• Built, tuned and enhanced SPL for multiple teams.• Designed a network of interconnected dashboards in Splunk• Integrated external data sources into Splunk dashboards• Built account monitoring dashboards in Splunk• Built and implemented Splunk alerts to detect anomalous account activity • Created user behavior baselines (UBA) and used daisy chaining to detect anomalous activity• Developed a prioritization system for handling egregious user behavior• Utilized SVN for version control• Built out new processes, controls and supporting documentation, related to the implementation of human and non-human accounts• Documented workflow, processes and tooling in Confluence• Conducted adhoc investigations and delivered reports to technical and non-technical stakeholders• Identified patterns of fraudulent activity and violations of AUP• POC for analysts in incident response and investigations• Mentored analysts in Splunk and hosted Splunk learning sessions• Developed a mini-CTF for the Identity Defense team• Worked alongside SOAR team to develop playbooks in Splunk SOAR (Phantom)• Automated investigative processes• Assisted with data ingestion and the implementation of new logs (IAM/MFA)• Assisted Splunk engineering team to troubleshoot performance issues• Worked with multiple datasets with a heavy focus on endpoint, authentication and network logs.

• Analyzed data from technical security controls (e.g. cloud, individual host logs, network traffic logs, firewall logs, IDS/IPS logs, enterprise AV) to identify possible threats to on-prem and cloud environments.• Content development and alert tuning• Created, validated and implemented log monitoring correlation rules in the SIEM• Detection management - improve the fidelity, context and automation of new and existing alerts.• Identified outliers and patterns by analyzing TBs of data in SIEM• Researched new threats and create logic to detect associated IoCs• Developed cloud detections and investigate cloud incidents• Performed malware analysis on malicious files to gather indicators of compromise.• Participated in interdepartmental threat hunting and purple team engagements • Collaborated with intelligence analysts to identify new and emerging threats• Worked regularly with SIEM, SOAR, EDR, AV, FW, IDS/IPS, DLP, UBA platform and other security appliances used to detect anomalous behavior • Performed incident triage• Utilized and configure UB Analytics and Honey Pot technologies to detect insider threats and lateral movements• Provided real-time cyber security incident handling from initial detection to final resolution• Managed SNORT and YARA detection rules• Developed automation playbooks in conjunction with the development of local detections

• Responsible for daily incident triage, analysis and reporting, client account management, and wider industry threat analysis. • Investigated cyber actors, tactics, techniques and procedures.• Performed OSINT and conducted analysis using analytical tools such as i2, Maltego, Elliptic• Analyzed and pivoted through large data sets in Kibana• Discovered trends in disparate pieces of information, to form logical conclusions, and provide mitigation solutions to clients.• Composed and reviewed incident reports directly with security and IT teams.• Provided quantitative and qualitative reports to help clients better understand their security posture.• Trained new colleagues and assisted with the on boarding process. Helped establish and write policies and procedures.• Conducted investigations on the Clear and Dark Web• Utilized TIPs to identify active campaigns and provide attribution to investigations• Primary analyst for German operations.• Assisted with Russian translations and investigations

• Instructor of German courses I - IV AP• Founded a local chapter of Delta Epsilon Phi (National German Honor Society) for Georgetown and East View High School.• Provided additional virtual instruction to students enrolled in the program• Mentored and assisted students• Drafted and presented quantitative reports on program development and academic achievements• Received community awards and accolades for program accomplishments and contributions

• Instructor of German Courses I - IV AP• Designed and implemented German IV AP course