Incident Response Cybersecurity Analyst
Resume:
Win Nguyen (Win Win)
832-***-**** ️ ********@*****.***
LinkedIn Profile CybersecurityGurus YouTube Channel
Objective
Dynamic Cybersecurity Leader with over 10 years of experience in safeguarding enterprise infrastructures. Seeking a senior-level role (Senior Cybersecurity Analyst) to leverage expertise in threat analysis, incident response, and strategic security oversight and especially with AI to drive organizational security excellence.
Professional Summary
Accomplished cybersecurity professional with extensive experience in Network design, Security architecture, Incident Response, and Compliance. Also went through the first hand experience in Ransomware Attacks.
Vulnerability Management Specialist - Expertly lead end-to-end vulnerability management lifecycle, including identification, classification, prioritization, and remediation of security vulnerabilities across enterprise environments. Develop and maintain vulnerability intelligence processes, monitoring emerging threats and proactively addressing new vulnerabilities to minimize organizational risk
Threat Hunting Specialist- Proactively search for indicators of compromise (IOCs), anomalies, and suspicious patterns within network traffic, endpoints, and security data. Analyze and correlate threat intelligence with internal data to identify emerging threats, advanced persistent threats (APTs), and attacker tactics, techniques, and procedures (TTPs
Exprience and Skill in NIST Framework and MITRE Framework
Proven ability to deploy enterprise-grade security solutions (EDR, SIEM, NGFW, NAC, VPN) for large-scale operations.
Skilled in risk assessment, policy development, and regulatory compliance across commercial, government, and energy sectors.
Strong leadership and communication skills, with a track record of collaborating effectively across technical teams and executive stakeholders.
Holds a U.S. Top Secret Security Clearance, demonstrating trustworthiness and discretion.
Expertise in ISO 27000 Series (ISO 27001, 27002) frameworks for risk management and continuous improvement.
Industry Influencer & Content Creator
Radio Host: “Cyber Sunday Podcast” (KSEV AM 700) 2024–Present
Host weekly broadcasts addressing emerging threats, best practices, and real-world case studies.
Engage audiences through live Q&A sessions and interactive discussions with cybersecurity experts.
Core Competencies
ISO 27000 Series (ISO 27001, 27002)
Threat Analysis & Incident Response
Zscaler(ZIA and ZPA) Zero-Trust Network
Identity Access manager-IAM – Microsoft Entra
Vulnerability management, Configuration and Patch Management
Wiz Cloud Infrastructure Security Platform: cloud security platform-consolidated view of security risks across multiple clouds (AWS, Azure, GCP, OCI, etc.)
Darktrace Cross-Platform Solutions- AI Incident Readiness & Recovery
Security Monitoring & SIEM (Splunk, Log Aggregation Tools)
Firewall & VPN Administration (Cisco, Check Point, Fortinet)
Endpoint Detection & Response (CrowdStrike, Carbon Black)
Vulnerability Assessment & Penetration Testing (Kali Linux)
Digital Guardian (DLP)
ProofPoint Email Security
Teramind for user behavior and flag anomalies.
Cloud Security (AWS) & Virtualization
Zero Trust & Network Access Control (Zscaler,Cisco ISE/ACS)
Strategic Security Planning & Policy Development
Team Leadership & Cross-Functional Collaboration
Training and Awareness (KnowB4)
Key Certifications
Comptia CASP -2020
Comptia CYSA+- 2022
Comptia Security Plus -2019
Certified Information Systems Security Professional (CISSP) – 2005
Cisco Certified Network Professional (CCNP) – 2003
Microsoft Certified Systems Engineer (MCSE) – 2002
McAfee Certified Social Media Intelligence Expert (CSMIE)
Zscaler Certified Architect Splunk Administrator CrowdStrike EDR Admin
Professional Experience
Smith & Associates – Cybersecurity Team Lead June 2022 – Present
Lead global cybersecurity operations for network and endpoint security across multiple regions.
Optimize EDR solutions (CrowdStrike, Splunk and Nessus) for proactive threat detection and incident response.
Develop security policies, incident response playbooks, and risk assessment frameworks.
Data Loss Prevention (DLP – Digital Guardian): Expertise in implementing and managing DLP strategies to protect sensitive information.
Endpoint Security & Network Monitoring: Proficient in securing endpoints and monitoring network activities to detect and respond to threats effectively.
Incident Response: Skilled in analyzing security incidents and executing swift response protocols to minimize impact.
Behavioral Analytics: Experienced in using insider threat detection tools to identify and investigate unusual user behaviors. We used Proofpoint Insider Threat Management, Teramind.
Digital Forensics: Proficient in forensic tools and techniques to collect, analyze, and preserve evidence for investigations.
Analytical & Communication Skills: Strong ability to analyze complex security data and communicate findings clearly to stakeholders.
Created and established Security Awareness Culture using re-inforcement training
Department of Homeland Security – Cybersecurity Analyst May 2020 – June 2022
Secured U.S. government infrastructure using advanced endpoint security tools and AWS cloud environments.
Conducted daily threat monitoring, analysis, and incident response coordination.
Some details are Classified and cannot disclose
Digital Guardian and Teramind and ProofPoint
ExxonMobil Energy – Network Security Consultant Feb 2018 – Apr 2020
Implemented ALGOSEC FireFlow and ServiceNow to manage over 500 firewalls globally.
Led Cisco ACS-to-Cisco ISE migration to enhance enterprise authentication protocols.
Predictif-Solutions / OOGC America Oil – IT Security Manager Apr 2012 – Nov 2017
Designed global security measures for systems protection; performed penetration testing and compliance audits.
Additional Roles:
1.Network Architect (Smith & Associates: Oct 2010–Mar 2012).
2.IT Security Consultant (Shell Oil: Jan 2008–Oct 2010).
Education
Bachelor of Arts in Political Science – University of Houston
Additional Details
Leadership & Collaboration:
Skilled at coordinating multicultural teams across diverse time zones; active InfraGard Houston member (FBI-affiliated cybersecurity collaboration).
References: Available upon request
This version is streamlined for readability while maintaining all relevant accomplishments in a professional tone. Let me know if you'd like further adjustments!
Contact this candidate