Cybersecurity Analyst Incident Response

HASSAN SIMON SESAY

Cybersecurity **************.***@*****.***

614-***-**** OH

SUMMARY

Cybersecurity Analyst with a strong foundation in cloud technologies, DevOps practices, and hands-on cybersecurity tools. Over 5 years of experience in securing, monitoring, and optimizing cloud-based infrastructures and conducting in-depth security assessments. Skilled in implementing a comprehensive range of cybersecurity controls, responding to incidents, and enhancing organizational security posture. Adept at automating security tasks and collaborating with cross-functional teams to ensure robust cybersecurity strategies.

SKILLS

Cybersecurity Tools: Wireshark, Firewalls, IDS/IPS, Antivirus Software, Security Baselines, Gap Analysis.

Security Practices: Vulnerability Assessments, Penetration Testing, Incident Response, Social Engineering (using SET).

Encryption & Security: Storage Encryption, Hashing and Salting, Password Security Management, Permission Management.

Network Security: Port Scanning, Remote Access Configuration, IPSec Tunneling, DNS Filtering, Network Sniffers.

Cloud Technologies: AWS, Azure Containers (Docker, Kubernetes), Virtualization. Compliance: Governance, Risk, and Compliance (GRC), Policy Development, Group Policy Implementation.

Incident Response: Digital Forensics, Root Cause Analysis, Malware Detection and Response, On- Path Attack Mitigation.

Automation & Scripting: Python, Unix/Linux Scripting, PowerShell, Use Cases of Automation in Security.

Backup & Recovery: Backup Implementation, Disaster Recovery Planning, Drive Sanitization. Web Security: Exploiting and Detecting SQL Injection (SQLi), Firewall Implementation, Web Application Security.

Threat Intelligence: Working with Threat Feeds, Performing Reconnaissance, Threat Hunting. Monitoring & Reporting: Configuring System Monitoring, Security Baseline Adherence, Incident Reporting.

Security Awareness: Training and Awareness Simulations, Security Playbooks, Security Policy Enforcement.

Database Security: Managing Permissions, SQLi Mitigation, Database Hardening. EDUCATIONBachelor in Accounting and Finance University of Sierra Leone, Sierra Leone Master in Economics and Finance University of Strathclyde United Kingdom Master in Cybersecurity Southern New Hampshire University, Manchester, NH EXPERIENCE

Elevance Health USA Cybersecurity Analyst Dec 2021 - Current Conducted gap analysis and implemented security controls to align with organizational policies and industry standards.

Monitored ICT infrastructure, websites, and web applications for security threats and vulnerabilities, utilizing tools like Wireshark for network analysis. Responded to cybersecurity incidents including malware infections, phishing attacks, and SQL injection attempts, ensuring rapid mitigation.

Conducted vulnerability assessments and penetration testing, using tools like SET for social engineering and various other methods for reconnaissance. Managed password security, including hashing and salting techniques, and implemented remote access configurations using IPSec tunneling.

Developed and maintained cybersecurity policies, guidelines, and technical procedures, ensuring compliance with relevant laws and regulations.

Implemented backup solutions and disaster recovery plans, regularly testing for effectiveness and ensuring data integrity.

Performed digital forensics and root cause analysis for post-incident investigations, enhancing the organization's incident response capability.

Collaborated with cross-functional teams to manage security baselines, implement firewalls, and configure system monitoring.

Automated security tasks using scripting languages and tools, reducing response times and enhancing security efficiency.

Spearheaded migration of 10TB on-premises databases to AWS using AWS DMS, designing VPC peering connections that reduced latency by 40% while maintaining 99.9% uptime. Reviewed and implemented 50+ secure network connectivity requests (IPSec tunnels, Direct Connect) for data center migrations, ensuring zero policy violations. Deployed CrowdStrike Falcon across 2,000+ endpoints, reducing malware incidents by 35% through real-time behavioral analysis.

Humana USA Cloud Security Analyst June 2019 – Nov 2021 Managed and optimized security configurations across AWS and AZURE environments, including container and virtualization security.

Performed network incident investigations, utilizing network sniffers and conducting thorough remediation efforts.

Configured and enforced group policies and firewall rules to strengthen the organization's security posture.

Conducted security awareness training sessions, utilizing simulations to enhance user awareness and reduce the risk of social engineering attacks.

Assisted in performing drive sanitization and ensured secure data disposal practices across the organization.

Worked with threat feeds to stay updated on the latest cyber threats and proactively implemented mitigation strategies.

Participated in penetration testing exercises, uncovering security weaknesses and helping to reinforce defenses.

CERTIFICATIONS

AWS Certified Developer Associate

AWS Certified Solution Architect Associate

Certified CompTIA Security +

Certified CompTIA Network +

Microsoft Azure Administrator

Microsoft DevOps Administrator

Contact this candidate