Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Generic

ACHANKENG ASONG

Fort Worth,TX

Summary

Seasoned Cybersecurity Analyst with comprehensive background in threat detection, network security protocols and risk assessment. Strengths include vulnerability testing, securing information systems, and developing effective cybersecurity strategies to enhance organizational cyber infrastructure. Demonstrated success in establishing robust security measures that safeguard critical data while ensuring regulatory compliance.

Overview

10
10
years of professional experience
1
1
Certification

Work History

Senior Cyber Security Analyst

Dell
Austin, Texas
05.2021 - Current
  • Plan, prioritize, and coordinate enterprise vulnerability scanning and remediation.
  • Developed threat and vulnerability management policies, managing DLP and network visibility programs and managed SIEM .
  • Installed, configured and managed Qualys Virtual appliances.
  • Discover, Organize and classify assets in to host groups and tags
  • Create and manage Network Discovery, vulnerability, and application scans with Qualys.
  • Assisted with developing strategies for responding to potential cyber attacks such as malware outbreaks, phishing campaigns, ransomware attacks.
  • Implemented firewalls and other security measures to protect data from external threats.
  • Performed regular system audits of all network resources to ensure compliance with corporate security policies.
  • Made recommendations to improve security procedures and systems.
  • Installed patches and upgrades on a regular basis as part of ongoing maintenance efforts.
  • Investigate and mitigate DDOS, Phishing, Malware and Brute force alerts using Splunk and other sources
  • Plan and Implement logs onboarding server and application logs into Splunk
  • Create and manage Splunk Alerts, Dashboards, and Reports.
  • Identity and analyze different types of internal and external cyber threats.
  • Analyzed network traffic logs, firewall logs, intrusion detection system alerts, and antivirus reports to identify potential threats.
  • Developed and implemented security policies and procedures to protect the company's assets from unauthorized access.
  • Monitored user activities on the network for suspicious behavior or malicious activity.
  • Responded promptly to cyber incidents by analyzing attack signatures, isolating affected systems, and restoring normal operations.
  • Coordinate device onboarding to Defender ATP
  • Investigate and tune malware incidents using Defender ATP
  • Perform Device inventory to detect and report unauthorized software running on corporate assets
  • Developed, coordinated, implemented, maintained standards and procedures to protect the security and integrity of information systems and data
  • Created automated shell script to reduce release periods and Production Support, log file backups, account creations, and application security.
  • Managed information security risk management, identity theft prevention, incident management programs and Intelligence programs analyzing customer data using both open source and proprietary solutions.
  • Developed automated operation utilities to govern the privileged access management reducing risk and increasing security

Cyber Security Analyst II

Atos Syntel
Troy, MI
03.2019 - 01.2021
  • Monitored and analyzed security alerts generated by SIEM platforms (Splunk, Microsoft Sentinel) to identify potential threats and respond appropriately.
  • Utilized tools like Wireshark, sandbox environments, and VirusTotal to analyze suspicious files and network traffic, determining the nature and impact of the threat.
  • Conducted detailed investigations using Carbon Black and Crowdstrike, identifying compromised systems, and initiating remediation steps.
  • Monitored network traffic using TCP/IP and UDP protocols, implementing security measures across the network to prevent unauthorized access.
  • Performed regular vulnerability scans using Nessus, Qualys Guard, and collaborated with IT teams to remediate identified vulnerabilities.
  • Managed email security platforms like Proofpoint, Microsoft Defender, and Cisco IronPort prevent phishing attacks and malware distribution through email.
  • Leveraged threat intelligence platforms like Flashpoint, Recorded Future, and Trellix to stay informed on the latest threats and tailor incident response efforts accordingly.
  • Used OSINT tools, such as AbusedIPDB, Shodan.IO, and MX Toolbox, to gather intelligence on potential threats and assess the risk to the organization.
  • Assisted in creating and maintaining all workflows and SOPs in OneNote for future reference to facilitate SOC operations, processes, and compliance audits.
  • Documented all events and incidents using ServiceNow and Confluence.

