Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic
BRIGHT ADDAI

BRIGHT ADDAI

Lawrenceville,GA

Summary

A highly skilled and motivated Cyber Security Specialist, with a drive to resolve complex issues and experience of implementing ISO 27001 and NIST compliant information security management system. Possessing sharpened skills and having taken on the role of overseeing the daily management and delivery of Security Operations. Background includes overseeing third-party SOC services, ensuring alerts and events are tackled with precision. In a previous role, took charge of a diverse set of internal tools, such as EDR, SIEM, NDR, Secure Remote Access, Phish reporting and Simulation, as well as brand protection. Collaboration with different IT functions and stakeholders involved dealing with evolving threats, scrutinizing security controls, and evaluating new solutions to ensure alignment with best practices and internal digital security standards. A clear and engaging communicator, with the ability to build and maintain strong working relationships with colleagues and clients. Focused and adaptable, committed to continuous personal development and seeking a new professional challenge to apply a highly transferable skill set.

Overview

13
13
years of professional experience
2
2
Certification

Work History

Cyber Security Consultant

Resource Supply Pool
Wolverhampton, UK
12.2022 - 11.2022
  • Demonstrated proficiency in selecting, adopting, and adapting security control frameworks.
  • Took on the responsibility of drafting and communicating technical security policies, standards, and guidelines in alignment with NIST, ISO27001, and GDPR.
  • Collaborated closely with clients to enhance technical security measures, providing specialized expertise in risk mitigation and security enhancements.
  • Conducted comprehensive analysis and evaluation of security architectures, identifying vulnerabilities, and proposing effective remediation strategies.
  • Developed plans to safeguard computer files against modification, destruction, or disclosure.

Cyber Security Specialist

National Signals Bureau
09.2017 - 09.2021
  • Mentored junior team members on technical aspects of cybersecurity while fostering culture of continuous learning and improvement.
  • Performed risk analyses to identify appropriate security countermeasures.
  • Reduced cyber risks by conducting regular vulnerability assessments and penetration tests.
  • Collaborated with IT teams to ensure secure implementation of new software applications and systems.
  • Implemented multi-factor authentication methods to enhance user access controls, reducing unauthorized system access incidents.
  • Reviewed violations of computer security procedures and developed mitigation plans.
  • Optimized security infrastructure by evaluating, recommending, and implementing appropriate hardware and software upgrades.

Cyber Security Analyst

Millionsol Concepts
10.2013 - 09.2017
  • Oversaw management of cyber defense tool set, including but not limited to Endpoint Security, SIEM, Vulnerability Scanner (inclusive of AD Scanner), DLP Solution, Phishing Simulation tool, Web filtering, Network Security Monitoring, Privileged Remote Access, Privileged Access Management, User Password Vault, ICS Network Monitoring, Enterprise PKI, Offshore USB Anti-Malware Scanner, ICS Device Security Monitor, and Email filtering and phishing response.
  • Conducted routine risk assessments and vulnerability assessments to proactively identify potential threats and weaknesses across organization's infrastructure, systems, and processes.
  • Contributed insights to strategic roadmap for cyber defense capabilities and participated in development of business cases for new tooling or services.
  • Collaborated closely with wider IT Infrastructure team to effectively respond to security threats, execute technical remediation, and conduct root cause analysis.
  • Reviewed, created, and updated all Standard Operating Procedures and Policies to ensure alignment with evolving security standards and practices.
  • Administered and monitored firewalls, intrusion detection systems and anti-virus software to detect risks.

Junior Cyber Security Analyst

AIC Consults
11.2011 - 10.2013
  • Wrote and updated security plans to meet NIST 800.53 standards as a team
  • Participated in two security audits conducted by company, successfully gaining positive results from performance in task
  • Performed random security inspections for site containing 3000 employees to ensure validity and safety of all technical operations
  • Creating security awareness every week for over 3000 employees.

Network Administrator

AIC Consults
09.2009 - 11.2011
  • Supported various operating systems and server technologies
  • Guided and assisted users with technical issues, improving network performance and usability
  • Managed encryption platforms and policies to preserve business data
  • Tracked network and telephony devices for performance and load threshold metering
  • Secured network systems by establishing and enforcing access control policies
  • Provided smooth communications by configuring LAN technology, wireless access points and controllers

Education

Master of Science - Cyber Security

University of The West of England
Bristol, UK
11.2022

Information Technology

KAIPTC/E-Crime Bureau
Accra – Ghana
2017

Ethical Hacking Training - Information Security

Junisys Techno Service
Chennai - India
12.2016

Bachelor of Science - Land Economy

Kwame Nkrumah University of Science And Technology
Kumasi-Ghana
05.2008

Skills

  • Security Auditing
  • NIST Frameworks
  • Application security
  • Data Security
  • Data Encryption
  • Developing security plans
  • Configuration Management
  • Resource Allocation
  • Network Security Management
  • Phishing prevention
  • Vulnerability Assessment
  • Procedure Documentation
  • GDPR Compliance
  • Access Control
  • Security analytics
  • Firewall Management
  • Disaster Recovery
  • ISO 27001 Compliance
  • Information Governance
  • Network Security
  • Information Protection
  • Wireless Security
  • Risk Assessment
  • Patch management
  • SIEM management
  • Social Engineering
  • Penetration Testing
  • Disaster Recovery Planning
  • Privacy regulations
  • Security policy development
  • Security Planning
  • Endpoint Security

Certification

  • CISSP - Certified Information System Security Professional
  • CEH - Certified Ethical Hacker

Timeline

Cyber Security Consultant

Resource Supply Pool
12.2022 - 11.2022

Cyber Security Specialist

National Signals Bureau
09.2017 - 09.2021

Cyber Security Analyst

Millionsol Concepts
10.2013 - 09.2017

Junior Cyber Security Analyst

AIC Consults
11.2011 - 10.2013

Network Administrator

AIC Consults
09.2009 - 11.2011

Master of Science - Cyber Security

University of The West of England

Information Technology

KAIPTC/E-Crime Bureau

Ethical Hacking Training - Information Security

Junisys Techno Service

Bachelor of Science - Land Economy

Kwame Nkrumah University of Science And Technology
BRIGHT ADDAI