and mitigate potential security risks.
Implemented and managed endpoint protection systems, firewalls, and antivirus tools.
Collaborated with cross-functional teams to modernize IT infrastructure and enhance disaster recovery strategies.
Reduced spam and phishing attacks through advanced email filtering configurations. Key Projects
Advanced Threat Detection: Developed custom detections and alerts aligned with the MITRE ATT&CK framework.
Penetration Testing Initiatives: Led internal penetration testing efforts to identify and remediate security gaps.
Incident Response Automation: Created automated workflows to streamline incident response, reducing resolution time.
Technical Skills
Threat Modeling: STRIDE, DREAD, PASTA
Penetration Testing Tools: Metasploit, Burp Suite, Nmap
Operating Systems: Windows Server, Linux
Virtualization: VMware, Hyper-V
Cloud Platforms: Microsoft Azure, AWS
Security Tools: CrowdStrike, SentinelOne, Nessus, Proofpoint
Programming: PowerShell, Python, Bash
Contact this candidate