Summary
Overview
Work History
Education
Skills
Education And Certifications
Technical Skills And Tools
Languages
Certification
References
Work Availability
Quote
Timeline
SeniorSoftwareEngineer
Patrick Mwangi

Patrick Mwangi

Frederick,MD

Summary

Results-driven Cybersecurity professional with 3+ years of experience, designing and implementing security solutions in high-availability environments. identifying and analyzing suspicious events, incident response, vulnerability, threat analysis, and application security. Proficient in network monitoring using SIEM tools such as Splunk, EDR, ArcSight, and CrowdStrike. Strong verbal, written, and analytical abilities with a motivational management style. Skilled in building and retaining highly motivated teams to find innovative solutions. A quick learner who can manage multiple priorities and perform well under pressure. Adept at delivering strong risk management practices.

Overview

5
5
years of professional experience
3
3
Certification

Work History

SOC Analyst

East Atlantic Leads
07.2020 - Current
  • Developed and implemented an incident response playbook, reducing the average incident resolution time by 30% which Improved overall security posture and minimized business downtime during security incidents
  • Integrated external threat intelligence feeds into the SIEM system, enhancing the ability to help identify and mitigate emerging threats
  • Strengthened the organization's security posture, resulting in a 20% decrease in successful phishing attacks
  • Established a comprehensive vulnerability management program, reducing the average time to patch critical vulnerabilities by 40%
  • Which Substantially minimized the risk of exploitation, leading to a notable improvement in the organization's security rating
  • Led a successful security awareness training program, resulting in a 25% decrease in user-related security incidents
  • Which Improved the organization's overall security culture, leading to fewer security breaches caused by human error
  • Developed and implemented automated scripts for routine SOC tasks, saving an average of 15 hours per week in manual effort
  • Leading to Increased SOC efficiency, allowing analysts to focus on more complex threats and improving overall responsiveness
  • Monitor security events (SEIM) from Splunk, analyze the results, and escalate to the appropriate group for remediation when necessary
  • Events will originate from but are not limited to DLP, IDS, IPS, antivirus, firewall, and system security logs
  • Initiate security incident response events on systems and networks, including unauthorized use of system privileges, packet floods, crashes, and unauthorized access to sensitive data
  • Advanced knowledge working with open-source tools like Wireshark to visualize PCAP data and analyze any malicious activity
  • Monitor Dashboards to ensure that cloud and traditional sensors are up and producing data
  • Provide Tier 2/3 support services, a 24
  • 7
  • 365 coordination, execution, and implementation of all actions required for the containment, eradication, and recovery measures for events and incidents
  • Strong TCP/IP networking skills used in performing analysis
  • Also, isolate and diagnose potential threats and strange network behavior
  • Utilized Nessus and Wireshark to detect operating systems, network devices, and application vulnerabilities
  • Processed intelligence reports through analysis of intelligence reports and briefings from various sources and documented indicators of compromise (IOCs) in the company database

Oracle Database Administrator

Jelani Consulting LLC
Remote
09.2018 - 06.2020
  • Performing Day-to-Day DBA tasks: performance tuning, system security, database installation configuration, patching, and technical database support in a 24/7 environment to ensure system performance and stability
  • Daily incremental backup and a weekly full backup of databases using RMAN
  • Loading data into database tables using SQL Loader
  • Frequently monitor emails concerning any database issues
  • Resolved space issues with backup optimization, reducing storage costs by 20%
  • Responsible for quarterly patches, maintaining/monitoring/upgrading the production and test databases
  • Setup/configured Oracle RMAN for database backup and recovery
  • Application of different recovery
  • Procedures for complete and incomplete recoveries depending on the type of failure by using Export/Import scripts
  • Restore and recover the database from offline, online, and RMAN backup
  • Table space monitoring, Performance monitoring, and tuning for performance improvement
  • Granting roles and privileges to end users
  • Managing, troubleshooting, and resolving Oracle database and application issues
  • Created scripts and scheduled backups in Cron for RMAN database backups and recoveries
  • Implemented database security using Oracle's Transparent Data Encryption based on the Database Security Technical Implementation Guide (STIG) developed by Defense Information Systems Agency (DISA) leading to more security of the company data
  • Logical Volume layouts, Disk layouts, and Capacity planning
  • Test backups
  • Test recovery by forcing database crashes
  • Perform database tuning by reviewing AWR & ADDM reports, implementing SQL profiles and baselines, designing table and index partitioning, and coalescing of database objects for faster query performance
  • Include memory, I/O, contention, and SQL statement tuning.

Education

Associate of Science - Cybersecurity AOC

Frederick Community College
Frederick, MD
05-2025

Skills

  • SIEM Tools
  • ArcSight
  • Splunk
  • Cybersecurity
  • Cyber Kill Chain
  • APT & TTPs
  • MITRE ATT Framework & CK Framework
  • Incident Response
  • Network Administration
  • OSINT
  • System Administration
  • PCAP Analysis
  • Managing Security Breaches
  • Monitoring Computer Viruses
  • Encryption
  • Data Security
  • Protecting Networks
  • Tenable Nessus
  • Websense Data Loss Prevention
  • Risk Mitigation
  • Critical Thinking Skills
  • Resource Allocation
  • Best Practices Implementation
  • Information Auditing
  • Reporting and Documentation
  • Security Planning
  • Information Protection
  • Security Needs Assessment
  • Disaster Recovery
  • Data Encryption
  • Procedure Documentation
  • Risk Assessment
  • Software Licenses and Patches
  • Critical thinking skills
  • Problem-Solving
  • Dependable and Responsible
  • Erecting firewalls
  • Developing security plans
  • Wireshark software
  • Microsoft Hyper-V Server
  • Symantec Endpoint Protection
  • Data security
  • AJAX
  • Teamwork and Collaboration

Education And Certifications

  • CompTIA Network+
  • CompTIA A+
  • CompTIA Security+
  • Diploma in Computer Engineering - 2008
  • Microsoft Certified IT Professional - 2012
  • Oracle Autonomous Database Specialist - 2021
  • Bachelor in cyber security technology - 2025

Technical Skills And Tools

  • Network monitoring using SIEM tools
  • Installation, configuration, and update of Splunk
  • Installation, configuration, and update of ArcSight
  • Identifying and analyzing suspicious events
  • Incident response, vulnerability, and threat analysis
  • Phishing email analysis

Languages

English
Full Professional
Swahili
Full Professional

Certification

· CompTIA Network+

· CompTIA A+

· CompTIA Security+

· Diploma in Computer Engineering

· Microsoft Certified IT Professional

· Oracle Autonomous Database Specialist

References

References available upon request.

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Quote

There is a powerful driving force inside every human being that, once unleashed, can make any vision, dream, or desire a reality.
Tony Robbins

Timeline

SOC Analyst

East Atlantic Leads
07.2020 - Current

Oracle Database Administrator

Jelani Consulting LLC
09.2018 - 06.2020

Associate of Science - Cybersecurity AOC

Frederick Community College

Similar Profiles

CREATE PROFILE
Patrick Mwangi