Free cyber security concept background

About me

I am aspiring to become a Security Operations Analyst. I feel I have the strongest experience and interests working with monitoring and alerting. Although not the only position I am interested in. I would bring value as a systems analyst as most of my experience in IT can be of great value to a company. I am also proficient with Cloud operations and Web server administration. Ideally, I would work some place that incorporated all of these areas and allowed me to grow further into my career.

My Values

I am a motivated self starter. I believe in honesty and integrity. My quality in work is that of a perfectionist, I want to understand the streams and improve the processes. I like to think optimistically, that things just happen when they are supposed to happen. I believe that anything is possible if you put your mind to work.

tourists at the lincoln memorial
pages on an opened book

My Story

I have been around technology since I was young. I took apart my Atari when I was about two, I remember since it didn’t work after I put it back together. Growing up I surrounded myself around people who enjoyed technology like myself and for any child that means video games. I was exposed to the joys of consoles and later to PCs.

 I built my first computer before heading off to college without any technical training. While in college for an unrelated field I discovered I had a real drive to understanding technology. I changed schools and majors to pursue those interests. I excelled in college graduating with a 3.9, second in my class.

After getting my first role in IT, I learned some hard lessons. Always make backups of data. I was tasked with updating a blackberry phone, and being inexperienced with those types of phones assumed it would be like any other phone and did not make a backup. This has been the only technology that I know of that wipes the data to apply updates, might be why they are practically non existent today, at least that is what I like to think. I was surrounded by some of the smartest people I’ve ever met, each sharing a piece of their knowledge with me. I excelled and was promoted within a year to help desk II and shortly after that was promoted into a server administration type role. I experienced a lot of doubt that I was in a position that I was not ready for. I stuck with it and ended up increasing my own knowledge in a lot of different areas.

When Covid struck I decided to take the opportunity to reestablish myself in California where I was signed on into an IT role and considering my vast knowledge, was able to make many positive changes within the company. I’ve implement many projects like changing the phone system for cost reduction to automating many time consuming tasks. I brought in a ticketing system for incident visibility, a change control process for accountability, security improvements, and process improvements to make department to department communication streamlined and efficient. During this time I also managed to complete a four-year degree mostly in part to my advance understanding of IT systems at an accelerated rate in Cyber Security. I have always worked inline with security, and I am looking forward to being Cybersecurity focused.

Education

Western Governer’s University 2024
M.S. CyberSecurity and Information Assurance

  • Governance, Risk, and Compliance
  • Cloud Security
  • Ethical Hacking
  • Secure Software and Network Design
  • Security Architecture and Engineering
  • Cyber Security Management

Western Governer’s University 2023
B.S. CyberSecurity and Information Assurance

  • Coding HTML/CSS, SQL, programming languages
  • Law, Forensics, and Ethics
  • NMap and Wireshark
  • Project management, SDLC, and business development
  • Security devices: SIEMs, Firewalls, IDS/IPS
  • NIST, ISO 27002, managing information security
  • Managing: Cloud Security, Information Security
  • Cyber Defense and Penetration Testing

Branford Hall 2009
Technical Degree in Computer Information Technology 

  • GPA 3.9
  • Computer Hardware/Software
  • Networking
  • Server Administration
  • Database management
  • Forensics
  • MS Office / o365
newly graduated people wearing black academy gowns throwing hats up in the air
computers cup desk gadgets

Work Experience

<Undisclosed> 2023-Current
Network and Security Technician | Cyber Security

  • Azure and 365 Audits and remediation – Performed Microsoft best practice for a secured environment. Implementing Security Defaults, MFA, Conditional Access Policies, and review AD Health. Review failed login attempts, trace phishing emails, configured AD syncing. Configuring SPF, DKIM, DMARC.
  • Firewall and Switch Administration – Managed security configuration and managed firmware updates. Configure VLANs, policies, VPNs, allow / block lists, track usage, correlated events.
  • Security Recommendation – Recommended best practices based off Microsoft, NIST SP 800-171, and business workflows to provide a balance of usability with security.
  • Cyber Insurance Quotes and Compliance – Assisted clients with Cyber Insurance forms. Performed routine checks to meet insurance compliance.
  • PCI Compliance – Work with clients to meet PCI standards. Remediate any findings and submit results.
  • HIPAA Compliance – Work with clients to meet HIPAA guidelines, including, minimizing exposed health data. Audit user access to privileged information.
  • Azure Security – IAM access to resources. Secured access to Azure and confidential files.
  • System Administration – Perform backups, snapshots, checkpoints. Manage Anti-Virus, Cisco Umbrellas, Huntress, CyberCNS, SAT and escalated user issues. Configured PAM user management.
  • Security Events – Encryption Standardization of removing vulnerable ciphers, system checks of vulnerabilities released by NIST and remediation of vulnerabilities. Performed Risk Assessments and offer solutions.

