Information Security Risk Analyst
Resume:
SHAAMIM UDDING AHMED
** ***** ***** **., ************, MD 21030, +1-410-***-**** ************@*****.***
https://www.linkedin.com/in/shaamimahmed/
P R O F E S S I O N A L P R O F I L E
Cyber Security Engineer
A dynamic, self-motivated, and results-driven information security leader, consistently delivering high-impact outcomes with enterprise strategy and aligning a robust technology vision. Adept at navigating the ever-evolving landscape of information security, effectively countering advanced persistent threats while implementing cost-effective solutions. The approach combines a solid strategic mindset with tactical agility, ensuring the implementation of robust information security measures. In addition to technical skills, Exceptional communication and collaboration abilities enable effective stakeholder engagement at all organizational levels. Fostering a motivating environment where team members thrive and contribute to collective success.
CORE COMPETENCIES
Security program development
Risk and compliance assessment & management
Cyber awareness program
Security governance program
Security framework & standards - NIST SP 800-53/37/30/39/171, ISO/IEC 27001, HIPAA, FISMA, GDPR, PCI DSS, SOX, and FedRAMP
Vendor & contract management
Cybersecurity incident response plan
Team development & leadership
Cloud security (Azure, AWS & GCL)
End point detection & response (EDR)
Vulnerability and patch management
Data loss prevention (DLP)
Incident event monitoring (SIEM)
Automation and response (SOAR)
Coaching & mentoring
Verbal & written communication
DevSecOps & Agile methodology
SELECTED CAREER HIGHLIGHTS
Reduced phishing threats by 99% at Moderna TX through tailored training and technical fortifications.
Designed next-gen PKI 2.0 infrastructure at TD SYNNEX, ensuring scalability and compliance.
Decreased costs and increased productivity of the cybersecurity team by 30-50% by developing and implementing a strategy to provide self-service and automation for all operational security services.
Improved cloud migration efficiency by over 15% by simplifying network architecture and the automation of network access deployment.
Reduced 40% of security operational expenses by implementing cost-effective and non-redundant security measures while enhancing overall security posture.
Led IT frameworks achieving SLA adherence rates above 98% and deployed cloud-first security solutions, reducing operational disruptions.
W O R K I N G E X P E R I E N C E S
TD SYNNEX, Clearwater, FL September 2022 – Present
Sr. Cyber Security Specialist
Cybersecurity Policy Leadership: Led the design, implementation, and governance of cybersecurity policies, aligning with business objectives and compliance frameworks, resulting in a 30% improvement in threat detection and response.
Security Architecture Development: Developed high-level security architectures, including PKI 2.0, integrating THALES HSM, Certificate Authority (CA), and Sub-CA operations, streamlining authentication processes.
Windows Security Expertise: Deep knowledge of Windows architecture, security frameworks, and best practices.
Privileged Identity Management (PIM): Implemented and managed PIM to ensure secure access control and minimize risks associated with privileged accounts.
Role-Based Access Control (RBAC): Configured and maintained RBAC policies to enforce least privilege principles and streamline access management.
Audit and Compliance: Conducted regular audits and reviews of PIM and RBAC configurations to ensure compliance with security policies and regulatory requirements.
Microsoft Defender and Azure Security: Hands-on experience with Microsoft Defender, event log analysis, and related security technologies. Implemented and managed Microsoft Azure Defender and Microsoft Sentinel for enhanced threat detection and response capabilities.
Azure Key Vault Management: Managed Azure Key Vault for secure storage and management of cryptographic keys and secrets.
Azure Policies and Blueprints: Developed and enforced Azure Policies and utilized Azure Blueprints to automate the deployment of compliant and secure environments.
Identity and Access Management: Administered and managed Microsoft Entra ID, implementing best practices for identity governance and lifecycle management.
Security Operations Automation: Automated security operations with Tenable vulnerability management, reducing manual efforts by 40%, and enhancing global patch compliance through SCCM and Intune.
Credential Vaulting and Endpoint Security: Managed CyberArk enterprise credential vaulting and strengthened endpoint security using CrowdStrike EDR, enhancing threat detection capabilities by 50%.
Windows Security Strategies: Developed and executed comprehensive security strategies for Windows devices, leveraging advanced tools such as Microsoft Defender and event log analysis.
Security Assessments and Threat Intelligence: Conducted regular security assessments and audits, staying ahead of emerging threats through continuous monitoring and implementing best practices. Conducted threat intelligence analysis to identify potential risks and vulnerabilities, developing proactive measures to strengthen the security posture of Windows systems.
