Cybersecurity Operations Resume Samples
4.5
(126 votes) for
Cybersecurity Operations Resume Samples
The Guide To Resume Tailoring
Guide the recruiter to the conclusion that you are the best candidate for the cybersecurity operations job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.
Craft your perfect resume by picking job responsibilities written by professional recruiters
Pick from the thousands of curated job responsibilities used by the leading companies
Tailor your resume & cover letter with wording that best fits for each job you apply
Resume Builder
Create a Resume in Minutes with Professional Resume Templates
CHOOSE THE BEST TEMPLATE
- Choose from 15 Leading Templates. No need to think about design details.
USE PRE-WRITTEN BULLET POINTS
- Select from thousands of pre-written bullet points.
SAVE YOUR DOCUMENTS IN PDF FILES
- Instantly download in PDF format or share a custom link.
CF
C Fritsch
Carey
Fritsch
9196 Luettgen Bridge
Dallas
TX
+1 (555) 645 8255
9196 Luettgen Bridge
Dallas
TX
Phone
p
+1 (555) 645 8255
Experience
Experience
Houston, TX
Cybersecurity Operations Center Analyst
Houston, TX
Stiedemann-MacGyver
Houston, TX
Cybersecurity Operations Center Analyst
- Analyzes incoming security incidents, performs deep packet inspection, and provides first responder actions to Fraud Response teams
- Remain informed and improve awareness of Information Security news and developments, especially in relation to the banking and financial services industry
- Keep accurate and concise records for all cases
- Provide accurate & priority driven analysis to detect, analyze, respond to and track security threats and vulnerabilities
- Coordinate with Business Units and Technology teams to assist with incident response, remediation, and recovery efforts
- Activities range in complexity from simple approvals (allowing safe software to be installed) to complex event analysis (reverse engineering malicious software or identifying traffic patterns for cyber attacks) and custom rule creation
- Develop and maintain documentation, processes, procedures, and reports to improve the quality, consistency, effectiveness, and efficiency of SOC operations
Chicago, IL
Cybersecurity Operations Manager
Chicago, IL
Thiel LLC
Chicago, IL
Cybersecurity Operations Manager
- Working knowledge of information/cybersecurity, infrastructure vulnerabilities, and network security products (hardware and software)
- Change control management, coordination and process improvements between infrastructure and development/application management units
- Demonstrated success building relationship with senior leaders, security team and key decision-makers
- Support and assist the CISO to develop and maintain ongoing reporting of cybersecurity operations metrics
- Assists with the preparation of operating and capital budgets and manages expenses to budget
- Manage incident response activities, intrusion detection processes and security for the infrastructure
- Gen endpoint prevention technologies, Data Loss Prevention, Cloud Security Broker, Web Filtering, and FWs and ensure security tools are optimized, fine
present
Detroit, MI
Cybersecurity Operations Specialist
Detroit, MI
Fay, Swaniawski and Streich
present
Detroit, MI
Cybersecurity Operations Specialist
present
- Provide forensic analysis and troubleshooting to assist in the containment and remediation of security incidents working with the Incident Response team
- Perform IDS monitoring and analysis, analyze network traffic, log analysis, prioritize and differentiate between potential intrusion attempts and false alarms
- Provide the technical expertise and oversight of security tool/appliances deployment and implementation
- Ownership of network security architecture and secure connectivity
- Responsible for remediating security gaps following up on non-compliance and ensuring operational activities within IT services follow information security best practice
- Responsible for the operational management of security products and services including firewalls, networks, third party connections, encryption technologies, patching, certificate management, anti-virus, email security controls, intrusion detection, intrusion prevention, virtual private networks, and identify access management
- Reports security performance against established security metrics
Education
Education
Bachelor’s Degree in Computer Science
Bachelor’s Degree in Computer Science
Harvard University
Bachelor’s Degree in Computer Science
Skills
Skills
- 3+ years of experience in IT leadership positions, with proven success leading highly skilled security teams within a large scale, high-availability IT operation with 24/7/365 accountability
- Strong problem solving skills with the ability to understand business processes and propose appropriate technical solutions
- Working knowledge of information/cybersecurity, infrastructure vulnerabilities, and network security products (hardware and software)
