Experience

GoldSky Cyber Security

• United States
• IT Services and IT Consulting
• 1 - 100 Employee

• Security Consultant

  • Dec 2022 - Present

  Orlando, Florida, United States 💎 𝐂𝐎𝐑𝐄 𝐑𝐄𝐒𝐏𝐎𝐍𝐒𝐈𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒: - Conduct thorough risk assessments, vulnerability scanning, and penetration testing to identify potential risks. - Collaborate with senior consultants in developing policies and procedures that align with industry standards and the organization's specific needs. - Collaborate with senior consultants to implement hardened architectures for networks, applications, and cloud environments - ensuring strong resilience to real threats. -… Show more 💎 𝐂𝐎𝐑𝐄 𝐑𝐄𝐒𝐏𝐎𝐍𝐒𝐈𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒: - Conduct thorough risk assessments, vulnerability scanning, and penetration testing to identify potential risks. - Collaborate with senior consultants in developing policies and procedures that align with industry standards and the organization's specific needs. - Collaborate with senior consultants to implement hardened architectures for networks, applications, and cloud environments - ensuring strong resilience to real threats. - Assist with relevant data protection regulations and industry standards. - Regularly test the effectiveness of security controls and measures to ensure they remain robust against evolving threats. ⚡ 𝐀𝐃𝐃𝐈𝐓𝐈𝐎𝐍𝐀𝐋 𝐒𝐊𝐈𝐋𝐋𝐒: - Conducted thorough darknet assessments to uncover evidence of sensitive information. - Working closely with cross-functional teams, including IT, legal, and compliance, to implement best practices. - Clearly communicate security findings, risks, and recommendations to clients or senior management. 🏆 𝐇𝐈𝐆𝐇𝐋𝐈𝐆𝐇𝐓𝐒: - 8+ years of professional experience in Information Technology and Security. - 50+ SMB clients served and satisfied. - Proven ability to lead and collaborate in cross-functional teams. - Played a key role in achieving SOC 2 compliance for our clients. - Played a key role in achieving StateRAMP compliance for our clients. - Played a key role in achieving FedRAMP compliance for our clients. - Played a key role in achieving TX-RAMP compliance for our clients. - Played a key role in achieving ISO 27001:2013 certification for our clients. - Played a key role in achieving ISO 27001:2022 certification for our clients. - Played a key role in analyzing and mitigating critical vulnerabilities identified during assessments/pentests. - Effectively led multiple simulated phishing campaigns and successfully gathered corporate credentials, reinforcing the significance of awareness among our clients. 👥 𝐑𝐄𝐅𝐄𝐑𝐄𝐍𝐂𝐄𝐒: - Available upon request.

• Security Analyst

  • Mar 2020 - Dec 2022

  Orlando, Florida, United States 💎 𝐂𝐎𝐑𝐄 𝐑𝐄𝐒𝐏𝐎𝐍𝐒𝐈𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒: - Performed threat analysis and vulnerability assessments to identify potential security risks, providing recommendations for remediation using the NIST 800-115 framework for guidance. - Managed and executed simulated phishing campaigns to evaluate the organization's susceptibility to social engineering attacks and developed targeted training programs to enhance employee awareness and response to such threats. - Assisted with periodic… Show more 💎 𝐂𝐎𝐑𝐄 𝐑𝐄𝐒𝐏𝐎𝐍𝐒𝐈𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒: - Performed threat analysis and vulnerability assessments to identify potential security risks, providing recommendations for remediation using the NIST 800-115 framework for guidance. - Managed and executed simulated phishing campaigns to evaluate the organization's susceptibility to social engineering attacks and developed targeted training programs to enhance employee awareness and response to such threats. - Assisted with periodic security audits and penetration testing to assess and improve the organization's security posture. - Collaborated with cross-functional teams to develop and implement security policies, procedures, and incident response plans. - Contributed to the creation of security awareness training materials and conducted training sessions for employees. - Stayed current with the latest cybersecurity threats, trends, and best practices to adapt and improve security measures. ⚡ 𝐀𝐃𝐃𝐈𝐓𝐈𝐎𝐍𝐀𝐋 𝐒𝐊𝐈𝐋𝐋𝐒: - Threat analysis and incident response - Vulnerability assessment and penetration testing - Simulated Phishing Campaign Management - Security tool management (firewalls, IDS/IPS, antivirus. monitoring) - Security awareness training - Compliance with relevant regulations (e.g. NIST, HIPAA. ISO 27001:2013/2022, SOC2) - Strong communication and teamwork - Continuous learning and adaptability 🏆 𝐇𝐈𝐆𝐇𝐋𝐈𝐆𝐇𝐓𝐒: - Provided expert guidance to various seasoned leaders across multiple industries (Health, Finance, Federal, Tech, Etc.) - Provided tailored services to more than 30+ SMB clients annually, addressing their unique requirements. - Maintained well-documented incident reports, including responses, and lessons learned to improve incident response processes. - Advanced within the organization to a higher position, leading security teams or projects. 👥 𝐑𝐄𝐅𝐄𝐑𝐄𝐍𝐂𝐄𝐒: - Available upon request.



