Brandon Drummond
Washington,DC
Overview
11
11
years of professional experience
1
1
Certification
Work History
Cyber Security Analyst Tier II
Microsoft
09.2021 - Current
- Led and supported incident response and security investigations across a 24/7 federal environment using Microsoft Sentinel and Defender, analyzing alerts, correlating telemetry, and determining root cause of potential breaches.
- Conducted proactive threat hunting using Kusto Query Language (KQL) to identify abnormal behavior and indicators of compromise across endpoints, identities, and cloud workloads.
- Assisted in the deployment and tuning of Microsoft Defender and Sentinel detections, improving alert fidelity and reducing false positives across the environment.
- Implemented and upheld security policies and standards identifying gaps and fostering awareness throughout teams.
- Implemented and validated security hardening configurations across endpoints and Azure resources aligned with security best practices.
- Executed tactical processes across the kill chain, evaluating effectiveness and mapping tactics to MITRE ATT&CK matrix.
Security Analyst
DoDSecurity, LLC
02.2021 - 09.2021
- Performed vulnerability assessments and security scanning using industry tools and manual validation to identify weaknesses across network and system infrastructure.
- Conducted cybersecurity risk assessments aligned with NIST 800-171 and CMMC, identifying control gaps and recommending remediation strategies.
- Evaluated CIS and NIST security controls, assisting organizations in achieving regulatory compliance through security control implementation and documentation.
- Developed and maintained security documentation including incident response plans, security policies, and system security standards.
Desktop Support Analyst Tier II
AccelerEd
04.2019 - 02.2021
- Provide support on-premises or remote with the maintenance, deployment, troubleshooting and management of servers and devices across a global environment comprising of resources based in North America, Asia and Europe.
- Troubleshooting and implementing break/fix solutions in a Windows and Mac environment.
- Diagnose network and VPN related issues.
- Manage and deploy resources to Windows based devices via Microsoft System Configuration Manager and MacOS/iOS devices via JAMF Management Console.
- Help managed our antivirus software
IT Supporting Associate
University of Maryland
08.2015 - 12.2018
- Triage incoming work tickets from an OTRS system.
- Prescribed system back-up/disaster recovery procedures to university faculty and staff.
- Assembled desktops and laptops as assigned (RAM, hard drive, battery, misc. components).
- Installed network switches in classrooms.
- Worked with networking components (TCP/IP, DNS, DHCP).
Education
Bachelor of Science - Information Science
University of Maryland College Park
College Park, MD01-2018
Skills
- Vulnerability Assessment
- Microsoft Defender
- Kusto Query Language (KQL)
- Vulnerability Management
- Windows
- Active Directory
- Security Policies
- Threat Analysis
- Azure
- Sentinel
- Azure
- Advance Hunting
- Intune
- Cybersecurity frameworks
- Threat hunting
- Disaster recovery
- Incident response management
Clearance
Secret Clearance
Certification
- GIAC Certified Incident Handler (GCIH) GIAC Certifications
- GIAC Security Essentials Certification (GSEC) GIAC Certifications
- GIAC Foundational Cybersecurity Technologies (GFACT) GIAC Certifications
- CompTIA Security+ ce Certification CompTIA
- Microsoft Certified: Azure Fundamentals Microsoft
- GIAC Certified Forensic Examiner (GCFA) GIAC Certifications
Timeline
Cyber Security Analyst Tier II
Microsoft
09.2021 - Current
Security Analyst
DoDSecurity, LLC
02.2021 - 09.2021
Desktop Support Analyst Tier II
AccelerEd
04.2019 - 02.2021
IT Supporting Associate
University of Maryland
08.2015 - 12.2018
Bachelor of Science - Information Science
University of Maryland College Park