Jonathan Michael Mikaily
Herndon,VA
Summary
Cybersecurity professional with hands-on experience in vulnerability management, SOC operations, SIEM monitoring, and endpoint remediation within a FedRAMP-aligned environment. Experienced using Qualys VMDR, Elastic SIEM, KQL, and Windows Event Logs to identify security risks, support remediation efforts, and improve endpoint security posture across enterprise systems. Seeking to leverage my background in security operations and vulnerability management to contribute to a cybersecurity-focused team.
Overview
4
4
years of professional experience
1
1
Certification
Work History
Control Room Security Specialist
Securitas Security Services USA
McLean, Virginia
05.2026 - Current
- Monitored CCTV, alarm systems, and access control systems to proactively identify and respond to security events, ensuring safety and security within the facility.
- Investigated and escalated suspicious activity, alarms, and incidents following established procedures.
- Documented incidents and tracked activity logs, providing timely updates to onsite teams and management to facilitate informed decision-making.
- Assisted with badge/access issues, coordinating responses to security-related events to maintain operational integrity and safety.
Threat & Vulnerability Management Specialist / NOC-SOC Analyst
NexgenID
11.2024 - 03.2026
- Conducted vulnerability scans using Qualys VMDR across 200+ assets (50+ employee endpoints), identifying security gaps and misconfigurations.
- Analyzed scan results, reduced false positives, and prioritized remediation using CVSS, asset criticality, and real-world risk.
- Created vulnerability reports with clear remediation guidance and worked directly with system owners and engineering teams to ensure vulnerabilities were understood and addressed.
- Executed patching and remediation across endpoints, applying updates, configuration fixes, and system hardening, ensuring security without a dedicated IT team.
- Partnered with DevOps to develop and implement remediation solutions for more complex vulnerabilities.
- Developed and managed a workstation remediation tracking system, mapping vulnerabilities to asset owners and enforcing severity-based deadlines to enhance accountability.
- Tuned Elastic SIEM detection rules and queries (KQL, Lucene), triaging alerts from Windows Event Logs to promptly identify and respond to suspicious activity.
- Implemented Elastic ILM optimization and supported infrastructure/security initiatives including DNS migration and Azure AD updates for FedRAMP requirements.
Security Specialist
Allied Universal – Amazon/AWS
10.2022 - 12.2023
- Monitored security systems and responded to incidents, escalating critical issues to ensure rapid resolution.
- Troubleshot access issues and verified permissions for restricted areas, ensuring secure operations.
- Managed access requests through ServiceNow tickets, facilitating badge creation and access provisioning for employees.
Education
B.S. - Cybersecurity Engineering
George Mason University
05-2025
Skills
- Vulnerability Scanning & Assessment
- Vulnerability Remediation
- Risk Prioritization
- Incident Triage
- SIEM Monitoring
- Log Analysis
- NIST Cybersecurity Framework
- Identity & Access Management (IAM)
- Endpoint Patch Management
- Windows Security Hardening
- Threat Analysis
- CVSS Scoring
- Elastic SIEM
- FedRAMP Compliance
- Asset Identification
- POA&M Documentation
- Vulnerability Reporting
Certification
- CompTIA Security+ Certification
Projects
- Workstation Vulnerability Tracker & Employee Remediation Workflow, Designed process for distributing Qualys workstation reports, set completion deadlines, and tracked employee remediation progress.
- Elastic ILM Lifecycle & Shard Optimization, Developed policies for hot/cold/frozen storage tiers, optimized shard allocation to balance performance and storage.
- SIEM Playbook Development, Authored guide for SOC analysts to query and analyze Windows Event Logs in Elastic SIEM.
- Gap Analysis & Remediation Initiative conducted vulnerability gap analysis alongside security and DevOps teams to identify recurring security weaknesses and support remediation and hardening efforts across enterprise endpoints and infrastructure.
Timeline
Control Room Security Specialist
Securitas Security Services USA
05.2026 - Current
Threat & Vulnerability Management Specialist / NOC-SOC Analyst
NexgenID
11.2024 - 03.2026
Security Specialist
Allied Universal – Amazon/AWS
10.2022 - 12.2023
B.S. - Cybersecurity Engineering
George Mason University