As a Cybersecurity Defense & AI Engineer at DataMachines, I specialize in fortifying our digital landscapes against sophisticated cyber threats. My expertise spans a deep understanding of network protocols, operating systems, and cutting-edge security technologies. I am proficient in leveraging tools like SIEM systems (e.g., Security Onion & Suricata), EDR solutions, and network traffic analysis tools for proactive threat hunting and detailed security analysis.Key Responsibilities:Employ advanced threat intelligence techniques to understand and counteract threat actor tactics, techniques, and procedures (TTPs).Develop scripts and programs (in Python, PowerShell, Bash) to automate threat detection and streamline data analysis processes.Conduct meticulous malware analysis and in-depth forensic investigations to uncover and address the root causes of security incidents.Utilize knowledge of MITRE ATT&CK, CVEs, and Bro/Zeek to enhance our security posture.Analyze security logs and network traffic to identify anomalies and indicators of compromise, ensuring robust defense mechanisms against potential threats.Serve as the lead cybersecurity subject matter expert, guiding company-wide strategies and best practices.Actively participate in Artificial Intelligence projects, integrating AI with cybersecurity solutions to enhance threat detection and response capabilities.

• Managed and grew a portfolio of strategic accounts with a focus on cybersecurity solutions• Employed a consultative selling approach to understand client needs, resulting in a 150% achievement of the sales target in 2023• Developed and executed sales strategies for complex cybersecurity solutions, leading to a 40% year-over-year growth in client base• Cultivated executive-level relationships, facilitating strategic discussions on cybersecurity posture and solution optimization• Leveraged the MITRE ATTACK framework to enhance security posture• Continuously conveyed timely and relevant threat intelligence to executive management for improved riskmeasurement and management• Trained clients on a variety of fundamental and emerging security topics, such as maturing threat hunting processes, operationalizing MITRE, implementing Sigma detection analytics, etc• Assisted security teams in identifying, implementing, and monitoring their growing security standards as the threat landscape continues to evolve• Collaborated with architecture and engineering teams to integrate threat intelligence into different security tooling

• Helped students understand difficult concepts with hands-on learning and group projects.• Facilitated group activities through laboratory instruction, to guide students through a series of online classes hosted by the University of Michigan's Nexus program.• Provided individualized feedback to students to enhance their personal academic growth• Monitored student progress and adapted instruction accordingly• Incorporated innovative Artificial Intelligence techniques into adult learning methodologies, resulting in an enhanced and engaging learning experience.

• Designed and built cloud-based Software as a Service (SaaS) for threat detection management, expanding service capabilities to cater to a large-scale customer base.• Applied and integrated cutting-edge threat hunting and detection technologies within our organization, spanning all operational lines of business. Additionally, we extended these practices to Rapid7's diverse cross-industry customer base.• Performed incident investigations, analysis and end point/network forensics that identified malicious activity on customer networks.• Leveraged Open Source Intelligence to identify recurring patterns in attacks and malware behavior.• Authored comprehensive daily reports for diverse audiences, including executive summaries and detailed technical analyses, focusing on complex threat campaigns and incident response findings.• Collaborated with research and incident response teams to produce in-depth threat analysis reports, mapping adversary TTPs to frameworks like MITRE ATT&CK.• Partnered with cross-functional teams, including detection engineers and customer advisors, to create and review security blogs and internal reports addressing emerging cybersecurity threats.• Utilized telemetry data and forensic evidence to generate actionable insights, ensuring reports provided clear, concise guidance for mitigating cyber risks.• Demonstrated a journalist-like approach to technical writing, emphasizing clarity, narrative flow, and adherence to style standards for professional publications.• Developed and delivered educational content, including training materials on ransomware trends and threat hunting, to enhance client understanding and operational readiness.• Leveraged tools like Jupyter Notebooks and proprietary platforms to process and document findings, ensuring seamless integration with operational workflows.• Produced high-quality, time-sensitive reports during active incidents, meeting tight deadlines while maintaining accuracy and clarity.

• Responsible for reviewing and validating threats, assessing risk, and recommending remediation• Conducted network defense of critical assets within the TNS network infrastructure• Served as a mentor and provided guidance to junior analysts in cybersecurity roles• Member of the Global Security Team, provided monitoring and supported a range of security technologies• Responded to security incidents from global network in support of the Telecommunications, Financial and Payment card industry• Remained abreast of the latest security issues and ensured the VP of Security was consistently informed• Served as subject matter expert for network security issues in both production and non-production environments• Responsible for the installation, removal, operation, maintenance, and repair of electrical power generating and control systems, aircraft arresting systems, and associated equipment• Plan, coordinate, and perform the installation, maintenance, and repair of generators, automatic transfer switches, aircraft arresting systems, and associated equipment• Optimize system performance through testing and analysis of historical data and consult on emergency power system and arresting systems project designs

Identify and discuss requirements for information systems projects, costs and execution times of the different services offered by the SOC (Security Operations Center).Develop policies, procedures and contingency plans for data collection, storage, analysis and correlation, coordinated active responses to security risks and threats for the SOC using RSA Envision technology. Perform ethical hacking internally and also as a service for different customers