Incident Response Life Cycle

ANNABEL TAMABANG

DALLAS TX +1-351-***-**** ***********@*****.***

SUMMARY

SOC Analyst with great experience in Risk Management Framework, System Development Life Cycle (SDLC), Security Life Cycle and vulnerability management. Proficient in malware analysis, incident response, data loss prevention and I do have a deep knowledge in identifying and analyzing suspicious event and utilizing various security tools to perform logs and packet analysis. Knowledgeable with a wide range of technologies such as Wireshark, Splunk and Snort with a fast learning and adaptive ability to new environments. Detailed- oriented professional accustomed to working in fast-paced collaborative environment. Constantly learning and improving security skills, using platforms such as SimSpace Cyber Range, home lab, Rangeforce.com.

SKILLS

Strong knowledge of Cyber Threat Intelligence principles to include indicators of compromise (IOC)

Experience in maintaining a secure network through configuring and managing typical security control points such as firewalls, IDS/IPS devices and knowledge of the type of events they produce and risks they reduce and prevent

Malware Analysis

Experience of SIEM Solutions (LogRhythm, Splunk, CorreLog) including design, configuration, operation and tuning

Security awareness

Knowledge of multiple operating systems (Windows, Linux, OSX)

Proficient in word, excel, zoom platform, skype, power point, WebEx, PM tools like JIRA, RALLY

Excellent ability at building relationships with other organizational groups

Experience in web site and web application security assessment

WORK EXPERIENCE

PITCH TECH Dallas, TX

March 2023- Present

Incident Response Analyst

- Perform hunting for malicious activity across the network

- Conducts analysis using a variety of tools and data sets to identify indicators of malicious activity on the network

- Work with a cross functional team, drive improvements to policies and processes within the law enforcement response team

- Support Incident response lifecycle via triage and investigation of detections and act on as appropriate

- Protected bank assets by rapidly communicating incidents and information to appropriate First Responders, and management on all levels while exercising independent and sound judgement that balances business efficiency and effectiveness with prudent risk mitigation

- Forensic imaging of digital media

- Manage evidence with proper chain of custody procedures

- Identifying incidents and make recommendations to protect the network

- Support ongoing tracking and remediation of security issues, ensuring that tickets are closed and issues are addressed in a timely manner

- Work closely with the Security Operation Center, Legal and Loss Prevention teams to support tier 1 and tier 2 security incident management

Cybereason Boston, MA

January 2021 - January 2023

Cyber Intelligence Analyst

- Provide depth of expertise, skills, source of knowledge on current and emerging Cyber issues, attack methods, threat response and mitigation techniques

- Measure the effectiveness of the Cyber hunting capabilities to ensure appropriate plans are in place to address lower performance and ineffective practices

- Partner with information security operations to provide leadership and support in the areas of Threat analysis, Cyber defense techniques and approach

- Perform Cyber threat intelligence including intelligence collection (IOCs), tracking threat actors, identifying, and tracking malicious infrastructure

- Tracking Cyber threat activity based off technical analysis

- A creative and innovative approach to work

- Develops models for identifying incident-type activity, of malware, bad actors using statistical analysis

- Work closely with the technology risk team to assess risk and provide recommendations for improving our security posture

Hilton Garden Inn Cypress Station

November 2019 – November 2020

Scrum Master

●Tracked and reported daily progress and program status to management

●Worked efficiently with multiple teams both distributed and co-located

●Monitor and manage dependencies on the teams and external projects to ensure potential issues are resolved.

●Protected teams and keep them focused on tasks in hand.

●Monitor project progress, prioritize backlog items, summarize project functionality, and translate project items into user stories and tasks.

●Assisted the team to adopt agile values and principles.

●Build a trusting and safe environment where issues can be raised without fear of blame, retribution, or being judged, with an emphasis on problem solving and improving.

●Facilitate work done without assigning or dictating the work.

●Proactively identified and found ways to resolve issues to prevent distractions and keep projects on track.

●Facilitate Scrum framework – backlog grooming, sprint planning, daily scrum, sprint reviews and sprint retrospectives.

EDUCATION

Bachelor of Science – Information and technology

CERTIFICATION

CompTIA Security+

PSM 1 (Professional Scrum Master)

ACHIEVEMENT

-Creating a guiding shared team vision and project vision.Implementing simple, adaptable methodology rules to deliver business value rapidly and reliably

-Solving constructive disagreements

-Rated for high collaborative skills

LANGUAGE

ENGLISH (Professional)

Contact this candidate