Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Krystal Evans

Augusta,GA

Summary

Experienced cyber security professional with a strong ability to identify and effectively manage cyber security risks. Specialized training in analyzing, interpreting, and communicating cyber security log events, incidents, and vulnerability management. Demonstrated expertise in utilizing a wide range of information security technologies, including Active Directory provisioning, Rapid7 InsightVM, Qualys VMDR, Darktrace, KnowBe4, OpenVAS, Tenable NESSUS, Passportal, Darkweb ID, and CrowdStrike. Skilled in leading incident response exercises, conducting security awareness training, and developing playbooks for analysts. Known for collaborative approach in working with IT units to efficiently mitigate environmental risks.

Overview

7
7
years of professional experience

Work History

Senior Vulnerability and Risk Analyst

Ericsson
07.2024 - Current
  • Conducted Vulnerability Scans using tools such as Qualys VMDR to identify security weakness, collaborated with cross- functional teams to remediate vulnerabilities, and ensure timely resolution to main a secure and compliant environment
  • Assessed Emerging Threat through ongoing research and monitoring of industry trends, proactively addressing potential threats before they materialized into significant issues.
  • Conducted detailed Risk Assessment, evaluating potential security threat, prioritizing vulnerabilities, and recommending mitigation strategies to safeguard organizational assets and ensure regulatory compliance.
  • Implemented Vulnerability Management Processes, leading to the identification and remediation of critical and high risks, thus safeguarding enterprise data.

Senior Security Analyst

Cradlepoint, Part of Ericsson
11.2021 - 07.2024
  • Primary Vulnerability Management Analyst Implementing Rapid7 Insight VM and Ivanti into the organization and maintained the platform and vulnerability management activities from 11/2021-5/2022. Responsibilities included identification of vulnerabilities,reaching out to remediation teams to apply fixes, working with Desktop support to implement workstation support. Worked with the entire business to address penetration test findings to get these vulnerabilities closed.
  • Lead SOC Analyst and Subject Matter expert (SME) status in two critical platforms, Darktrace, Knowbe4 and managed a suite of security tools. Implemented cutting-edge security tools for detecting, preventing, and analyzing security threats, bolstering our cyber
  • Lead Incident Response table-top exercises, enhancing team preparedness and response capabilities. Created scenarios and organized activities surrounding the implementation of companywide exercise. Updated and improved the incident response form, streamlining and enhancing incident management processes.
  • Lead Security Awareness Exercises developed and delivered engaging security awareness training sessions using the KnowBe4 platform, such as phishing simulation training, educating our staff on the best practices for maintaining a secure computing environment.

SOC Analyst

Computer Integration Technologies
05.2019 - 11.2021
  • Lead Vulnerability Analyst Conducted vulnerability scans to identify at-risk systems and developed remediation plans to address issues. Using vulnerability management tools such as Tenable NESSUS and OpenVAS. Provided recommendations for improving the overall security architecture of the organization, with a focus on enhancing
    threat detection and response capabilities. Performed audits on various firewalls, such as SonicWall, Palo Alto, WatchGuard, and Cisco ASA and assisted with remediation efforts.
  • Lead Analyst creating SOC playbooks Many comprehensive playbooks built based on lessons learned from triaging and remediating incidents, addressing common SIEM alerts, and business email compromises.
  • Primary Security Operations Analyst for all customers seeking assistance from the SOC, leveraging strong
    communication and problem-solving skills to provide timely and effective support. Deployed multiple security products to over 50 clients, including Dark Web scanning, Passportal password manager, and advance SIEM/AI tools like AlienVault and Darktrace, to enhance the organization's security posture.

IT Security Intern

Spectrum Brands
05.2018 - 08.2018
  • Successfully reduced ticket resolution time to under 24 hours by optimizing processes and showcasing technical proficiency
  • Effectively managed ServiceNow ticketing queue, prioritizing based on urgency to minimize downtime and uphold productivity
  • Delivered exceptional customer service, resolving issues promptly and courteously
  • Provisioned new user accounts and security groups in Active Directory, ensuring timely and accurate setup of accounts to facilitate user access to key systems and applications

Education

Bachelor of Science - Computer Networking and Information Technology

University of Wisconsin-Stout
Menomonie, WI
05-2019

Skills

  • Execution - Proven track record bringing successful outcomes to the business
  • Teamwork / Collaboration – Consistently achieved results through teamwork across diverse teams
  • Communication - Demonstrated talent to effectively increase risk understanding across the organization
  • Courage – Recognized for performing difficult roles with integrity and respect

Certification

  • Security + (Exp 2025)
  • Network + (Exp 2025)

Timeline

Senior Vulnerability and Risk Analyst

Ericsson
07.2024 - Current

Senior Security Analyst

Cradlepoint, Part of Ericsson
11.2021 - 07.2024

SOC Analyst

Computer Integration Technologies
05.2019 - 11.2021

IT Security Intern

Spectrum Brands
05.2018 - 08.2018

Bachelor of Science - Computer Networking and Information Technology

University of Wisconsin-Stout
Krystal Evans