Security Analyst Network

ADEWUNMI GABRIEL AYORINDE

Ontario, Canada

Tel: +1-905-***-****

********.***********@*****.*** https://www.linkedin.com/in/gabriel-adewunmi-5b46b03a/ PROFESSIONAL SUMMARY

● Cyber and Network Security Analyst with 10+ years of experience in IT/Telecoms, specializing in on premises/cloud and network security within MSSP/MSP environments.

● Expertise in threat analysis, incident response, and vulnerability management, successfully implementing security recommendations, mitigations and policies to protect critical infrastructures.

● Solid experience in NOC/SOC operations, ensuring robust security posture and swift incident management to minimize potential impacts and service downtime.

● Proficient in the latest security technologies and tools, including SIEM, IDS/IPS, EDR and firewalls, with a constant focus on staying updated with evolving security threats.

● Strong leadership and analytical skills, leading cross-functional teams and driving results through strategic planning and proactive security measures.

● Holder of relevant industry certifications, such as Juniper, Microsoft, and CompTIA CySA+, and well-versed in compliance standards like GDPR, HIPAA, and PCI-DSS.

Technical Skills

● Cyber Security: Threat analysis, incident response, vulnerability management, SIEM, firewall management, IDS/IPS.

● IT and Networking: Network design, system administration, cloud security (AWS, Azure), network security, virtualization

(VMware, Hyper-V).

● Tools and Technologies: Splunk, Wireshark, Nessus, Qualys, Palo Alto, Cisco ASA, Microsoft Azure Sentinel, Cylance EDR, Service-Now, Cisco Umbrella, Microsoft Purview Compliance, Inky-Anti Phishing Protection, Microsoft DFE/ATP, Crowd Strike EDR, Defender for Cloud Apps, Dark trace, AAD.

● Programming and Scripting: SQL, KQL, JQL, Python, PowerShell.

● Compliance and Standards: ISO 27001, NIST, GDPR.

● Data Classification and Information Protection: Microsoft Purview data classification, data loss prevention, compliance, configure purview information protection environment, Implement sensitivity labels for data classification and rollout of DLP and Data Lifecycle management.

● Soft Skills: Analytical thinking, problem-solving, leadership, communication, teamwork, attention to detail. Professional Experience

L3 Cyber Security Analyst August 2022 – October 2024 CyberGuard Technologies Limited, Ontario, Canada

● Lead and investigate incidents alerts generated from the managed technology stack, through monitoring, detecting, and responding to security incidents.

● Implement, tune and manage SIEM Analytic rules to enhance threat detection capabilities.

● Conduct regular vulnerability assessments and coordinate remediation efforts.

● Develop, conduct and maintain incident response plans, Tabletop exercise and security playbooks.

● Provide security guidance and support to clients, ensuring compliance with industry standards and best practices.

● Provide remediation and improvement advice off the back of incident investigations.

● Collaborate with cross-functional teams to design and implement secure network architectures.

● Create Incidence dashboards, Threat monitoring dashboards on Ticketing and SIEM platforms.

● Provide support to L1&L2 security analysts through triage.

● Deploying an ARM Template for Microsoft Purview Premium

● Create and publish sensitivity labels that classifies and protects sensitive data according to its level of confidentiality and the necessary access controls.

● Enable support for sensitivity labels in SharePoint and OneDrive

● Create a custom sensitive labels for information type

● Create a client-side auto labeling policy

● Create a service-side auto labeling policy

● Create a DLP policy in PowerShell

● Create and manage retention policies that meet the required and retention labels.

● Create and manage eDiscovery cases that meet the business investigation criteria

● Managed security clients and conduct monthly and quarterly service review meetings.

● Implement cyber frameworks, create security use cases by applying cybersecurity controls to detect, protect, and mitigate threats with security frameworks such as MITRE, cyber kill chain, and APT campaign strategies. L2 Cyber Security Analyst September 2021 – August 2022 AGIO Managed Services, Toronto/Belfast, Canada/UK

● Managed and monitored client security infrastructure, including firewalls, IDS/IPS, and endpoint protection.

