Sarah Nyoh Tabi
Orlando
Summary
Information Security Professional with 5 years Information Security professional with five years of experience developing and implementing security solutions in fast-paced environments. Skilled in vulnerability management and incident response with proven history of delivering exceptional risk management support with extensive experience developing and testing security framework for cloud-based software. Versed in robust network defense strategies. Proven ability to assess and remediate security risks, including IoT, firmware, and hardware components, while effectively communicating complex security concepts to both technical and non-technical teams. .
Overview
6
6
years of professional experience
1
1
Certification
Work History
Information Security Analyst
Relatient
11.2021 - Current
- Enhanced SIEM performance by refining log management strategies in CrowdStrike, enabling comprehensive security threat assessments and faster anomaly detection.
- Implemented real-time vulnerability assessment strategies using Tenable, Burpsuite to identify product security risks and streamline remediation processes by leveraging firmware engineering expertise and IoT technology.
- Conducted third-party risk assessments for vendors, ensuring compliance with NIST, HIPAA, HITRUST, and CIS Benchmarks to meet established security risk assessment standards.
- Configured and optimized firewalls, IDS/IPS, endpoint protection, and logging tools to secure network and product infrastructures.
- Developed cybersecurity best practices/ training programs to educate staff on known threats and potential vector attacks.
- Collaborated with stakeholders to simplify complex cybersecurity concepts for effective cross-team communication and executive decision-making.
- Monitored vendor risk profiles and provided regular security updates with remediation timelines, fostering strong partnerships with business, IT, and security teams.
- Conducted comprehensive security assessments using NIST and HITRUST frameworks, achieving a 40% improvement in risk management practices over six months.
- Created automated risk analysis dashboards to track security trends and potential threats, supporting proactive security risk assessment efforts.
- Analyzed security incidents to identify vulnerabilities and recommend remediation strategies.
- Developed and implemented security policies to ensure compliance with industry standards.
- Led development and implementation of security protocols to safeguard organizational data.
- Mentored junior analysts in threat assessment and incident response best practices.
- Developed, implemented and documented security programs and policies and monitored compliance across departments.
- Performed risk and vulnerability assessments and provided results and recommendations to senior management.
- Created policies and procedures for emerging security technologies and proposals.
- Performed risk analyses to identify appropriate security countermeasures.
- Led teams of up 5 in developing and implementing security systems, resulting in 30% fewer threats.
- Performed secure user identification and authentication best practices by following access controls policies to maintain compliance to ISO/IEC 27001 security controls.
- Conducted security audits to identify vulnerabilities.
- Secured company assets using preventive maintenance for computing technologies by following NIST SP 800-40.
- Utilized collaboration systems like Confluence and Jira ticket-tracking to support requests.
SOC Analyst/Cybersecurity Specialist
T-Mobile
11.2019 - 11.2021
- Analyzed security logs using Splunk and to identify potential vulnerabilities and assess product security risks.
- Led incident triage and forensic analysis for security events, enhancing the ability to remediate security incidents promptly.
- Assisted in securing cloud environments (AWS, Azure) by monitoring cloud security measures and reinforcing overall product protection.
- Supported SOC 2, ISO 27001, and NIST CSF compliance initiatives to ensure adherence to established security standards.
- Managed vulnerability scans using Nessus, Qualys, and Burp Suite, maintaining robust security tool configurations.
- Integrated OWASP top 10 security principles into compliance strategies to assess product vulnerabilities and mitigate risks.
- Developed and updated incident response playbooks to enhance detection and response processes for security incidents.
- Enhanced threat detection capabilities by integrating machine learning algorithms, improving incident identification accuracy by 25%.
- Analyzed over 10,000 security events monthly using SIEM solutions, contributing to a 30% reduction in critical incident response times.
- Led security incident investigations, enhancing threat detection protocols and response efficiency.
- Mentored junior analysts, fostering skill development and promoting best practices in cybersecurity operations.
Education
Bachelor of Science - Computer Science
University of Dschang
08-2016
Skills
- Cloud Security: Google Cloud, AWS, Azure, security controls and best practices
- Endpoint Security & Data Loss Prevention: antivirus solutions, EDR
- Compliance & Regulatory Frameworks: SOC 2, ISO 27001, NIST CSF, CIS Benchmarks, HITRUST
- Network & Infrastructure Security: IDS/IPS, firewalls, ACL configurations
- Security Audits & Risk Assessments: Conducting compliance audits, vulnerability scans
- Collaboration & Reporting: Incident documentation, security trend reporting, training, Cross-team Communication
- Security Monitoring & Incident Response: SIEM alert triage, root cause analysis, remediation
- Threat Intelligence & Log Analysis: Analyzing system/network logs to detect anomalies
- Incident Response & Forensics: Log Analysis, Threat Hunting
- SIEM & Security Tools: Splunk, CrowdStrike, Datadog, Microsoft Defender, Nessus, Qualys, Palo Alto Firewalls
- Security awareness training, Vulnerability assessment, Risk mitigation
Certification
- AWS Solutions Architect
- CISSP: IN PROGRESS
- CompTIA Security+
Timeline
Information Security Analyst
Relatient
11.2021 - Current
SOC Analyst/Cybersecurity Specialist
T-Mobile
11.2019 - 11.2021
Bachelor of Science - Computer Science
University of Dschang
Similar Profiles
Karlie ClarkKarlie Clark
Manager of Implementation at RelatientManager of Implementation at Relatient
Miguel SanchezMiguel Sanchez
Sales Development Manager at RelatientSales Development Manager at Relatient
Smiti SahaSmiti Saha
Implementation Analyst at RelatientImplementation Analyst at Relatient
Deafa AfrinDeafa Afrin
Lead Teacher at Young Innovators AcademyLead Teacher at Young Innovators Academy
Jessica VelascoJessica Velasco
Customer Service Representative III at MedtronicCustomer Service Representative III at Medtronic