Your Name
Summary
CompTIA Security+ certified Cybersecurity Analyst with work experience. Specialized in incident response, malware analysis, endpoint security, and phishing analysis. Experience in hands-on projects in monitoring and analysis of potential and active threats using security tools and processes.
- 6+ months of experience in cyber security implementations.
- Responsible for SOC operations in 24x7 environment.
- Real-time log monitoring in the Security Operations Center from different devices such as firewalls, IDS, IPS, operating systems like Windows, Linux, Windows Servers, System Application, Databases, Web Servers, and Networking Devices .
- Excellent working knowledge on IBM Resilient and Jira ticketing tools.
- Ensures the integrity and protection of networks , systems, and applications by technical enforcement of organizational security policies, through the performance of formal risk assessments, and internal threat analysis regarding SOC environment with the use of SIEM tools .
- Good understanding of developing the complex Use Cases on the IBM QRadar and Splunk Enterprise SIEM Solutions.
- Responsible for monitoring security system and diagnoses malware events to ensure no interruption of service. Identifying potential threat , phishing attacks , anomalies, and infections.
- Hands on experience in using various tools like OpManager, ZAP Proxy, NMap, Hydra, Tenable Nessus, , SOC Radar and Kali Linux.
- Monitoring network traffic for security events and perform triage analysis through EDR solutions such as SentinelOne and CrowdStrike Falcon to identify the timeline of the incident and affected hosts.
- Analyze threat patterns on various security devices and validation of False/True positive security incidents.
- Responding to cyber security incidents by collecting, analyzing, providing detailed evidence (network log files) and ensure that incidents are recorded and tracked in accordance with its guideline and requirements.
- Implement processes and manage Nessus to identify vulnerabilities and track their remediation with the system owner.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Security Operations Center Analyst
Booz Allen Hamilton Inc.
09.2021 - Current
Conduct log analysis on Splunk Enterprise and IBM QRadar SIEM solutions and provide recommendations to the technical teams via IBM Resilient and Jira ticketing system
- Monitor and analyze SIEM alerts through Splunk Enterprise and IBM QRadar and identify security anomalies for investigation and remediation
- Conduct analysis to determine the legitimacy of files, domains and emails using OSINT tools such as VirusTotal, IBM X-Force, Entral Ops, Abuse IP, URL Scan, Hybrid Analysis, Any Run, Joe Sandbox, Whois Lookup, PhishTank and MX Toolbox.
- Familiarity with fundamentals of information security including network technologies and tools, identity and access management, network security, implementing secure systems and risk management.
- Analyze PCAP files , narrow down anomaly traffic with Wireshark, examine the details of the infected hosts and write IOC on executive summary reports
- Experience in using various tools like SentinelOne, CrowdStrike Falcon, OpManager, NMap, Hydra, Tenable Nessus, SOC Radar, Kali Linux
- Review existing policies and guidance to ensure compliance with National Institutes of Technology (NIST) Risk Framework.
Boot Camp
Cybertek School
03.2020 - 01.2021
Automation Testing (Selenium WebDriver), API Testing, Database Testing, Manual Testing, Software Development Life Cycle (SDLC) and Software Testing Life Cycle (STLC). Selenium Grid and Java. Version control: Git and GitHub.
Store Manager of Operations
Aviva Atlanta LLC
02.2019 - 02.2020
- Upheld and communicated store programs and standards to employees for optimal quality, freshness, safety and cleanliness
- Maintained proper product levels and inventory controls for merchandise and organized backroom to facilitate effective ordering and stock rotation
- Scheduled and led weekly store meetings for all employees to discuss sales promotions and new inventory while providing platform for all to voice concerns
Skills
- Splunk Enterprise
- IBM QRadar
- Soc Radar
- SentinelOne
- CrowdStrike Falcon
- Nessus
- Nmap
- Wireshark
- Kali Linux
- VirtualBox
- Linux Command Line Tools
- ZAP Proxy
- Phishing Analysis
- ProofPoint
- Jira
Security Tools
Ticketing Tools
- IBM Resilient
- Wireshark Packet Analysis
- DNS
- Whois
- Web Application Firewall WAF
- Next Generation Firewall
- Data Loss Prevention (DLP)
- TCP/IP
- DS / IPS
- Time Management
- Fast Learning
- Problem Solving
- Multitasking
- Organization Skills
- Detail Oriented
Networking
Interpersonal Skills
Certification
- CompTIA Security+
- Splunk Core Certified User (in progress)
- Splunk 7.x Fundamentals Part 1, (in progress)
- CySA+ (In Progress)
Languages
Turkish
English
Timeline
Security Operations Center Analyst
Booz Allen Hamilton Inc.
09.2021 - Current
Boot Camp
Cybertek School
03.2020 - 01.2021
Store Manager of Operations
Aviva Atlanta LLC
02.2019 - 02.2020