Open To Work
Curt Maughs
Troy,NY
Summary
Accomplished SOC Manager with expertise in incident management, threat hunting, and security policy development. Proven ability to enhance cybersecurity protocols and train teams, ensuring organizational resilience against emerging threats.
Overview
26
26
years of professional experience
1
1
Certification
Work History
SOC Manager
Center for Internet Security
East Greenbush, New York
12.2013 - 11.2025
- Managed security operations for national and regional cybersecurity initiatives.
- Trained staff on security protocols and best practices.
- Coordinated stakeholder communication during critical incidents to ensure timely response and resolution.
- Provided technical support for network infrastructure configurations associated with security technologies.
- Researched emerging threats and vulnerabilities impacting business processes.
- Managed development, implementation, and maintenance of security policies, standards, guidelines, and procedures to enhance organizational security posture.
- Assisted in the development of training programs related to information security topics.
- Responded promptly to alerts generated by intrusion detection systems or other monitoring tools.
- Coordinated with internal teams on developing solutions that comply with organizational information security requirements.
- Investigated incidents of suspicious or malicious activity on networks, systems, and applications to identify vulnerabilities and mitigate risks.
- Analyzed system logs from multiple sources for suspicious activity or trends.
- Evaluated performance indicators to assess security control quality.
- Assisted organization with transition from Accenture to Securonix and Devo
- Assisted team with integrating EDR solutions (Crowdstrike and Sophos) into our workflow
- Educated staff about current tactics employed by APT groups in cybersecurity to improve security posture.
Senior SOC Analyst
Center for Internet Security
East Greenbush, New York
10.2011 - 11.2013
- Collaborated with Emerging Threats to enhance Suricata signatures, improving detection capabilities
- Started hunts for network activity for malicious threats (Started with MCIDs produced by Accenture
- Assisted what would become Engineering team in bringing NIDS, Suricata, devices online for monitoring
- Supported organization in prioritizing immediate deployment of critical Rulesets and identifying additional Rulesets for enhanced detection
Security Analyst
Center for Internet Security
East Greenbush, New York
04.2011 - 09.2011
- Analyzed security incidents to identify patterns and recommend solutions.
- Monitored network traffic to detect unusual activities and potential threats, enhancing overall security posture.
- Collaborated with teams to conduct vulnerability assessments and penetration tests.
- Researched emerging threats to stay updated on cybersecurity trends and best practices.
- Monitored security access logs and analyzed system events for suspicious activity.
- Analyzed alerts from intrusion detection systems to identify and mitigate potential attacks against corporate networks.
- Analyzed web traffic logs to detect anomalies or malicious activities.
- Assessed security risks, vulnerabilities, and threats to organization's systems and networks, informing proactive security measures.
- Consulted on network security measures such as firewalls, intrusion detection systems, antivirus software.
- Spoke at staff meetings to promote security awareness, drawing attention to examples of incidents and consequences and showing how to minimize risk of compromise.
- Identified possible "leakage" of company proprietary data to unauthorized resources and informed customer's stakeholders
- Participated in regular meetings with internal stakeholders to discuss current security trends, identify risk areas and propose solutions.
- Updated detailed monthly reports highlighting findings from Monthly detections
- Made recommendations to improve security procedures and systems.
- Mentored junior employees in departmental activities and procedures.
- Updated computer security policies and procedures upon learning of new risks.
Computer Network Security Consultant
Symantec
Albany, New York
10.2008 - 03.2011
- Monitored security alerts and incidents, detecting potential threats to safeguard network integrity.
- Analyzed network traffic for anomalies and suspicious activities.
- Collaborated with teams to improve incident response procedures.
- Provided training sessions on cybersecurity awareness for staff members.
- Analyzed logs from web servers, application servers, databases, IDS and IPS systems for potential security breaches.
- Collaborated with internal teams to enhance system performance and strengthen overall security posture of organization's infrastructure.
- Identified security threats, vulnerabilities and potential malicious activities through log analysis.
- Contributed to implementation of ZeroAccess network signature to enhance Symantec's threat detection.
MIS Manager
McGinn, Smith & Company
Albany, New York
08.2005 - 04.2008
- Implemented data governance policies to ensure compliance and security.
- Cultivated vendor relationships to enhance software procurement and support services.
- Oversaw IT budget planning and resource allocation for department needs.
- Developed user support initiatives that increased employee engagement with technology.
- Monitored industry trends in order to identify potential opportunities or risks.
- Maintained an effective working relationship with all levels of internal staff as well as external partners.
- Worked closely with senior management to develop IT strategy aligned with overall corporate objectives.
- Managed and developed the MIS department budget.
- Evaluated existing systems and pinpointed areas for enhancement.
- Provided guidance to IT staff regarding installation, configuration, and support of software applications.
- Evaluated organization’s technology to recommend upgrades for hardware and software.
- Procured IT resources for strategic and operational computing requirements.
Computer Systems Consultant
Mcginn, Smtih & company
Albany, New York
09.1999 - 07.2006
- Collaborated with teams to design and implement technology solutions that addressed client needs.
- Facilitated communication between stakeholders, ensuring alignment and clarity throughout project lifecycle.
- Researched industry trends to recommend innovative solutions for clients.
- Implemented security measures to protect against unauthorized access or data loss.
- Identified opportunities for process improvement through automation or workflow optimization.
- Researched emerging technologies and evaluated their potential application in the organization's environment.
- Implemented backup strategies for data protection and disaster recovery preparedness.
- Ensured compliance with industry standards such as NASD and SEC.
Education
High School Diploma -
06-1992
Some College (No Degree) - Computer Systems Engineering
Skills
- Incident management
- Threat Detection
- Threat and Vulnerability Management
- Threat hunting
- Security Monitoring
- Vulnerability assessment
- Penetration Testing
- Network traffic analysis
- Application Security
- IPS/IDS
- Firewalls
- Nessus
- Cybersecurity training
- Computer Security
- Networking
- Security policy development
Certification
CISSP, CISA, CISM, GDAT, GSMA, GCCC, GMON, GSLC, Comptia Security +
Work Preference
Job Search Status
Open to workWork Type
Full TimeLocation Preference
On-SiteRemoteSalary Range
$100000/yr - $200000/yrTimeline
SOC Manager - Center for Internet Security
12.2013 - 11.2025
Senior SOC Analyst - Center for Internet Security
10.2011 - 11.2013
Security Analyst - Center for Internet Security
04.2011 - 09.2011
Computer Network Security Consultant - Symantec
10.2008 - 03.2011
MIS Manager - McGinn, Smith & Company
08.2005 - 04.2008
Computer Systems Consultant - Mcginn, Smtih & company
09.1999 - 07.2006
Nazareth Regional HS - High School Diploma,
Rensselaer Polytechnic Institute - Some College (No Degree), Computer Systems Engineering