ORANGE COUNTY EMERGENCY SERVICES CENTER, Goshen, NY April 2022 – September 2022
Network Security Engineer
Network Architecture: Architected a high-security network for 34 emergency service providers, enhancing E911 CAD and Niche RMS operations.
Security Policy Development: Contributed to the creation and enforcement of security policies and standards for Windows systems.
Documentation and Compliance: Developed high-level design documentation and cybersecurity policies, ensuring compliance with regulatory requirements through regular reviews.
Zero-Trust Implementation: Implemented a zero-trust network model for robust data protection and access control.
Network Security: Designed and implemented Network Security Groups (NSGs) and Application Security Groups (ASGs) for enhanced network segmentation and security.
VPN Management: Managed VPN configurations for secure remote access.
ExpressRoute Oversight: Oversaw ExpressRoute connections for reliable and secure connectivity between on-premises and cloud environments.
Security Assessments: Performed regular security assessments to identify and mitigate vulnerabilities.
Technical Challenge Resolution: Identified and resolved technical challenges for seamless Windows solutions implementation.
Incident Response Leadership: Led incident response activities, including detection, analysis, containment, eradication, and recovery.
Post-Incident Analysis: Conducted root cause analyses and post-incident reviews to improve security processes.
MODERNA THERAPEUTICS, Cambridge, MA August 2020 – February 2022
Cyber Security Engineer
Security Strategy: Developed and implemented a comprehensive security strategy aligned with business objectives, regulatory compliance, and risk management.
Cybersecurity Awareness: Created a global cybersecurity awareness program, achieving a 97% success rate in phishing and spam email identification and reporting.
Budget Management: Managed the APEX budget for cybersecurity operations, prioritizing initiatives that led to a 60% reduction in security incidents and a tenfold improvement in mean time to response (MTTR).
Stakeholder Engagement: Built strong relationships with internal stakeholders by effectively communicating security risks and mitigation strategies.
Patch Management: Led the development of a patch management strategy for GxP infrastructure in a biotech company, ensuring continuous 24/7 production.
SIEM Implementation: Oversaw the implementation of a new SIEM system, enhancing threat detection and investigation using the MITRE ATT&CK framework.
SOC Optimization: Streamlined SOC operations by 60%, improving efficiency in threat detection and automated response through SOAR tool implementation.
Zero-Trust Security: Implemented zero-trust security operations by integrating CrowdStrike XDR with O365, Okta, Palo Alto, Mimecast, and Abnormal Security, and automated SOC workflows using Fusion Workflow.
Threat Detection: Reduced false positive threat detections by 90% through advanced threat-hunting techniques and analyst training.
Email Security: Enhanced email security by redesigning the system with DMARC, DKIM/SPF policies, and implementing an AI/ML-driven email security ecosystem using O365 and Abnormal Security platforms.
AMERICA TECH, INC. Silver Spring, MD June 2018 – July 2020
Sr. Cyber Security Engineer
IT Support and Security Operations: Led enterprise IT support and security operations, managing Data Loss Prevention (DLP) solutions, endpoint security, and secure IT service delivery.
Disaster Recovery and Business Continuity: Designed and implemented disaster recovery (DR) and business continuity (BC) architectures, ensuring minimal downtime and rapid recovery.
Technical Communication: Articulated technical concepts clearly to diverse audiences, including technical and non-technical stakeholders.
Communication Skills: Strong verbal and written communication skills, with experience in creating high-level technical presentations and cybersecurity awareness sessions.
E D U C A T I O N
BS in Information Systems in Cybersecurity Strayer University, Washington DC GPA 3.84/4.0
C E R T I F I C A T I O N S
Microsoft Azure Solutions Architect Expert
Microsoft DevOps Engineer Expert
Microsoft Azure Administrator Associate
Microsoft Certified Solutions Expert (Messaging, Communications, Productivity)
CompTIA Cybersecurity Analyst+ (CySA+)
CompTIA Advanced Security Practitioner (CASP+)
Project Management Professional (PMP)
Zscaler Zero Trust Certified Architect
Splunk Certified Power User
Certified Ethical Hacker (CEH)
EC-Council Certified Security Analyst (ECSA)
Certified Computer Hacking Forensic Investigator (CHFI)
VMware Certified Professional
ITIL Foundation in IT Service Management
AWS Certified Solutions Architect – Associate
W O R K A U T H O R I Z A T I O N
Green Card
Contact this candidate