Abena Wealthy
Information Security Analyst
Leander,TX
Summary
A very highly technical and results-oriented Cloud Security Professional with 6+ years of demonstrated proficiency in deploying and supporting IT Security projects and environments covering cloud storage and management, security architecture and reviews, and risk management. Heavy skills in areas of Azure Cloud Infrastructure and Security, Microsoft 365 and Enterprise Mobility + Security, and Network Security. Strongly possess leadership and organizational skills, and am adept at communicating with stakeholders, clients, and different levels of management
Overview
11
11
years of professional experience
1
1
Certification
Work History
Microsoft Consultant
BP
Oregon, OH
06.2021 - Current
- Implementing stacks of Microsoft 365 Security and Compliance tools to ensure that BP meets compliance standards.
- Onboarded 5000+ laptops, non-persistent and persistent VDIs into Defender for Endpoint, and assigned Anti-virus, ASR, firewall and EDR policies to them.
- - Connected defender for endpoint with Sentinel, to enable advanced security hunting while leveraging Sentinel’s logic apps and automation capabilities.
- - Completed Cloud App Security deployment from start to successful completion.
- - Integrated log collectors to leverage syslog from Palo Alto firewalls and McAfee Web Gateways for shadow IT and Cloud Discovery purposes
- -Connected MCAS with Security and compliance center to extend Information Protection and Data loss prevention policies and labels to data in cloud repositories
- -linked MCAS and defender for endpoint also to enhance shadow IT security.
- · Microsoft Information Protection: Deployed Information Protection and Data loss prevention
- · Deployed Azure Sentinel as SIEM/SOAR Solution
- - Connected various Microsoft 365 data sources as well as third party firewalls, such as Palo Alto firewalls.
- - Created Log Analytics Queries for Threat Hunting and created Analytic Rules using KQL.
- - Developed Playbook workflows in Logic apps to automate remediation and resolution of incidents, alerts as well as threat response
Microsoft 365 Lead Security Engineer
BP
Oregon, OH
06.2020 - 06.2021
- Served as information governance consultant at BP.
- Helped to develop incidence response plan to remediate incidents in Azure cloud when they arise.
- Deployed MCAS, AIP, O365 DLP, creating labels and policies in O365 Security and Compliance Center.
- Integrated MCAS with Defender for Endpoints as well as Log servers connected to firewalls and proxies for shadow IT purposes.
- Integrated MIP tools into SIEM for incident, alerting and remediation.
- Deployed Azure Sentinel and connected data connectors such as Defender for Endpoints, Email, MCAS, Azure Active Directory for SIEM and SOAR capabilities.
- Created Log Analytics Queries for Threat Hunting and created Analytic Rules.
- Created automation playbooks in Azure Logic Apps to remediate alerts and incidents generated in Sentinel
Microsoft 365 Security Engineer
BP
Oregon, OH
07.2019 - 06.2020
- Work as Enterprise Mobility + Security Subject Matter Expert and guide Microsoft s1500 (Fortune 50) and other Fortune customers who are implementing workloads such as Microsoft Endpoint Manager, Information Protection, O365 DLP, O365 ATP, Defender ATP, Azure Active Directory, Cloud Application Security as CASB and other scopes of Enterprise Mobility + Security (EMS).
- Lead discussion on Microsoft technologies in Azure Security workspace implementation, as well as cloud-based identity and access management solutions implementation, information protection, and classification solutions.
- Implement advanced Identity and Access management solutions in AAD with involve, but not limited to Conditional Access, PIM, KMSI, RBAC, MFA
- Design and Implement user and device Identity management with Azure Active Directory and Intune MDM/MAM, as well as Hybrid and Co-Management Solutions.
- Configure Endpoint Protection MDATP, Exchange Online Security policies and Email Security with O365 ATP, including post-breach defense with ATA, DLP and AIP, as well as SIEM and SOAR implementation.
- Deploy Azure Sentinel as SOAR and SIEM solution, while integrating Data Connector including, but not limited to Azure Security Center, Azure AD, Firewalls, MCAS, F5 Load Balancers, Endpoint Security solutions, Proofpoint TAP etc. I build automation of repetitive processes, Hunting and response to log analytics incidents, by leveraging KQL, JSON, Sentinel workbooks, Notebooks, templates, and Logic Apps playbooks.
- Design and enroll Defender ATP endpoints using Endpoint Configuration manager, Intune and SCCM.
Microsoft 365 Security Engineer
BP
Oregon, OH
08.2017 - 07.2019
- Deployed Azure Sentinel as SOAR and SIEM solution to monitor and manage overall security environment.
- Integrated Azure Security Center, Azure AD, Firewalls, MCAS, F5 Load Balancers, and Endpoint Security solutions in Sentinel. Built automation of repetitive processes utilizing Sentinel workbooks, templates, and playbooks.