AutoPayPlus

• United States
• Financial Services
• 1 - 100 Employee

• Junior Systems Administrator

  • Sep 2018 - Mar 2020

  Orlando, Florida, United States 💎 𝐂𝐎𝐑𝐄 𝐑𝐄𝐒𝐏𝐎𝐍𝐒𝐈𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒: - Assisted in the installation, configuration, and maintenance of on-prem Windows Server systems. - Participated in network administration tasks, including configuring switches and routers. - Provided technical support to end-users, diagnosing and resolving hardware and software issues. - Collaborated with C-SUITE to implement and enforce IT security policies and processes. - Gained hands-on experience with virtualization… Show more 💎 𝐂𝐎𝐑𝐄 𝐑𝐄𝐒𝐏𝐎𝐍𝐒𝐈𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒: - Assisted in the installation, configuration, and maintenance of on-prem Windows Server systems. - Participated in network administration tasks, including configuring switches and routers. - Provided technical support to end-users, diagnosing and resolving hardware and software issues. - Collaborated with C-SUITE to implement and enforce IT security policies and processes. - Gained hands-on experience with virtualization technologies, such as VMware and VirtualBox. - Assisted in documentation and inventory management. - Staying updated on the latest IT security threats by joining forums and subscribing to newsletters, enhancing awareness. ⚡ 𝐀𝐃𝐃𝐈𝐓𝐈𝐎𝐍𝐀𝐋 𝐒𝐊𝐈𝐋𝐋𝐒: - Operating Systems: Windows Server 2012 R2 - Windows Server 2019, Linux (Ubuntu) - Server Technologies: Active Directory, DNS, DHCP, Group Policy - Network Management: Switches, Routers, Firewalls - Virtualization: VMware, VirtualBox - Hardware: Servers, Desktops, Laptops, Printers, Peripherals - Software: Cisco, Pingdom (SolarWinds), Ngnix, Linode, Snort, Salesforce, Trello - IT Tools: Remote Desktop, PowerShell 🏆 𝐇𝐈𝐆𝐇𝐋𝐈𝐆𝐇𝐓𝐒: - Gained hands-on experience with managing complex network architecture and system processes. - Troubleshot and resolved critical hardware and software issues for end-users, ensuring minimal downtime. - Collaborated with senior IT specialists in the on boarding of large third-party vendors. - Conducted training sessions to educate C-SUITE executives and end-users on the advantages of security awareness. 👥 𝐑𝐄𝐅𝐄𝐑𝐄𝐍𝐂𝐄𝐒: - Available upon request.

• Information Technology Specialist

  • Nov 2015 - Sep 2018

  Orlando, Florida, United States 💎 𝐂𝐎𝐑𝐄 𝐑𝐄𝐒𝐏𝐎𝐍𝐒𝐈𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒: - Assisted senior IT specialists and third-party vendors in providing technical support to end-users, resolving hardware and software issues. - Installed, configured, and maintained desktops, laptops, and BYOD. - Responded to help-desk tickets, diagnosed problems, and provided solutions to end-users. - Collaborated with senior IT specialists to set up and troubleshoot network connections, including Cisco Meraki devices. -… Show more 💎 𝐂𝐎𝐑𝐄 𝐑𝐄𝐒𝐏𝐎𝐍𝐒𝐈𝐁𝐈𝐋𝐈𝐓𝐈𝐄𝐒: - Assisted senior IT specialists and third-party vendors in providing technical support to end-users, resolving hardware and software issues. - Installed, configured, and maintained desktops, laptops, and BYOD. - Responded to help-desk tickets, diagnosed problems, and provided solutions to end-users. - Collaborated with senior IT specialists to set up and troubleshoot network connections, including Cisco Meraki devices. - Conducted user training sessions on basic software and hardware usage. - Maintained accurate records of hardware and software inventory. - Assisted with the administration of Windows servers and Barracuda server solutions. ⚡ 𝐀𝐃𝐃𝐈𝐓𝐈𝐎𝐍𝐀𝐋 𝐒𝐊𝐈𝐋𝐋𝐒: - Time management and multitasking abilities. - Detail-oriented with strong organizational skills. - Team player with the ability to work independently. - Proficient in documentation and record-keeping. - Quick to grasp new concepts and effectively trained on the job. 🏆 𝐇𝐈𝐆𝐇𝐋𝐈𝐆𝐇𝐓𝐒: - Delivered exceptional customer service by assisting customers with inquiries and technical issues. - Troubleshot and resolved customer concerns, escalating complex issues to senior support staff. - Maintained a high level of professionalism and patience while assisting customers. - Assisted with basic technical inquiries and provided guidance on software usage. 👥 𝐑𝐄𝐅𝐄𝐑𝐄𝐍𝐂𝐄𝐒: - Available upon request.