Information Security Analyst
Current• Review security bulletins, conduct vulnerability analysis and create reports for Zero-day, Critical, High vulnerabilities. Open tickets to track patch work.• Run Ad-hoc vulnerability scans using Tenable Nessus.• Create weekly/monthly re-current Vulnerability and Compliance reports.• Investigate alerts related to suspicious user activity, brute force attempts, TOR activity, open ports and firewall alerts. Create and follow on tickets as per SLAs.• Participate in quarterly SOC campaigns for Cloud security assessments and continuous diagnostics and mitigation. • Run inhouse scripts for reports and analysis. • Manage user accounts for Trend Micro and Nessus.• Interview potential candidates for open positions/proposal efforts and other administrative support duties such as time sheet approval and new hire assist.• Tools used: AWS GuardDuty, AWS SecurityHub, Nessus, Trend Micro, Splunk, JIRA, Confluence, ServiceNow, VDI.