Sr Security Analyst/Engineer

• Nov 2022 - Present

Sr Security Operations Engineer

• Oct 2021 - Oct 2022

Architect, engineer, implement, monitor and document security measures for the protection of computer systems, networks and information. Identify and define system security requirements that are inline with industry and compliance standards. Design computer security architecture and develop detailed cyber security controls both on-premise and in multiple cloud tenants. Work with teams to identify, resolve, and mitigate security issues in cloud systems, software and processes. Prepare and document standard operating procedures and protocols Configure and troubleshoot security infrastructure devices Develop technical solutions to help mitigate security vulnerabilities and automate repeatable tasks. Be an escalation point and technical subject matter expert for Security Analysts and any third-party security providers. Show less

Sr Security Operations Analyst/Team Lead

• Feb 2021 - Sep 2021

Senior Security Operations Analyst responsible for leading Tier 2 resources, customer relations, technical breakdown, tuning recommendation, threat hunting, reporting and metrics.Directly responsible for training of new resources, documentation, quality control, and creation of future processes.Works directly with customer engineers and incident handlers to assess potential threats, create new use cases, tune, and implement the new content.Performs in depth analysis of events in the event Tier 2 resources are unable to make a final determination or believe the event to be note worthy.Works directly with customer incident handlers when an event has been determined true positive and response action is necessary.Optimized processes by leveraging scripts and custom dashboards to expediently deliver pertinent information to analysts.Responsible for reporting performance and security posture metrics to the customer - including frequent discussions with leadership. Show less

Tier II Security Operations Analyst

• Nov 2020 - Feb 2021

Information Security Analyst II (Alert/Response) responsible for providing customized services from a managed security operations center supporting multiple large entities. Acted as shift lead and led investigations from a SOC perspective for multiple large entities while managing time and resources effectively.Assisted senior analysts and engineers with the creation of parser's for the various SIEM solutions.Thoroughly documented events for possible tuning and suppression purposes. Including the logical breakdown and step by step implementation guide.Led several automation initiatives using Powershell scripts.Initial point of contact for all security related concerns.Documented any and all issues found with various platforms to use in the reevaluation of the information security tool suite. Show less

Sr Security Analyst

• Jul 2018 - Nov 2020

Sr Information Security Operations Analyst (Alert Response) responsible for the administration, engineering, maintenance, and documentation around all information security tools. Performed the platform design, deployment, ongoing administration and maintenance for the information security tool suite.Leading the SOAR initiative to automate day to day operations.Leading threat intelligence gathering and reporting - including the design and execution of response plans.Responsible for all investigations that are deemed severe or require escalation. Detailed and human readable reports are generated to "tell the story" to nontechnical teams or outside parties that may need to review evidence found.Provides training to the SOC and regularly create/maintain playbooks used for daily operations.Acts as liaison between architecture teams and information security. As the subject matter experts on all the information security tools, SOC II provides invaluable insight for architecture when considering impact or tuning that may be necessary when introducing a new product for the business. Show less

IT Security Analyst I

• Jul 2017 - Jul 2018

Information Security Operations Analyst I (Alert Analyst) responsible for the initial triage and investigation of security related alerts from all systems.Assisted in the documentation of the information security tool suite and created the surrounding playbooks.Standardized reporting documentation for the SOC for all alerts reviewed by information security personnel.Led several automation initiatives using Powershell scripts.Initial point of contact for all security related concerns.Documented any and all issues found with various platforms to use in the reevaluation of the information security tool suite.Worked heavily with vendors to get optimal configurations, tuning, and stability out of each platform.Stood up the email security gateway, including closed loop remediation for phishing threats. Show less

IT Support Specialist II

• Nov 2016 - Jul 2017

Support Center Level II Analyst responsible for leading the support team from a technical perspective and performing intermediate support functions.Shadowed Sr Analysts performing advanced functions and assisted product teams and system engineers with planned maintenance.Directly assisted system engineers and other members of IT with break fix situations. This would include log collection or reconfiguration of servers and other infrastructure.Trained new support staff during on-boarding, provided coaching and additional training when needed, and wrote new processes when solutions were found that support could perform.Managed, maintained, and tuned monitoring applications used by the Support Center and other teams for system health tracking. Show less

IT Support Specialist I

• Jun 2016 - Nov 2016

Support Center Analyst responsible for first call resolution, basic to intermediate troubleshooting of various issues, customer service, and problem escalation.Rapidly became one of the top performing analysts on the team with high standards for documentation, time to resolution, customer handling and satisfaction.Assisted Level II Support by standardizing documentation, leading the team where possible, and taking on additional duties such as metric gathering and peer review.Acted as liaison between the business and the rest of IT - particularly where it came to ongoing problems or training. Show less