Cyber Security Consultant
Current• Monitoring and analysis with 24x7x365 using various SIEMs and IDS / IPS tools• Use the integration between the external tools and the AWS environment to achieve the desired purpose of compliance and audit using native AWS security services for cloud safety operation.• Operation control and monitoring of IDS / IPS, security and cancellation point security and control, security, and control, vulnerability management, WAF, DDO, files, high protection of malware, security of e-mail safety, threats, safety, safety. Nana WEB bridge, SIEM management, and newspapers• AWS cloud operation is open 24 hours a day• Involved in safety products such as Palo Alto, Twist Lock, Azure Firewall, etc.• Development of cloud training models that automate the creation of VPCs and AWS resources related to applications• Execute a part of the security team and a VAPT evaluation and closed loop holes for AWS infrastructure• Develop AWS Security Roadmap, which contains the third party tool used for safety monitoring in AWS services and AWS cloud• Develop AWS Security Group Strategy, Judged Society Agreement, Approval Process for Change Security Group in the Promotion Promotional Environment• Confirm that the definition of SEPM's Windows virus is within 24 hours from those reported by Symantec.• MCAFEE EPO, McAfee in, McAfee EDLP, McAfee Editor's Note management, upgrade, troubleshooting experience• Modify Symantec plan analysis and fix quarantine results and risk data• Execute and maintain the best practices of SAST, DAST, IAST, and grater• Manage sprunkening files such as entries, accessories, conversions, and research• Upgrades of Splunk Company are around 6.2.3 and safety corrections• Develop, configure, and maintain Splunk transfer to various platforms• Make sure that the application website is in place and can be used by users