Summary
Results-driven Cybersecurity Analyst with over 15 years of combined experience in software engineering and cybersecurity. Expertise in securing on-premise and AWS environments, conducting phishing analysis, security audits, and threat intelligence integration. Proficient in penetration testing, vulnerability management, SIEM and EDR operations using tools like Splunk, Carbon Black, Imperva, and Symantec solutions. Skilled in developing security runbooks, ITIL-based processes, and Python-based automation for log analysis and threat detection. Certified in CompTIA Security+ and AWS Cloud Practitioner, with ongoing OSCP and CySA+ training. Adept at critical thinking, incident response, and aligning security practices with NIST, ISO, and Zero Trust frameworks to mitigate risks and enhance organizational security posture.
Experience
Cybersecurity Analyst II
Pledge Environmental | Hamilton Township, NJ | 2023 – Present
- Secure on-premises and AWS environments, reducing vulnerabilities by 25% through robust network protocols and security principles.
- Conduct phishing analysis, EDR, and database monitoring using Carbon Black, Imperva, Varonis, Tripwire, and Symantec CASB.
- Perform security audits and manage Active Directory Security Group lifecycles, ensuring compliance and mitigating privilege escalation risks.
- Integrate third-party threat intelligence to enhance proactive defense against APTs.
- Develop security runbooks, knowledge management docs, and reports on daily/weekly/monthly/quarterly cadences.
- Monitor and resolve incidents using SecureMail, VMRay, Forescout, Symantec WebPulse/Web Security Service; 95% resolution within SLAs.
- Implement ITIL-based processes via ServiceNow for incident response and workforce management.
- Conduct penetration testing and vulnerability scanning with Metasploit, Nmap, Wireshark, Nessus; reduced SIEM false positives by 30%.
- Automate log correlation and anomaly detection with Python (Pandas, NumPy, Matplotlib); built Splunk dashboards for threat detection.
- Align practices with NIST CSF, ISO 27001, and Zero Trust; deliver risk assessment reports.
Lead Developer → Security Transition
NobTech / Contract | Remote | 2017 – 2023
- Secured Laravel apps with RBAC and OAuth 2.0, mitigating privilege escalation across 12+ client projects.
- Integrated secure CI/CD with Docker and Git, reducing container vulnerabilities by 30%.
- Executed web app and API scans (Burp Suite, Postman); fixed 95+ flaws (XSS, SQLi).
- Created internal documentation aligned with Purdue Model and NIST 800-82.
- Managed OT-style risk reviews and guided 5-7 member teams in secure DevOps practices.
Web Developer / Consultant
Various Agencies | Remote | 2009 – 2017
- Delivered 30+ projects with secure data flows, RBAC, HTTPS enforcement, and Git pipelines.
- Mentored developers in secure code practices and GitOps, improving team review efficiency by 40%.
Projects
- Penetration Testing Lab (DC:1): A simulated penetration test report for VulnHub DC-1 documents findings, vulnerabilities, and the exploitation process to demonstrate system weaknesses and provide actionable recommendations a SOC analyst can rely on.
- SIEM Monitoring Lab (Splunk): Simulated SOC with Splunk Free; ingested logs, built dashboards, detected threats per NIST 800-61.
- Penetration Testing Lab: Completed 15+ Hack The Box/OSCP labs focusing on privilege escalation and OT vectors.
- API Security Lab: OWASP Top 10 tests on endpoints using Postman/Burp Suite.
- Container Hardening Lab: Secured DVWA/Juice Shop containers with Clair and Trivy.
- Industrial Protocol Sandbox: ICS attack simulations with Modbus/BACnet.
- GitHub Contributions: Open-source security-focused Laravel middleware.