Cybersecurity Analyst & Veteran

Darrius M. Osborne, MSIT

Charlotte, NC ***** 615-***-**** **************@*****.*** www.linkedin.com/in/securethefi3ld/ SOC Analyst

Self-starting, energetic, versatile, results-driven cybersecurity professional with combined IT enterprise, solutions architecture, SIEM analysis and GRC experience. Pivoted from a fast-paced, hardware-focused IT company into an application security unit in the financial sector. Strong foundation in risk mitigation, technical analysis, and compliance that applies frameworks such as NIST, ISO 27001 and MITRE ATT&CK to solve for reducing risk and vulnerabilities while advancing end-user privacy, compliance, public trust and company resilience. Sound career in phishing interpretation and threat mitigation, including within Nissan's enterprise infrastructure. Forever learner and team player with notable passion for thinking like an attacker and producing measurable, ethical impact. Certifications and Skill Portfolio

• CompTIA Certified Security Analytics Professional (CySA+ and SEC+ stacked) COMP001022298759

• Security Blue Team Level 1 (BTL1) 920802020

• TryHackMe SOC1 Analyst THM-Y6M5RQXAEA

• TryHackMe Jr. Penetration Tester THM-DZXOGZTY3T

• https://tinyurl.com/securethefi3ld

Relevant Enterprise Experience

Bank of America, Charlotte, NC September 2025 – Present Application Security Risk Analyst III

• Administers continuous container security scanning across 9 enterprise applications, identifying vulnerabilities, coordinating remediation efforts, and maintaining SLOs and documentation

• Drives vulnerability remediation initiatives throughout CI/CD pipelines by prioritizing container security findings, reducing Mean Time to Remediate (MTTR) by 20%, improving developer accountability

• Revokes identity access compliance violations across databases, hardening the principle of least privilege mindset, reducing insider risk and developer ad-hoc excess access

• Ferries the technical transition away from GRC compensation control enforcement to planned, sustainable containerization remediation, improving security posture through risk-based prioritization

• Entrusted as an enterprise data custodian for vaulting and rotating service ID passwords, silently enforcing zero trust, credential hygiene and entropy across global teams “used to” the same credentials

• Authors documentation of team SOPs and remediation playbooks, streamlining process consistency

• Provides executive summaries for senior leadership on critical and large-scale container vulnerabilities, expiring compensation controls and more, improving metrics from 85% to 95% compliance Dell Technologies, Charlotte, NC July 2017 – April 2025 MDR Security Engineer

• Served as a technical SME for SIEM, MDR, and Incident Response solutions, leveraging NIST CSF and MITRE ATT&CK to design detection strategies and security architectures that contributed to a 32% increase in managed security service adoption

• Investigated and validated security events using CrowdStrike, Carbon Black and SecureWorks, correlating telemetry with Cyber Kill Chain, MITRE and CVSS methodologies to identify malicious activity

• Monitored emerging threat actor TTPs, malware campaigns, and vulnerability trends to improve posture

• Heralded Dell’s Zero Trust security initiatives by evaluating access control strategies aligned with AAA principles and least-privilege mindsets

Darrius Osborne **************@*****.*** Page 2

• Assessed endpoint security controls, EDR agent effectiveness, and detection capabilities within enterprise environments, helping organizations satisfy GRC and regulatory requirements.

• Provided technical guidance to executive leadership on recommended threat landscape mitigation techniques, avoiding business disruption or public distrust

• Led quarterly post-incident reviews and Lessons Learned assessments, identifying detection and response improvements that contributed to customer retention rates exceeding 75%

• Collaborated with Ford Motor Company's security awareness program to strengthen user-focused security controls, contributing to a 25% reduction in phishing simulation click rates.

• Mitigated a mid-size oil refinery’s agent detection capabilities after CrowdStrike’s July 2024 outage

• Co-facilitated incident response tabletop exercises for a metropolitan Detroit organization via tabletop exercises, improving organizational readiness and stakeholder coordination ahead of their schedule Nissan North America Headquarters, Franklin, TN November 2012 – September 2016 Infrastructure Support Analyst

• Supported Active Directory operations within a global enterprise environment of approximately 142,000 users, maintaining identity services and directory integrity IAM best practices

• Leveraged Six Sigma methodologies to streamline identity and service management workflows, reducing misconfigured ServiceNow assignment groups by 80% and improving operational efficiency

• Co-managed Nissan Americas' enterprise MDM program, enforcing mobile security controls, device compliance standards, and access governance policies for 5,600+ corporate mobile assets

• Functioned as a technical liaison between IT operations and business stakeholders, translating complex technology impacts into actionable business communications

• Provided executive-level endpoint support and security assurance for corporate leadership, optimizing device lifecycle management, endpoint compliance, and asset utilization while reducing hardware procurement costs by 15%

Verizon, Murfreesboro, TN June 2011 – November 2012 Tech Support Tier 3

• Resolved client investigations effectively using BlackBerry Enterprise and other proprietary remote login tools, leading to 20% less churn

• Designated as team SME during Week 1 launch of HTC’s first-to-market 4G LTE device, fielding escalations

• Efficiently educated and corrected issues affecting 4G LTE tower performance since its market debut Education

Master of Science in Information Assurance and Security – American InterContinental University Bachelor of Business Administration in Marketing – Middle Tennessee State University Relevant Cybersecurity Skill Set

Agile Assessment reviews Asset discovery Autopsy CI/CD Cloud Communication CVSS Cyber Kill Chain

Deployment Diamond Model Digital citizenship Documentation ELK Email analysis Endpoint security File analysis GRC Hardening IR Lifecycle ISO 27001 Jira Least privilege Linux Log analysis Metasploit

Microsoft Suite MISP MITRE ATT&CK NIST Nmap Network security OSINT OWASP Pattern recognition Phishing analysis Risk analysis Risk management Risk mitigation Scripting SIEM/SOAR Sigma SLO-urgency Splunk SQL Streamlining Sysinternals Threat intel Threat modelling TPRM Trend analysis Vulnerability mitigation Vulnerability management Wireshark Windows YARA ZTNA

Contact this candidate