Security Analyst Operations

Location:

Spring Grove, IL

Posted:

February 22, 2025

Contact this candidate

Resume:

ANGELO A. DIMACULANGAN

Security Operations Analyst

Email: ****.************@*****.***

Contact Number: 815-***-****

*Authorized to work in the US*

Summary

Seasoned SOC Security Analyst with 16+ years of solid experience in Information Technology providing crucial security in safeguarding highly sensitive information in the banking industry. Possesses deep understanding and highly skilled in utilizing different security tools to monitor and identify threats and suspicious events activity. Proven to be very professional in maintaining health and integrity of banking systems from infrastructure, systems availability, and sensitive data confidentiality. Technologies

SIEM and Log Analysis – Splunk and ELK (Elasticsearch, Logstash and Kibana)

Endpoint Detection, Anti-Malware, Intrusion Prevention and Firewall – Symantec Endpoint Protection for Windows and Mac workstations and Windows servers. Symantec Endpoint Protection for Mobile Device. Sophos for Non-Windows workstations and Servers

Endpoint Detection and Response (EDR) – CrowdStrike Falcon Protection

Privileged Access Management (PAM) – BeyondTrust

Email Threat Protection – SpamAssassin and FireEye ETP (Email Threat Protection)

Network Intrusion Detection – HP Tippingpoint and Cisco Fire Power

Proxy – Squid Proxy (Linux), Symantec Web Security Service (WSS) / Blue Coat and Zscaler

Lockdown Tool for ATM – Symantec Critical System Protection (SCSP)

Removeable Storage Device Manager – Kingston Safeconsole

Endpoint Disk Encryption – BitLocker

Vulnerability Scanner – Qualys

Cloud – Amazon Web Services (AWS) and Microsoft Azure

Ticketing System - ServiceNow

Remote Tools – Remote Desktop and Remote Assistance

Forensic Tools – FTK, Autopsy and System Internal Tools (i.e. Process Explorer, Autoruns, etc.) TECHNICAL SKILLS

Proficiency in Endpoint Management, Forensic Analysis, Incident and Threat Response, Security Monitoring and Analytics, Vulnerability Assessment and Patch Management.

Proficiency in Symantec Endpoint Protection Manager, Crowdstrike Falcon Protection, Splunk, and other Security Tools

Proficiency in handling Data Center Operations processing such as Batch Processing.

Proficiency in computer assembly, configuration and troubleshooting.

Knowledgeable in FTP Server, Mail Server and Database

Knowledgeable in Network Security, Configuration of router, Installation of Operating Systems (Windows XP/Windows Vista/Windows 7, Windows 10, Windows 11, MacOS, Linux), Symantec Netbackup, Nagios and Nagvis, Bacula

Knowledgeable in Programming Language such as C++, PHP MySQL, Configuration of Lotus Notes, AS400, Alliant Branch Tellering

Basic knowledge in Macromedia Fireworks, Dreamweaver, HTML and Adobe Photoshop CS3 and CS4 Education

Bachelor of Science in Computer Science, Major in Computer Network Administration – University of Makati, Philippines

(2009)

BDO Unibank, Inc. December 2021 – December 2022

IT Security – Security Monitoring and Analytics Team Lead Promoted as Lead SOC Analyst

Responsible for performing monitoring, triage and analytics of security alerts and incidents, including development of security rules and use cases in the bank's Security Information and Event Management

(SIEM) system

Monitor and analyze security alerts and incidents in real-time using Splunk and other tools (e.g. ELK, IPS, EDR, etc.) and from other third party threat intel sources, and perform needful correlation and analysis

Monitor network security and report and document any potential breaches

Develop security use cases and rules in the log monitoring platform

Maintain detailed logs and updated operational procedure documents

Coordinate periodic corrective and preventive maintenance of security systems

Perform incident analysis, response and reporting

Monitor relevant newsgroup and vendor updates to keep up-to-date with security trends and best practices

Produce SOC metrics, compliance and operational reports

Provide guidance to IT engineers to resolve address detected security alerts and notable events

Perform root-cause analysis as needed, and take necessary steps to prevent recurrence

Evaluate relevant software products to improve BDO's security systems

Regularly revisits existing tools and processes to improve efficiency and effectiveness

Define and refine relevant standards to harden IT systems

Manage and implement projects initiated by the Unit Head and Section/Team Leads BDO Unibank, Inc. (June 2017 – December 2021)

IT Security (Endpoint Security Analyst / Threat Response) Junior Assistant Manager 3

Promoted as Junior Assistant Manager 3 – Senior SOC Analyst Responsible for defining and managing security policies for all BDO endpoints. This includes, but is not limited to: Endpoint Management, Forensic Analysis, Incident Response, Vulnerability Assessment and Patch Management.

Ensure BDO workstations are monitored for compliance to BDO security standards.

Ensure BDO workstations are receiving timely policy and signature updates.

Implement approved workstation policy changes and exceptions.

Perform regular workstation vulnerability assessments and remediation.

Monitor relevant newsgroups and vendor updates to keep up-to-date with security trends.

Resolve issues related to endpoint protection software, keeping within the team's committed service level standard.

Perform root-cause analysis as needed and take necessary steps to prevent recurrence.

Evaluate relevant software products to improve endpoint security posture.

Regularly revisit existing tools and processes to improve efficiency and effectiveness.

Manage and implement projects initiated by the Unit Head.

Identify areas for process improvement and make recommendations.

Create a ticket using ServiceNow or an IR (Incident Report) to document an encountered problem.

Service valid RT Tickets based on Service Level.

Establish and maintain harmonious work relationships with peers.

Observe orderliness and access control within ITO-Security work area.

Comply with all the existing IT and HR Policies, Standards and Guidelines.

Perform other related functions that may be assigned from time to time within established limits of authority. BDO Unibank, Inc. (June 2015 – June 2017)

IT Security (Endpoint Security Analyst / Threat Response) Junior Assistant Manager 2

Responsible for defining and managing security policies for all BDO endpoints. This includes, but is not limited to: Endpoint Management, Forensic Analysis, Incident Response, Vulnerability Assessment and Patch Management.