Mohamed Jalloh
Lanham,MD
Summary
I have a growing technical skill-set, with a focus on providing client solutions to the Department of Commerce (DOC) International Trade Administration (ITA)Office of the Chief Information Officer (OCIO). Solutions oriented information security professional with 7 years of experience in providing technical solutions and guidance to users in a diverse environment. Specialized skills in desktop hardware, operating systems, software applications, network, and application security.
Overview
7
7
years of professional experience
Work History
Information Security Engineer
Electrosoft Inc
07.2021 - Current
- Performing vulnerability analysis (Nessus), configuration compliance management, static code analysis, SIEM tools (Splunk) and penetration testing.
- Developing System Security plan (SSP) to provide an overview of system security requirements.
- Using Carbon Black formerly known as bit9 to analyze processes on corporate users’ computers to “hunt” for malicious or hijacked processes.
- Responsible for malware and phishing scans using sandbox machines and several other open-source tools.
- Investigating malicious emails using O365 Compliance and Security tool; trace and block emails in O365.
- Responsible for conducting all software reviews/analysis before they are sent to management for approval.
- Conducting systems and network vulnerability scans using Nesssus. Leveraging Nessus report to track vulnerable systems missing security patches and reporting on them.
- Risk Management, including the processes and tools in the identification tracking remediation, verification, and acceptance of risks.
- Using Splunk Enterprise Security to investigate incidents based on threat level.
- Responsible for managing Enterprise Examiner forensic analysis tool; pushing FTK agent and collecting forensic images from affected hosts.
- Investigating and resolving CrowdStrike alerts and Carbon Black errors reported by clients.
- Updating IT security policies, standard operating procedures, and guidelines according to the department and federal requirements.
- Recognizing attacker and APT activity, tactics, and procedures, such as indicators of compromise (IOCs), that can be used to improve monitoring, analysis, and incident response.
- Developing and building security content, scripts, tools, or methods to enhance the incident investigation processes.
- Led Incident Response activities and mentor junior staff.
- Collaborating with key stakeholders to implement remediation plans in response to incidents.
- Effectively investigated and identified root cause findings, then communicate findings to stakeholders, including technical staff and leadership.
- Authoring Standard Operating Procedures (SOPs) and training documentation when needed.
- Generating end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty.
Information Security Analyst
T. Rowe Price
02.2019 - 06.2021
- Responsible for maintaining signatures on the IDS/HIDS infrastructure and responding to alerts that the sensor generates
- Assisting in the evaluation process of security awareness program and training to the encompassing defense solution
- Monitoring Intrusion Detections Systems (IDS) console for active malware and determine the priority of response.
- Detecting and analyzing all level of security event and documenting findings according to the company’s procedure and protocols.
- Identified and mitigate high impact user’s behavior threat (behavior that may disrupt client systems)
- Identified possible areas where coverage could be implemented or improved.
- Conducted systems and network vulnerability scanning using Nessus and NMAP application.
- Updated IT security policies, procedures, standards, and guidelines according to the department and federal requirements.
- Performed risk assessments, developed/updated and review System Security Plans (SSP)
Infrastructure Operations Analyst
T. Rowe Price
05.2017 - 02.2019
- Provided daily networking/hardware/software support to Equity and Fix income traders during trading
hours with the expectation of issues to be resolved in less than an hour. - Managed the installation and maintenance of hardware and financial software on trade desk.
- Maintained Business continuity site to house over 100 Equity and Fix income team members / traders in
case of emergency. - Provided assistance in computer incident investigations and Performing vulnerability assessments including development of risk mitigation strategies.
- Used a risk-based approach, analyze TRPs vulnerability data against open / closed information sources to best prioritize vulnerability hygiene activities.
- Supported high profile firm executives to ensure there is limited downtime and offering support for Bloomberg FactSet, Charles River and various other financial software.
- Ensured appropriate security controls are in place that will safeguard digital files and vital infrastructure.
- Coordinated the Decryption and Encryption of 400+ devices with BitLocker Encryption across the firm.
- Conducted root cause analysis for the identified trends; researched, developed, documented and implemented solutions based on findings.
- Monitored network and application security to identify irregular activity and mitigate damages and patch various vulnerable systems.
- Supported off-site associates with thin client setups, SSL VPN and Direct Access issues.
- Leveraged existing monitoring tools to develop and monitor reporting facilities to track workstation capacity and related trends to proactively identify and resolve issues to avoid or mitigate large-scale impacts.
- Conducted root cause analysis for the identified trends; researched, developed, documented, and implemented solutions based on findings.
Education
Bachelor of Science - Information Technology
University of Maryland - Baltimore County
Baltimore, MD12.2017
TECHNICAL EXPERTISE
Citrix, Zendesk, ServiceNow, GLPI, OpenVAS, MySQL, SIEM, Network Security, Fiddler, Wireshark, Carbon Black, Tenable, ThreatGrid, SentinelOne, CyberArk, iBoss, Bomgar, Splunk, CrowdStrike, Sumo Logic, BitLocker Encryption, Symantec Endpoint Encryption, VMware, Linux, SCCM, Absolute, DirectAccess, SSLVN, Cisco AnyConnect, Windows OS, Mac OS, Linux, Office 365, RMF, NIST 800-37, FISMA. Data Analysis, Systems Analysis & Design, Usability Testing, NIST 800-53, NIST.
Certification
- Licensed COMPTIA Security+
- COMPTIA Linux+,
- AWS Solutions Architect Associate
- Certified Cloud Security Professional (CCSP - Pending)
Timeline
Information Security Engineer
Electrosoft Inc
07.2021 - Current
Information Security Analyst
T. Rowe Price
02.2019 - 06.2021
Infrastructure Operations Analyst
T. Rowe Price
05.2017 - 02.2019
Bachelor of Science - Information Technology
University of Maryland - Baltimore County