● Performed risk assessments and security audits to identify and mitigate vulnerabilities.

● Assisted in the development and implementation of security policies and procedures.

● Conducted security awareness training sessions for clients and internal staff.

● Provided expert advice on security technologies and best practices to clients.

● Delivered Tier 2 response to security incidents through triage of alarms and event logs.

● Assist customers in implementing sound and secure logging practices, deployment of agents and sensors Incident Manager-SOC/NOC Ops May 2018 – September 2021 Huawei Technologies Co, Nig Ltd, Lagos Nigeria (MSP)

● Engaged in monitoring security alarms/incidents of all Network Elements throughout the Operations and Network Management software (ACC/OSS/RMS/NMS/REMEDY).

● Responsible for the daily monitoring and administration of the SOC/NOC and associated personnel.

● Ensuring optimal stakeholder management and alignment of IT KPIs to agreed SLA.

● Managed Personnel and shift coordination and management. Conducted forensic investigations to determine the root cause of security incidents.

Education

Masters Information Technology (Distinction) January 2017 – January 2020 National Open University of Nigeria, Lagos, Nigeria Bachelor of Science in Physics (Second class upper) September 2010 – January 2014 Federal University of Agriculture Abeokuta, Ogun, Nigeria Certifications and Training

● CompTIA Certified: Cybersecurity Analyst (CySA+), Pentest+(in view)

● Juniper Certified: (JNCIA-SEC), (JNCIA-Junos), (JNCIA-Cloud),

● ITIL Certified: IT Service Management ITIL V3

● Huawei Certified: (HCNA Security, HCNA WAN, Associate)

● Microsoft Certified: Azure Security Engineer Associate (AZ-104, A-Z500, MS-100, SC-200)

● API Penetration Testing Certificate of Completion

● Web Application and Security Testing

● CyberTriage DFIR - Investigating Data Exfiltration

● Invictus DFIR – Certified Incidence Responder (IR) for AWS Cloud Projects and Accomplishments

● Successfully led a team in the service migration and implementation of a new solution, improving service availability and incidents detection capabilities by 30%.

● Successfully implemented and design of Microsoft Purview and M365 project for an SME in the manufacturing sector, to develop and deploy DLP policies and labels for Endpoint DLP policies, Retention Policies and Phishing/Antispam Policies and Safeguard sensitive information.

● Classified critical sensitive information data types with security tags, such as personal, general, public, confidential and financial data, to identify and protect sensitive information across Microsoft 365 workloads, including Exchange, SharePoint, OneDrive and Teams.

● Provisioned data catalog, data map, end-to-end data insight and management for implementing auto- classification and data tags through eDiscovery, custom policy tips to educate end users on compliance during work.

● Utilized a SharePoint environment that balances user collaboration needs with least privilege access and compliance requirements while leveraging SharePoint Infrastructure Architecture.

● Designed and provisioned Governance tools around Teams, OneDrive and SharePoint, and collaborated with Compliance and Data Governance Teams to keep the DLP policies aligned with regulatory requirements, such as GDPR and HIPAA.

● Developed a comprehensive incident response/Tabletop exercise plan that reduced response times by 40%.

● Implemented JIRA ticketing platform automation and Dark Trace optimization that reduced alert fatigue and boost human resource management by 50%.

● Conducted a security awareness and Tabletop exercise campaign for clients.

● Managed an incident response by provided support in implementing a more robust cybersecurity posture, through various recommendations - users account protections, crown jewel data mapping and protection, network directory level protection, network firewall level protection, vulnerability management, local device protection and Built Threat-Hunting Dashboards.

● Architected and led the configuration & implementation of a secured network security posture architecture for a Small Medium Enterprises (SMEs) in Belfast, Northern Ireland, UK.

● Awarded the ‘Agio Cyber Standout Analyst Award,’ spearheaded the triage, investigation and resolution of a supply chain attack against a multi-billion dollar cop-operation.

● Awarded the National Science & Technology Award by MTN Foundation Nigeria

Contact this candidate