United States Security Analyst
Resume:
Kambez Jalalyar
Sterling, Virginia. United States
******.********@*****.***
Github LinkedIn
Summary
Cybersecurity professional with over four years of leadership experience, and three years of expertise in driving business growth through enhanced security postures, cloud adoption, and implementation of industry best practices. Began my security career in the pharmaceutical industry where I was able to showcase natural strengths in investigative analysis, forensics, and risk mitigation - leading to a role on the IT and Compliance team. Since then, I’ve successfully optimized security and operating efficiency at three small businesses while increasing profits through digitalization, cloud integration, and growth initiatives. In my current role, my push towards digital transformation and cloud implementation played a key role in navigating the pandemic with zero layoffs, while achieving record company profit. I thrive on the challenge of protecting critical assets and take pride in security's profound impact on protecting individuals, families, and organizations. Key Technical Skills:
Python, Data Analysis, Network and Endpoint Security, Cloud Infrastructure Management, Threat Detection, Incident Response, Security Architecture, GRC (Governance, Risk, and Compliance), Identity and Access Management, Data Privacy, Splunk, Azure, Linux, Active Directory, SQL, PowerShell, KQL, AWS.
Professional Experience
AFG Auto Glass Washington, DC & Sterling, VA 01/2020 – current
Role: Manager, Security Analyst, Webmaster. (10/2021 – current)
● Selected by ownership to lead the new Security and Technology initiative.
● Presented strategic business changes and improvement plans to upper management and stakeholders, resulting in enhanced operational efficiency, strengthened security measures, and better alignment with organizational goals.
● Ensured security and system availability with 100% uptime and zero successful security breaches in 4 years by: o Deploying SSL/TLS encryption, firewalls, secure cloud configurations, and input validation, all monitored through automated alerts using WP Activity Log SIEM.
o Proposing business continuity plans to the ownership; resulting in the implementation of a primary/secondary site system, automated daily backups/snapshots, and improved change management procedures. o Implementing a secure digital system for scheduling appointments, collecting sensitive personal information, and processing payments while ensuring data privacy (Stripe payments, via Woocommerce).
● Successfully led a team of three responsible for managing contracts and SLAs with MDM providers (Kandji), cloud service providers
(Cloudflare), web hosting providers (Hostinger), marketing agencies, and more (AWS, Google).
● Implemented a data collection system and enhanced accounting capabilities by streamlining invoicing with cloud software, leading to an 82.6% decrease in fraudulent chargebacks per year (46 to 8; from 2021 to 2024).
Role: Webmaster, Help Desk, Admin. (01/2020 – 10/2021)
● Identified a critical gap in the company’s online presence during the pandemic that impacted response to increased demand. Created a new website, generating hundreds of organic leads and thousands of monthly search impressions. This increased exposure in DC, MD,
& VA (0.89% to ~48% market share), and drove a ~130% in monthly job volume.
● Led an initiative toward internal restructuring, digitalization, and adoption of cloud. Advised on marketing partnerships.
● Conducted three out of five new hires, and coordinated security and systems training for 13 employees. Loudoun Pharmacy (LFP Corporation) Sterling, Virginia 10/2016 – 12/2019 Online mail-order pharmacy with a comprehensive digital infrastructure; including a website/mobile app, Active Directory, complex networks, and automation. Trained as a pharmacy tech, system admin, and security compliance.
Role: Licensed Pharmacy Technician,, Admin, Help Desk, HIPAA Compliance 10/2016 – 12/2019
● Consulted with doctors and patients to collect protected health information (PHI) while ensuring HIPAA compliance and proper handling of data. Used computer software to process insurance claims for and collect sensitive information.
● Administered roles, permissions, and access controls for physical and virtual assets through RFID badges and enforcement of the principle of least privilege.
● Ensured the validity of electronic scripts to meet regulatory guidelines and federal laws.
● Responded to audit discoveries and compliance violations, while mitigating future risk through the development of improved control policies. This helped decrease the ARO of violations/fines by over 75% (from 4 in 2016 to 1 in 2024).
● Conducted 6 new hire orientations and provided training on regulatory compliance, medications, best practices, and policies. My hires had 83% retention after 1 year and 67% retention after years 2 & 3.
● Used software to track the productivity of 32 technicians, identify areas for improvement, and tailor training. Achieved a 55.4% reduction in errors per day (53.2 to 23.7), ensuring best practices while mitigating the risk of audits/violations.
Role: Admin, Project Manager, HIPAA GRC (Contractual Role – Keystone Care Pharmacy) 08/2018 – 12/2018
● Selected by our CEO, from 200+ employees, to be part of a four-person team opening Keystone Care Pharmacy.
● Managed budget, inventory, set up, and security configuration of computer workstations and network infrastructure.
● Implemented Microsoft Active Directory with role-based access controls for four departments.
● Configured firewall, and improved overall security posture through hardening of all endpoints.
● Led secure bulk migration of PHI using PrimeRX Pharmacy Database System, ensuring data import, storage, and organization met HIPAA compliance through automated and manual processes.
● Our team completed the project 2 months early, while successfully passing all subsequent audits for the grand opening. Cybersecurity Projects:
Tutorials I created to practice, demonstrate my skills, and educate others (Detailed versions available on my GitHub portfolio).
● Breast Cancer Classification using Python Neural Networks: Training AI to predict whether a tumor is benign or malignant, using over 500 breast cancer datasets. ( numpy, pandas, Tensorflow, sklearn, matplotlib)
● AI Web Scraper using Python: AI-powered web scraper that uses Python and Streamlit to scrape web content, extract relevant text, and parse specific information using natural language prompts. The tool leverages Selenium for web scraping, BeautifulSoup for HTML parsing, and LangChain's Ollama integration for AI-driven content extraction.
● Penetration testing and SIEM alert tuning on an Active Directory network using four virtual machines. Conducted penetration testing and SIEM alert tuning in an Active Directory lab using Splunk, Sysmon, and Atomic Red Team. Simulated attacks with Kali Linux to identify vulnerabilities, refine detections, and enhance threat visibility.
● Vulnerability assessment and remediation using Nessus Essentials. Executed scans on a VM running Windows 10: an initial basic scan without credentials, a subsequent credentialed scan for in-depth analysis, and a final scan after installing deprecated software to assess security impacts. Remediation focused on addressing high-priority vulnerabilities. Conducted subsequent scans performed to evaluate the effectiveness of changes.
● Active Directory network: Designed and deployed an Active Directory network in VirtualBox with a Windows Server Domain Controller. Configured DHCP, NAT, RAS, and network interfaces for internal and external connectivity. Automated bulk user creation with PowerShell and validated security through telemetry and access testing.
● Mapping Live Attacks on Azure Sentinel SIEM: Created a VM honeypot, exposed it to the internet, and monitored live RDP brute force attacks using Azure Log Analytics Workspace and Sentinel. Wrote PowerShell script to parse Windows Event Logs and retrieve attacker geolocation data via a 3rd party API; Results visualized on Azure Sentinel’s world map. Certifications
● CompTIA Security+ — 08/2024
● Google Cybersecurity Certification — 03/2024
● FEMA National Incident Management System (NIMS): ICS-100 Incident Command/Response — 03/2024
● Python Institute PCEP 30-02: Certified Entry-Level Python Programmer — 01/2025
● AWS Certified Cloud Practitioner — expected 04/2025 Education: Western Governors University (WGU)
● Will earn a bachelor’s degree in Cybersecurity and Information Assurance by April 2026.
Contact this candidate