Tifuh Smith
CyberSecurity Engineer
Columbus
Summary
Highly skilled and proactive Cybersecurity Specialist with a proven track record of safeguarding organizations from sophisticated cyber threats. With over 6 years of experience in Endpoint Protection, Vulnerability Management, EDR, and SIEM, I excel at leveraging cutting-edge security technologies like Microsoft Defender for Endpoint, Qualys, and Splunk to secure critical assets and reduce risk. Adept at incident response, threat detection, and vulnerability remediation, I thrive in fast-paced environments where I can design and implement robust security strategies to thwart emerging threats. My expertise in Identity Access Management (IAM), using Microsoft Entra ID, ensures secure access to systems while maintaining compliance with industry standards. Committed to continuous learning, I possess a strong technical foundation and a passion for enhancing security postures, threat intelligence, and cross-functional collaboration.
Overview
9
9
years of professional experience
1
1
Certification
1
1
Language
Work History
Cyber Security Specialist
Tata Consulting Services (TCS)
09.2022 - Current
- Spearhead proactive threat hunting and incident investigation leveraging both EDR SIEM solution to identify and mitigate threats.
- Reviewing all incoming alerts, properly investigate and ticket all identified potential security threats within the agency's incident response-ticketing platform.
- Monitored confidential company data and mitigated hacking through network systems updates.
- Ensuring authorized access by investigating improper access, revoking access, reporting violations, and monitoring information requests.
- Assisting the team lead in generating weekly report, Documenting of alerts and all artifacts.
- Triaging Incidents, ticket updates and reporting of cyber events.
- Implement and manage Entra ID for identity governance and access management, ensuring streamlining user authentication and integrating multifactor authentication [MFA].
- Perform vulnerability assessments using Qualys to identify critical endpoint vulnerabilities, coordinate patching, and reduce endpoint related risk.
- Installing software on customer's devices.
- Lead the deployment, management, and optimization of Defender for Endpoint, and ensuring comprehensive protection across devices.
- Collaborate with IT teams to enforce endpoint protection policies, enhancing device security through patching and malware scanning.
- Managed the lifecycle of privileged accounts and decrease operational costs to increase cybersecurity and keep hackers out.
- Developed and implemented incident response plan and playbooks to swiftly responded to detected threat.
- Monitor and analyze security event logs from various sources including endpoints, networks and servers.
- Collaborated with the team to implement security measure and improve overall security posture.
- Led a Tanium-driven vulnerability assessment initiative that decreased critical vulnerabilities.
- Conducted root cause analysis on recurring vulnerabilities using Tanium, Defender, Qualys and provided actionable recommendations to minimize risk.
- Utilized Tanium modules such as Vulnerability, Asset, to perform real-time risk assessments and asset inventory.
- Used Tanium to performed data wipe and data delete on stolen and lost devices.
Security Engineer
Experis/Microsoft
01.2021 - 09.2022
- Defender ATP SME.
- Execute, manage, and lead customers & partners thru the onboarding process by providing remote guidance and following best practices.
- Utilize your demonstrated technical skills and leadership to assist with resolution of issues and removing any adoption blockers.
- Assist customers and partners with configuration of onboarding tools and processes.
- Exchange Server, Mail Flow, SCCM, EDR, Defender Anti-Virus, ASR rules.
- Microsoft Cloud technologies: Microsoft Defender ATP, Office 365 ATP, Microsoft Endpoint Manager (Intune), Azure Active Directory, Microsoft Threat Protection.
- Microsoft Defender Advanced Threat Protection, Office Advanced Threat Protection, Intune, SCCM and GPO.
- Analyze, develop, and communicate key onboarding process and technology improvement feedback for the development/engineering teams to enhance the entire deployment cycle.
- Develop, foster, and maintain effective working relationships with various groups within the organization including engineering, account teams, enterprise services\support, and partner teams to deliver key business metrics.
- Microsoft data loss prevention and information protection.
- Configure and manage shadow IT, conditional access policy.
- Evaluate Microsoft security scores, exposure scores, vulnerability and apply recommended actions.
- Threat forensic.
- Manage server's deployment.
- MacOS management experience.
Cyber Security Analyst
Ability Matter Ohio
06.2017 - 01.2021
- Investigate and mitigate multiple security incidents (DDOS, Brute force etc).
- Create and Manage Network discovery and application vulnerability scans.
- Investigate and mitigate multiple security threats using AWS Guard duty.
- Responsible for monthly asset quality control to ensure accurate asset classification and tagging.
