Stella Isawode

Cybersecurity Analyst

Southwest Airlines

Dallas, TX

02.2016 - 08.2018

Created cybersecurity best practice communications to educate staff against known threats and potential vectors of attack.
Developed and maintained incident response protocols to mitigate damage and liability during security breaches.
Collaborated with third-party payment card industry (PCI) compliance partners.
Managed relationships with third-party intrusion detection system providers.
Maintained operational readiness and effectiveness of all IT Security controls, applications and monitoring systems.
Monitored intelligence feeds to identify new threats & risks relevant to Southwest.
Reviewed, investigated, and remediated IT Security alerts and events.
Supported and executed the Company’s incident response plan.
Developed new and used existing automation tools to support event response and IT Security operations.
Audited computer systems, network infrastructure and application security in accordance with best practices, applicable laws, regulations and IT security policy.
Consulted with and advised end users on secure computing practices and compliance with SouthWest IT Security policy.
Reviewed, recommended, and led projects to implement new policies, best practices and technologies.
Supported and consult with colleagues across all of Information Technology on secure system architecture and configuration.
Supported organizational and departmental security planning and implementation.
Supported and enhance the patch management process.
Created and reviewed security reports and automated alerts.
Supported organizational compliance with Sarbanes Oxley controls and IT Security process and procedures.
Participated in the development of, manage and maintain an agency Data Classification process where sensitive data that is housed within agency applications can be identified and cataloged.
Researched and make recommendations for further protecting sensitive data and provided additional security technologies to serve this purpose.
Assisted with the process of performing application code reviews, system vulnerability assessments, and penetration testing to test the strength of the agency computing environment.
Assisted with the Server and Network Hardening processes performed by the infrastructure teams and perform Hardening Validation testing to ensure that policies and guidelines are being adhered to.
Researched and recommend the appropriate levels of infrastructure security required for the Virtualized, Middleware, and Database environments, and managed the administration of security on these platforms to ensure that adequate controls are in place.
Assisted with the process of implementing and maintaining current and supported levels of Anti-Malware and Anti-Spam technologies to protect the agency computing environment.
Assisted with the implementation and administration of Data Loss Prevention technologies including but not limited to Full Disk Encryption, Removable Media Encryption, and port protection technologies.