IT and Information Security
Aktualisiert am 13.06.2024
Profil
Freiberufler / Selbstständiger
Remote-Arbeit
Verfügbar ab: 13.06.2024
Verfügbar zu: 100%
davon vor Ort: 100%
Firewall
SIEM
Endpoint Encryption
Network Security
Logfile

Einsatzorte

Einsatzorte

Zurich (+20km) Kaltbrunn (+50km)
Schweiz
möglich

Projekte

Projekte

2 Jahre
2022-07 - heute

Information Security

Freelance Information Security Specialist
Freelance Information Security Specialist
4 Jahre 4 Monate
2020-03 - heute

Deployed Threat Intelligence

Information Security Engineer/Analyst II
Information Security Engineer/Analyst II
  • Deployed Threat Intelligence (MISP, ThreatIngestor and Recorded Future).
  • Create and Manage Snort Rules
  • Deployed DLP (Endpoint Protector and Absolute) software for Endpoints and suggested change from Symantec to Cortex XDR
  • Created monitoring plan by implementing hourly checks of all security tools with Analysts
  • Enforcing security policies
  • System health monitoring using Nagios
  • Analyzing and monitoring the network activities using LogRhythm
  • OSSEC, Snort, Snowl
  • In-charge of security for public facing websites
  • Leading a team of 3 Analysts and responsible for building the Security Operations Center
  • Gathering logs for investigation and conduct forensics
  • Patch management and trouble shooting.
  • Create installation packages (with/without relays)
  • Blacklisting and Whitelisting
  • Scanning all endpoints
  • Submit reports
Reed Tech
Horsham, PA
10 Monate
2019-05 - 2020-02

Threat hunting

SOC Analyst
SOC Analyst
  • Threat hunting (hunting for unusual behavior network behavior, Registry events, malware alerts, access failure and vulnerabilities detected).
  • Monitoring hosts and network for attacks, intrusions, unusual behavior, and unauthorized or illegal activity.
  • Configure application files via N-Central to bring back dropped systems from SIEM.
  • Monitoring identity and access management, including monitoring for abuse of permissions.
  • Revising IT Security policies to recommend changes in response to incremental changes.
  • Keeping up to date with the latest security and technology developments by reading at least 3 white papers weekly.
  • DLP monitoring
  • Review analysis procedures and recommend changes for qualified analysis and calculated response.
  • Aid management with administration and configuration of critical enterprise security systems and software such as Cortex XDR (Traps), Complete Endpoint Protection-Enterprise, Proofpoint etc.
  • Used Web inspect for performing automated scans of online applications in production followed by report presentation.
  • Involved in integration of Qualys with LogRhythm, Active directory and LDAP authentication.
  • Configured KnowB4 for Information Security awareness training.
Driven Technologies
Norcross, GA
1 Jahr 2 Monate
2018-04 - 2019-05

Policy Management

IT Specialist/Security
IT Specialist/Security
  • Providing first line defense to security incidents
  • User Access Administration using Active Directory and SharePoint
  • Identify, track and resolution of file access violations
  • Created Groups in Active Directory to Administer File Access
  • Mapped end user computers to Network Drives
  • Policy Management using RSA Archer GRC
  • Investigating threats and incidents
  • Vulnerability research, review, and escalation
  • Respond to email compromises and phishing/spoofing attempts
  • Supervise security standards, practices, operations and enforcing policies in Helpdesk.
  • Responding to Cisco AMP (for endpoint), and or Cisco Firepower IPS and SecureWorks IPS (for network)
  • Assisted with Information Security awareness training.
  • Analyzing data logs from Cisco AMP (Endpoint Protection).
  • Monitoring hosts and network for attacks, intrusions, unusual behavior, and unauthorized or illegal Activity.
  • Report all incidents to Helpdesk Manager and Information Security Senior Manager, monthly.
  • Responding to Cisco AMP (for endpoint), and or Cisco Firepower IPS and Secure Works IPS (for network)
  • Monitoring identity and access management, including monitoring for abuse of permissions
  • Revising IT Security policies to recommend changes in response to incremental changes
  • Report all incidents to Helpdesk Manager and Information Security Senior Manager, monthly
Insight Global - Sandy Springs, GA
1 Jahr 4 Monate
2017-02 - 2018-05