GARBennett 2021-2023
Information Technology Specialist | Security Specialist

  • Sophos Security MDR – Investigate issues such as encryption detection, security breaches, virus detections. Manage endpoint clients are up to date.
  • Graylog SIEM – Conceptualized log collection. Pulled logs in a repository.
  • Zoom – Designed phone network, migrated entire company. Managed all users, phone numbers, auto attendants, and security.
  • Sharepoint – Implemented a Change Control page to promote visibility within IT especially with projects that affected the business.
  • Azure – Managed users and groups. Controlled security design. Implemented and enforced 2FA for company.
  • o365 – Managed licenses, users, groups. Managed webmail security. Managed rules, filters, and threats within administration panel.
  • PRTG – Took over administration of monitoring and alerting. Redesigned entire layout including baselines, alerts triggers, and sensors. Promoted streamlined usage.
  • Fresh Desk Ticketing Service – Researched, Proof of Concept, Implemented ticketing service. Managed agents and users. Implemented SSO and mail security. Managed automation (SOAR) for account creation and deletion.
  • PowerShell – automation wherever possible. Created scripts to track password expirations, stagnant accounts, AD management, business signatures, and activity of users.
  • Server Administration – Managed servers. Implemented WSUS, Print Server. Managed AD, DNS, File shares. Worked as part of a team on a semi-trusted Forest Domain as part of a merger. Managed GPOs for password policies, locked screens, ACLs.
  • Documentation – Writing knowledge based articles for technical and non-technical people. This included security awareness tips, self-service troubleshooting, IT technical documents, and knowledge sharing documents.

Work Experience (cont.)

TicketNetwork 2011-2021
Application Integration Engineer | System Administrator

  • PRTG – Researched and Implemented PRTG, fully designed and managed
  • Solarwinds – Inherited Solarwinds Administration. Managed upgrades and alerting. PAM created and handed access to Networking team.
  • Alert platforms – Site 24×7, ELK/Kibana, OpManager, Solarwinds, PRTG, Internet Backbone monitoring, Barracuda, DLP. 
  • Code Deploys – deployed to server farm manually or using octopus. Worked in SCRUMs as the IT resource for web administration and application needs. 
  • Server Administration – Managed 500+ servers. Performing updates, baselines, and hardening servers and applications on them. Verifying server to server communication and preventing unauthorized access. Managed SQL servers and had some access to the databases to perform queries.
  • Cloud and Virtualization Computing – Managed virtualized webservers. Performed snapshots, rollbacks, server upgrades, migrations. Used VMware, Hyper-V.  Some servers hosted with Azure. Some file servers in AWS, Route53 DNS. Bluehost and wordpress were used for some webhosting. 
  • Web Administration – As a team of three, managed 500+ servers. Primarily Windows and using IIS. Managed a secure and restricted network worth millions of dollars of inventory.
  • BIG IP / A10 – Managed load balancers, including unboxing and racking. Migrated from BIG IP to A10. Managed all webservers, SQL servers, and other servers through virtual IPs in clustered environment.
  • PCI-DSS – Assisted team lead with PCI requirements. This included working with a pentester to try to detect common attack types. Remediating incidents the fell within my wheelhouse for example SNMP keys.
  • SSL certificates – Managed SSL/TLS certificate renewals and applying certificates to new customers.
  • PowerShell – Automation. Created scripts to automate repeating tasks. Had a script that grabbed all the web logs from all the servers placed them into a repository, zipped them, and uploaded to a website all while verifying data integrity and removing the originals freeing space on the servers. Another script allowed QA to manage the QA environment without compromising Access control. It allowed for services management, code deploys, and to break objects as requested. Another script helped the Network Operations team with a project for VLAN expansion, it found all the servers that had an IP on a particular subnet and automatically updated and restarted network configurations to the specified parameters.
  • DNS Management
  • AD Management
  • O365 Management
  • DHCP Management
  • Second Level Support / On-call rotation
network servers on an enclosure
man beside flat screen television with photos background

Labs / Interests

  • Black Hills Information classes on SOC Core Skills and Active Defense & Cyber Deception
  • SimplyCyber GRC master class
  • Learning additional scripting languages from Code Academy including Python, SQL, and HTML
  • Listen to the Simply Cyber Daily threat briefing 
  • Darknet Diaries
  • Outpost Gray – Cyber Security within the Federal space.
  • InfoSec Defensive Thursdays 
  • ThreatGen Red vs Blue
  • World of Haiku – Linux command line training
  • Hack The Box

Future Outlook

  • Get my Masters Degree
  • I want to finish an AWS lab where I spin up Azure SIEM and open all the ports and correlate where my honeypot is getting probed from.
  • Spend more time on Graylog, I spent some time spinning up a POC for work. I would like to delve deeper into SIEMs.
  • Learn Splunk – I would like to also get certified. I have a strong interest in SIEMS
  • Near future certs: CC, CISM, CASP+
  • Future certs: CEH, BlueTeam, Azure, Splunk
  • Really learn NIST, OWASP, MITRE at more than a surface level
  • Start learning in SANS institute and certifications
  • CyberSecurity Conferences Blackhat and Defcon among others
  • Learning more Cyber Security
  • I would really love to sponsor someone in IT to give back to the community that supported me
robot pointing on a wall