Dark Hive Labs

Cyber Security Analyst III

COLSA Corporation

Dec 2018 - Oct 2021 • 2 yrs 10 mos

• Team lead for a team of five network traffic analysts • Conducted network traffic analysis to include but not limited to Netflow and malware analysis. o Utilized the following tools: Zeek, snort, tcpdump, proprietary IDS, and alert aggregation tools • Generated vulnerability scan reports and reported findings to subscribing entities. • Provided subscribing entities with monthly security posture reports to include the criticality of vulnerabilities present on their network, percentage of systems that were receiving credentialed scans, the number of hosts which were compliant with government requirements, number of alerts fired, number of incident reports, etc. • Write incident reports on multiple categories once enough evidence is gathered and notify the appropriate personnel. • Viewed and analyzed HBSS queries to determine if unauthorized software was present or if a system was potentially compromised. • Conducts risk assessments and provides recommendations for application design. • Assists and may perform a wide range of Cybersecurity issues including architectures, firewalls, electronic data traffic, and network access, and reviews and recommends changes. • Familiar with encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security research • Familiar with network cyber defense capabilities and basic understanding of network threats, potential network exploitation, and methods to defend against potential malicious activity. • Basic knowledge of Computer Network Defense technologies to include: Intrusion Detection Systems (IDS), Intrusion Protection Systems (IPS), network monitoring, packet capture analysis, network flow analysis, network proxy operation, firewalls, and anti-virus.