Summary
Overview
Work History
Education
Skills
Software
Certification
Work Availability
Quote
Timeline
Generic
David Silva

David Silva

Senior Security Operations Analyst
Daytona Beach,FL

Summary

Cyber security professional with over 8 years of progressive experience developing and implementing security solutions in face-paced environments. Demonstrated skill identifying business risks and compliance issues and designing proactive solutions. Background designing and implementing layered network security approaches and incident response.

Overview

8
8
years of professional experience
2
2
Certifications

Work History

Senior Security Operations Analyst

Roman Heath Ventures
Manhattan, NY
10.2021 - 06.2022
  • Developed custom XQL Queries within the Palo Alto Ecosystem to identify suspicious behavior during Threat Hunting exercises
  • Created custom correlation rules within the Palo Alto Ecosystem to enhance SOC detection capabilities
  • Crafted queries to easily identify suspicious user or malicious activity taken against proprietary web applications within multiple cloud security tools
  • Identified and investigated suspicious activities within GSuite Environment and triage ongoing phishing attacks
  • Identified security policy violations, host misconfigurations, and created custom alerts within a cloud environment
  • Created custom alert workflows and automation to enhance and facilitate SOC detection capabilities and decrease MTTR
  • Worked alongside the facilities department to react and identify emergent and ongoing attacks against company physical assets

Senior Security Engineer

US Air Force
Philadelphia, PA
08.2008 - Current
  • Analyzed malware using different forensic tools
  • Created reports on identifying APTs using MITRE Frameworks
  • Performed and reviewed technical security assessments to identify points of vulnerability and non-compliance with established information security standards and recommend mitigation strategies.
  • Counseled senior-level management on current privacy and security trends and recommendations to mitigate risk.
  • Created and implemented mission plans using PBED and ME3C-(PC)2
  • Developed, implemented, and documented security programs and policies and monitored compliance across departments.
  • Conducted Red Team and Blue Team exercises to identify potential vulnerabilities.
  • Utilized different Intrusion Detection System (IDS) solutions to complete missions.
  • Led teams of up to five people in developing and implementing security systems, resulting in fewer threats.

Senior Security Analyst

Kearny Bank
Fairfield, NJ
05.2021 - 10.2021
  • Established company-wide security best practices and protocols to mitigate risk of data breach.
  • Provided safety reports and data analysis to building managers to inform security processes.
  • Recommend improvements in security systems and procedures.
  • Decreased security incidents by 30% through SIEM Rule Tuning.
  • Monitored use of data files and regulated access to protect secure information.
  • Reviewed violations of computer security procedures and developed mitigation plans.
  • Monitored computer virus reports to determine when to update virus protection systems.
  • Conducted security audits to identify vulnerabilities.
  • Researched and developed new computer forensic tools.
  • Developed plans to safeguard computer files against modification, destruction or disclosure.

Security Analyst

Suez North America
Paramus, NJ
01.2019 - 05.2021
  • Performed risk analyses to identify appropriate security countermeasures.
  • Recommend improvements in security systems and procedures.
  • Correlated events using information from different security tools within the enterprise to investigate large scale and complex security incidents and determine its impact
  • Maintained and developed rules for LogRhythm
  • Developed plans to safeguard computer files against modification, destruction or disclosure using Varonis.
  • Conducted security audits to identify vulnerabilities using Rapid 7.
  • Enhanced and administered detection and Incident Response capabilities of in-place security solutions
  • Led security team in delivery of CyberArks EPM system, resulting in the ability to monitor and control local admin accounts.
  • Assisted in selecting appropriate Intrusion Detection System (IDS) solutions for implementation at SCADA/ICS facilities.
  • Offered preventative training to harden personnel against intrusion vectors such as phishing, ransomware and more.
  • Developed and maintained company-wide endpoint security solutions.
  • Installed and maintained commercial firewall solution, working with security vendors to consistently apply best practices and software updates.
  • Coordinated with third-party security information and event management (SIEM) providers to maintain protections and predict threats.
  • Authored security and vulnerability reports, detailing logged incidents and suggesting remediation efforts.
  • Identified and researched new APT TTP's

Network Security Administrator

Turtle & Hughes Inc.
Linden, NJ
12.2017 - 12.2018
  • Designed standardized incident logging system to track historical incursions while helping prevent future breaches.
  • Created and implemented security network framework to numerous devices across geographical locations.
  • Established company-wide security best practices and protocols to mitigate risk of data breach.
  • Validated and verified system security requirements definitions and analyzed system security designs.
  • Performed risk and vulnerability assessments and provided results and recommendations to senior management.
  • Produced average of 30 closed trouble tickets a day.

Network Security Administrator

Utilities Commission Of NSB
New Smyrna Beach, FL
02.2015 - 03.2016
  • Maintained strict adherence to regulations such as payment card industry (PCI) data security standard.
  • Managed Nessus, Snort, Sguil, and other IDS products to perform security audits as well as generate vulnerability reports and suggested remediation efforts.
  • Created scripts using powershell and python to assist in day to day activities.
  • Identified, selected and deployed encryption solutions to increase data protection for over 200 customers.

Education

Bachelor of Science - Information Technology

New Jersey Institute of Technology
Newark, NJ
Jan 2012 - May 2016

Skills

    Security Application Development

undefined

Software

Varonis

Crowdstrike AV

ZScaler

Cortex XDR

LogRythm (SIEM)

Splunk (SIEM)

CyberArk

AWS / GSuite

Qualys

Datadog

Palo Alto

Certification

CompTIA Security+

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Quote

Success is not final; failure is not fatal: It is the courage to continue that counts.
Winston S. Churchill

Timeline

Senior Security Operations Analyst

Roman Heath Ventures
10.2021 - 06.2022

Senior Security Analyst

Kearny Bank
05.2021 - 10.2021

CompTIA Security+

08-2020

TS / SCI Clearance

04-2020

Security Analyst

Suez North America
01.2019 - 05.2021

Network Security Administrator

Turtle & Hughes Inc.
12.2017 - 12.2018

Network Security Administrator

Utilities Commission Of NSB
02.2015 - 03.2016

Senior Security Engineer

US Air Force
08.2008 - Current

Bachelor of Science - Information Technology

New Jersey Institute of Technology
Jan 2012 - May 2016

Similar Profiles

CREATE PROFILE
David SilvaSenior Security Operations Analyst