Cybersecurity Leader with SOC Expertise and Compliance Focus
Resume:
Courtney L. Kanopka, MSCS
Wynantskill, NY 12198
********.*********@*****.***
Education:
* Excelsior College Albany, NY – Master of Science, Cyber Security – May 2019
* SUNY Albany, NY - Computer Science Bachelor’s Degree, Cyber Security/Digital Forensics – May 2017
* Bryant & Stratton Albany, NY - Associates Degree Information Technology - April 2008
* NYS Licensed Real Estate Salesperson Since August 2016 – Present
Work history:
SOC Manager/SOC Analyst III: New York State, Albany, NY – Present
* Managing proactive monitoring and scanning operations as well as contained, mitigated, and reported incidents
* Implemented CrowdStrike, Splunk, Abnormal Security, Qualys Scanning, Incident Response
* Working with CBOEs to ensure successful implementation of their Cybersecurity Remediation Plans and accurate application of grant funding on remediation efforts
* Assisting with the development activities of the Secure Elections Center and provided leadership to Secure Election Center staff
* Assisting with the development and enhancement of the Board’s cyber security policies, procedures and programs that ensure compliance with all federal and State laws and industry best practices, and inform and educate the SBOE and CBOE leadership and workforce on best practices
* Working collaboratively with executive management within the State Board of Elections Continuity to develop policies and procedures for cybersecurity, incident response and business continuity planning at the County Board level
* Collaborate with Co-Executive Directors and the CIO to identify and recommend opportunities to standardize data elements, database management, security needs, network operations and software development to provide enterprise-wide solutions, as appropriate, that meet agency business needs.
* Reviewing frameworks for all new projects including budgets, staff resources, hardware and software needs and ensures that business needs of customers are considered throughout the project lifecycle
* Enhancing information security technology assets and processes to proactively protect, shield, and defend the Board’s election information assets from cyber threats and intrusions
* Assisting in compiling elections security policies, procedures, standards, and guidelines based on knowledge of best practices and compliance requirements such as NIST Framework, MS-ISAC, and CIS
* Developing and maintain expertise in security features of all systems which are undergoing or have completed the certification process in NYS.
* Monitoring primary and general election day elections equipment/systems used by County Boards. Aided the County Boards in responding to elections equipment/system incidents during field operations; offered solutions for mitigation.
* Auditing the County Board of Elections implementation of cybersecurity and incident response policies and procedures.
* Conduct on-site activities at County Boards as needed or directed to review and assess on-site implementation of policies and procedures.
* Deployed CrowdStrike to over 100 servers and workstations and implemented prevention policies.
* Supporting Cyber Incident Response Efforts for State and County Boards of Elections
* Managing scanning of critical systems utilizing Nessus and Tenable products.
* Configured Cloudflare to protect NYS BOE websites and created Whitelist policies
* Analyzing email headers
* Performing Cyber Incident Response for County Board of Elections.
Senior Cyber Security Analyst/Lead Level 3 SOC Analyst: Huntington Ingalls Industries/Newport News and Ingalls shipbuilding divisions- Remote- March 29, 2021 – July 2024 – New Role -> Present
* Designing, Testing, and Implementing state-of-the-art secure operating systems, networks, and database products
* Conducting risk assessments and providing recommendations for application design
* Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access
* Using encryption technology, penetration, and vulnerability analysis of various security technologies,
* Information technology security research.
* Developing Splunk dashboards and automated alerts
* Splunk threat hunting and Dashboard creation
* Proactive Cyber Threat Hunting
* Developing and refining detection and IR tactics, techniques, and procedures in response to changes in the threat landscape and adversary threat models
* Providing leadership by training level one and level two SOC analysts.
Chief Information Security Office Cyber Incident Response: NYS Office of Information Technology Services, Albany, NY - June 14, 2017 – Aug 7th, 2019 – Promotion Received
* Analyzed potential threats posed by individuals or groups to disrupt or attack networks, computer systems to identify vulnerabilities and potential for exploitation.
* Ensured teams are initiating mitigation of all identified vulnerabilities
* Evaluated and analyze open-source threat information to understand vulnerabilities and attack tactics, techniques and procedures.
* Log Analysis using SPLUNK for threat intelligence
* Use complex computer programs to mine data sources and look for trends.