- Experience with vulnerability assessment, penetration testing, and/or forensic analysis fields
- Ability to function independently as well as in a team environment
- Effective written, verbal and interpersonal communication skills
- Demonstrated success building relationship with senior leaders, security team and key decision-makers
- Familiar with ITIL best practices
15 Cybersecurity Operations resume templates
Read our complete resume writing guides
1
Cybersecurity Operations Solutions Engineer Resume Examples & Samples
- Developing or enhancing existing vendor suites or custom cyber security toolsets
- Setting up and deploying servers and operating systems to host critical cyber security tools
- Investigating alerts using any and all available tools and data resources
- 5+ yrs experience with system administration at hardware, software, as well as OS levels
- 5+ yrs experience and knowledge of high and low level network protocols such as TCP, UDP, HTTP, SMTP, etc
- 2+ yrs experience administering databases and developing database applications in traditional relational databases as well as NoSQL ones
2
Cybersecurity Operations Analyst Resume Examples & Samples
- 2 to 5 years of experience with IP network and routing along with deep packet analysis using tools like Wireshark
- 2 to 5 years of experience with products of IPS/IDS, AV, and Anti-Malware products like McAfee, FireEye, etc
- 2 to 5 years of experience with security incident response process and procedures
- 2 to 5 years of experience with information security best practices
- 2 to 5 years Unix/Wintel experience
- GIAC Global Certified Incident Handler or Equivalent
- CCNA or Equivalent
- CISSP or Equivalent
3
Cybersecurity Operations Engineer, Junior Resume Examples & Samples
- Experience with tracking and reporting of >1000 systems, including large software deployment, upgrade, or security flaw remediation
- Experience in interfacing with customers daily
- Experience with weekly reporting of progress and remediations
- Ability to improve and automate processes
- Security+ Certification
4
Cybersecurity Operations Manager Resume Examples & Samples
- 10+ years of experience in IT with at least 5 of those years of experience in a Cybersecurity operations role
- 3+ years of experience in a technical leadership role, providing direction to a team for managing people, employee career development, team building, and conflict resolution
- Experience with multiple security platforms and layers, including anti-virus, firewalls, proxy servers, intrusion prevention systems, logging correlation and management, operating systems, protocols, and incident response
- Experience with design and architecture using modern design patterns in a Cloud environment
- Experience with Cloud models, including IaaS, PaaS, SaaS, and the security implications and requisite control frameworks
- Knowledge of security best practices, including least privilege, defense in depth, or attack surface analysis
- Knowledge of Cloud and IT Infrastructure services, including security, directory services, identity management, network, systems, storage, databases, PKI, VPN, SSO, federation services, or WIFI
- Ability to demonstrate excellent decisive judgment and the potential business impact when the team is researching a security event or incident
- BA or BS degree in MIS, Computer Information Systems, CS, or an IT-related field
- Certified Information Systems Security Professional (CISSP) Certification
- CISA, CIPP, CISM, PCI-QSA, or a related Certification
5
Cybersecurity Operations Manager Resume Examples & Samples
- Design, implementation, and documentation of new information security solutions to support the various Citi Electronic Trading environments
- Deployment, configuration and maintenance of the STI Firewall environment
- Design and deployment of high-performance, low-latency technology solutions
- Compliance and Controls – participate in various reporting functions, metrics analysis and vulnerability remediation initiatives
- Stability and resiliency of the infrastructure
- Change control management, coordination and process improvements between infrastructure and development/application management units
- Ownership of Infrastructure Problem, Incident and Change management
- Strong communication (verbal and written) skills
- High work standards and high bandwidth for work
- Proven achiever
- Standard office documentation and communication tools
- Extensive hands-on knowledge of Juniper/Netscreen, Firewalls and related tools (e.g. NSM), as well as PaloAlto
- Hands-on skills in one or more of the following fields is desirable: Scripting language (e.g. Perl, shell script, etc), Remote access solutions, VPN
- Strong understanding of IP networking concepts and TCP/IP protocols is mandatory
- Strong understanding of Information Security domains, and best practices
- Strong knowledge of network firewalls, IDS, VPN, and vulnerability management is required
- 6 years min experience working in the IT field, with min of 2 in the Financial services industry
