Thomas Kamano
Laurel,MD
Summary
Experienced Cybersecurity Analyst with over three years of expertise in incident response, vulnerability assessment, and security auditing. Adept at analyzing threats, implementing security measures, and ensuring compliance with industry standards such as NIST and PCI. Demonstrates strong analytical skills in identifying potential security risks and developing effective mitigation strategies. Skilled in providing clear, actionable recommendations to enhance security posture and mitigate risks. Known for a proactive approach to identifying and addressing security vulnerabilities, coupled with the ability to communicate complex technical information to both technical and non-technical stakeholders. Highly committed to continuous improvement, staying ahead of emerging cybersecurity threats, and fostering a culture of security awareness within the organization."
Overview
3
3
years of professional experience
1
1
Certification
Work History
Cybersecurity Analyst
Securian Financial Group
09.2021 - Current
- Conducted security audits to identify vulnerabilities.
- Performed risk analyses to identify appropriate security countermeasures.
- Recommend improvements in security systems and procedures.
- Encrypted data and erected firewalls to protect confidential information.
- Analyzed third-party vendor penetration test and vulnerability scan reports, providing recommendations for remediation and mitigation.
- Managed and developed ongoing phishing campaigns, security awareness training, employee education, and company-wide email campaigns.
- Defined and implemented the company’s IAM policies, standards, and procedures.
- Worked closely with the IT department to understand and comply with security guardrails and mitigate cybersecurity concerns.
- Assisted project teams in designing, implementing, and effectively operating IT controls and processes to protect data and sensitive information.
- Conducted regular security and privacy audits and assessments to ensure compliance with industry standards and regulations.
- Managed Single Sign-On (SSO) applications, including creating integrations, roles, groups, and security policies.
- Conducted regular security audits and risk assessments on both physical and cloud environments to identify vulnerabilities and threats.
- Developed and implemented security strategies for cloud-based applications, services, and infrastructure, ensuring compliance with regulatory requirements.
- Maintained and improved the SIEM system, ensuring timely investigation and resolution of all security alerts.
- Led incident response activities, investigated security incidents, identified root causes, and developed remediation plans.
- Configured security tools, patched vulnerabilities, and addressed security gaps identified by the MDR provider.
- Provided guidance on current threat group activities and known actively exploited vulnerabilities to support infrastructure remediation efforts.
Education
Bachelor of Science - Computer Science
University of Buea
Cameroon04.2021
Skills
- Technical Expertise: Proficient in security incident response, threat analysis, and the management of security information and event management (SIEM) systems
- Security Tools: Experience with security assessment and testing tools such as Nessus, Qualys, WebInspect, SIEM systems, Log Management, DLP, IPS/IDS, VPN, MFA
- Cloud Security: Expertise in Cloud Security Architecture, with a focus on public cloud environments like AWS, Azure, and Google Cloud
- Regulatory Compliance: Knowledge of regulatory compliance requirements, including NIST, CIS, PCI, HIPAA, and GDPR
- Communication: Strong English communication skills (both written and verbal); ability to translate complex technical concepts into clear and concise language
- Problem-Solving: Excellent analytical and problem-solving skills with a focus on identifying and mitigating security risks effectively
- Security Frameworks: Experience in implementing information security frameworks such as NIST, CIS Controls, ISO 27001/27002
- Technical Writing: Skilled in preparing security documentation and collaborating with cross-functional teams to establish formal documentation for security, compliance, and client needs
- Technical Expertise: Proficient in security incident response, application security, vulnerability assessment, penetration testing, and the management of security information and event management (SIEM) systems
- Security Tools: Extensive experience with security assessment and testing tools, including Nessus, Qualys, WebInspect, SIEM systems, Log Management, Data Loss Prevention (DLP), Intrusion Prevention Systems (IPS)/Intrusion Detection Systems (IDS), Virtual Private Networks (VPN), Multi-Factor Authentication (MFA)
- Cloud Security: Expertise in Cloud Security Architecture, with a focus on public cloud environments like AWS, Azure, and Google Cloud
- Regulatory Compliance: Knowledge of regulatory compliance requirements, including NIST, CIS, PCI, HIPAA, and GDPR
- Communication: Strong English communication skills (both written and verbal); ability to translate complex technical concepts into clear and concise language
- Problem-Solving: Excellent analytical and problem-solving skills with a focus on identifying and mitigating security risks effectively
Certification
- CISA - Certified Information Systems Auditor
- Comptia Security +
- Comptia CASP
- Comptia CYSA
- CISM
Timeline
Cybersecurity Analyst
Securian Financial Group
09.2021 - Current
Bachelor of Science - Computer Science
University of Buea
- CISA - Certified Information Systems Auditor
- Comptia Security +
- Comptia CASP
- Comptia CYSA
- CISM
Similar Profiles
Christopher RodriguezChristopher Rodriguez
Records Management Specialist at Securian Financial/The Standard (Contract)Records Management Specialist at Securian Financial/The Standard (Contract)
Erin WeyerErin Weyer
Business Operations Specialist at Securian Financial ContractorBusiness Operations Specialist at Securian Financial Contractor
LADA YANGLADA YANG
Business Operations Support, SR Admin at Securian Financial ServicesBusiness Operations Support, SR Admin at Securian Financial Services