Thomas K. Email & Phone Number

Paris, FR

Grand Prairie, Texas, US

• Stood up Cybersecurity program from Green Field state
• Wrote Policy Process and Procedural documentation, to include Business Continuity Plan, DisasterRecovery, Risk Acceptance, Incident Response, and day to day Process/Procedure on numerous securitytechnologies
• Led team of 8 Analysts and Engineers along the following verticals:Monitoring Platforms, Incident Response, Threat Hunting, Security Assessments, Penetration Testing,Red Team, Blue Team, Vulnerability Management, Asset.
• Active role in in Architectural Review Board and Change Management strategy and planning.
• Managed MSP for further staff augmentation on Tier1/Tier2 Security Operations, Engineering, and Vulnerability management

Stood up Fusion Center from Green Field State, for StartupBuilt teams for Incident Response, Security Engineering, Threat Intelligence, Security Architecture, GRC, Insider ThreatManaged MSP/MSSP for Tier1/Tier2 Incident Response and SOC TriageManaged team of 4 Engineers and Analysts to develop internal capabilitiesMaintained Relationships with all vendors.

Atlanta, GA, US

• Senior SOC Engineer with a current focus on security tooling, tuning, maintenance, and integrations.
• Lead team of 3 Engineers in maintaining the SIEM and SOAR platforms
• Spearheaded migration from QRadar to QRoC (QRadar on the Cloud)
• Assisted with MITRE ATT&CK Framework adoption to Sysmon Ruleset within QRadar
• Assess, prioritize and take action on requests that improve existing Security Operation Center tools andprocedures
• Partner with senior management to coordinate security incident response efforts to communicateinformation, drive resource actions and decisions, provide recommendations, and ensure resolution

Atlanta, Georgia, US

• Lead team of 9 analysts in day to day SOC Operations
• Wrote technical documentation on existing and future tools.
• Assist management in defining Policy and Procedure.
• Wrote playbooks and runbook, enhancing process and procedure maturity level
• Held Daily Standups, facilitate daily turnover calls between multiple SOCs worldwide
• Facilitated communication between Silos, built bridges while enhancing efficiency and effectiveness of security practices.

Armonk, New York, NY, US

• Working within a SOC environment, and Maintained position as MSS Threat Analyst/Cybersecurityanalyst, monitoring multiple worldwide customers in Retail, Financial, Medical, and Big Data sectors.Using QRadar for event.
• Analyzed log files within QRadar, and Soc Console (proprietary SIEM to IBM), utilizing thecustomers network infrastructure to provide solutions to vulnerabilities
• Assist in mitigating ongoing threats to files and data, all while maintaining compliance withinSarbanes Oxley, PCI, or HIPAA respectively.
• Assisted with several special projects, Remedy UAT v9.1 trial, Havyn Project and SecondScreenExperience project, from incubation to production rollout, alongside continual QA on said projectswhile in use. All with the.
• Performed trending analysis, monitoring for and predicting ‘spikes’ in event counts for customers,to ensure we had enough analysts on hand to handle any eventuality.
• Creating PCR’s (Device and Rule tuning tickets), reducing false positives, which optimizes bothtime on glass experiences with Analysts, and allows for more effective analysis of legitimatesecurity concerns.

Atlanta, Georgia, US

• Level 3 Helpdesk support on proprietary Dental Practice Management Software Platform.
• Level 2 Helpdesk support on proprietary Orthodontic Practice Management Software Platform.
• Utilize Bomgar, PCAnywhere, to connect remotely to clients to resolve complex SQL, software, hardware, and networking related issues.
• Assist in special projects regarding RMA status’ on digital sensors, beta testing Bomgar appliances, beta testing VDI
• Consistently update and maintain group knowledgebase with new data, to assist in maintaining a high-consistency of knowledge in our software.
• Subject Matter Expert on Fingerprint Module, Plugin Module, Dental Imaging Module, Dual Database Module, Dental Chart Module, and Kiosk Module for Practiceworks Software.

• Level 3 Helpdesk support for remote transcriptionists, and underlying systems.
• Level 2 Helpdesk support for major Hospital chains, on proprietary transcription services.
• Utilized PCAnywhere, LANDesk, and NetSupport to connect remotely to customers.
• Used Cisco, Remote Desktop and RAS to connect to client servers via 12 separate VPNSoftwares.
• Maintained print servers for client facilities, installed proprietary printing software for transcription
• services, while keeping in compliance with HIPAA and Sarbanes Oxley regulations.

• Upgraded and installed all new software/hardware for endpoints and users.
• Performed Administrative duties and maintained the network (30+ workstations)
• Repaired and Tested Desktops, Laptops, Laser and Dot Matrix Printers (Dell, HP, Commpaq,Lenovo, IBM, Toshiba, Okidata)
• Upgraded and refurbished Desktops and Laptops for resale and reuse.

High School Diploma

Computer Science