* Determined what the data trends mean
* Communicated findings to management
* Drafted threat alerts and informational bulletins for various audiences
* Created, review and approval of NYS Cyber Advisories
* Built dashboards with Splunk and Tableau
* Built dashboards with PowerBI/Tableau utilizing Pivot tables with datasets from BMC ADDM tool
* Ran complex reports from existing datasets
* Translated reporting requirements into insightful and visual reports and dashboards.
* Assisted with data management and data quality monitoring
* Worked with clients(agencies) to determine business requirements
* Designed and document dashboards, automated alerts on a regular basis
* Performed analysis for a wide range of requests using different data sources
Cyber Incident Response Team/CNS Implementations: NYS Office of Information Technology Services/OFT, Albany, NY - April 17, 2007 - June 2017 – Promotion Received
* Worked with AccessData FTK, MPE, Encase, HELIX, DEFT, Prodiscover
* Worked on the NYS Critical Application Risk Assessment Project
* Installed Qualys appliances as well as vulnerability assessments using Web Inspect & Nessus
* Worked on Critical Application Risk Assessments
* Threat Intelligence using the Symantec Portal
* Gathered user and business requirements
* Obtained forensic images of hard drives
* Conducted acceptable use case investigations for multiple state agencies, including those that have led to criminal prosecution
* Worked with ServiceNow
* Built dashboards with PowerBI and Pivot tables with datasets from BMC ADDM tool
* Provided excellent customer support working on the UniteNY core service desk team.
* Qualys/Web Inspect Web App Scanning
* Installed and configured Cisco IPS/IDS
* Reviewed and evaluated computer systems to determine of application controls are adequate
* Configured/Troubleshoot Cisco Call Manager
* Installed and configuration of SIP VoIP phones
* Configured QOS, COS and DSP on Network devices to support VoIP
* Configured Call routing in Cisco SME
* Investigated Network Packet Captures for VoIP flow
* Trace Call Managers including Session Manager using RTMT tools.
* Cisco Hosted Collaboration Solution
* Created and maintained technical documentation related to support and operations for UniteNY
* Performed high level Network core configuration changes
* Work with offsite customers around New York State to provide support and assistance with daily troubleshooting
* Assisted in the evaluation of hardware platforms and software products
* Implemented and supported WAN technology including Frame-Relay, PTP and bonded circuits
* Implemented quality control when implementing and configurations firewall and switches
* Created templates and Change Boards using NYS ITSM
* Worked with vendors to fix trouble issues
* Implemented and supported LAN technology including Virtual Local Area Networks (VLANs), Spanning Tree Protocols (STP), Link Layer Discovery Protocol (LLDP)
* Troubleshoot and remediate issues within the network environment
* Implemented/Troubleshooting VOIP configurations
* Working effectively in a team environment
* Mentoring staff and providing off-shift support
* Implementation and support of QOS and traffic shaping
* Configured and maintained routing including the use of RIP version 2, OSPF and BGP
* Created VPN/IPSEC tunnels between branch offices and core over various LAN/WAN connections
* Reviewed and analyzed incoming firewall requests; implement and configure policy rules accordingly
* Improved the Configuration Change Management process and used it in a lab environment to test production changes and ensure proposed changes fix the issue
* Coordinated network changes with multiple departments within ITS
* Wrote technical maintenance plans and documented network topology using Microsoft Visio
* Configured redundancy for network core and remote sites
* Established network connectivity with other state agencies and private businesses
* Used SolarWinds NCM to monitor network devices, and wrote custom scripts to make configuration changes and IOS upgrades on multiple network devices at scheduled times
* Provided firewall, routers and switches installations and implementations support to over 800 remote offices and agencies customers of the NYS OITS deployed over a wide area network (WAN)
* Responsible for all code upgrades, Cisco IOS and ScreenOS regression testing and deployment to over 4000 network devices using such tools as SolarWinds Network Configuration Manager (NCM) and ZenOss
Awards:
* Certification of Recognition for the NYS ITS Risk & Remediation Tracking Form; Cyber Security Excellence
* Top 10 Women to Watch in Science & Technology April/March 2016 issue of the Women@Work STEM Magazine.
Contact this candidate