Jhakelinne Vasquez

Responsibilities

• Analyze EDR systems alerts: Crowdstrike, BitDefender, Sophos, Malwarebytes, SentinelOne.
• Conduct threat hunts for indicators of compromise (IoCs) and tactics, techniques, and procedures (TTPs) through evaluation of processes, connections, services, and scheduled tasks.
• Established customer's network baselines by adjusting suppression rules and AV exclusions to improve efficiency and effectiveness of incident response.
• Stay current on cyber threat actor tactics, techniques, and procedures, as well as zero-day vulnerabilities.
• Summarize, report, and present findings to peers during shift changeovers
• Communicate directly with customers on incidents or events in question.
• Successfully detected and enabled containment of ransomware attacks, malware infections, and lateral spread within customer networks.
• Review incident reports to understand chain of events, TTPs, IoCs, and recommended remediation activities.
• Create Elasticsearch queries to aid in Threat investigation
• Train new hires on company procedures and best practices for incident response and threat detection.
• Conduct leadless threat hunts upon customer request

Junior MDR Analyst

• Follow standardized playbook on escalating events for further analysis
• Utilize OSINT such as VirusTotal, CyberChef, Shodan, and NMAP to detect IoCs, and or vulnerabilities

• Utilized Wireshark to capture, analyze and troubleshoot network traffic and security issues
• Preformed monitoring and analysis of log data with Splunk
• Assisted in review of firewall rules to ensure compliance with security policies
• Gathered information from various sources to support threat investigations and incident response process.
• Implemented security solutions to enhance network and systems security.