Security Analyst Risk Management
Resume:
Nsikan S. Nkordeh
Newark, Delaware- *****– 302-***-****– ******@****.***
Professional Summary
Accomplished Sr. Information Security Analyst with 15 years in IT and 10+ years of experience in Network Monitoring, Cloud Security, Risk Management, Incident Response.
Proficient in leveraging advanced tools such as Splunk, IBM QRadar, and Falcon CrowdStrike to detect, analyze, and mitigate security threats
Expertise in developing and implementing risk management strategies, training programs, and security policies aligned with industry standards such as NIST 800-30/37/39 and ISO 27001.
Proven track record in managing complex risk assessments, ensuring vendor compliance, and mitigating cybersecurity threats, resulting in significant reductions in IT exposure and cost savings.
Adept at collaborating with cross-functional teams, providing strategic risk guidance, and delivering impactful security training to elevate organizational resilience.
Extensive knowledge of Azure and AWS cloud security best practices, architecture, and services.
Strong understanding of security concepts, including network security, identity and access management (IAM).
Education and Certifications
M. Sc. in Business Analytics and Information Mgt, 2021, University of Delaware, USA
M.Sc. in Wireless Networks, 2006 Queen Mary University of London, UK
B.Sc. in Electrical and Electronics Engineering,2002 University of Lagos, Nigeria
IBM Certified Security Intelligence Specialist (IBM QRADAR)
IBM certified Application Security Specialist (AppScan)
Skills
Incident Response & Threat Hunting Malware Analysis & Threat Intelligence Risk Assessment and Mitigation Log Analysis & Forensic Investigations Network & Endpoint Security Monitoring and Traffic analysis Cybersecurity Frameworks (NIST, CIS) Security Information and Event Management (SIEM) Tools like Splunk, IBM QRadar Vulnerability Management Tools Cybersecurity Frameworks (ISO 27001, SOC 2, PCI-DSS) Shodan Jira Azure AWS
Wireshark Tenable Security Center Rapid7 SIEM and DAST tool
PROFESSIONAL EXPERIENCE
Cyber Security Manager Cyhornet, NYC August 2022 - Present
Network & Monitoring: Monitored network traffic and security events using Splunk and IBM QRadar to identify anomalies and potential threats; proactive monitoring and analysis using Splunk and IBM QRadar for identifying and mitigating security incidents
Leads a cyber security team of 20 analysts, improving incident response efficiency by 30% through process optimization and advanced monitoring tools like Splunk, Falcon CrowdStrike, IBM Qradar.
Cybersecurity Analysis: Conducted advanced threat analysis, endpoint detection, and log correlation using Falcon CrowdStrike, Splunk, and IBM QRadar; also performed threat hunting, log analysis, SIEM monitoring, and endpoint detection using Splunk, IBM QRadar, and Falcon CrowdStrike
Threat Hunting: Leveraged Falcon CrowdStrike and Splunk to proactively identify and mitigate advanced persistent threats (APTs), real-time threat detection and response. Investigated incidents using Falcon CrowdStrike, performing forensic analysis on compromised endpoints
Incident Response: Utilized Splunk, IBM QRadar, and Falcon CrowdStrike for rapid detection, investigation, and remediation of security incidents
SIEM Tools: Managed and analyzed security events using IBM QRadar and Splunk for real-time security monitoring and reporting, which improved the organization's threat detection and response capabilities by 35%
Implemented a SIEM solution that enhanced threat detection and incident response capabilities by 35% reducing security incident impact.
Developed and implemented a comprehensive security strategy that resulted in a 25% reduction in security breaches over the past 2 years, and improved the organization's threat detection and response capabilities by 35%
Senior Cyber Security Analyst CG Global Management Solutions, PA June 2020 – July 2022
Provided customer and team support, resulting in a 10% increase in customer satisfaction ratings and a 20% decrease in average incident resolution time.
Designed and implemented Web Application Firewall (WAF) architectures using F5 ASM to protect enterprise applications from OWASP Top 10 threats.
Deployed and managed IBM QRadar to automate threat detection, prioritize incidents, and generate actionable insights for the security team.
Monitored network traffic using Splunk and IBM QRadar SIEM tools to detect and respond to suspicious activities, ensuring compliance with organizational security policies.
Utilized Splunk for real-time monitoring, log analysis, and correlation of security events to identify potential threats and anomalies.
Collaborated with cross-functional teams to develop and implement incident response playbooks, reducing mean time to detect (MTTD) and mean time to respond (MTTR).
Cyber Security Engineer Yoga Entertainment Nov. 2013 – Dec. 2019
Designed and implemented secure network architectures, including the deployment of VPNs, firewalls, and intrusion prevention systems
Performed security assessments and penetration testing to identify vulnerabilities and recommend remediation strategies, leading to a 40% reduction in the organization's attack surface
Developed and maintained security monitoring and incident response capabilities, enabling the timely detection and effective response to security incidents
Collaborated with cross-functional teams to ensure the secure integration of new technologies and applications
Provided technical support and guidance to end-users on security-related matters, contributing to a 25% decrease in security-related incidents
Senior Compliance Analyst Yoga Entertainment Sept 2010 – Oct 2013
Conducted comprehensive control assessments and readiness evaluations for compliance with ISO 27001 and PCI-DSS, identifying and addressing vulnerabilities that led to a 35% decrease in non-compliance issues.
Managed internal and external audits, ensuring thorough documentation and communication of findings, which resulted in a 100% success rate in passing audits without major findings.
Developed metrics and dashboards to monitor compliance status and control effectiveness, providing actionable insights that informed executive decision-making and strategic planning.
Facilitated cross-departmental workshops to enhance understanding of compliance requirements, leading to improved collaboration and a 20% increase in compliance-related project success rates.
Contact this candidate