- Experience of customer support in a time critical environment
- Experience designing complex security solutions
6
Cybersecurity Operations Specialist, Senior Resume Examples & Samples
- 10 years of experience as a Cyber subject matter expert (SME)
- Experience with the Special Access Program (SAP) or Special Access Required (SAR) program
- Experience with international security cooperation programs, including foreign military sales
- Experience in Japan, including working with the Japanese Ministry of Defense (JMoD)
- Knowledge of the F-35 Joint Strike Fighter program a plus
- Ability to work well with people of other cultures
- Possession of excellent interpersonal and intercultural skills
- TS/SCI clearance preferred
- Certified Information Systems Security Professional (CISSP) or related Network Certification preferred
7
Cybersecurity Operations Manager, Senior Resume Examples & Samples
- 12 years of experience in leading technical project delivery with commercial clients in a fast-paced environment
- Experience with leading complex Cybersecurity capability design and implementation projects for Fortune 500 clients, including the implementation of new people, processes, and technologies for threat prevention, detection, and response
- Ability to manage and lead multiple fast-paced delivery teams across various challenging commercial environments
- Ability to work with senior partners and executive officers to foster positive client and vendor relationships, identify new business opportunities with existing clients, and develop mutually beneficial partnerships
- 5 years of experience with top tier management and consulting firms supporting large engagements
- Experience with multiple market verticals, including financial services, healthcare, energy, consumer products, high-technology, and pharmaceuticals
- Experience with coaching and mentoring junior staff on functional expertise
- Ability to be a self-starter and thrive in a fast-paced consulting environment
- Possession of excellent client facilitation skills
8
Cybersecurity Operations Center Analyst Resume Examples & Samples
- Activities range in complexity from simple approvals (allowing safe software to be installed) to complex event analysis (reverse engineering malicious software or identifying traffic patterns for cyber attacks) and custom rule creation
- Reviews system logs and responds to security events for host based incidents
- Analyzes incoming security incidents, performs deep packet inspection, and provides first responder actions to Fraud Response teams
- Provide accurate & priority driven analysis to detect, analyze, respond to and track security threats and vulnerabilities
- Utilize information security and monitoring tools in order to gather additional context needed to investigate an events of interest
- Coordinate with Business Units and Technology teams to assist with incident response, remediation, and recovery efforts
- Keep accurate and concise records for all cases
- Develop and maintain documentation, processes, procedures, and reports to improve the quality, consistency, effectiveness, and efficiency of SOC operations
- Contribute to the continuous improvement and growth of the SOC and Information Security
- Remain informed and improve awareness of Information Security news and developments, especially in relation to the banking and financial services industry
- Continue to develop technical skills to expand knowledge and understanding of key Information Security controls
- Self-starter with initiative and drive for continuous improvement
- Must be a team-oriented individual who works well with others and places a premium on the group’s success
- Demonstrate strong organizational, research, analytical and problem-solving skills to evaluate situations and respond appropriately
- Familiarity with concepts related to security disciplines such as: malware analysis, computer forensics, cyber incident response, network intrusion detection, network traffic and packet analysis, penetration testing, vulnerability scanning, compliance, audit, or cyber threat intelligence
- Possess a firm understanding of information security principles, controls, and technologies
- Must possess excellent written and verbal communication skills
- Bachelor’s degree in Computer Science, Managing Information Systems, or other technology-based discipline. *Experience may be substituted for some education
- Three or more years of experience in Information Technology or Information Security. **Education may be substituted for some experience
- One or more years of experience in Information Security
- Experience with a diverse set of hardware, software, and operating systems
- Subject matter expert (SME) in one or multiple areas such as Windows, UNIX, mainframe, firewalls, networking, intrusion detection, threat detection/analysis, or information risk management
- Relevant information security certification such as (CISSP, CISA, SANS/GIAC, Security+, etc.) are a plus
