Information Security Engineer with 10+ Years Experience

NSIKAN NKORDEH

Newark, Delaware ******@****.*** 302-***-****

PROFESSIONAL SUMMARY

Accomplished Information Security Engineer and Incident Response Lead with over a decade of progressive experience defending enterprise environments against evolving cyber threats. Skilled in incident management, digital forensics, cloud security, and threat hunting, with a proven record of coordinating cross-functional responses and delivering pragmatic security engineering solutions. Adept at driving data-driven detection innovation, improving security tooling metrics, and mentoring next-generation security professionals. Strong background in AWS security architecture, CSIRT operations, and risk-based decision-making aligned with NIST, ISO 27035, and MITRE ATT&CK frameworks.

TECHNICAL EXPERTISE

• Security Operations & Incident Response: SIEM (Splunk, IBM QRadar), EDR (CrowdStrike Falcon, SentinelOne), network forensics, triage automation, malware analysis, threat intelligence correlation

• Cloud & Infrastructure Security: AWS (GuardDuty, CloudTrail, Security Hub, IAM, WAF, VPC Flow Logs), Azure AD, hybrid network hardening, identity lifecycle management

• Risk & Compliance Frameworks: NIST CSF / 800-61, ISO 27001 / 27035, CIS Controls, PCI-DSS, GDPR, ISO 31000 risk assessment methodologies

• Programming & Scripting: Python (security automation), PowerShell, Bash, SQL analytics

• Security Tools & Platforms: Wireshark, Burp Suite, Nmap, ExtraHop, AWS Inspector, Tableau, ServiceNow IRM

PROFESSIONAL EXPERIENCE

Cybersecurity Engineer / Incident Response Manager

Cyhorrnet LLC – Newark, Delaware Aug 2022 – Present

• Lead enterprise-wide incident detection, containment, and eradication, coordinating across cloud, network, and application security teams during live events.

• Engineer security automation and detection logic within AWS (GuardDuty, Lambda, CloudWatch) to reduce mean-time-to-detect (MTTD) by 40%.

• Develop and implement forensic and malware triage playbooks, enabling rapid evidence preservation and impact analysis.

• Provide security engineering support during customer-facing incidents, recommending compensating controls to prevent recurrence.

• Evaluate global threat advisories and coordinate proactive response campaigns across affected systems.

• Mentor and upskill junior security engineers, guiding them on log correlation, alert tuning, and incident documentation.

• Drive innovation in data-driven risk detection, ensuring metrics and tooling exceed defined thresholds for accuracy and coverage.

Information Security Specialist / CSIRT Engineer

CG Global – Remote / Hybrid Jun 2018 – Jul 2022

• Directed the Computer Security Incident Response Team (CSIRT), handling intrusion investigations, credential-stuffing attempts, and phishing attacks.

• Designed incident classification and response matrices aligned with NIST 800-61 Rev.2 and ISO 27035.

• Built risk assessment templates and metrics dashboards to measure control effectiveness and residual risk.

• Coordinated with infrastructure and BST teams to implement compensating controls for recurring vulnerabilities.

• Led post-incident reviews, integrating root-cause insights into prevention and detection strategies.

• Championed data-driven decision-making, using security telemetry and statistical baselines to prioritize threats.

Network Security Analyst / Systems Engineer

Yoga Entertainment – Lagos & London Offices Mar 2013 – May 2018

• Managed corporate firewalls, IDS/IPS, and endpoint protection platforms to secure global entertainment infrastructure.

• Performed digital forensics, vulnerability management, and system patching to mitigate exploits and ensure compliance.

• Collaborated with application teams to implement encryption, PKI, and secure authentication controls.

• Delivered employee training sessions and security awareness campaigns to strengthen user resilience.

EDUCATION

• M.S. Business Analytics & Information Management – University of Delaware Feb 2020 – Dec 2021

• M.Sc. Wireless Networks – Queen Mary University of London Aug 2005 – Dec 2006

• B.Sc. Electrical & Electronics Engineering – University of Lagos Dec 1997 – Dec 2002

CERTIFICATIONS

• CISM – Certified Information Security Manager (ISACA)

•IBM Certified Security Intelligence Specialist (IBM QRADAR)

•IBM certified Application Security Specialist (AppScan)

SELECTED PROJECTS & ACHIEVEMENTS

• Developed AWS incident response automation scripts integrating CloudTrail logs with SIEM for real-time alerting.

• Created KRI/KPI dashboard using Tableau to track detection latency and containment times.

• Led mentorship program elevating Tier-1 analysts into incident response engineers.

• Designed and facilitated ransomware response tabletop exercises adopted enterprise-wide.

• Partnered with SRC and BST teams to identify and remediate zero-day vulnerabilities across distributed infrastructure.

PROFESSIONAL AFFILIATIONS

• Member – Information Systems Security Association (ISSA)

• Member – (ISC) and ISACA professional networks

• Regular participant – AWS re: Inforce, SANS Blue Team Summit

ADDITIONAL DETAILS

• Participate in follow-the-sun on-call rotation for global incident coverage.

• Advocate of data-driven security engineering and continuous learning in threat detection, digital forensics, and cloud defense.

Contact this candidate