Post Job Free
Sign in

Security Operations & IAM Specialist with Federal Experience

Location:
Silver Spring, MD
Posted:
June 07, 2026

Contact this candidate

Resume:

EdossaA-CS-Resume-Randstad-Information Security Analyst-06-07-26

AMANUEL EDOSSA

Silver Spring, MD *******.********@*****.*** linkedin.com/in/eamanuel

U.S. Citizen Active Public Trust Clearance

SECURITY OPERATIONS ANALYST CYBERSECURITY OPERATIONS VULNERABILITY MANAGEMENT IAM

CompTIA Security+ certified Cybersecurity Professional with 5+ years of experience supporting Security Operations, Vulnerability Management, Identity & Access Management (IAM), Incident Response, Security Monitoring, Compliance, and Risk Management within federal and healthcare environments. Skilled in SIEM monitoring, threat detection, vulnerability remediation, Microsoft security technologies, Active Directory, Microsoft Entra ID, ServiceNow, and NIST-based cybersecurity programs. Proven ability to collaborate with engineering, infrastructure, compliance, and business stakeholders to reduce cyber risk, strengthen security posture, and support enterprise security operations.

CORE COMPETENCIES

Security Operations (SecOps) • Vulnerability Management • Incident Response • Threat Detection & Analysis • Security Monitoring • SIEM Operations • Alert Triage • Identity & Access Management (IAM) • Identity Governance • Access Reviews • Privileged Identity Management (PIM) • Privileged Access Management (PAM) • Active Directory • Microsoft Entra ID (Azure AD) • MFA • RBAC • Security Compliance • Risk Assessments • Security Metrics & Reporting • Endpoint Security • Security Documentation • Cloud Security Fundamentals • SaaS Security Concepts • NIST 800-53 • RMF • FISMA • FedRAMP • ServiceNow ITSM

TECHNICAL SKILLS

Security Tools: Microsoft Defender Suite, Microsoft Defender for Endpoint, Microsoft 365 Security, Splunk SIEM, Cortex XDR/XSIAM, Tenable Nessus, Qualys VMDR, ServiceNow ITSM

IAM & Access Management: Microsoft Entra ID, Active Directory, MFA, Conditional Access, RBAC, Access Reviews, Identity Governance, PIM, PAM

Security Operations: Incident Response, Threat Monitoring, Security Event Analysis, Vulnerability Assessments, Remediation Tracking, Risk Assessment, Endpoint Security

Infrastructure & Cloud: Windows 10/11, Windows Server, Azure Fundamentals, VPN, TCP/IP, DNS, DHCP

Compliance: NIST 800-53, RMF, FISMA, FedRAMP, ISCM, Security Control Assessments, Audit Readiness

PROFESSIONAL EXPERIENCE

Cybersecurity Analyst / Senior Technical Support Engineer (Security Operations & Vulnerability Management)

PBGC / SAIC Washington, DC Feb 2022 – May 2026

• Support enterprise Security Operations, Vulnerability Management, and Continuous

Monitoring programs protecting federal information systems and business services.

• Perform security monitoring and threat detection using Splunk SIEM, Microsoft Defender, and

endpoint security technologies to identify suspicious activity, indicators of compromise, and

security events.

• Investigate security alerts, conduct alert triage, perform root-cause analysis, and support

incident response activities to minimize cyber risk and strengthen organizational resilience.

• Analyze vulnerability assessment results from Tenable Nessus and coordinate remediation

efforts with system administrators, engineers, and application owners.

• Track remediation activities through ServiceNow, validate corrective actions, and maintain

vulnerability dashboards, metrics, and risk reporting.

• Administer Identity and Access Management (IAM) controls using Active Directory and

Microsoft Entra ID, supporting secure authentication, authorization, and account lifecycle

management.

• Support least-privilege access controls, role-based access management (RBAC), MFA

administration, access reviews, privileged identity management (PIM), and identity governance

initiatives.

• Participate in NIST 800-53 security assessments, FISMA compliance reviews, audit readiness

activities, and security control validation efforts.

• Develop executive-level security reports, vulnerability metrics, compliance documentation,

remediation tracking records, and risk assessments.

• Collaborate with cybersecurity, infrastructure, networking, and engineering teams to identify

security risks and implement mitigation strategies.

Technical Support Specialist (Security Operations Support)

MedStar Washington Hospital Center Washington, DC Oct 2021 – Jan 2022

• Supported enterprise endpoint security operations within a highly regulated healthcare

environment.

• Assisted with vulnerability remediation, patch validation, endpoint hardening, security

monitoring, and security control implementation.

• Investigated and resolved security-related incidents involving VPN access, authentication

issues, access controls, and endpoint protection technologies.

• Supported Microsoft security technologies and security best practices to improve operational

security and compliance.

• Maintained remediation records, security documentation, and compliance-related technical

artifacts.

IT Technical Support Specialist

SEC / FEMA – GDIT Washington, DC Feb 2020 – May 2021

• Provided Tier II technical and cybersecurity support within FISMA-regulated federal

environments.

• Managed ServiceNow incidents involving MFA, VPN access, identity management, user

provisioning, and security-related service requests.

• Supported IAM operations including account administration, access control management,

authentication troubleshooting, and access governance processes.

• Assisted cybersecurity teams with vulnerability remediation tracking, security documentation,

incident escalation, and compliance reporting.

• Maintained standard operating procedures (SOPs), audit documentation, and operational

security records.

Healthcare IT Support & Systems Operations Specialist

MedStar Washington Hospital Center Washington, DC Dec 2014 – Jan 2020

• Supported enterprise IT operations, endpoint security, systems administration, and user access

management.

• Assisted with patch management, endpoint troubleshooting, software deployments, system

maintenance, and operational security compliance.

• Supported account provisioning, access management, technical documentation, and

infrastructure stability across enterprise environments.

EDUCATION

Master of Science (M.S.), Information Technology & Healthcare Administration

University of Maryland Global Campus

Ph.D., Genetics & Pathology

Martin Luther University Halle-Wittenberg, Germany

M.S., Molecular Biology B.S., Biology

Martin Luther University Halle-Wittenberg, Germany

CERTIFICATIONS

• CompTIA Security+ CE

• CompTIA A+

• Microsoft Azure Fundamentals (AZ-900)

• Microsoft Certified Professional (MCP)

• Microsoft Certified Systems Engineer (MCSE)

• Zscaler Zero Trust Certified Associate

In Progress: CySA+ CEH CISSP ITIL v4

ADDITIONAL QUALIFICATIONS

• Active Public Trust Clearance U.S. Citizen

• Experience supporting enterprise Security Operations, Vulnerability Management, IAM,

Incident Response, and Security Monitoring programs

• Knowledge of SaaS Security, Cloud Security, Threat Detection, Security Analytics, and Cyber

Risk Management

• Experience with Microsoft Defender Security Suite, Splunk SIEM, Tenable Nessus, Qualys

VMDR, Microsoft Entra ID, and ServiceNow

• Strong understanding of NIST 800-53, FISMA, RMF, FedRAMP, Security Controls, Audit

Readiness, and Compliance Programs

• Excellent analytical, documentation, stakeholder communication, and cross-functional

collaboration skills



Contact this candidate