Tyler Smith
BUCKEYE,AZ
Summary
Information security professional with 9 years of experience protecting client's sensitive data and information systems. Expert knowledge backed by industry certifications that include CompTIA Security+ and CySA+ as well as GIAC GSEC. Detail oriented and capable of working with minimal supervision while staying calm under pressure and is able to adapt and learn quickly in changing environments. Seeking opportunities to expand my skill set and overcome new challenges.
Overview
9
9
years of professional experience
1
1
Certification
Work History
Senior Vulnerability Analyst
Webster Bank
12.2022 - Current
- Managed the life-cycle of vulnerabilities from detection to remediation using a risk based approached to prioritization to efficiently focus and fix critical findings.
- Collaborated with a multitude of teams and business services to create remediation strategies for findings.
- Performed risk analysis on vulnerability findings using CVE and EPSS scores to assist remediation teams in prioritizing multiple findings
- Created and operationalized new programs and workflows related to attack surface management to increase visibility of vulnerable findings beyond the capabilities of traditional vulnerability scanning
- Continuously created and updated documentation related to the daily operations of vulnerability management, including standards, runbooks, and procedures
Security Analyst II
Colorado Housing and Finance Authority
03.2017 - 09.2022
- Created a comprehensive NIST 800-53 aligned Information Security Plan that lead to company wide security improvements and new initiatives
- First response and triage of Rapid7 SIEM alerts that lead to better baselines for false positives and stopped true positive alerts from becoming further compromises
- Utilized Rapid7 IVM vulnerability data to create actionable remediation plans that reduced risk to valuable assets and critical data that prevented them from becoming compromised
- Conducted regular threat hunting on high risk and critical assets with NMAP and Metasploit that proactively found and remediated vulnerabilities before they became security events or alerts
- Collaborated with the Privacy Officer to perform vendor reviews and ensured vendor's data policies and practices were aligned with company practices.
Security Analyst
Trustwave
11.2015 - 05.2016
- Analyzed Splunk and Fortinet UTM Firewall data to provide troubleshooting support for clients in real time and solve problems in a quick and efficient manner
- Worked with client IT teams to provide implementation services for Fortinet UTM Firewalls to ensure the new security hardware integrated smoothly with the current information system architecture
- Provided SOC services for clients in varying industries and of various sizes to ensure concerns were addressed and escalated as necessary
- Assisted with network troubleshooting and business continuity services when managed services were malfunctioning or misconfigured.
Education
Colorado Mesa University
Grand Junction, COSkills
- Vulnerability Management
- Detail Oriented
- SIEM Management
- Incident Response
- Defense-In-Depth Strategies
- Data Analysis/Triage
- Verbal/Digital Communication
- Privacy Standards
Websites
Certification
GIAC - GSEC
CompTIA - Security+, CySA+
Timeline
Senior Vulnerability Analyst
Webster Bank
12.2022 - Current
Security Analyst II
Colorado Housing and Finance Authority
03.2017 - 09.2022
Security Analyst
Trustwave
11.2015 - 05.2016
Colorado Mesa University
Similar Profiles
Angela MatadobraAngela Matadobra
Senior Relationship Manager at Webster BankSenior Relationship Manager at Webster Bank
JOHN SOROCENSKIJOHN SOROCENSKI
Private Client Relationships Manager at Webster BankPrivate Client Relationships Manager at Webster Bank
Gopi Krishna YaraganaboinaGopi Krishna Yaraganaboina
Java Full Stack Developer at Webster BankJava Full Stack Developer at Webster Bank