Senior Security Analyst
Current⮚ Monitoring security events using Exabeam AA, DL, Azure sentinel (SIEM) and other TI feeds, looking for significant events, and processing reports of unexpected application, network, and cloud activity.⮚ Implemented and executed major incident management processes including invocation, ownership, escalation, communication, and service restoration.⮚ Experience building Incident response SOPs, playbooks, and policies based on the NIST framework.⮚ Established standards and procedures that maximized operation responses to encountered incidents and minimized service availability interruptions; contributed to a cross-functional team to ensure procedure manuals and incident playbooks were current and correct.⮚ Prepared documentation and reporting for the executive team on a weekly, monthly, and quarterly basis using ServiceNow tools and PowerPoint presentations.⮚ Prepared post-incident review documents and attended problem management review meetings to ensure the determination of root cause; prepared accurate, appropriate, and timely communication to internal and external stakeholders.⮚ Worked on Akamai bot manager and F5 SHAPE web application security tools.⮚ Worked proactively on Microsoft Defender for triaging and remediating EDR alerts.⮚ Trained SOC analysts and onboarded new alerts in Azure sentinel.⮚ Coordinated with internal and external law enforcement agencies, privacy, fraud, and HR teams when necessary