| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidatePage 1/2Candidate's Name
EMAIL AVAILABLE VA PHONE NUMBER AVAILABLE LinkedIn/Candidate's Name
CYBERSECURITY ANALYSTSpecialized in security event analysis and incident response. Experienced in various security tools like SIEM and EDR. Worked on hands-on projects in monitoring network and endpoint security, as well as phishing email analysis. I am a team player who actively contributes to the group in order to complete tasks, meet goals and manage projects, listen to coworkers, respect ideas, and aim to improve the product or process in cybersecurity, keeping up to date with the latest trends, creating synergy with cybersecurity teams.TECHNICAL SKILLS & TOOLSSIEM: Splunk ES, IBM QRadarEDR: CrowdStrike Falcon, Sentinel One, FireEye HXVulnerability: Nessus, NmapPenetration Testing: Kali, Linux Command Line Tools, Virtual BoxPacket Capture: WiresharkTicketing System: IBM Resilient, The Hive, JIRA, Service Now, Strike ReadySecurity Frameworks/ Standards: OWASP 10, MITER ATTA&CK, Cyber ChainOSINT Tools: Virus Total, Any Run, MX Toolbox, Joe Sandbox, Urlscan.io, IBM X-Force,Phishing Analysis: Proofpoint, Proofpoint TabMcAfee, Palo Alto, Microsoft 365 Security Center PROFESSIONAL EXPERIENCETier L2 SOC Analyst Dec 2022 to Oct 2023CNA Insurance, Chicago ILIdentified potential threats, phishing attacks, anomalies, and infections escalated by Tier1.Monitored and analyzed SIEM alerts through Splunk and identified security anomalies for investigation and remediation and provided recommendations to the technical teams with StrikeReady and Service Now ticketing system.Monitored EDR tools like CrowdStrike Falcon to identify suspicious processes of detections and affected hosts.Conducted analysis to determine the legitimacy of files, domains and emails using Proofpont and Proofpoint Tap, online resources such as Virus Total, Strike Ready, and MX Toolbox.Investigated phishing emails by reviewing attachments, header information and the resource and took required actions to prevent users from interacting with malicious content.Analyze alerts using tools such as Splunk, McAfee ePO, Netskope, Palo Alto and Microsoft 365 Security CenterCollaborate with support teams to track and escalate the issues to Tier 3 or other related departments as needed until resolved.Responsible for shift-to-shift turnover providing a summary of the report of shift activity to the next team.Page 2/2Incident Response Analyst June 2022 to October 2022 Halvik, Alexandria, VAInvestigate monitoring alerts, troubleshoot, and engage the support teams.Analyzing threat patterns on various security devices and validation of False/True positive security incidents.Responding to cyber security incidents by collecting, analyzing, and providing detailed evidence (network log files) and ensuring that incidents are recorded and tracked in accordance with its guideline and requirements.Responsible for shift-to-shift turnover providing a summary of the report of shift activity to the next team.Communicate the outage to senior leadership following approved guidelines. Analyze alerts using tools such as Splunk, Sitescope, OBM, OpenNMS and Qradar Collaborate with support teams to track and escalate the issues as needed until resolved. Security Operations Center Analyst May 2020 to June 2022 CyberNow Labs, Sterling, VAMonitored real-time log in the Security Operations Center from different devices such as firewalls, IDS, IPS, operating systems like Windows, Linux, Windows Servers, Databases, and Networking Devices.Identified potential threats, phishing attacks, anomalies, and infections.Monitored and analyzed SIEM alerts through Splunk and identified security anomalies for investigation and remediation and provided recommendations to the technical teams via IBM Resilient and Jira ticketing system.Monitored EDR tools like CrowdStrike Falcon to identify suspicious processes of detections and affected hosts.Conducted analysis to determine the legitimacy of files, domains and emails using online resources such as Virus Total, Any Run, and MX Toolbox.Investigated phishing emails by reviewing attachments, header information and the resource and took required actions to prevent users from interacting with malicious content.Became familiar with fundamentals of information security including network technologies and tools, network security, and implementing secure systems. Early Childhood Teacher Sep 2019 to May 2021Creative Explorers, Oak Creek, WIDeveloped activities that promote literacy and math conceptsMaintained and schedule weekly and monthly activitiesProvided a classroom environment that encourages parent participationParticipated in on-going in-service and education development opportunities, and participated in the ongoing development and evaluation of the programs goals and objectives Early Childhood Assistant Teacher Nov 2016 to March 2019 YIM Youth in Motion, Cudahy, WIAdapted daily routines to meet the interest and needs of the individual child and the groupPlanned and implemented activities that meet the physical, intellectual, emotional, and social needs of studentsProvided adequate equipment and activitiesPage 3/2EDUCATIONAssociate Degree, Early Childhood Education 2010 - 2012 Yeni Yuzyil University, Istanbul, TurkeyReceived 100% scholarship, honor studentSpeaks TurkishCERTIFICATIONSCompTIA Security+CompTIA CySA+CompTIA Security Analytics Professional CSAPSplunk Core Certified UserCertified Ethical Hacker (CEH)References are available upon request |
