Uploaded File
Phil
jaja.phil@yahoo.com
203-551-4853
677 Sylvan Ave Apt 209
Bridgeport, CT 06606
Cyber Security Analyst
7 years experience W2
0
Recommendations
Average rating
91
Profile views
Summary

I am an ambitious professional with compliance experience, in-depth knowledge of intrusion detection/prevention systems and the ability to write custom scripts providing a wide range of security alerts, using security frameworks with a focus on risk mitigation, zero-day exploits, vulnerability management, and penetration testing. Identifying improved approaches and enhanced solutions to IT security challenges are activities that drive and inspire me. Exploration, pursuit, and motivation are my framework for success.

Skills

Hard Skills

  • Machine learning
  • Risk Mitigation
  • Secure Software Development & Software
  • Security Incident Handling & Response
  • Engineering Practices
  • Intrusion Detection / Prevention
  • Text Editors
  • Identity & Access Management
  • Tenable Nessus
  • Audit & Compliance
  • Forensic Toolkit (FTK)
  • SIEM Management: Splunk, MacAfee Nitro, LogRhythm, Qualys
  • Volatility
  • Access Data Registry Viewer
  • Cloud Security: AWS, Google Cloud Platform (GCP)
  • Spiderfoot
  • Wireshark
  • Risk Analysis
  • OWASP/Zap
  • Security Analysis
  • Snort
  • Data Analysis
  • Mac OS
  • Malware Analysis
  • Microsoft
  • Encryption
  • Programming: Kali Linux, Phyton, Java, C++
  • Virtualization: Kvm, VMware
  • DNS: IPA, Bind
  • Ethical Hacking
  • Penetration testing
  • Vulnerability management & Vulnerability assessment
  • Digital Forensics / Computer Forensics
  • Computer Networking
  • Network security
  • Automation / DevOps: Ansible
  • Reverse Engineering

Soft Skills

  • Communication skills
  • Attention to detail
  • Problem-solving
  • Collaboration & teamwork
  • Time management
  • Creative thinking
  • Interpersonal Skills
  • Analytical and Diagnostic Skills
  • Management Skills

Additional Information

  • Orchestration and automation of three-tier system architecture on google cloud platform using "Ansible Playbook" (automation management tool). The first tier was a load balancer, there were three apache servers running as the second tier created on google cloud, and MySQL database was the third tier. The main goal was to automate the system to secure the server infrastructure. There are services behind the web application such as SSH and HTTP, I had to secure these services by hardening them. A simple PHP web application was designed to replicate the database table filled with sample contact information, where the load balancer distributes the PHP request as it comes in. All these had to be done once the Ansible playbook is been deployed to achieve acceleration, simplicity, productivity and overall system security.
  • "Machine learning Application for Network Level Detection of Flooding (DDoS) Attacks", where I and my partner used a set of ML algorithms to classify a dataset into training and testing purposes, and applied the classified algorithm against some DDoS attacks to see the accuracy and precision level of the implemented algorithm in a network traffic.
  • "Design and implementation of a vehicle monitoring system" where I developed a system from a microcontroller to monitor, track and record the positions of a vehicle in real-time via SMS message, and also record voices going on in and around the vehicle via a voice call. I also added and calibrated a smoke sensor to detect and alert the owner of the vehicle via SMS message of any possible fire outbreak in the car.

Activities and Honors

  • Asis International - member
  • National Society of Black Engineers (NSBE) - member
  • Information System Audit and Control Association (ISACA) - member