- Experience with SIEM systems is a plus
- Experience working in a Security Operations Center environment is a plus
9
Cybersecurity Operations Manager Resume Examples & Samples
- Coordinate, manage, coach, develop, and lead the team responsible for cybersecurity operations
- Bachelor degree in computer science or a related field and/or equivalent combination of education, certification and experience
- Advanced knowledge of TCP/IP networking
10
Senior Cybersecurity Operations Center Analyst Resume Examples & Samples
- Conduct network, endpoint, and log analysis by utilizing various consoles on a regular basis to analyze and triage cybersecurity events (e.g., SIEM, IPS, firewall, etc.) and perform continuous hunt across the environment
- Provide 24x7 operational support for escalations on a rotating shift basis
- Train and assist other analysts on the policies and procedures of the CSOC. Review their research, analysis and conclusions for completeness
- Oversee execution of established operational processes and procedures by CSOC analysts to analyze, escalate, and lead remediation of security incidents
- Bachelors’ Degree in Cybersecurity, Computer Science, MIS or other degrees with high level understanding of network and application security and information systems
- Five or more years of Cybersecurity experience in a security operations center with strong understanding of Cybersecurity frameworks and incident and security event management
- SANS (Multiple), CISSP, CISA, CISM, others as applicable
- Five or more years of experience analyzing host and network based logged events (i.e. firewall, IPS/IDS, Windows, Web, proxy, and mail filtering)
- Experience with SIEM technology and logging environments
- General networking understanding and/or experience to include Understanding of TCP/IP communications & knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB
- Experience with forensics and malware analysis concepts and methods
- Familiarity or experience with the Cyber Kill Chain® methodology
- Knowledgeable of Duke Energy’s IT Security policies
- Possession of multiple industry standard certifications such as SANS GIAC/GCIA/GCIH/GCFA, CISSP, CISA, CISM, etc. or other network / system security certifications
- Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain
- Demonstrated capability to work with little management oversight and must have strong personal initiative
- Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings and provide briefings to various levels of staff / management
- Ability to work in high pressure situations and within a team environment
- Experience with writing and editing technical documentation and operational procedures
- Demonstrated effective problem solving & analytical skills
11
Cybersecurity Operations Manager, Senior Resume Examples & Samples
- 12 years of experience in leading technical project delivery with commercial clients in a Fast-paced environment
- Ability to manage and lead multiple Fast-paced delivery teams across various challenging commercial environments
- Experience with multiple market verticals, including financial services, healthcare, energy, consumer products, High-technology, and pharmaceuticals
- Ability to be a Self-starter and thrive in a Fast-paced consulting environment
12
Cybersecurity Operations Manager Resume Examples & Samples
- Gen endpoint prevention technologies, Data Loss Prevention, Cloud Security Broker, Web Filtering, and FWs and ensure security tools are optimized, fine
- Tuned, and integrated into operational procedures
- Experience with multiple security platforms and layers, including anti
- Virus, firewalls, proxy servers, intrusion prevention systems, logging correlation and management, operating systems, protocols, and incident response
- BA or BS degree in MIS, Computer Information Systems, CS, or an IT
- CISA, CIPP, CISM, PCI
- QSA, or a related Certification
13
Cybersecurity Operations System Analyst Resume Examples & Samples
- Implement, monitor, and manage advanced security technologies: SIEM, Firewalls, IPS, Endpoint Detect and Respond (EDR), Endpoint Threat Management (ETM), and other security related devices
- Work with HP internal partners, vendors, and service providers to provide documentation for regulation compliance and adherence to applicable laws, industry and regulatory requirements, as well as HP Cybersecurity policies and standards
- Perform incident management/response across the enterprise and provide consistent security monitoring, response, follow-up investigation, and determination of root cause. Evaluates security alerts generated by internal systems, vendors, and other industry sources
- Manage Cybersecurity project delivery
- First Level University degree in Information Technology, Cybersecurity, or related field
- 5+ years in project management roles or in like roles/businesses
- 2-3 years of relevant experience in Cybersecurity operations, Information Security or IT domains that have relatable experience
