Senior Information Security and Cyber Risk Analyst

• Jul 2021 - Present

Senior IT Security and Risk Management Analyst

• Jul 2021 - Present

Senior Security Operations Specialist

• Feb 2019 - Jul 2021

Review and triage all incidents raised by the SOC and assign it to the appropriate team members for resolution. Ensure proper incident resolution process is followed and completed within SLA. Do final checks on all SOC tickets to determine is additional actions are needed or confirm resolution. Security Operations Maturity Assessment (current state vs desired state), Develop and optimize runbooks/playbooks pre and post security incidents. Track incidents by kill chain phase, measure effectiveness of protection controls, develop and optimize SOP's. Support all markets and business units to improve their overall KPI scores. Continuously improve security operations processes, and tools. Increase security coverage through regular scanning of the network perimeter, newly discovered public facing systems can be assessed and all applicable security monitoring tools put in place to ensure security coverage. Support all markets to improve the remediation of severe vulnerabilities. Ensure that vulnerabilities are re mediated (patched/fixed/exception). Tools: IAM Firewalls SIEM Email Security Gateway IDS DDoS EDR

Network Security Specialist

• Mar 2018 - Feb 2019

Administrate, Monitor and Configure Rapid 7 Insight VM (Nexpose) for Vulnerability Management Administrate, Monitor and Configure Manage Engine Desktop Central for Patch Management and ensure compliance with CIS 20 Security controls. Administrate and configure Fortigate firewall, Fortigate IPSEC VPN, Fireye ETP for email security, Splunk SIEM, Rapid 7 Insight IDR for UBA,SIEM and EDR Manage Carbon Black Defense and IBM Maas 360 for mobile devices Configure Cisco switches and routers Develop Information Security Policies Ensure compliance with Information Security Standards:GDPR, ISO 27001,ISO 22301,PCI Manages Incident Response and Threat Hunting processes and procedures Develop and monitor Business Continuity and Disaster Recovery plans n procedures Monitors Forescout Counteract for Network Access Control

Volunteer Computer Technician

• Aug 2011 - Aug 2018

Repair and Maintenance of Computers in a lab environment Secure Wireless LAN: WPA, WEP and SSID Configure Modems, Routers and Switches Repair and Maintenance of Computers in a lab environment Secure Wireless LAN: WPA, WEP and SSID Configure Modems, Routers and Switches

Technical Support Assistant

• Jan 2015 - Feb 2018

Achievements Successfully remediated ransomware attacks at two Government Ministries. Successfully supervise installation and configuration of a fibre network between National Works Agency, Office of the Prime Minister and Public Broadcasting Corporation of Jamaica (PBCJ). Successfully supervise upgrade of structured cabling infrastructure project for three locations from CAT 5 to CAT 6 and 6A. Successfully supervise installation of cabinet enclosures for network equipment.Daily Operations. Develop Security Incident Response Plans for various possible attacks (Ransomware, DDos, Credential Compromise and Malware)• Develop Draft Business Continuity Plan for approval, Business Unit Continuity Plan Prioritization Strategy, Business Impact Analysis Framework, and Business Continuity Incident Response Management Guidelines.• Develop Draft Disaster Recovery Impact Analysis Tool, DRP Maturity Scorecard, Severity Definitions and Escalation rules procedures. • Monitor and ensure regulatory compliance such as: ISO 27001, NIST, PCI, GDPR, HIPAA for file server auditing and reporting Security Information and Event Management (SIEM) via Manage Engine Event Log Analyzer and File Audit Plus.• Configure Nessus/OpenVAS/Rapid 7 Nexpose/Fortigate EMS for vulnerabilities• Configure and administer MailMarshal email filter, N-Stalker/Mcafee Site Digger for web application scanning and testing, Fortigate firewall and Fortigate EMS for APT,WAF and DLP• Mcafee File and Removable Media Protection, Mcafee Viruscan Enterprise forStorage: Netapp scanner, Mcafee Data Loss Prevention: Discover• Network monitoring via Manage Engine OpManager, PRTG Network Monitoring solutions for (Switch port, IP address, network and firewall log management) and Spice works for inventory of ICT assets

Acting MIS Manager

• Dec 2016 - Feb 2017

Achievements  Achieved a doubling of the ICT’s unit budget for the next financial year through collaboration with the Executive Management team and external partners to automate and provide additional ICT services to internal clients. Manage the implementation and successful configuration of the following: SSL VPN, Radius Authentication for staff wireless network and Forti Client Enterprise Management Server Network Access Control and Vulnerability Patch Management solution.  Successfully supervise upgrade of structured cabling infrastructure project for eight locations from CAT 5 to CAT 6 and 6A. Expand the reach of the wired and wireless infrastructure by connecting all entrance and exits to the existing network via fibre.

Intern System Administrator/DBA/Web Master

• Dec 2013 - Jan 2014

Created user accounts and grant permission to users for AMANDA Application and Permit Tracking system using SQL Server Cable installations, Avaya and Nortel PBX IP phone installations Windows Server Group Policy Updates, Active Directory Management Microsoft Exchange Server Mailbox Configuration Network Inventory with DEKSI Software and documenting procedures Created user accounts and grant permission to users for AMANDA Application and Permit Tracking system using SQL Server Cable installations, Avaya and Nortel PBX IP phone installations Windows Server Group Policy Updates, Active Directory Management Microsoft Exchange Server Mailbox Configuration Network Inventory with DEKSI Software and documenting procedures

Intern

• Jun 2012 - Jun 2012

Compiled a report on the status of MOAF’s Closed User Group Contract with Vendors. Assist in vendor selection process Compiled a report on the status of MOAF’s Closed User Group Contract with Vendors. Assist in vendor selection process

Intern/System Administrator

• Jan 2012 - Jan 2012

Windows Server 2003 Configuration and Administration Internal Audit of the status of ICT Equipment Windows Server 2003 Configuration and Administration Internal Audit of the status of ICT Equipment