Investigated and tested product quality

Tester/Programmer
Tester/Programmer
  • Collaborated with the Product Development team to ensure consistent project execution.
  • Identified the quality assurance process bottleneck and suggested actions for improvement.
  • Tested APIs to connect various products using JavaScript.
  • Prepared and presented reports and metrics to Senior Management
Kodaris - Peachtree, GA
5 Jahre 3 Monate
2010-02 - 2015-04

Set up, tested and configured networks, desktops, laptops and printers.

IT Consultant
IT Consultant
  • Set up equipment for 50 workstations, including installation of cables and hardware.
  • Installed software and operating systems on computers.
  • Installed motherboards, processors, RAMs and graphics cards.
  • Resolved computer hardware and software, printing, installation, word processing, email and operating systems issues.
  • Resolved technical support inquiries per day
  • Overseen daily operations of 2 stores.
Nardlink

Aus- und Weiterbildung

Aus- und Weiterbildung

Mini Master of Business Administration - MBA

Information Technology, European Institute of Leadership and Management, Dublin, Ireland


Information Technology

BSc

Colorado State University-Global Campus, Auror


Associate of Science Computer Information Systems

Ashworth College

Kompetenzen

Kompetenzen

Top-Skills

Firewall SIEM Endpoint Encryption Network Security Logfile

Produkte / Standards / Erfahrungen / Methoden

Summary
  • Certified Ethical Hacker (Expired), CompTIA Security + (Expired), ITIL Foundation
  • 5+ years of experience in designing, deploying, and managing enterprise security solutions in Information Security.
  • Experience with network monitoring with SIEM and Wireshark, Information Security & Network security configuration and functions.
  • Knowledgeable of penetration testing, vulnerability assessment, threat hunting, and security program development.
  • Familiar with Virtual Machines technology.
  • Provided real time intrusion detection host- Installed and maintained security infrastructure, including IPS, IDS, log management, and security assessment systems.
  • Review, assess, and mitigate penetration tests and vulnerability assessments on information systems and infrastructure.
  • Good knowledge of Installing and use software, such as data encryption programs, to protect sensitive information.
  • Assessed threats, risks, and vulnerabilities from emerging Security issues.
  • Good knowledge of Proofpoint as inbound email security, outbound data loss prevention, social media, mobile devices, digital risk, email encryption, electronic discovery, and email archiving. 
  • Knowledge of Implementing solutions part of the project support which include Vulnerability scanner and Palo Alto Firewall.
  • Analyze and Coordinated security vulnerability activities with Cisco Security Incident Management Team on latest and emerging security vulnerabilities.
  • Proficient in Identity and Access Management, Application Security, Data Protection, and Risk & Compliance.
  • Hands on experience in Antivirus Administration, Patch Management, Network devices analysis, Vulnerability Assessment and Penetration Testing (VAPT) and log analysis.
  • Experience in Linux/Windows/Mac OS environments.
  • Good Interpersonal Skills, team-working attitude, takes initiatives and very proactive in solving problems and providing best solutions. 


