Cyber Security Engineer
Current• Developed custom SIEM deliverables in Splunk/McAfee/Q Radar/ArcSight to meet customer needs in a variety of domains: IT security, financial, IT ops, human resources, physical security, etc.• Design, development, implementation, tuning and testing of standard and nonstandard content for McAfee SIEM (Nitro).• Perform Digital forensics and Incident Response (IR) using tools Autopsy, Magnet, Stinger, etc. 28 DOL agencies• Served as the primary SME for RSA SecurID and all multi-factor authentication products including Azure MFA.• Maintained GIT repositories, branches and tags and Experience in Administering GITHUB repository.• Played a key role in deploying Symantec Endpoint Protection Manager and clients on a closed network• Worked as a PCI-DSS consultant to perform a 3rd party audit.• Involved in DLP data encryption, monitoring/reporting and remediation of internal and external threats/vulnerabilities.• Provided Azure Security and Compliance reviews and solutions for government systems to facilitate the secure and compliant use of Azure for government agencies and third-party providers building on behalf of government.• Ensured Azure Government system was compliant to meet a FedRAMP Provisional Authority to Operate (P-ATO) and DoD Provisional Authorization (PA).• Understand the threat landscape as related to vendors and perform vendor risk assessments Assist penetration testing and investigation.• Collaborate with Internal audit, External Audit, SOX PMO in a regular cadence, discuss changes to the control environment and prepare effective, efficient compliance and substantive test plans and SOX Calendar.• Work closely with the Risk and finance teams to associate a monetary value to security risks within the User Behavior Analytics (UBA) tool.• Worked on projects moving to cloud services such as Azure, Office 365 and Amazon Web Services (AWS).