Cye Murphy
Pittsburgh,PA
Summary
Security Specialist with extensive experience in security protocols, risk assessment, and vulnerability management. Proven track record in developing effective security strategies and leading teams to enforce safety measures. Expertise in proactively resolving complex security challenges, enhancing system robustness and reliability. Committed to continuous improvement in security operations and risk mitigation.
Overview
9
9
years of professional experience
Work History
Security Specialist, Attack Surface Management
PNC Bank
03.2020 - Current
- Managed deployment and testing of Tanium Comply across enterprise workstations, utilizing SysTrack to assess endpoint health and pinpoint performance issues.
- Coordinated with internal patching teams to assess Tanium vulnerability scan data on endpoints and deploy necessary patches.
- Implemented agent-based vulnerability scans utilizing Tanium, delivering in batches to alleviate data congestion.
- Collaborated with Cyber teams to establish innovative automation and testing strategies for Tanium, Tenable, and Defender, strengthening incident response capabilities and promoting more efficient security operations.
- Developed security policies and procedures for the organization in accordance with industry standards.
- Leveraged Git Bash commands to refresh Red Hat container images and implement upgrades in production environments, optimizing system stability, security, and data protection.
- Evaluated AWS ECR Container Image vulnerability reports, alerting relevant patch teams about identified issues.
- Configured queries using Microsoft Azure to obtain vulnerability data from server and container environments.
- Tracked and evaluated security alerts on endpoint, network, and cloud platforms utilizing SIEM to ensure prompt detection of suspicious activity.
- Provided support during audits to ensure compliance with security regulations.
- Directed onboarding of new employees, facilitating training initiatives and managing access to security applications.
Security Analyst, Scanning & Discovery
PNC Bank
11.2017 - 02.2020
- Enhanced the Enterprise Vulnerability Scanning program by increasing scanning frequency, overseeing compliance, and facilitating automated scan reports.
- Developed Tenable Nessus Scanners and Security Centers to ensure comprehensive scan coverage across the enterprise attack surface.
- Executed authenticated scans for Windows and Linux servers utilizing CyberArk accounts integration with Tenable for credentialed scanning.
- Initiated change and firewall requests to improve network security infrastructure coverage for Nessus scanners.
- Validated remediation efforts to guarantee partners accurately implement essential patches to servers and applications.
- Implemented external network scanning via Qualys and Tenable.io, developing strategic remediation plans within scope to fortify network security.
- Re-certified Tenable plugins by aligning vulnerability definitions with internal severity ratings.
- Collected and recorded weekly scanning metrics to monitor scanning activity and convey insights to technical and non-technical stakeholders.
- Advised partners on vulnerability remediation, application security design best practices, and threat modeling for critical applications, utilizing analytical skills to drive enhancements.
Rotational Program - BSA/Risk Management/App Development
PNC Bank
06.2017 - 10.2017
- Utilized CSS and Javascript to upgrade features within PNC Virtual Wallet application.
- Hardened policies to adhere to PNC standards, reducing system attack surface while elevating security protocols.
- Developed technical business plans for Asset Management Team, providing comprehensive knowledge base evaluations.
- Designed activity diagrams to illustrate the records retention and destruction process for PNC.
- Created comprehensive database to oversee inventory and sustain data retention files organization-wide.
Education
Bachelor of Science - Information Sciences & Technology
The Pennsylvania State University
University Park, PA05.2017
Certificate - Strategy and Innovation
Carnegie Mellon University, Tepper School of Business
Pittsburgh, PASkills
- Python
- Git Bash
- Javascript
- CSS
- SQL
- HIPAA
- NIST CSF
- NIST 800-53
- PCI-DSS
- ISO 27001/02
- OWASP Top 10
- CWE Top 25
- CIS Framework
- Windows
- Mac OSX
- Linux/Unix
- Red Hat
- Kali Linux
- Tanium
- Tenable Nessus
- Tenableio
- Qualys
- Sysdig
- Microsoft Defender
- Microsoft Azure
- Microsoft Office
- AWS
- Visual Studios
- Systrack
- BlueCat
- Splunk
- PowerBI
- ServiceNow
- Vulnerability Scanning
- Network Security
- Application Security
- Cloud security
Timeline
Security Specialist, Attack Surface Management
PNC Bank
03.2020 - Current
Security Analyst, Scanning & Discovery
PNC Bank
11.2017 - 02.2020
Rotational Program - BSA/Risk Management/App Development
PNC Bank
06.2017 - 10.2017
Bachelor of Science - Information Sciences & Technology
The Pennsylvania State University
Certificate - Strategy and Innovation
Carnegie Mellon University, Tepper School of Business