Cyber Security Risk Management

Location:

Newark, DE

Salary:

120000

Posted:

December 12, 2024

Contact this candidate

Resume:

Nsikan S. Nkordeh

******@****.***

302-***-****

Summary Of Qualification:-

Seasoned and accomplished Information Security Analyst with over ten years experience in Cloud Security, Risk management, Incident Response. Expertise in developing and implementing risk management strategies, training programs, and security policies aligned with industry standards such as NIST 800-30/37/39 and ISO 27001. Proven track record in managing complex risk assessments, ensuring vendor compliance, and mitigating cybersecurity threats, resulting in significant reductions in IT exposure and cost savings. Adept at collaborating with cross-functional teams, providing strategic risk guidance, and delivering impactful security training to elevate organizational resilience. Extensive knowledge of Azure and AWS cloud security best practices, architecture, and services. Strong understanding of security concepts, including network security, identity and access management (IAM).

Skills

Risk Management

Risk Identification

IT Security Compliance

Microsoft Azure Active Directory

Risk Control Self-Assessment

Cybers security Processes Controls and frameworks: NIST, ISO 27001,27002, CIS, SOC2

IT Incident Response

AWS & Azure

Network security control

Network Monitoring Systems

Security Management Frameworks

Governance, Regulation & Compliance (GRC) approach

SIEM Product: Splunk, IBM QRADAR, AlienVault, LogRhythm

Risk Management

Professional Experience:-

Cyhornet LLC, New York, USA August 2022- Till Date

Cyber Security Manager.

Implemented conditional access policies to set access controls around critical data, to enforced MFA on all users, to block access from suspicious countries and IP addresses, to enforced MFA on all privilege access users, to block legacy authentication and much more.

Network Monitoring: Proficient use of Splunk for network monitoring, log gathering and detection; I monitor all connected network points, analyze network logs for vulnerability and breaches.

Managed Microsoft Cloud App Security. Microsoft Defender, triage vulnerabilities and implement defender recommendations to enhance the organization security posture

Incident Response: I coordinate the incident response process among the Cyber Defense, SOC, Legal, and Architecture teams, providing technical leadership for effective resolution.

Managed all privileged identity and access, leveraging least privileged methodology, using privilege identity management (PIM) to manage Azure AD roles and RBAC assignments to both privileged users and applications.

Developed and implemented IAM policies, roles, and groups to ensure least privilege access control for AWS resources; Implemented network security controls such as security groups, NACLs, and VPC peering to protect AWS infrastructure from unauthorized access.

Managed EDR (Endpoint Detection and Response), investigate and remediate threats, update EDR sensors, and managed the different MSSP. Managed email protection firewall (Proofpoint), and managed and triaged web application firewall logs.

Managed identity access management and organizational change management projects to create the organization’s first onboarding/offboarding workflow. Decreased onboarding/offboarding time by ~25% using automation through Microsoft Power Apps and Power Automate. Built and automated domain user account provisioning process, decreasing the process time by ~50%.

Provide subject matter expertise to project teams for cloud and on-site deployments, including developing system security plans, conducting testing on security controls, and performing vulnerability assessments to ensure HIPAA compliance.

I take part in designing and implementing an overall risk management process for the organization, which includes an analysis of the financial impact on the company when risks occur.

CG Global Management Solutions, LLC, Philadelphia, PA March 2021 – July 2022

Cyber Security Engineer

Managed Microsoft Admin center as a Global admin (SharePoint, Exchange online), and securely managed access to SharePoint libraries (assigned permission level to folders and files. Created custom permission level). Created and managed mailboxes, Distribution list, dynamic DL.

Setup and managed Azure AD, configure MFA and authentication methods, setup external domain whitelisting, and managed Azure AD security

I Performed security system updates on a regular basis with associated technical documentation.

Resolved all fraud and virus infections in coordination with computer security incident response teams.

Detailed security knowledge including technologies such as Malware, Network Intrusion Prevention, Security Information Event Management systems.