Skills

  • Antivirus Administration
  • Pen Testing
  • Threat Hunting
  • Virtual Machines
  • VAPT
  • Data Encryption
  • Wireshark
  • PowerShell
  • Cisco AMP
  • Nmap, Zenmap
  • N-Central
  • Cisco Firepower
  • Cortex XDR (Traps)
  • Bitdefender
  • Proofpoint
  • KnowB4
  • LogRhythm
  • Qualys
  • Alien Vault
  • Service Now
  • FortiWeb
  • Palo Alto
  • Windows
  • Linux 

Einsatzorte

Einsatzorte

Zurich (+20km) Kaltbrunn (+50km)
Schweiz
möglich

Projekte

Projekte

2 Jahre
2022-07 - heute

Information Security

Freelance Information Security Specialist
Freelance Information Security Specialist
4 Jahre 4 Monate
2020-03 - heute

Deployed Threat Intelligence

Information Security Engineer/Analyst II
Information Security Engineer/Analyst II
  • Deployed Threat Intelligence (MISP, ThreatIngestor and Recorded Future).
  • Create and Manage Snort Rules
  • Deployed DLP (Endpoint Protector and Absolute) software for Endpoints and suggested change from Symantec to Cortex XDR
  • Created monitoring plan by implementing hourly checks of all security tools with Analysts
  • Enforcing security policies
  • System health monitoring using Nagios
  • Analyzing and monitoring the network activities using LogRhythm
  • OSSEC, Snort, Snowl
  • In-charge of security for public facing websites
  • Leading a team of 3 Analysts and responsible for building the Security Operations Center
  • Gathering logs for investigation and conduct forensics
  • Patch management and trouble shooting.
  • Create installation packages (with/without relays)
  • Blacklisting and Whitelisting
  • Scanning all endpoints
  • Submit reports
Reed Tech
Horsham, PA
10 Monate
2019-05 - 2020-02

Threat hunting

SOC Analyst
SOC Analyst
  • Threat hunting (hunting for unusual behavior network behavior, Registry events, malware alerts, access failure and vulnerabilities detected).
  • Monitoring hosts and network for attacks, intrusions, unusual behavior, and unauthorized or illegal activity.
  • Configure application files via N-Central to bring back dropped systems from SIEM.
  • Monitoring identity and access management, including monitoring for abuse of permissions.
  • Revising IT Security policies to recommend changes in response to incremental changes.
  • Keeping up to date with the latest security and technology developments by reading at least 3 white papers weekly.
  • DLP monitoring
  • Review analysis procedures and recommend changes for qualified analysis and calculated response.
  • Aid management with administration and configuration of critical enterprise security systems and software such as Cortex XDR (Traps), Complete Endpoint Protection-Enterprise, Proofpoint etc.
  • Used Web inspect for performing automated scans of online applications in production followed by report presentation.
  • Involved in integration of Qualys with LogRhythm, Active directory and LDAP authentication.
  • Configured KnowB4 for Information Security awareness training.
Driven Technologies
Norcross, GA
1 Jahr 2 Monate
2018-04 - 2019-05

Policy Management

IT Specialist/Security
IT Specialist/Security
  • Providing first line defense to security incidents
  • User Access Administration using Active Directory and SharePoint
  • Identify, track and resolution of file access violations
  • Created Groups in Active Directory to Administer File Access
  • Mapped end user computers to Network Drives
  • Policy Management using RSA Archer GRC
  • Investigating threats and incidents
  • Vulnerability research, review, and escalation
  • Respond to email compromises and phishing/spoofing attempts
  • Supervise security standards, practices, operations and enforcing policies in Helpdesk.
  • Responding to Cisco AMP (for endpoint), and or Cisco Firepower IPS and SecureWorks IPS (for network)
  • Assisted with Information Security awareness training.
  • Analyzing data logs from Cisco AMP (Endpoint Protection).
  • Monitoring hosts and network for attacks, intrusions, unusual behavior, and unauthorized or illegal Activity.
  • Report all incidents to Helpdesk Manager and Information Security Senior Manager, monthly.
  • Responding to Cisco AMP (for endpoint), and or Cisco Firepower IPS and Secure Works IPS (for network)
  • Monitoring identity and access management, including monitoring for abuse of permissions
  • Revising IT Security policies to recommend changes in response to incremental changes
  • Report all incidents to Helpdesk Manager and Information Security Senior Manager, monthly
Insight Global - Sandy Springs, GA
1 Jahr 4 Monate
2017-02 - 2018-05

Investigated and tested product quality

Tester/Programmer
Tester/Programmer
  • Collaborated with the Product Development team to ensure consistent project execution.
  • Identified the quality assurance process bottleneck and suggested actions for improvement.
  • Tested APIs to connect various products using JavaScript.
  • Prepared and presented reports and metrics to Senior Management
Kodaris - Peachtree, GA
5 Jahre 3 Monate
2010-02 - 2015-04

Set up, tested and configured networks, desktops, laptops and printers.

