ROKY RAHAMAN
Cybersecurity Professional
Manassas Park,Virginia
Summary
I am a highly skilled and motivated Security Analyst with a strong background in cybersecurity and a passion for protecting organizations from attacks. I am seeking a challenging position in a dynamic organization where I can utilize my expertise in threat analysis, incident response, and security awareness to mitigate cyber-Threats and enhance the overall security posture using various SIEM tools.
Overview
6
6
years of professional experience
1
1
Certification
2
2
Languages
Work History
Security Analyst
NT LLC
07.2022 - Current
- Monitored and analyzed security logs, network traffic, and system alerts to proactively identify potential threats and vulnerabilities.
- Assisted the cybersecurity team in investigating and analyzing phishing incidents, contributing to the development of actionable insights and recommendations.
- Monitored external threat environment for emerging threats and advised stakeholders on appropriate courses of action.
- Evaluated logs from internal systems, including SIEM and related security applications, to identify potential security issues.
- Investigated and resolved security incidents across the company, ensuring timely mitigation of threats.
- Managed, upgraded, and maintained servers and applications for information security tools.
- Collaborated with operating companies to investigate incidents and alerts within the SIEM system.
- Acted as the subject matter expert on Sentinel-related services, providing guidance and support.
- Configured, managed, and maintained the Azure Sentinel Platform to optimize security operations.
- Managed and monitored Sentinel-related data, balancing cost-effectiveness, and access capabilities.
- Added and maintained log sources as required, ensuring comprehensive monitoring.
- Developed and maintained workbooks, playbooks, analytics, and KQL queries within the Azure Sentinel Platform to support security and IT operations.
- Tracked, managed, and followed up on existing security issues to ensure resolution and prevent recurrence.
- Participated in security exercises to enhance the company's incident response capabilities.
- Collaborated with the overall security department to continually improve the security program.
- Performed periodic reviews of operating company security processes to ensure compliance and effectiveness.
- Implemented and managed Qualys FIM to enhance Security monitoring.
- Produced detailed reports and presentations on phishing trends, patterns, and recommended countermeasures for management and stakeholders.
Junior Cybersecurity Associate
NT LLC
04.2020 - 06.2022
- Continuously monitoring networks, systems, and applications to identify any security vulnerabilities or suspicious activities.
- Assisting in promptly responding to and resolving security incidents or breaches. This may involve investigating incidents containing affected systems and implementing countermeasures.
- Conduct regular vulnerability assessments and penetration tests to identify and address any weaknesses in the organization’s infrastructure or applications.
- Assisting with the installation, configuration, and monitoring of security tools such as firewalls, intrusion detection systems (IDS), and network vulnerability scanners.
- Assisting with the analysis of security event logs, alerts, system-generated reports to detect and investigate potential security incidents.
- Collaborating with other teams such as network administrator, system administrator, development teams, and management to ensure security practices are implemented and followed across the organization.
Education
Bachelor's - Computer Science And Engineering
Atish Diponkar University of Science & Technology
02.2014
Diploma - Computer Engineering
Jessore Technical And Management College
09.2009
Secondary School Certificate -
Bichali High School
12.2004
Skills
SIEM Tools: Azure Sentinel, Splunk, IBM QRadar
Certification
CompTIA Security +: Exp Date: May 2027
Summary of Qualifications
- Monitoring vulnerability and threat prevention systems.
- Execute security incident response investigations.
- Solid understanding of security best practices and defense in depth strategies
- Support the ongoing management and operations of a cybersecurity risk management program.
- Strong sense of identifying cyber attackers, reporting to upper management, and identifying patterns and vulnerabilities.
- Solid understanding of phishing techniques, social engineering tactics, and cybercriminal strategies.
- Proficient in utilizing various security tools and technologies to detect, analyze, and mitigate threats.
- Incident Response: Experienced in responding to phishing incidents, including triage, investigation, containment, and recovery. Able to efficiently handle multiple cases simultaneously while ensuring minimal impact on business operations.
- Collaboration and Communication: Excellent interpersonal skills, with a proven ability to collaborate with cross-functional teams, including IT, security, and management. Strong written and verbal communication skills for effectively conveying complex technical information.
- Excellent problem-solving and analytical skills with the ability to think critically under pressure.
- Highly organized with exceptional attention to detail and a strong commitment to accuracy.
- Effective communicator and team player, capable of collaborating with cross-functional teams and providing security awareness training to employees.
- Manage user accounts and permissions.
- Work with the IAM team to resolve the issues.
- Monitoring user activity and reviewing access control.
Timeline
Security Analyst
NT LLC
07.2022 - Current
Junior Cybersecurity Associate
NT LLC
04.2020 - 06.2022
Bachelor's - Computer Science And Engineering
Atish Diponkar University of Science & Technology
Diploma - Computer Engineering
Jessore Technical And Management College
Secondary School Certificate -
Bichali High School