Cybersecurity Analyst (SOC)

USAA
USAA SAN ANTONIO, Texas , TX
02.2016 - 02.2019
  • Observed and analyzed traffic to learn valuable lessons from known malicious actors and to determine countermeasures against such threats
  • Coordinate and investigate multiple SOC alerts investigation and triaging
  • Create and maintain SIEM alerts runbooks
  • Coordinate multiple security incident bridges with other departments
  • Provided reports to management regarding network security status and made recommendations for the adoption of new policies, standards and procedures.
  • Managed information security risk management, identity theft prevention, incident management programs and Intelligence programs analyzing customer data using both open source and proprietary solutions.
  • Provided reports to management regarding network security status and made recommendations for the adoption of new policies, standards and procedures.
  • Assisted in the preparation, testing, design, and editing of various computer programs.
  • Planned, implemented, and monitored security systems to ensure the appropriate measures are taken to prevent attacks.
  • Provided detailed status updates on existing cyber security incidents daily to include follow up with client/customer to ensure satisfactory resolution.
  • Made recommendations to senior management on results of analysis and work closely with other Information Technology groups to refine and enhance security controls, forensic analysis of computer systems and

IT Network/Systems Administrator

ViaQuest Inc
Columbus, OH
12.2014 - 03.2016
  • Performed standard system administration tasks not limited to software upgrading, troubleshooting and infrastructure monitoring
  • Automated day to day Linux system administration such as creating user accounts and maintaining bash scripts, directory structures, file system shares and permissions
  • Configured and automated the installation of Linux OSes using KickStart
  • Updated and applied patches using custom bash scripts
  • Performed weekly system administration not limited to adding users, creating file systems, and configuring logical volumes (LVMs)
  • Configured and troubleshoot issues related to TCP/IP, DNS, NFS, SAMBA, LDAP, SSH, SFTP
  • Performed system monitoring; CPU, memory, I/O, hardware, job scheduling and processes management using dmesg, top, sar, iostat and ps
  • Worked with Database administrators to tune kernel for MySQL databases
  • Automated install, configuration of Apache on Linux servers
  • Performed routine backup, scheduling and enabling of cron job
  • Managed patch configuration using custom bash scripts, version control, service pack and review connectivity issues regarding security problems
  • Troubleshot network issues concerning Vlans and network on switches and routers

Education

Masters - cyber security and information assurance

Western Governor’s University
06-2022

Skills

  • Network Security: Palo Alto IPS/IDS, WAF, Cisco Switches/Routers
  • EndPoint Protection: Defender ATP, Crowdstrike
  • Cloud Services: AWS, Microsoft O365 SIEM: Splunk Alerting, Dashboard and Reports
  • Operating System: Windows , MacOS, Linux
  • IAM: AWS IAM, Active Directory,CyberArk
  • Compliance: HIPPA, NIST, HI-TRUST, ISO, PII, PCI DSS, FINRA, SOX
  • Vulnerability Management: Tenable, Nessus, Qualys Cloud, Bigfix
  • Protocols: TCP/IP, HTTP, HTTPS, DNS, SSH, SCP, DHCP, SMTP
  • Virtualization: VMware, Horizon VDI
  • Scripting and Automation: Bash, PowerShell, Ansible Incident and Ticketing: Jira, SharePoint, ADO
  • Project Management: Agile/Scrum Methodologies, Change Management
  • SIEM : Securonix , Splunk,Sentinel
  • OSINT: AbusedIPDB/Shodan/MX Toolbox/Google Dorks
  • Threat Intel: Flashpoint,Recorded Future
  • Malware Analysis Sandbox,VirusTotal
  • Email Security:Proofpoint, MS Defender,Cisco IronPort
  • CICD : Github

Certification

  • EC-Council CEH
  • AWS Solution Architect
  • CCNA R&S
  • CompTIA Sec+
  • CISM (Certified Information Security Manager)
  • CISA (Certified Information Systems Auditor)
  • Splunk Fundamentals 1 & 2

Languages

English
Professional

Timeline

Senior Cyber Security Analyst

Dell
05.2021 - Current

Cyber Security Analyst II

Atos Syntel
03.2019 - 01.2021

Cybersecurity Analyst (SOC)

USAA
02.2016 - 02.2019

IT Network/Systems Administrator

ViaQuest Inc
12.2014 - 03.2016

Masters - cyber security and information assurance

Western Governor’s University
ACHANKENG ASONG