Kingsley Oriaku

Conduct log analysis on Splunk Enterprise and IBM QRadar SIEM solutions and provide recommendations to the technical teams via IBM Resilient and Jira ticketing system

• Monitor and analyze SIEM alerts through Splunk Enterprise and IBM QRadar and identify security anomalies for investigation and remediation
• Conduct analysis to determine the legitimacy of files, domains and emails using OSINT tools such as VirusTotal, IBM X-Force, Entral Ops, Abuse IP, URL Scan, Hybrid Analysis, Any Run, Joe Sandbox, Whois Lookup, PhishTank and MX Toolbox.
• Familiarity with fundamentals of information security including network technologies and tools, identity and access management, network security, implementing secure systems and risk management.
• Analyze PCAP files , narrow down anomaly traffic with Wireshark, examine the details of the infected hosts and write IOC on executive summary reports
• Experience in using various tools like NMap, Hydra, Tenable Nessus, SOC Radar, Kali Linux
• Review existing policies and guidance to ensure compliance with National Institutes of Technology (NIST) Risk Framework.

· Provide desktop, laptop, and tablet computer technical support to a team of 2000+ remote and in-office users

· Configure/Troubleshoot computer systems and applications on Windows 10 systems including Office 365 issues.

· Coordinate/Design testing plans for the new company websites.

· Monitor and respond quickly and effectively to requests received through the IT Helpdesk Tier I staff via phone, e-mail, or the ITSM (IT Service Management) software. This includes but isn't limited to modifying local and network configurations, utilities, software, hardware for PC's and laptops.

· Configure laptops with Check Point full disk encryption. Assisted users in lock outs, password resets, and account creation.

· Execute analysis of email-based threats to include understanding of email communications, headers, transactions, identification of malicious tactics, and techniques.

· Troubleshoot Active Directory issues from an end user perspective.

· Deploy, manage, and assist in the maintenance and/or repair of IT devices including phones, laptops, desktops, tablets, handhelds, and printers.

· Create and modify Distribution Groups by adding and removing users.

· Use Active Directory to grant user permission, reset passwords, and enable/disable accounts.

· Use Active Directory to give/ remove access to roles and groups.

· Create high quality procedure documentation for end users during deployments. Work with Tier 2 to make documentation as clear and concise as possible.

· Map appropriate printer and shared drives to employee computers.

80 Hours Cybersecurity Training (Government & Commercial)

• Worked on Risk Management Framework, NIST 800-53, Plan of Action & Milestone (POA&M)
• Hands on lab: Nessus, Splunk, Snort, Kali Linux, Windows, Linux, and SQL.
• Experience with Penetration testing and searching for vulnerabilities in databases
• Course specializing in Security Operations Center (SOC) Process and Tools
• Vulnerability Scanning and Tools
• IT Security Fundamentals