Hobart, New York, United States
Solutions-oriented hands-on specialist and adept at Cybersecurity operations; implementing continuous enhancements to performance, security, and reliability. Certified Cybersecurity professional with over 10 years’ experience supporting security initiatives in various industries such as finance, healthcare, government and private sectors. Proven track record in development of innovative strategies to solve complex security issues. Well-versed in Cybersecurity Operations, Incident Response, Forensics, Threat Intelligence, Insider Threat, and Security Monitoring.
Working as a Sr. Intel Analyst for Santander Bank under the Cybersecurity Operations team, responsible for facilitating the collection, analysis, dissemination of information and operations of intelligence as well as process improvement and expansion of governance around the overall intelligence program.
Incident response lead for Santander bank. Development of security monitoring capabilities through Splunk. Validate and correlate various log sources to be able to quickly and efficiently detect and respond to anomalies and threats throughout the enterprise. Develop processes and procedures surrounding IR and security monitoring that includes incident tracking, management, detection, protection and response in accordance with industry best practices. Serve as technical SME on incident handling and provide guidance on securing the infrastructure via various security tools and appliances.
SME for pen testing program.
Management of threat intelligence, vulnerability management and compliance through the development of big data integration through Splunk. Implemented various metrics to illustrate risk data with mapping to industry standard security controls (SANS Top 20). Continuous assessment of risk spanning technologies and applications to ensure adequate controls are in place to adhere to regulatory standards (e.g. HIPAA, PCI) and enterprise security program policies to protect the confidentiality, integrity and availability of information. Troubleshoot various security related issues and incidents using a wide variety of industry standard applications. Conduct vulnerability assessments and penetration tests to demonstrate and remediate risk throughout the enterprise. Data loss prevention administration. Examining logs and addressing offenses in QRADAR to troubleshoot network and security issues. Network access control configuration and monitoring.
Supporting Barnabas Health in a wide variety of responsibilities and roles. Responsibilities include desktop / end-user, server, application, and network support. Maintaining and addressing enterprise-wide system compliance. Collaborating with neighboring service lines to provide effective and timely support to clients. • Various hardware, network, and software troubleshooting to support the required continuity of numerous healthcare-related systems and applications. • Supporting, upgrading, maintaining, and troubleshooting Cisco and other network-related equipment. Changing and updating configurations. Single-Sign On, IT asset management software support (Altiris/Landesk), Mobile device support. • Reviewing vulnerability reports for multiple sites to insure constant acceptable threat levels are achieved and maintained. Engaging and educating end-users to provide consistent productivity and compliance. Coordinating data destruction between sites to meet enterprise standards.