- Imported data from connecting tools ranging from Microsoft Proprietary Office 365, ATP, Intune connected endpoints, Windows Firewall, and Third-Party Firewalls such as Checkpoint and Palo Alto.
- Created policies, workbooks, and playbooks in Azure Sentinel and Azure Security Center. Performed threat hunting and utilized playbooks to mitigate suspicious and hostile activities across environment.
- Administered and supported cloud security and EM+S tools in Azure cloud and applied Advanced Threat Analytics (ATA), Intune, Azure Information Protection (AIP), Advanced Threat Protection (ATP).
- Secured Azure Key Vault by leveraging IAM, RBAC, and Key Vault Access Policies.
- Devised, architected, and implemented Private Security Perimeters (PSP), Enterprise Security Perimeters (ESPs), and VPNs utilizing Network Security Firewalls with applicable networking protocols such as static routes, BGP, etc.
- Performed network vulnerability and penetration tests and applied Nessus scans and Tripwire to warrant networks and nodes security. Ensured that security policies and updates adhered to industry compliance and policies.
Security Support Engineer
BP
Naperville , IL
06.2015 - 08.2017
- Guaranteed resilient network and threat prevention policies for secured institution network environments. Analyzed traffic issues using monitoring tools such as Wireshark, TCPdump, and proprietary FW monitor.
- Identified security incidents and recertified firewall related network issues, security vulnerabilities, and VPN for government and private institutions. Advised industries to maintain compliance with PCI-DSS standards.
- Warranted delivery of every support request as per Service Level Agreement (SLA) and with utmost customer satisfaction by setting proper expectations and fulfilling commitments.
- Developed technical solutions and security tools to mitigate security vulnerabilities and automate repeatable tasks.
- Troubleshot Intrusion Prevention System (IPS), HTTPS Inspection, Data Loss Prevention (DLP), and NAT technology.
- Constructed edge and advanced firewall solution design (Large-scale enterprise) deployment, implementation, and administration (VSX and MDS). Installed up-to-date recommended patches on firewalls for optimum performance.
- Organized VPNs and applied knowledge of IP networking, Security Association, and Encryption using IPsec, Remote Access VPN, MPLS/VPN, Site to Site VPN tunnels, SSL/VPN, proxy services, and DNS.
Analytical Chemist
BP
Naperville, IL
11.2012 - 06.2015
- Created spreadsheets and other forms of documentation to accurately record and calculate analytical results.
- Calibrated and maintained laboratory spectrometers and chromatographs.
- Troubleshot equipment adjustments to meet and maintain safety, output and quality expectations.
- Examined inoperative or malfunctioning production equipment to diagnose source of trouble.
- Repaired, calibrated and safely operated laboratory equipment to reduce costly instrument downtime.
- Assisted with collecting, identifying and packaging hazardous and non-hazardous waste products to comply with Resource Conservation and Recovery Act regulations.
- Developed laboratory testing programs and data analysis while adhering to SOPs, ECOs, batch records and work instructions.
- Performed technical laboratory functions in compliance with regulatory agencies and safety requirements.
Education
Bachelor of Science - Chemistry
Tuskegee University
Tuskegee, ALCertification - Cloud Security
IT Career Lab
Chicago, IL01.2017
Skills
Microsoft 365 Security:
Microsoft Azure, Intune MDM/MAM, Azure Active Directory, IAM, O365 ATP, Microsoft Defender ATP (MDATP), Azure ATP, Cloud App Security MCAS, Conditional Access, ADFS, Pass-Through Authentication, Microsoft Information Protection, SSO, Co-management with SCCM-Intune, Advanced Threat Analytics (ATA), PowerShell Scripting
Cloud Security:
Azure Purview, Azure Sentinel, Azure Security Center, Intrusion Prevention System (IPS), HTTPS Inspection, Data Loss Prevention (DLP),
Other Tools and Applications: Linux, Terraform, Docker, Ansible
Firewalls: Checkpoint, Palo Alto, F5 load Balancers, Service Now
Certification
Microsoft 365 Security Engineer
Azure Security Engineer
Azure Fundamentals
CompTIA Network+: In-Progress
INDUSTRY COMPLIANCE STANDARDS
ISO 27001. SOX, HIPAA HITRUST, NIST SP 800-53, SOC2, CAF Foundation, CMMC, Azure Benchmark
Timeline
Microsoft Consultant
BP
06.2021 - Current
Microsoft 365 Lead Security Engineer
BP
06.2020 - 06.2021
Microsoft 365 Security Engineer
BP
07.2019 - 06.2020
Microsoft 365 Security Engineer
BP
08.2017 - 07.2019
Security Support Engineer
BP
06.2015 - 08.2017
Analytical Chemist
BP
11.2012 - 06.2015
Bachelor of Science - Chemistry
Tuskegee University
Certification - Cloud Security
IT Career Lab