Security Analyst

Summary

Increased deployment velocity by 30% by using AWS CDK with IAM to automate deployment on Cloud Formation infrastructure.
Demonstrated expertise in core AWS services, leveraging best practices and ensuring high availability and scalability of cloud apps.
Designed and implemented CloudFormation templates using Ruby and Java, integrating Lambdas, StepFunctions, IAM and other
components resulting in improved deployment speed.
Monitored and analyzed security logs for suspicious activity - utilized Splunk Query Language to filter through various log sources.
Investigated security incidents and responded to alerts - utilized malware analysis techniques to figure out if an alert is true positive by following Standard Operating Procedures for Incident Response.
Identified improvement areas for alert rules and helped fine-tune alerts.
Worked with other security analysts to resolve security issues and fine tune security policies and rules.
Developed and implemented security procedures.
Identified and mitigated risks and security vulnerabilities.
Led and managed project with a focus on stakeholder communication, resulting in successful completion on time and within budget.
Significantly improved a client's single-page web application by implementing Angular, HTML, CSS, JavaScript, and TypeScript,
while ensuring adherence to client requirements and preferences.
Managed and monitored IT systems and resources to ensure availability and performance.
Integrated SonarQube into Git processes and able to find bugs and vulnerabilities during a code review and minimize the impact of
client-side vulnerabilities, finding code smells, deprecated frameworks etc.
Successfully participated in on-call rotation, providing dedicated support for production environments, promptly addressing and
resolving critical tickets to ensure uninterrupted system functionality and minimize downtime.
Implemented a responsive UI using ReactJS, HTML5, CSS3, Bootstrap while ensuring optimal user experience and scalability.
Employed industry-standard debugging tools, including Fiddler and Postman, in conjunction with Angular web inspectors, to
proactively identify and resolve potential issues, ensuring smooth application performance and robustness.
Assessed and managed risks to systems and data to develop and implement risk mitigation plans.
Worked with other IT teams to integrate IAM systems with other security systems, such as intrusion detection systems and firewalls.
Collaborated with cross-functional teams to design and implement features, ensuring alignment with project requirements.

*** I am on work visa, might need sponsorship ***

Expectations

Incident Response, Vulnerability Assessment, Penetration testing, AWS, Java, JavaScript, DevSecOps, Automation, Computer Networks
Medium size team, can work with MSP/MSSP, Work+Life balance, growth opportunities.

Employment Preferences

Expected Base Salary

**0,000 USD

Expected Hourly Rate

** USD/hr

Academic Degree

Experience

Skills

• Java
• JavaScript
• AWS
• DevOps
• CICD
• SIEM
• SOAR
• IDS
• IPS
• Firewalls
• EDR Tools
• SAST
• DAST Tools
• Digital Forensic Tools
• API Testing Tools
• FTK
• DLP
• CTI
• Vulnerability Detection Tools
• Network Security
• Linux CLI
• Autopsy
• Nmap
• Nessus
• BurpSuite
• WireShark
• Metasploit
• OWASP ZAP
• Web Content Filtering
• Packet Analysis
• Computer Forensics
• Information Risk Management
• Cyber Threat Intelligence
• Malware Detection
• Prevention
• Microsoft Defender
• Automation Scripting
• Splunk
• Network Protocols
• TCP
• IP
• OSI
• Routing
• Switching
• Proxies
• DNS
• DHCP
• Firewall Policies
• Rules
• Network Topologies
• Securing Network Perimeter
• Tcpdump
• PCAP Analysis
• Windows Event Viewer
• 2FA
• Security Event Monitoring
• Anti-Malware
• NIST
• MITRE
• Cyber Kill Chain
• HIPAA
• PCI-DSS
• CVE
• CVSS
• SOC 1
• SOC 2