- Understanding of ISO 27001/27002, and NIST Cybersecurity Framework
- Security Certifications, such as CCSP, CISM, CISSP, CRISC, CISA or other Information Security or IT disciplines
- On the Project Management Professional (PMP) Certification path
14
Cybersecurity Operations Specialist Resume Examples & Samples
- Bachelor degree in an information technology discipline or equivalent IT experience required
- Any relevant IT or security certifications including CISSP, CISM, CRISC, CEH or SANS certs are expected
- Extensive experience (5+ years) in information security operations and/or related IT operational functions
- Requires demonstrable background in: security products and technologies; security engineering, networking protocols and data center; security analysis and investigations
- Expert level understanding of malware kill chain and pervasive threat attack methods and remediation
- Demonstrable ability to analyze network packets and log data
- Experience with Splunk, ElasticSearch, Tripwire, Wireshark or other analytics tools a plus
- Experience with McAfee ePO server, Dell KACE and Infoblox a plus
- Programming experience in scripting languages such as Windows PowerShell, Python, Perl, etc, highly desirable
- Ability to multi-task, prioritize, coordinate, work well under pressure and meet deadlines
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to both technical and non-technical audiences
- Must be a critical thinker with strong problem solving skills and a “can do” attitude
15
Cybersecurity Operations Resume Examples & Samples
- Drive integration of the cybersecurity incident and event management framework to ensure consistency and alignment of incident response plans with technology and business response plans
- Develop and document processes to ensure consistent and scalable response operations and ensure continuous improvement to the firm’s incident response plans
- Own and manage incident response plans, playbooks and knowledgebase
- Coordinate and develop incident response plans for third party incidents (vendors, cloud providers, etc.)
- Ensure operational readiness though collaboration with the Cybersecurity Exercise and Drills team and the firm’s crisis management functions
- Provide operational support to incident responders during critical or large scale incidents
- Manage deliverables pertaining to regulatory & legal engagements, including timely response to inquiries, reporting and metrics, and providing substantiation material
- Ensure that the Incident response framework complies with applicable security policies and industry standards
- Communicate effectively with representatives of the Lines of Business, technology specialists, and third parties
- 5-7+ years experience in incident coordination roles
- Must have a extensive Information Business Risk background, including risk analysis, privacy, and data protection
- Undergraduate degree in a relevant discipline, Graduate degree is preferred
- Information security certifications (such as GCIH, CISSP, CISM or related certifications) preferred
16
Cybersecurity Operations Manager Resume Examples & Samples
- Oversee and lead the coordination process of all Cybersecurity Operations activities such as incident management, vulnerability and patch management, and threat analytics
- Work with and manage third party service partners as needed on risk assessments, vulnerability scans, penetration testing, incident management, managed SIEM, IDS/IPS, Data Loss Prevention (DLP), and threat intelligence
- Manage the consolidation of large sets of data specific to threats and vulnerabilities to apply accurate risk weighting and prioritization
- Coordinate remediation efforts of identified cybersecurity vulnerabilities
- Provide Incident Response support when analysis confirms actionable incident
- Ensure the successful completion and recording of scanning activities as required by audit and regulatory authorities
- Investigate, document, and report on information security issues and emerging trends
- Coordinate efforts with GRC functions to meet and exceed Risk and Compliance requirements
- Coordinate and assist in the development, automation, execution and monitoring of security operations controls in support of the Information Security Program
- Participate in the research, evaluation, design, and testing of information security solutions to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software, liaising with the Enterprise Security Architect and/or Engineer as necessary
- Support and assist the CISO to develop and maintain ongoing reporting of cybersecurity operations metrics
- Support and assist the CISO to develop and maintain pertinent standard operating procedure documentation
- Support the CISO and assist the CISO team in developing and maintaining the security program, and drive security projects that address identified risks and business security requirements while serving as an active and consistent participant in the information security governance process