- Review AWS Inspector findings and provide recommendations for remediation.
- Plan and Coordinate Qualys virtual appliance and cloud agent installations.
- Review and tune windows Defender ATP malware and exclusion policies.
- Make recommendations to senior management on results of analysis and work closely with other Information Technology groups to refine and enhance security controls.
- Investigate multiple malware related incidents using Defender ATP.
- Review, Analyze AWS WAF logs and provide recommendations to reduce false positives.
- Review and implement IP and Geo blocks using AWS WAFs during attacks.
- Configure and manage Defender ATP anti malware and exclusion policies.
- Develop security incident response runbook for Malwares, Phishing, DDOS and several others.
- Plan, prioritize and coordinate vulnerability remediation with other departments.
- Integrate and Manage Codegrip cloud solution for Source code static security analysis.
- Review source code security scanning and coordinate vulnerability remediation prior to code promotion to production systems.
- Monitoring of Splunk dashboard and alerts investigation.
- Developed coordinated, implemented and maintained standards and procedures to protect the security and integrity of information systems and data.
- Observed and analyzed traffic to learn valuable lessons from known malicious actors and to determine countermeasures against such threats.
- Provided detailed status updates on existing cyber security incidents daily to include follow up with client/customer to ensure satisfactory resolution.
IT Support Specialist
Ability Matter Ohio
02.2016 - 05.2017
- Provide corporate application and network monitoring.
- Assisting in new colleague onboarding and environment setup.
- Performing network and application troubleshooting to remote customers.
- Joining computers to active directory domains.
- Review Service Now Incident tickets closure notes for consistencies.
- Performing basic network and system troubleshooting.
- Preparing and Re-imaging of windows 7 and 10 operating system to new and existing computers.
- Perform end user password reset and account unlock.
- Create, manage and resolve work Incidents using ServiceNow Ticketing System.
- Configure Active directory group policies.
- Maintained detailed records of equipment repairs, upgrades, software installations, equipment assignment, and new purchases.
- Performing routine servers and workstations patches and reboots.
- Assisting in new colleague onboarding and environment setup.
Education
Associate Degree - Accounting & Finance
University of Buea
Buea, CameroonCompTIA Sec+, Microsoft Identity and Access Administrator
University of Buea
Buea, CameroonSkills
- Qualys Cloud
- Tenable Nessus
- Nmap
- ZAP
- SIEM
- Splunk
- AWS CloudWatch
- CloudTrail
- Microsoft Defender for Office
- Redhat
- CentOS
- Kali
- Defender for endpoints
- Tanium
- Defender for cloud APPs
- Defender for Identity
- BeyondTrust Privilege Management
- Linux
- Windows Server 2012/16
- Service Now Ticketing
- SAST
- DAST
- Vulnerability Lifecycle Management
- AWS Guard Duty
- IAM
- WAF
- Inspector
- Security Hub
- AWS ALBs
- S3
- CloudFront
- Incident Response
- Run Books Creation
- TCP/IP
- DNS
- HTTP
- HTTPS
- SSH
- Agile
- Scrum
- Change management
- Threat Hunting
- Zscaler
- Daily Security Incident Status
- Active Directory
- RBAC
- HIPAA
- PCI-DSS
Certification
Security+, Azure IAM Admin
Timeline
Cyber Security Specialist
Tata Consulting Services (TCS)
09.2022 - Current
Security Engineer
Experis/Microsoft
01.2021 - 09.2022
Cyber Security Analyst
Ability Matter Ohio
06.2017 - 01.2021
IT Support Specialist
Ability Matter Ohio
02.2016 - 05.2017
CompTIA Sec+, Microsoft Identity and Access Administrator
University of Buea
Associate Degree - Accounting & Finance
University of Buea
Similar Profiles
Cletus ChofongCletus Chofong
AWS/DevOps Architect at Tata Consulting Services (TCS)AWS/DevOps Architect at Tata Consulting Services (TCS)
Smith TifuhSmith Tifuh
Cyber Security Specialist at Tata Consulting Services (TCS)Cyber Security Specialist at Tata Consulting Services (TCS)
Sandeep ReddySandeep Reddy
Data Engineer at Tata Consulting Service(TCS)Data Engineer at Tata Consulting Service(TCS)
Kei SatoKei Sato
Volunteer at H.O.P.E Recovery OrganizationVolunteer at H.O.P.E Recovery Organization
Myron Benner IIMyron Benner II
Director Of Education at ADTCDirector Of Education at ADTC