IT Consultant
IT Consultant
  • Set up equipment for 50 workstations, including installation of cables and hardware.
  • Installed software and operating systems on computers.
  • Installed motherboards, processors, RAMs and graphics cards.
  • Resolved computer hardware and software, printing, installation, word processing, email and operating systems issues.
  • Resolved technical support inquiries per day
  • Overseen daily operations of 2 stores.
Nardlink

Aus- und Weiterbildung

Aus- und Weiterbildung

Mini Master of Business Administration - MBA

Information Technology, European Institute of Leadership and Management, Dublin, Ireland


Information Technology

BSc

Colorado State University-Global Campus, Auror


Associate of Science Computer Information Systems

Ashworth College

Kompetenzen

Kompetenzen

Top-Skills

Firewall SIEM Endpoint Encryption Network Security Logfile

Produkte / Standards / Erfahrungen / Methoden

Summary
  • Certified Ethical Hacker (Expired), CompTIA Security + (Expired), ITIL Foundation
  • 5+ years of experience in designing, deploying, and managing enterprise security solutions in Information Security.
  • Experience with network monitoring with SIEM and Wireshark, Information Security & Network security configuration and functions.
  • Knowledgeable of penetration testing, vulnerability assessment, threat hunting, and security program development.
  • Familiar with Virtual Machines technology.
  • Provided real time intrusion detection host- Installed and maintained security infrastructure, including IPS, IDS, log management, and security assessment systems.
  • Review, assess, and mitigate penetration tests and vulnerability assessments on information systems and infrastructure.
  • Good knowledge of Installing and use software, such as data encryption programs, to protect sensitive information.
  • Assessed threats, risks, and vulnerabilities from emerging Security issues.
  • Good knowledge of Proofpoint as inbound email security, outbound data loss prevention, social media, mobile devices, digital risk, email encryption, electronic discovery, and email archiving. 
  • Knowledge of Implementing solutions part of the project support which include Vulnerability scanner and Palo Alto Firewall.
  • Analyze and Coordinated security vulnerability activities with Cisco Security Incident Management Team on latest and emerging security vulnerabilities.
  • Proficient in Identity and Access Management, Application Security, Data Protection, and Risk & Compliance.
  • Hands on experience in Antivirus Administration, Patch Management, Network devices analysis, Vulnerability Assessment and Penetration Testing (VAPT) and log analysis.
  • Experience in Linux/Windows/Mac OS environments.
  • Good Interpersonal Skills, team-working attitude, takes initiatives and very proactive in solving problems and providing best solutions. 


Skills

  • Antivirus Administration
  • Pen Testing
  • Threat Hunting
  • Virtual Machines
  • VAPT
  • Data Encryption
  • Wireshark
  • PowerShell
  • Cisco AMP
  • Nmap, Zenmap
  • N-Central
  • Cisco Firepower
  • Cortex XDR (Traps)
  • Bitdefender
  • Proofpoint
  • KnowB4
  • LogRhythm
  • Qualys
  • Alien Vault
  • Service Now
  • FortiWeb
  • Palo Alto
  • Windows
  • Linux 

Vertrauen Sie auf Randstad

Im Bereich Freelancing
Im Bereich Arbeitnehmerüberlassung / Personalvermittlung

Fragen?

Rufen Sie uns an +49 89 500316-300 oder schreiben Sie uns:

Das Freelancer-Portal

Direktester geht's nicht! Ganz einfach Freelancer finden und direkt Kontakt aufnehmen.