17
Cybersecurity Operations Analyst Resume Examples & Samples
- Experience with representing agency-level interests at meetings and exchanges
- Experience with Microsoft Office, including Word and PowerPoint
- DoDI 8570 Certification, including CISSP or Security+
- Experience with coordinating and consolidating input and feedback across multiple staffing levels and agencies
- Experience with researching and analyzing Cyber threat information
- Experience with intelligence databases and analytical tools or similar intelligence reporting systems
- Knowledge of DoD operational Cybersecurity roles and responsibilities, including C2 relationships between various stakeholders
- MA or MS degree
18
Cybersecurity Operations Analyst Resume Examples & Samples
- Serves as an analyst, working alone, with other analysts, or with SMEs, to determine the severity and complexity of issues pertaining to the security and protection of systems data, to ensure the protections, conservation and accountability of proprietary, personal, or privileged electronic data
- Monitor and respond to security incidents, offering collaboration in an effort to ensure prompt and effective resolution
- Collaborates with director, managers, project managers, architects, and other individuals to ensure continuity and communication across teams
- Collaborates with director, managers, and other technical personnel to ensure mitigation of risks to the company
- Promotes continued integration of technological advances to further enhance security and reduce risks
- Able to work in 24hour on-call environment
19
Cybersecurity Operations Manager Resume Examples & Samples
- Creation and maintenance of operational reports for Key Performance Indicators and Metrics
- Plan, organize, direct, implement and evaluate processes and manage resources to achieve desired results
- Convey technical information to audiences of varying degrees of technical understanding
- Lead, facilitate, and interact effectively with upper levels of management on cybersecurity topics
- Drive process improvement
- Coordinate vendor activities, including cybersecurity assessments and participate in contract negotiations
- Assists with the preparation of operating and capital budgets and manages expenses to budget
- Manage security operations resources, outline direction and determine priorities based on the Cybersecurity Roadmap and enterprise direction
- Develop Project Charters to outline scope, requirements, budget, deliverables and key milestones for product implementations
- Liaise with project management, business analysts and technical resources to drive key projects forward
- Manage incident response activities, intrusion detection processes and security for the infrastructure
- Working knowledge of information/cybersecurity, infrastructure vulnerabilities, and network security products (hardware and software)
- Experience with vulnerability assessment, penetration testing, and/or forensic analysis fields
- Familiar with ITIL best practices
- Effective written, verbal and interpersonal communication skills
- Strong problem solving skills with the ability to understand business processes and propose appropriate technical solutions
- Ability to function independently as well as in a team environment
- Critical thinking skills and high self-motivation are essential, and must drive process improvement
- Demonstrated success building relationship with senior leaders, security team and key decision-makers
- Bachelor's degree in Computer Science or combination of education and related work experience
- 3+ years of experience in IT leadership positions, with proven success leading highly skilled security teams within a large scale, high-availability IT operation with 24/7/365 accountability
- Experience with the NIST Cybersecurity Framework (preferred)
20
Director, Cybersecurity Operations Resume Examples & Samples
- Partnering with the Security Engineering and the IT Engineering to ensure deployed security solutions meet the requirements of the bank to protect our clients and employees data
- Lead the security incident response process, including the ongoing monitoring of threats and vulnerabilities, and response to security events
- Lead the development of a modern next generation SOC; develop plans that align with that strategy
- Provide metrics and KPIs on the performance of security controls and incident response
- Drive operational efficiencies in SOC through automation and orchestration of response playbooks
- Give guidance to other business units on current threats and best practices
- Partner with business continuity management team and IT on incident response plans
- Manage the skills development of the security operations team
21
Cybersecurity Operations Resume Examples & Samples
- Develop incident response plans, playbooks and knowledgebase
- Develop incident response plans for third party incidents (vendors, cloud providers, etc.)