Project Lead for updating, enforcing, and auditing security policies, procedures, and SOP's to ensure compliance and accuracy with our current security architecture.

Perform threat analysis in a 24/7 environment, mitigating and managing threats and risks.

Performed security system updates on a regular basis with associated technical documentation Install and operate firewall and data encryption software to protection sensitive business information.

Generate weekly reports to document new security implementations.

Yogi Entertainment Ltd, United Kingdom Oct 2013 – Feb 2020

Cyber Security Engineer

Spearheaded triaging of reported and detected phishing emails; leveraging Proofpoint, MX Toolbox, MSHA, App Run, Atom, and others, which contributed to the reduction of the Mean Time to Resolution (MTTR) by ~50%.

Developed, and implemented an ongoing cybersecurity awareness training program and periodic simulated phishing email exercises using KnowBe4 - achieving an increase in training completion of ~82%.

Managed portfolio of over 15 security and IT systems and applications.

Worked with heads of the different business units and contractors to support their projects from IT standpoint.

Setup and managed Azure AD, configure MFA and authentication methods, setup external domain whitelisting, and managed Azure AD security.

Managed Microsoft Cloud App Security. Microsoft Defender, triage vulnerabilities and implement defender recommendations to enhance the organization security posture.

Audited system logs and reports for the different security tools, and present as a dashboard for management awareness and visibility.

Carried out security and risk assessment on all SaaS and executable software using different security tools and sandboxes.

GSM Systems Ltd. Sept 2010 – Sept 2013

IT Security Engineer.

Managed and lead an enterprise system upgrades and deployment of more than 1200 Windows machines and servers, across more than 25 offices nationwide.

Performed enterprise system vulnerability scanning using specialized tool and worked with other system admins to perform patching/system updates.

Assist the security team to identify and remediate systems outdated application and software.

Worked with senior management to ensure system specifications and supplies to various sites were met.

Project point of contact between Office Information Technology (OIT) and the respective court administrators, as my team managed each site systems upgrades and deployment.

Ensured data backups and recovery process were running. Planned, staged, and pushed of system OS/software patches to endpoints via SCCM.

Troubleshoot VPN and network connectivity issues. Performed system and data encryptions and general system support. Also, Configured, test, and deployed DAR application using approved testing documentation

HUAWEI Technologies Ltd, Lagos Nov 2009 – Sept 2010

IT Service Engineer

Worked with SOC (Security operation center) to implement recommended system patching to improve security posture

Managed departmental system upgrades, managed the upgrades of over 400 machines, and 150 network and local printers.

Managed physical and remote system availability to ensure over 400 employee experience zero system downtime.

Managed and deployed updates/patches to endpoint devices, devices encryption (includes mobile devices)

Educate employee on information security policies and procedure, and enforce security policies and procedures. Followed standard security procedure to dissociate effected system from the network and followed remediation processes to restore system health.

ERICSSON, Nigeria. Jun 2008 – Oct 2009

IT Support Engineer

Managed users and machine identity using Active directory through Active Role Management.

Managed systems/devices inventory and Supported employee using LANDesk remote tool.

Imaged and deployed new Windows OS/image to machines. Performed file backups, added user security groups.

Encrypted and decrypted data and systems with Dell encryption software. Supported about 120 Mac OSX users, and BYOD users (Android and Apple IOS).

Project managed Multimedia, System Integration & IT Solutions project.

Deployed endpoint antivirus, and ran definition updates/patches on machines from MacAfee server. Ran patches/updates on machines to ensure that they were in security compliance, and created daily systems and devices inventory reports.

CERTIFICATIONS

IBM Certified Security Intelligence Specialist (QRADAR)

IBM certified Application Security Specialist (AppScan)

Education:-

M. Sc. in Business Analytics and Information Management Feb. 2020 – Dec. 2021

University of Delaware, USA

M.Sc. in Wireless Networks Aug. 2005-Dec. 2006

Queen Mary University of London, UK

B.Sc. in Electrical and Electronics Engineering Dec. 1997 -Dec. 2002

University of Lagos, Nigeria

Contact this candidate