Summary
Overview
Work History
Education
Skills
Technical Skills Summary
Certificates And Training
Clearance
Citizenship
Timeline
Generic

GIRUM DAGNE

Springfield,VA

Summary

Security Specialist with 10+ years’ experience in security operations environment to include security analysis monitoring, malware analysis, auditing activities, project and team managing, and triage in support of incident response Extensive experience conducting vulnerability and risk mitigation, security and systems analysis, and risk assessment Excellent Network Intrusion Analysis experience to include PCAP analysis with various tools, large-scale net flow analysis, log analysis, intermediate bash scripting, data ingestion, Splunk ( Enterprise Security) ArcSight ESM/Logger

Overview

19
19
years of professional experience

Work History

Security Specialist

NTT DATA Federal Services
08.2023 - Current
  • Continuous monitoring and interpretation of treats using the EDR solutions
  • Investigate malicious phishing emails, domains and IPs using open source tools and recommend proper blocking and purging based on analysis
  • Rescan mitigated systems for further infections
  • If none, commission systems back to the network
  • Conduct research on new and evolving threat and vulnerabilities with potential to impact the monitoring environment
  • Conduct Log analysis using Splunk
  • Identify suspicious/malicious activities or codes.

Network Security

General Dynamics Information Technology
10.2019 - 08.2023
  • Monitor and analyze security events and logs from various sources, such as firewalls, Microsoft Defender, intrusion detection systems, Splunk, McAfee ePO
  • Investigate security incidents and breaches, and provide recommendations for remediation
  • Collaborate with other teams to ensure security requirements are met.

Security Specialist IV - Network and Information Security

Verizon
Ashburn, VA
08.2008 - 06.2019
  • Serves as a member of the US Army Reserve Command (USARC) Computer Incident Response Team
  • Provides incident response and mitigation tactics for all detected and reported incidents within the incident response lifecycle
  • Performs threat analysis and triage of complex security events
  • Provides analysis of logs, network, malware and devices as situationally required to ensure remediation of security threats and vulnerabilities
  • Leveraging existing intelligence to quickly identify malicious behavior, respond accordingly, and generate additional pieces of intelligence
  • Conduct IDS/IPS sensor analysis of payload to determine if network activity is malicious in nature
  • Analyzes suspicious e-mails and their headers to determine threat posed by potential phishing/spam and provided recommendations as how to mitigate the threat
  • Provide real-time security monitoring and incident reporting of IT security issues on the customer’s network and IT infrastructure
  • Coordinates with SIEM architects to improve detection process and handle high priority incidents
  • Creating hundreds of custom scripts to automate processes using Bash
  • Assists in development of internal documentation, procedures and customer reports
  • Environment: Splunk, ArcSight (SIEM), FireEye, Bash, Active Directory, Stealth watch, McAfee, Juniper, Cisco, BlueCoat Proxy, Windows 7/10, Linux RedHat.

Network Operations Analyst

AOL
Ashburn, VA
06.2005 - 10.2008
  • Working knowledge of security concepts related to risk and compliance
  • Performing second level diagnosis, troubleshooting, and resolution for intermediate to complex voice communication network issues
  • Incident Management: engaged required resources, documented timeline from start to restoral of incident
  • Generated ad hoc reports
  • Monitored disk space and CPU utilization
  • Run scripts for SQL query tasks
  • Created, managed and resolved Remedy incident tickets
  • Operated in a 24x7x365 network operations center (NOC)
  • Environment: Splunk, ArcSight (SIEM), FireEye, Bash, Active Directory, Stealth watch, McAfee, Juniper, Cisco, BlueCoat Proxy, SQL, Remedy, Windows 7/10.

Education

Bachelor of Science in Telecommunication Engineering Technology -

Capitol Technology University
01.2005

Skills

  • InfoSec
  • Cybersecurity
  • Incident Response
  • Intrusion Detection
  • Evidence collection
  • Incident Reporting
  • Excellent Communication
  • Critical Thinking
  • Teamwork and Collaboration
  • Network Monitoring Software
  • Attention to Detail
  • Analytical Thinking
  • Student security
  • Problem-Solving
  • Team Player
  • Active Listening
  • Punctuality
  • Honest and Dependable
  • Analytical Skills
  • Continuous Improvement

Technical Skills Summary

Operating Systems: Microsoft Windows 95 – Windows 10, UNIX (Solaris), Linux (RedHat), Mac OSX Software/ Applications: Splunk, ArcSight, EDR (Microsoft Defender) Crowd strike, Vectra, Lookout, Workplace ONE, Qualys, ServiceNow (McAfee ePO ), Cisco Firepower Management Console, Bluecoat Proxy, Mandiant Threat Intelligence, Stealth watch , Dynatrace-fed ramp, Net Witness, Tanium, Tenable, DHCP, Active Directory, Spectrum, Firewall Log Analyzer, CSIMS(FAA) , Remedy

Certificates And Training

  • Certified Ethical Hacker (2019)
  • CASP CE (2012)
  • CompTIA Security+ CE (2008)
  • ITIL (2008)

Clearance

Secret

Citizenship

U.S. Citizen

Timeline

Security Specialist

NTT DATA Federal Services
08.2023 - Current

Network Security

General Dynamics Information Technology
10.2019 - 08.2023

Security Specialist IV - Network and Information Security

Verizon
08.2008 - 06.2019

Network Operations Analyst

AOL
06.2005 - 10.2008

Bachelor of Science in Telecommunication Engineering Technology -

Capitol Technology University

Similar Profiles

CREATE PROFILE
GIRUM DAGNE