Cyber Security Team Lead
Current• Lead and/or assist in several critical IT Security projects, such as multifactor authentication implementation• Participate in the design and execution of vulnerability assessments, penetration tests and security audits.• Work with key stakeholders to survey, identify and recommend solutions, i.e., IDS/IPS, SIEM, HIDS, FIM, Vulnerability Scanners, Threat Monitoring and Detection• Create reports, alerts and monitor logs with Splunk SIEM tool.• Conduct ongoing review of logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.).• Interpret the implications of that activity and devise mitigation plans for appropriate resolution.• Participate in the creation of CCH security documents (policies, standards, baselines, guidelines, and procedures).• Create cloud security policies and monitor alerts with Microsoft Azure.• Administered Microsoft Azure suite, Cloud App Security, Intune, Azure Active Directory etc.• Worked with Compliance and Audit department on the alignment of security to audit and compliance requirements.• Tracked and documented vulnerabilities and develop remediation plans.• Daily monitored intrusion detection systems and content filters.• Developed of technical and administrative standards to comply with internal and external audits, as well as HIPAA.• Developed a system wide security awareness program to educate users on cyber threats.• Documented of lessons learned during incident response.• Tracked and documented vulnerabilities and develop remediation plans.• Participated in investigations and provide E-Discovery findings.• Managed various small to mid-size desktop support related projects, such as a hospital wide pc deployment project.• Collaborated within department to monitor network security to identify potential malware threats and remediate weaknesses in security.