Information Security Systems Analyst

Diego Comesana

Miami, FL ***** linkedin.com/in/diegocomesana 786-***-**** youracclaim.com/users/diegocomesana/badges ****************@*****.***

Professional Summary

Highly motivated and results-oriented information security systems analyst with extensive experience in proactive security posture development, risk assessment, and incident response. Adept at leveraging SIEM platforms (Splunk) and a comprehensive suite of security tools (CrowdStrike, Microsoft Defender ATP, Sentinel One, Proofpoint, Nessus, Qualys, AWS Guard Duty) to monitor, analyze, and respond to security events and to identify and mitigate information security risks across infrastructure and applications. Proven ability to define security requirements, implement best practices, and collaborate effectively with technical teams to harden systems and ensure compliance with global regulations. Seeking to contribute to a dynamic security environment at Bright Horizons, focusing on developing early warning systems and enhancing overall enterprise security.

Technical Skills

Security Platforms & Tools: Splunk SOAR, CrowdStrike, Microsoft Defender ATP, Sentinel One, Carbon Black, Proofpoint, AWS Guard Duty, Microsoft Azure, Nessus, Qualys, IronScale, Red Canary, Blumira, Obsidian, Digital Shadows, Opsgenie.

Threat Detection & Incident Response: Security Monitoring, Log Analysis, Alert Triage, Incident Handling, Threat Hunting, IOC/IOA Analysis (Indicators of Compromise) and IOA (Indicators of Attack), Breach Investigation & Remediation.

Vulnerability Management: Vulnerability Scanning, Prioritization & Remediation.

Security Automation & Scripting: Python, Playbook Development (Red Canary, SentinelOne).

System & Network Security: Active Directory, Group Policy, DNS, IDS/IPS, Endpoint Security, Cloud Security, System/Platform Security Analysis & Documentation.

Operating Systems: Windows, macOS, Linux (Kali Linux, Ubuntu).

Other: Data Analysis, Technical Documentation and reporting, Cross-Functional Communication (Written and verbal), Problem-Solving, and Adaptability to Emerging Technologies.

Professional Experience

Information Security Systems Analyst Hunter Strategy Remote 02/2023 - Present

Conduct in-depth analysis of security logs within Splunk SIEM, integrating data from diverse sources including CrowdStrike, Proofpoint, AWS GuardDuty, and Microsoft Defender ATP to identify potential security risks and anomalies.

Generate comprehensive written reports and actionable recommendations based on security analysis, effectively communicating findings to technical and non-technical stakeholders.

Contribute to improving security posture by adapting to new technologies and collaborating with team members to implement robust security controls.

Information Security Analyst Hurricane Labs Remote 04/2022 - 02/2023

Served as the primary analyst for incoming security reviews across healthcare, finance, and retail industries, assessing potential risks and defining security requirements.

Monitored and analyzed security logs from diverse vendors (Splunk, CrowdStrike, Proofpoint, AWS GuardDuty, Microsoft Defender ATP, Linux, Cisco), contributing to developing early warning systems.

Created detailed tickets for potential security incidents and collaborated with clients to investigate Indicators of Compromise (IOCs), facilitating timely resolution and remediation.

Performed proactive threat hunting using hypothesis-driven investigations based on the latest attacker tactics, techniques, and procedures (TTPs), utilizing the MITRE ATT&CK framework for classification.

Developed advanced Splunk search queries to enhance data analysis for threat detection and incident response, contributing to security automation efforts.

Maintained and updated IDS/IPS systems using Ubuntu, ensuring optimal network security.

Information Security Analyst BreachQuest Remote 07/2021 - 04/2022

Evaluated potential information security risks associated with new vendors, products, and services, providing security requirements and mitigation recommendations to ensure secure integration.

Monitored internal and external security alerts, performed detailed data analysis, and generated comprehensive documentation and reports on security posture.

Managed security alerts for multiple clients across various security platforms, including SentinelOne, IronScale, Red Canary, Microsoft O365, Microsoft Azure Active Directory, Carbon Black, Blumira, Obsidian, Digital Shadows, and Opsgenie, demonstrating broad tool proficiency.

Investigated and resolved complex security incidents using assigned IT security tools, participating in breach investigations and remediation efforts.

Developed and maintained security playbooks within Red Canary and SentinelOne, streamlining incident response workflows and contributing to automation.

Generated incident cases and escalated issues according to established SLAs, ensuring timely resolution.

Collaborated effectively with Tier 3 Analysts, the Network Operations Center (NOC), Network Engineers, and the Computer Security Incident Response Team (CSIRT) to harden accounts and platforms.

Managerial Experience (Relevant transferable skills)

Manager/Bar Manager/Regional Bar Training Manager Dave & Buster's Inc. Miami, FL 03/2017 - 12/2021

Analyzed operational data to optimize efficiency and improve performance, demonstrating strong problem-solving and decision-making skills applicable to security operations.

Implemented and evaluated operational procedures, showcasing an ability to adapt to changing business needs and drive process improvements.

Managed and trained staff, developing leadership, communication, and mentoring skills to guide teams in security best practices.

Manager TGI Fridays Miami, FL 03/2015 - 03/2017

Managed staff, ensuring adherence to company standards and efficient operations, demonstrating organizational and leadership capabilities.

Trained and developed employees, highlighting strong communication and instructional skills.

District Sales Representative Cheney Brothers, Inc. Miami, FL 08/2013 - 10/2015

Managed customer accounts and built relationships, demonstrating strong communication and customer service skills.

Planned and organized daily work schedules, showcasing organizational and time-management skills.

Education, Certifications & Training

CompTIA Network+ : In process

Cyber Security Boot Camp – QuickStart at Florida Atlantic University (2021)

Cyber Security – Florida Atlantic University (2021)

SOC Core Skills by John Strand (2021)

Network Threat Hunter Training by John Strand (2021)

Getting Started with Packet Decoding by Chris Brenton (2021)

A Gentle, Caring Intro to Security by John Strand (2021)

The University of Hospitality (Montevideo, Uruguay) (1997)

Liceo 34 (Montevideo, Uruguay) (1993)

Additional Information

Strong ability to adapt to fast-paced environments and rapidly emerging security technologies, driving appropriate changes through the enterprise.

Excellent verbal and written communication skills, including technical writing and tactfully communicating complex/sensitive information.

Proven leadership and mentoring experience, capable of encouraging and guiding teams in adopting security best practices.

Passion for cybersecurity and continuous learning, staying up-to-date with information security trends, and evaluating new security technologies.

Contact this candidate