- 5 years experience in incident coordination roles
- Must have a solid background in production incident management
- Undergraduate or higher level degree in a relevant discipline
22
Cybersecurity Operations Center Manager Resume Examples & Samples
- Minimum 10 years' experience of applicable professional services and/or information security experience and expertise
- Minimum 8 years' experience focus in cybersecurity with four or more years of experience in the preservation and analysis of data during a computer investigation
- Minimum 4 years' experience leading security practitioners in accomplishing work in challenging data, information technology or cybersecurity environments
- Must have a management oriented security certification. (Certified Information System Security Professional (CISSP) certification is preferred.)
- Highly advanced skills and detailed understanding of network design, security protocols and systems administration with excellent analytical and problem solving skills
- A solid understating of manual, automated application penetration skills, vulnerability scanning and analysis as well as skill in careful, limited live testing in live production environments. Ability to develop scripts and other facilitative technical tools
- Experience in teaching and learning environments to include preparing and presenting lectures or instruction in network or information security
- Knowledge and expertise in building and operating a Cybersecurity Operations Center
- Experience working in a distributed governance environment that requires collaboration across multiple units to establish and implement policies and operate processes
- Professional supervisory certification in computer forensics (e.g., GIAC Certified Forensics Examiner (GCFE), Computer Hacking Forensic Investigator (CHFI), Certified Cyber Forensics Professional (CCFP), or specific certifications in reverse engineering of malware, web application penetration testing, forensics analysis, continuous monitoring, or forensics tools like EnCase Certified Examiner (EnCE)
23
VP, Global Cybersecurity Operations Resume Examples & Samples
- Build out and manage 24/7/365 frontline security operations teams with nodes spanning all National Grid regions
- Build, lead, and manage a team of technical security engineering staff that actively operate, maintain, customize, and configure information security tools and processes in support of the information security program
- Direct the operations of the security teams in real-time monitoring and providing rapid reaction to alerts and anomalies generated by global security defences
- Ensure that operational security activities are undertaken by the various parties to ensure that National Grid’s applications, environments, and networks are secure including: patching, server hardening, code reviews, penetration testing, ethical hacking, security reviews and vulnerability assessments
- Work with the VP Cybersecurity, CSO, CISO, and CTO to develop metrics to evaluate components of security maturity, such as, but not limited to, patch schedules and completion, network traffic abnormalities, log exception tracking, and change control adherence
- Define the scope of cyber security penetration tests, and coordinate and communicate with appropriate teams and management
- Form and lead incident response teams in response to security events, and provide overall leadership during the execution of the incident response process
- Champion continuous improvement across National Grid by identifying and overseeing enhancements to processes and tools
- Direct the completion of post mortem analysis, document findings and provide recommendations to appropriate leadership
- Research and keep abreast of testing tools, techniques, and process improvements in support of security event monitoring, detection and incident response
- Provide advanced analysis and direction as needed
- 3+ years (5+ preferred) demonstrated experience managing the global cybersecurity operations of an international company
- 10+ years of demonstrated hands-on technical experience in cybersecurity operations, malware analysis, host forensics, reverse engineering, network traffic analysis, cyber intelligence, and development of custom tools
- 15+ years demonstrated experience working in information technology (IT) and cybersecurity operations of large (10k+ person) organizations with increasing levels of scope, operations, and budget responsibilities
- A high degree of technical knowledge regarding information technology, operational technology, industrial control systems, computer systems, access controls, firewalls, intrusion detection systems, and overall knowledge of technical security systems
- Demonstrated experience building and training highly talented, productive, and effective security teams
- Demonstrated ability to communicate situation reports to both highly technical and non-technical stakeholders
