Connor Smith
Little Elm,Texas
Summary
Highly analytical Security Analyst specializing in real-time threat triage and incident investigation. Proven ability to rapidly assess security alerts from diverse sources (Microsoft 365 Defender, SentinelOne, CrowdStrike, Palo Alto Cortex XDR) to identify genuine threats and minimize false positives. Adept at correlating events, escalating critical incidents, and contributing to proactive improvements through tuning and automation within a Security Operations Center.
Overview
8
8
years of professional experience
1
1
Certification
Work History
Principal Security Analyst
Critical Start
02.2025 - Current
- Rapidly monitor and triage a high volume of security alerts from Microsoft 365 Defender, Microsoft Sentinel, SentinelOne, CrowdStrike, Palo Alto Cortex XDR, and SIEM solutions to identify potential threats.
- Analyze and prioritize alerts, effectively differentiating false positives from real security incidents to ensure efficient response and minimize disruption.
- Perform initial containment actions within tool consoles in response to security incidents while adhering to SOC Standard Operating Procedures (SOP) and client Rules of Engagement (ROE).
- Correlate security events across Microsoft 365, Defender for Endpoint, Azure AD, and other Microsoft security products to establish timelines and assess potential impact.
- Escalate confirmed or suspected critical incidents to senior analysts and incident response teams with clear and concise documentation.
- Collaborate with clients to refine detection rules and improve alert accuracy based on triage findings.
- Develop and maintain orchestration playbooks to automate repetitive tasks, streamline workflows, and enhance overall SOC efficiency.
- Stay current on emerging threats, attack techniques, and evolving tactics through continuous learning and threat intelligence feeds.
- Mentor junior analysts by providing guidance on incident analysis and best practices for effective triage.
Senior Security Analyst
Critical Start
05.2024 - 02.2025
Security Analyst
Critical Start
07.2023 - 05.2024
Security Officer III
Encore Wire
09.2021 - 07.2023
- Monitored security systems and responded to alerts, identifying potential security breaches and escalating concerns as needed.
- Controlled inbound and outbound traffic on company property, maintaining situational awareness of access points.
- Maintained detailed logs of truck loads using spreadsheets and documented load information and customer/truck information online using NetSuite.
- Completed reports by recording observations, information, occurrences, and surveillance activities.
Detention Officer
Collin County Sheriff's Office
08.2017 - 09.2021
- Maintained a secure environment through vigilant observation and adherence to established protocols.
- Ensured the protection of individuals by promptly identifying and reporting potential security risks.
- Documented incidents accurately and thoroughly, contributing to comprehensive records.
- Responded promptly to emergency situations and provided necessary aid.
- Responded swiftly to emergency situations with appropriate use of force when necessary to protect both inmates' well-being and facility security.
Education
Criminal Justice
Collin College
Plano, TexasCybersecurity
Cybersecurity Bootcamp | QuickStart Inc.
03-2023
Skills
- Security Tools & Technologies: Microsoft Defender, Microsoft Sentinel, Palo Alto Cortex XDR, SentinelOne, CrowdStrike, SIEM solutions (Splunk, Devo)
- Incident Response & Triage: Incident triage and prioritization, Malware detection and analysis fundamentals, Phishing email analysis and identity remediation, Network traffic analysis, Threat hunting basics
- Operating Systems & Security Concepts: Windows security and event logging, GNU/Linux command line basics, Active Directory security concepts
- Soft Skills: Critical thinking under pressure, Strong attention to detail, Pattern recognition in security data, Logical and methodical approach to investigations, Clear and concise incident reporting, Ability to explain technical findings to non-technical teams, Effective teamwork within a SOC environment, Making quick and informed decisions based on limited data
Certification
- CompTIA Security+ - CompTIA.
- CompTIA CySA+ - CompTIA.
Timeline
Principal Security Analyst
Critical Start
02.2025 - Current
Senior Security Analyst
Critical Start
05.2024 - 02.2025
Security Analyst
Critical Start
07.2023 - 05.2024
Security Officer III
Encore Wire
09.2021 - 07.2023
Detention Officer
Collin County Sheriff's Office
08.2017 - 09.2021
Criminal Justice
Collin College
Cybersecurity
Cybersecurity Bootcamp | QuickStart Inc.
Similar Profiles
Seth SteedSeth Steed
Principal Security Analyst at Critical StartPrincipal Security Analyst at Critical Start
Javeria AhmedJaveria Ahmed
Director of Accounting at Critical StartDirector of Accounting at Critical Start
Hunter TuraskyHunter Turasky
Business Development Representative at CRITICAL STARTBusiness Development Representative at CRITICAL START
Tariq MuhammadTariq Muhammad
Senior SOC Analyst at Critical StartSenior SOC Analyst at Critical Start
Jaylon JordanJaylon Jordan
Cook at BojanglesCook at Bojangles