Experience
Cyber Security Analyst
Information Technology
Dec 2018 - present
New York, NY
  • Perform real-time proactive Security monitoring and reporting on various Security enforcement systems, such as MacAfee NITRO (SIEM), Anti-virus, Internet content filtering/reporting, Malware code prevention, Firewalls, IDS & IPS, Web Security, Anti-spam, etc.
  • Provide Level 2 Operations support for end user resolution investigating RSA SIEM events to determine any true intrusions.
  • Provide leadership in architecting and implementing security solutions towards Qualys and SIEM tools like Splunk, LogRhythm.
  • Managing Security tools DLP, SIEM, Vulnerability scanner and Penetration testing.
  • Wrote and updated security plans to meet NIST 800-53 standards as a team.
  • Participated in two security audits conducted by the audit team.
  • Identify and remediate any threats and vulnerabilities as a security Monitoring (SOC), Triage and Escalation to T2.
  • Track performance metrics and provides timely updates to SOC management.
  • Develop, improve, and help implement best practices for risk reduction across a broad range of enterprise applications, systems, networks and interfaces using leading cyber security frameworks.
  • Assist with the development of processes and procedures to improve incident response times, analysis of incidents, and overall SOC functions.
  • Work with clients to implement system security measures, assist with computer security plans, documentation and provide technical guidance and training.
  • Perform Vulnerability scanning on networks and make sure that vulnerabilities are addressed.
  • Perform Automated and manual security assessment to identify configuration and patch related issues.
  • Perform troubleshooting and analysis using Wireshark.
Cyber Security IDS IPS Penetration Testing Security Analyst SIEM Firewall Splunk Scala RSA DLP Security Monitoring NIST Wireshark Problem Solving Enterprise Applications Auditing Analysis Cyber Threat Intelligence
Remove Skill
IT Engineer
Information Technology
Dec 2015 - Aug 2017

Maintained computer systems, upgraded and installed new systems, managed system security and oversaw data storage and network systems. From servers to security programs, I was responsible for:

  • Installation, configuration, and maintenance of software applications, operating systems, administration, and network monitoring.
  • Managing User and Local Admin accounts rights and Privileges.
  • Computer Hardware Installation and Troubleshooting.
  • Basic Network Troubleshooting (LAN).
  • Building Security Awareness and Training Program for Staff, contractors/Vendors to meet Compliance and Legal Requirement.
  • Network Operation Administration Monitoring.
  • Maintenance and Management of all logs of Staff usage and access on company Documents, IT infrastructures, and Properties.
  • Creating and managing the use of backup and retrieval systems.
  • Data retrieval processes in the event of emergencies.
  • Diagnose and repair of internet services LAN networks, wireless and email failures.
  • Managing Antivirus infrastructures.
Database Backups LAN Network Monitoring System Administration Wireless Training Infrastructure Engineer Database Maintenance Basic Actor Problem Solving Compliance Malware
Remove Skill
Intern
Information Technology
Apr 2015 - Sep 2015

Led different teams and handled various projects with timely delivery of updates.

  • Spearheaded the team responsible for installation and repairs of computerized security software and gadgets (Hardware) examples: car tracking devices, installation of electric fencing, access control devices/equipment's, installation of security cameras and monitoring systems.
  • Ensured functionality and corrected errors prior to the launching of websites.
  • Maximized productivity by analyzing protocols and identifying areas for improvement.
  • Delivered expert clerical support to internal staff and management by efficiently handling a wide range of routine and special requirements.
  • Built rapport with clients to facilitate trusting relationships and provided setting conducive to growth.
  • Updated status report after every installation and repair projects back to supervisor.
  • I got certified as a qualified technician in various fields.
No skills were added
Remove Skill
Edit Skills
Non-cloudteam Skill
Education
Master's in Cyber Security
Sacred Heart University 2018
Bachelor's in Computer Engineering
Ghana Technology University College 2016
Skills
Malware
2017
2
Problem Solving
2021
2
Actor
2017
1
Analysis
2021
1
Auditing
2021
1
Basic
2017
1
Compliance
2017
1
Cyber Security
2021
1
Cyber Threat Intelligence
2021
1
Database Backups
2017
1
Database Maintenance
2017
1
DLP
2021
1
Enterprise Applications
2021
1
Firewall
2021
1
IDS
2021
1
Infrastructure Engineer
2017
1
IPS
2021
1
LAN
2017
1
Network Monitoring
2017
1
NIST
2021
1
Penetration Testing
2021
1
RSA
2021
1
Scala
2021
1
Security Analyst
2021
1
Security Monitoring
2021
1
SIEM
2021
1
Splunk
2021
1
System Administration
2017
1
Training
2017
1
Wireless
2017
1
Wireshark
2021
1
Ansible
0
1
C++
0
1
Debian
0
1
Java
0
1
Linux
0
1
Mac OS
0
1
Machine Learning
0
1
Microsoft Excel
0
1
Microsoft Office
0
1
Nessus
0
1
Network Security
0
1
OpenShift
0
1
OWASP
0
1
Project Management
0
1
Software Engineer
0
1
Virtualization
0
1
VMWare
0
1
Vulnerability Assessments
0
1
Vulnerability Managment
0
1