- Demonstrated ability to create and provide reports to senior leadership regarding the performance of incident management and the current state of cybersecurity
- Demonstrated ability to communicate, present and report via metrics
- Demonstrated excellent verbal, written communication, facilitation, and interpersonal skills
- Experience with applicable compliance and global regulatory requirements required. Experience in the energy-sector is preferred, but not required. At a minimum, must have demonstrated strengths facing similar challenges in another industry or governmental / regulatory sector
- Graduate degree in computer science, computer engineering, or an equivalent relevant technical field
24
Senior Manager, Cybersecurity Operations Resume Examples & Samples
- Minimum Year(s) of Experience: 10 years' in Information Technology, with 5 years in information security
- Managing maintenance and support, and conducting analyses of information technology solutions including: firewalls, active directory, Windows Operating Systems, intrusion detection and prevention systems, proxy servers, endpoint forensics, breach indicators, and log aggregation technology
- Understanding network threats and fundamentals of incident response process and procedures, emphasizing innovation and leveraging knowledge of cyber-attacks, security monitoring and incident response related to knowledge domain and associated tools
- Security incident handling and forensics skills including knowledge of common probing and attack methods, network/service discovery, system assessment, viruses and other forms of malware
- Experience mitigating and addressing threat vectors including Advanced Persistent Threat (APT), Distributed Denial of Service (DDoS), Phishing, Malicious Payloads, Malware, etc
- Knowledge of hacker methodologies and tactics, system vulnerabilities and key indicators of attacks and exploits
- Utilizing security perimeter enforcement, security logging and/or monitoring solutions, i.e. Palo Alto, GlobalProtect, McAfee ePO, Aruba ClearPass, Tenable NESSUS, ProtectWise, OpenDNS Umbrella, Avecto, and SecureAuth
- Understanding of a wide range of cybersecurity tools such as user behavior analytics, next-gen anti-virus, multi-factor authentication, mobile device management, data loss prevention, etc
- Experience monitoring, managing and improving service settings, data protection and auditing controls within an enterprise cloud service environment; MS O365 and Azure highly preferred
- Knowledge of programming languages, SDLC technologies/methodologies and scripting
- Understanding of stakeholder and change management, and influencing without authority
- Planning, maintaining and improving security technology such as network packet capture, intrusion detection, security information and event management, and/or endpoint malware/security solutions
- Learning new security technologies, implementation requirements, and how to integrate security technologies into a larger solution
- Analyzing new networking solutions, identifying potential security concerns, developing approaches to mitigate identified risks, and work with IT teams to implement recommendations
- Writing, communicating, facilitating, and presenting cogently; to and/or for all levels of industry audiences, clients and internal staff and management on technical concepts and issues, including translating technical security verbiage into non-technical verbiage for various business leaders
- Utilizing creative problem solving and multitasking skills to work effectively as part of a team and/or independently, while focusing on researching pertinent technical matters, emphasizing an attention to detail
- Leading security staff, including direct reports, matrix reports, and contractors to create an atmosphere of trust, seeking diverse views to encourage improvement and innovation, answering questions and providing direction to less-experienced staff, coaching staff including providing and accepting timely, meaningful written and verbal feedback
25
Associate Cybersecurity Operations Center Analyst Resume Examples & Samples
- Bachelor’s Degree in Cybersecurity, Computer Science, MIS or other degrees with high level understanding of network and application security and information systems
- Experience in a security operations center and/or system administration role
- Direct background or exposure to cyber security operations
- Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies
- General networking understanding and/or experience
- Windows and UNIX/Linux command line scripting experience and programming experience
- Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs)
- Familiarity or experience with the Cyber Kill Chain methodology
- Knowledgeable in the NIST Cybersecurity Framework
- Willingness to pursue industry standard certifications such as Security+, SANS GIAC/GCIA/GCIH/GCFA, CISSP, etc. or other network / system security certifications
- Innovative – ability to recognize and seek improvement and efficiency opportunities