Senior Information Security Analyst Resume Example Efroh Corporation

SENIOR INFORMATION SECURITY ANALYST

Professional Summary

Diligent IT Security professional with over 10 years of experience in developing and implementing security solutions in the Department of Defense network system. Proficient in online security research planning execution maintenance, and management of security both in physical and cloud infrastructure. Possess a comprehensive background in Risk Management Framework (RMF), Operational Reports and Policy Implementation derived from conducting domestic and global operations. Specialize in network monitoring security, Security Life Cycle, SDLC, Penetration Testing, and Vulnerability Assessment, NIST, cyber warfare (offense & defense), security policy development and possesses active SECRET security clearance.

Skills

Risk Management Framework (RMF)
Enterprise Assurance Support Service (eMASS)
Federal Risk & Authorization management program (FedRAMP)
Security regulations compliance
Java Script, VMware, HTML, Sharepoint, Excel, Word, PowerPoint, MS Visio, PowerShell, Bash

AWS Cloud implementation
Penetration testing (Metasploit Pro, Nmap, Nessus Scanner)
Malware analysis
TCP/IP networking concepts

Work History

Senior Information Security Analyst, 01/2019 to Current
Efroh Corporation – San Diego, CA

Conducted kick off meetings with the clients to assist in creating Standard Operating Procedures (SOP) for Plan of Action and Milestone (POA&M)
Experienced in system classification and categorization using the RMF processes to ensure system CIA. Ensured compliance security control selections and implementation for continuous system protection.
Specialized in areas of Information Technology such as Cyber security, Information Assurance (IA), Security Assessment & Authorization (SA&A), Risk Management, System Monitoring, Regulatory Compliance, Physical and Environmental Security, Incident Response, and Disaster Recovery Plan, preparing and reporting SSP, SAP, SAR, POA&M, as well as the Frameworks.
Participated in ST&E Kick-off Meeting and populated the Requirements Traceability Matrix (RTM) per NIST SP 800-53A. Determined the assessment method such as Examine the evidence, Interview Personnel and Test the Screenshot for system configuration.
Conducted IT controls assessments that include reviewing organizational polices, standards, procedures and guidelines.
Maintained awareness in information security (Ensured effectiveness of all security controls), vulnerabilities, and threats to support organizational risk management decisions; FISMA Reports, Standard Operating Procedures (SOP) in accordance with Federal, Agency and Organizational policy, to include FISMA, NIST, OMB, and FIPS guidelines.

Cyber Security Operations Analyst, 03/2013 to 01/2019
United States Air Force – Fairfield, CA

Conducted ethical hacking, IT controls risk assessments such as reviewing organizational policies, product best practice, standards and procedures and provided advice on their adequacy, accuracy and compliance
Performed scoping engagements, vulnerability assessments, web application penetration testing, network penetration testing, and phishing campaigns to test security controls and policies
Identified, documented and communicated vulnerabilities to appropriate members of management team prioritizing remediation requirements and increasing focus on secure coding processes and configurations
Conducted risk assessments and collaborated with clients to provide recommendations regarding critical infrastructure and network security operations enhancements
Evaluated application security tools for internal consumption. Developed new automation and tooling to improve our detection and prevention capabilities
Performed static/dynamic code testing, manual code inspection, threat modeling, design reviews and penetration testing of internal DoD applications and external partner applications to identify vulnerabilities and security defects

IT Admnistrator, 01/2009 to 02/2013
Caci International Inc De – Tampa, FL

Rendered central contact point for user support and problem management for managed security applications (Firewall, IDS, Encryption, SIEM, Web filtering)
Upgraded security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements
Provided daily monitoring, management, troubleshooting and issue resolution to systems and services hosted on cloud resources
Managed the ticketing system of Rackspace to resolve issues on the cloud environment with the cloud management third party team
Performed troubleshooting and monitoring of the Linux server on AWS using Zabbix, Nagios & Splunk
Executed automated infrastructure administrative tasks using Puppet in installation of packages and server configuration updates and management tools
Ensured appropriate security considerations and industry-standard best practices are applied to all aspects of the corporate environment and infrastructure

Education

Bachelor of Science: Computer ScienceUniversity Of Illinois - Illinois City, IL

Master of Science: Computer Science, Expected in 12/2021
University Of Southern California - Los Angeles, CA

Certifications

Project Management Professional (PMP)

Certified Information Security Manager (CISM)

Certified in Risk and Information Systems Control (CRISC)

AWS Certified Solutions Architect- Associate (AWS CSA)

CompTIA Advanced Security Practitioner (CASP+)

Foundation Certificated in IT service Management (ITILv4)

Resume Overview

Companies Worked For:

Efroh Corporation
United States Air Force
Caci International Inc De

School Attended

University Of Illinois
University Of Southern California

Job Titles Held:

Senior Information Security Analyst
Cyber Security Operations Analyst
IT Admnistrator

Degrees

Bachelor of Science : Computer Science
Master of Science : Computer Science , Expected in 12/2021

Senior Information Security Analyst Resume Example

Resume Score: 80%

DISCLAIMER

Resume Overview

Create a job alert for [job role title] at [location].

Similar Resumes