Information Security Engineer

CALEB M. LEMMONS

EXPERIENCE CONTACT

Cybersecurity practitioner skilled at developing and enforcing infrastructure-wide security policies and controls. Proven track record in risk and vulnerability assessments, business continuity planning, and security awareness training. Hands-on experience with SIEM/EDR, firewall configuration, Active Directory testing, and Azure cloud controls. MULTI-STATE LOTTERY ASSOCIATION – Urbandale, Iowa

Information Security Summer Intern 05/2024 – 08/2024

• Co-developed and enforced security policies and standards in alignment with NIST CSF and 800-53, updating 10+ procedures to strengthen control environment

• Created and delivered executive-level security awareness training featuring AI deep- fake demonstrations to highlight emerging cyber threats & risks to 15 stakeholders

• Conducted risk and vulnerability assessments; ran InsightVM scans, validated Fortinet firewall configurations, and executed AD account-validation tests

• Authored and maintained Business Continuity and Disaster Recovery plans

• Tracked and remediated findings: drafted corrective-action plans, coordinated with IT teams, and verified closure of control gaps

HEXAGON PPM – Houston, Texas

Research & Development Security Intern 07/2022 – 09/2022

• Analyzed OT/ICS network traffic using proprietary threat management tools

• Researched and documented security best practices; reviewed and updated training materials for compliance with industry standards

• *****.*******@*****.***

• +1-727-***-****

• Ames, IA (Willing to relocate)

• http://www.linkedin.com/in/caleb-

lemmons-1683a11b6

SKILLS

• Security Fundamentals: Network

Security, Risk Assessment, Data

Protection, Threat Detection, Incident

Response, Intrusion Detection &

Prevention, Packet Analysis, Ethical

Hacking

• Security Technologies: Firewalls,

SIEM, EDR, VPNs, Antivirus Solutions

• Tools & Software: Linux, Windows,

Windows Server 2019, Active Directory,

Azure, Wireshark, Nmap, Metasploit,

AlienVault, Splunk, Tenable, Chronicle,

Burp Suite, Rapid7 InsightVM, Fortinet,

Pfsense, tcpdump, IDA Pro, VMware,

VirtualBox, Frameworks (ISO, NIST,

CIS 18, SOC2)

• Programming/Scripting: Java, Python

C++, SQL (database queries, data

analysis), PowerShell

• Soft Skills: Motivated, Detail Oriented,

Critical Thinking, Problem Solving,

Communication, Project Management,

Teamwork

CERTIFICATES

• Google Cybersecurity Professional

Certificate

• CompTIA Security+

• AZ – 900

NOTABLE CLASSES

• CprE 231 – Security Tools

• CprE 437 – Wi-Fi Sec. Introduction

• CprE 536 – Digital Forensics

EDUCATION

IOWA STATE UNIVERSITY – B.S

University Project Overview: 08/2020 – 12/2024

Red/Blue Team Simulation Project

• Conducted data analysis on network vulnerabilities using Nmap and Metasploit to identify and exploit attack vectors

• Implemented defensive measures including firewall rules and used OpenVas Senior Design Project – CyEscape

• Developed Cybersecurity training game featuring OWASP Top 10 vulnerabilities

• Led a team of 5 in creating a cybersecurity training game, coordinating tasks and communicating security risks and solutions to stakeholders. Digital Forensics Projects

• Reverse engineering disk images using Ghidra and IDA Pro to detect and erase malware

PERSONAL PROJECTS

Azure Cloud Security Lab

• Set up an Azure Blob Storage container and created a multi-VM environment to simulate an enterprise network.

• Configured Microsoft Defender for Endpoint (EDR) across the VMs

• Simulated an attack using Kali to test Defender’s detection and response capabilities

SOC Teir I Triage Simulation

• Practiced incident response by investigating simulated security alerts, performing alert triage, and documenting findings using SOPs from a IR playbook

Contact this candidate