Cyber Security Analyst
CurrentMonitor and defend the network from intrusions, phishing attempts, and other suspicious activity within the Security Operations Center ∙ Developed essential knowledge of information security, identity and access management, risk management, and network security ∙ Monitored security posture of multiple environments using enterprise SIEM, EDR/XDR, Email security, and vulnerability tools ∙ Engaged in log analysis with SIEM tool solutions, IBM QRadar, and Splunk ES, providing detailed recommendations in Jira ∙ Conducted log analysis determining the validity of domain, file, and email reputations using online open-source tools ∙ Investigated, triaged, and documented endpoint security issues through EDR tools, CrowdStrike Falcon and SentinelOne ∙ Assisted in vulnerability identification, researching findings, and recommending corrective actions with supporting documentation ∙ Partnered with fellow analysts and SOC Manager in turnover calls and aiding with the investigation of complex incidents ∙ Wrote executive summaries, documenting indicators of compromise, actions taken, declarations, and recommendations