Sep 2021 – Mar 2023 · 1 yr 6 mos · New York, New York, United States

• Leads and maintains security operations with a focus on log monitoring processes in a hybrid on-premise and cloud environment.
• Leads application focused processes including threat modeling, vulnerability triage, application monitoring, etc.
• Implements and configures SIEM, AWS security tools, and maintains other third party security tool configurations.
• Maintains security incident response processes including security response, documentation, tabletop exercises and trainings.
• Completes other security tasks including endpoint vulnerability management, writing policies, business continuity planning, internal security risk assessments, and audit processes.

Apr 2019 – Sep 2021 · 2 yrs 5 mos · Raleigh, North Carolina

• Leads and maintains security log monitoring processes in a cloud environment, SaaS tools, and on user endpoints.
• Implements and configures SIEM and maintains other security tool configurations.
• Contributes to incident response processes including security response, documentation, and trainings.
• Completes other security tasks including endpoint vulnerability management, writing policies, business continuity planning, internal security risk assessments, and audit processes.

Dec 2017 – Apr 2019 · 1 yr 4 mos

• Provides in-depth investigation and analysis on global security events and incidents triaged by Tier II Incident Response team.
• Focuses on improving endpoint detection, analysis, and alerting processes.
• Supports Data Loss Prevention team by creating Incident Response monitoring and escalation process and reducing false positives. Creates alerts to detect alternate methods of data exfiltration.
• Collects and maintains monthly metrics.

Jun 2017 – Dec 2017 · 6 mos

• Maintained the integrity of security metrics through extraction, manipulation and analysis.
• Utilized Tableau Desktop to create interactive dashboards reporting on various security controls throughout the organization.