Cyber Security Analyst

Sharon Sylvester

Brampton, ON 647-***-**** ***************@****.***

Professional Summary

Cybersecurity Specialist with 6+ years of experience in offensive and defensive security practices across enterprise and SaaS environments. Skilled in identifying and analyzing application vulnerabilities aligned with OWASP Top 10 and secure SDLC principles. Familiar with SAST, DAST, and SCA concepts through threat simulation and code review projects. Strong exposure to penetration testing, risk assessment, and attack surface analysis using tools like Wireshark, Splunk, and Fortinet. Proven ability to communicate findings, support remediation efforts, and collaborate with cross-functional teams to strengthen overall security posture. Bilingual communicator, active in technical leadership roles, with a continuous learning mindset.

Core Skills

• Application Security & Testing: OWASP Top 10, Secure SDLC, Code Review, Risk Classification

• Offensive Security Concepts: Vulnerability Scanning, Penetration Testing (simulated), Threat Modeling

• Attack Surface Management: Wireshark, Fortinet, Shadow IT Detection, Rogue Service Analysis

• Purple Team Collaboration: Threat Simulations, Detection Tuning, Incident Playbook Design

• Frameworks & Tools: MITRE ATT&CK, NIST, Splunk, ServiceNow, Confluence

• Soft Skills: Cross-Team Communication, Analytical Thinking, Bilingual (English/French), Leadership (Toastmasters VP Education)

Professional Experience

Cyber Security Analyst – IBM SkillsBuild

• Supported vulnerability assessments across enterprise applications, reviewing risks based on OWASP Top 10 and collaborating on remediation strategies.

• Used simulated penetration testing techniques and threat modeling to evaluate the effectiveness of incident response and detection capabilities.

• Applied NIST and ISO frameworks to support secure design reviews and policy alignment.

• Investigated SaaS platform risks and packet traffic using Wireshark to identify shadow IT and unauthorized behaviors.

• Contributed to playbook development for purple teaming and incident response simulation drills.

Technical Support Specialist – Motorola Solutions

• Conducted external vulnerability scan analysis, implementing firewall protections and compliance improvements.

• Collaborated with internal teams and stakeholders to assess and resolve system security issues.

• Supported and troubleshooted cloud connectivity and security issues to ensure continuous service and compliance with enterprise standards.

RASP Application Support – Scotiabank

• Supported the rollout of secure internal applications, using ServiceNow and SailPoint to manage user access controls.

• Contributed to UAT and security tool optimization, aligning with audit and risk mitigation objectives.

Volunteer Leadership

Vice President of Education – Bilingual Toastmasters du Grand Toronto

Lead educational programming and member development initiatives. Regularly deliver presentations and Table Topics sessions, using PowerPoint to engage bilingual audiences and strengthen communication skills.

Certifications

• Cybersecurity Compliance Framework & System Administration – 2024

• Assessing and Prioritizing Risk – 2023

• Third Party Security Controls – 2023

• Cybersecurity Architecture – 2025

• Cyber Threat Intelligence – 2024

• Penetration Testing, Incident Response & Forensics – 2024

• Fortinet NSE 3 – Fortinet Product Awareness 2023

• Currently pursuing CEH certification to deepen offensive security skills

Contact this candidate