Cybersecurity Analyst Vulnerability Management

KELECHI NKEMDIRIM

Temple, TX ***** *************@*****.*** +1-254-***-****

CYBERSECURITY ANALYST SYSTEMS SECURITY ENGINEER VULNERABILITY MANAGEMENT Active Secret Clearance FIPS 140-3 NIAP (MDFPP, VPN, WLAN, Biometrics) SIEM Incident Response SUMMARY

Security-cleared Cybersecurity Analyst with over 7 years of hands-on IT experience, including advanced work in NIAP evaluations (MDFPP, VPN, WLAN, Biometric modules), FIPS 140-3 cryptographic validation, and vulnerability management using tools like Nessus, Qualys, and Wireshark. Proven track record of drafting Security Targets and FIPS documentation, executing CAVP algorithm testing, and supporting compliance with NIST SP 800-53 and DoD 8500 frameworks. Demonstrated success in securing enterprise endpoints, conducting threat detection with SIEMs like AlienVault and Microsoft Defender, and leading vulnerability remediation across cloud and hybrid environments. Adept at working across federal, military, and enterprise infrastructures to reduce cyber risk, drive audit readiness, and ensure secure system design from development through deployment. SKILLS

Security Standards & Compliance: NIAP (MDFPP, VPN, WLAN, Biometric), FIPS 140-3, CAVP, NIST SP 800-53, DCID 6/3, DoD 8500

Vulnerability Management: Nessus, Qualys, Wireshark, OpenVAS, Microsoft Defender, Patch Management, CIS Benchmarks

Cryptographic Modules: AES, SHA-2, RSA, ECDSA, DRBG, Key Management, BitLocker, PKI, CAVP Testing Tools Threat Detection & SIEM: AlienVault, Microsoft Sentinel, Proofpoint TAP, urlscan.io, MITRE ATT&CK, CyberChef Endpoint & Network Security: Palo Alto Firewalls, Microsoft Defender for Endpoint, Cloudflare, Okta SSO, FortiClient Systems & Infrastructure: Active Directory, LAPS, GPO, SCCM, MDT, WSUS, HP JetAdmin, Cisco Meraki Cloud & Remote Security: Microsoft Azure Security Center, M365 Security & Compliance, AWS IAM (Basic), VPN

(AnyConnect)

Scripting & Automation: Python (automation scripts), PowerShell (log scraping, endpoint configuration), Bash (basic) Collaboration & Workflow: ServiceNow, Confluence, JIRA, MS Teams, Zoom for Healthcare, Citrix Receiver EXPERIENCE

Cybersecurity Analyst

LSG SkyChef – Remote Oct 2023 – Present

• Led the NIAP Protection Profile implementation for Multi-Function Devices Protection Profile (MDFPP) and VPN Gateway modules, coordinating with engineering teams to ensure documentation and evaluation aligned with national assurance standards.

• Authored and revised Security Targets and Implementation Representation (ST & IR) documents required for Common Criteria certification under WLAN and Biometric Verification Modules.

• Designed and configured test environments for CAVP algorithm testing using NIST-provided vectors to validate cryptographic modules (AES, SHA-2, RSA, ECDSA) under FIPS 140-3 evaluation workflows.

• Conducted vulnerability scanning and remediation using Nessus, Qualys, and Wireshark, focusing on identifying weaknesses in OpenSSL libraries and default configurations within hardened Linux environments.

• Wrote security documentation for internal use and certification audits, covering module boundaries, key management functions, random number generators (DRBG), and approved algorithms.

• Customized AlienVault SIEM alerts and enriched threat intel feeds by correlating endpoint and firewall logs using MITRE ATT&CK mappings.

• Managed incident response processes for Azure-hosted resources, performing log collection and triage using Microsoft Defender for Endpoint, urlscan.io, and CyberChef.

• Supported security evaluations for Proofpoint’s Threat Protection (TAP) module by tracking phishing simulation outcomes and customizing block/allow policies in Cloudflare firewall rules.

• Collaborated in continuous documentation of NIST 800-53 control implementation statements, especially for AC (Access Control) and SI (System and Information Integrity) families. Cisco Security Technologies: Cisco Secure Firewall (ASA, FTD) Cisco ISE, Cisco Umbrella, Cisco Meraki, Cisco Talos threat intelligence.

Technical Support Analyst – Cybersecurity Track

Seagate Technology Aug 2021 – Aug 2023

• Configured and secured Cisco Meraki access points, switches, and routers, applying Layer 3 firewall rules and VLAN isolation to segment internal networks.

• Led vulnerability remediation for Windows endpoints identified via Microsoft Defender for Endpoint, enforcing BitLocker encryption policies and patch rollouts via SCCM.

• Delivered security awareness training focusing on email spoofing, phishing vectors, and MFA configuration, increasing adoption of Okta for SSO across departments.

• Built workflows in Confluence and managed change tickets in ServiceNow for endpoint deployment and compliance tracking.

• Used Wireshark to trace excessive traffic from compromised printers, isolating the threat and updating firmware via HP JetAdmin.

• Created custom PowerShell scripts for scheduled Event Log scraping and auto-archival, aiding post-incident investigations.

• Participated in a multi-department rollout of Microsoft 365 Security Center, implementing Safe Links, Safe Attachments, and DLP policies.

• Monitored baseline configurations of endpoints using CIS Benchmarks and conducted manual audits against NIST 800-171 controls.

IT Support Specialist (Security Implementation Projects) Recro Casa Solutions Oct 2015 – Jun 2021

• Managed secure deployment of Windows 10 images using MDT and WDS, embedding antivirus, BitLocker, and compliance tools at installation.

• Administered Active Directory Organizational Units, applying group policies (GPOs) for password strength, USB lockdown, and screen timeout enforcement.

• Deployed and maintained VPN configurations via FortiClient and Cisco AnyConnect, ensuring encrypted connections for remote healthcare users.

• Conducted privilege escalation testing and validated local admin rights using LAPS (Local Admin Password Solution).

• Installed endpoint security tools such as Trend Micro Deep Security, validated patch compliance via internal audit reports, and tracked resolution metrics.

• Oversaw internal compliance with HIPAA Security Rule by maintaining PHI access logs and encryption enforcement on all client-facing systems.

• Created departmental custom deployment scripts for Office 365, Zoom for Healthcare, and Citrix Receiver, reducing onboarding time by 50%.

• Led Windows patch cycle planning, using WSUS to manage update approvals and defer reboots across clinical departments.

EDUCATION

• Bachelor’s in Cybersecurity American Military University CERTIFICATIONS

• CompTia Security+

• CompTia CySA+

Contact this candidate