LEAD SECURITY ANALYST RESUME EXAMPLE

Job Summary: 

• Help establish a new MDR (Managed Detection and Response) service by working actively with initial clients
• Evaluate cases for clients and guide resolution
• Investigate new and odd cases, establish precedent and documentation
• Feed the security system with a decision to enable automation and scalability
• Evaluate new security software and collaborate on implementation within the Managed Security team
• Be in charge of cyber security watch, stay informed of new cyber threats affecting the market
• Participate in Sherweb cybersecurity thought leadership by writing or collaborating on blog articles, talking at conferences, etc.
• Leading security operations and incident response activities
• Conducting post incident investigations leveraging forensic tools
• Researching adversary tools, tactics, and procedures (TTPs)
• Working with frameworks such as MITRE ATT&CK
• Implement security initiatives for complex organizations
• Training and assisting junior analysts, along with leading small teams

Skills on Resume: 

• MDR Setup (Hard Skills)
• Case Evaluation (Hard Skills)
• Threat Investigation (Hard Skills)
• Security Automation (Hard Skills)
• Tool Assessment (Hard Skills)
• Cyber Intelligence (Hard Skills)
• Incident Response (Hard Skills)
• Team Leadership (Soft Skills)

Job Summary: 

• Oversee the development, implementation, and maintenance of information systems security plan, systems security policy and related recommended guidelines, operating procedures, and technical standards of a hybrid private and public cloud services
• Design, develop, engineer, implement and tune solutions to MLS requirements
• Perform complex risk analyses, which also include risk assessment
• Implement appropriate physical and technical safeguards to protect the confidentiality, integrity and availability of information assets
• Coordinate a response to actual or suspected breaches in the confidentiality, integrity or availability of information assets
• Review and approval of architecture design from a security best practices perspective as well as a Federal policy and NIST standards perspective and ensure related compliance requirements are addressed
• Review and submission of application firewall rules
• Review and approval for the security implications of all customer-hosted system/server changes
• Responsible for Security Assessment and Authorization (SA&A) for Hybrid Cloud with AWS Cloud, Azure Cloud, On-Prem data centers, and private cloud
• Development and submission of all SA&A documentation for the security team’s approval
• Develop the detailed design for the data center Scanning System
• Scanning and vulnerability remediation tracking for all hosted applications and or systems
• Work closely with the IT security team to monitor the company's cloud privacy and report on security incidents, intrusions, and data breaches

Skills on Resume: 

• Security Governance (Hard Skills)
• Cloud Architecture (Hard Skills)
• Risk Analysis (Hard Skills)
• Safeguard Implementation (Hard Skills)
• Incident Coordination (Hard Skills)
• Compliance Review (Hard Skills)
• Vulnerability Management (Hard Skills)
• Team Collaboration (Soft Skills)

Job Summary: 

• Actively monitor, analyze, and respond to security events for the prevention of a security incident
• Develop SIEM use cases for monitoring, investigative techniques, and health checks for optimization and assurance of logging all required devices
• Improves core functions of the SOC, including threat detection and prevention, analysis, incident response, systems and network security monitoring, investigations, and data leakage prevention
• Perform tier-3 investigation, malware analysis, and correlation of events from systems including user activities and network traffic, for the resolution of escalated incidents
• Monitor the functioning of security systems to ensure the system operates in conformance with expected performance and specifications
• Evaluate SOC operating procedures for operational efficiencies and updates to monitoring rules and use cases
• Assist the SOC with the creation of metrics and operating reports
• Provide high-quality customer service to internal customers of the global Security Operations Center
• Adhere to privacy, confidential, proprietary company policies and procedures (i.e., GDPR, PCI, SOX)
• Continuous development of technical and business knowledge to stay up to date with current vulnerabilities, attacks, and countermeasures
• Evaluate and recommend new SOC tools to management and assist engineering teams with the implementation of new tools or upgrades of existing security solutions to support day-to-day security operations
• Mentors junior analysts on policies, operating procedures, best practices, and SOC tools
• Assists with internal and external audit and compliance assessments for the review of processes or the collection of evidence

Skills on Resume: 

• Security Monitoring (Hard Skills)
• Use Case Development (Hard Skills)
• Threat Detection (Hard Skills)
• Malware Analysis (Hard Skills)
• System Oversight (Hard Skills)
• Procedure Evaluation (Hard Skills)
• Tool Recommendation (Hard Skills)
• Analyst Mentoring (Soft Skills)

Job Summary: 

• Ensuring timely delivery of IT work programs and conducting quality assurance/reviews of work program deliverables
• Managing the delivery of infrastructure, operational and security projects with internal and external stakeholders (e.g., service providers and clients)
• Supporting the Director, Enterprise Architecture and managed partners/service providers to develop and implement system and security policies, standards, procedures, controls and roadmaps, including incident, problem, release, change, availability, capacity management, etc.
• Assisting to provide advice and guidance to Firm stakeholders in matters about infrastructure, operations, policy compliance and security
• Manage risk profiles about infrastructure technologies and operations
• Providing recommendations to mitigate risks
• Conducting the investigation of operational incidents under the direction of the Director Enterprise Architecture, Risk Management committee and/or service partners
• Coordinate activities with IT, business functions and external stakeholders
• Creating lessons learned and a process improvement strategy
• Participating in projects to provide subject matter expertise and advice from an infrastructure, operational and security perspective

Skills on Resume: 

• Project Delivery (Hard Skills)
• Stakeholder Management (Soft Skills)
• Policy Development (Hard Skills)
• Security Guidance (Soft Skills)
• Risk Management (Hard Skills)
• Risk Mitigation (Hard Skills)
• Incident Investigation (Hard Skills)
• Process Improvement (Soft Skills)

Job Summary: 

• Lead a team of SOC analysts to triage, address, and/or escalate security incidents
• Ensure SOC processes and procedures are followed in accordance with incident response procedures
• Report findings and escalations to Senior security management
• Research security incidents and respond to them in coordination with information technology and Security teams
• Conduct large-scale security incident investigations, author incident reports, participate in or lead post-mortem analyses
• Usage of event correlation and IR tools to identify risks and concerns
• Build and maintain runbooks for supporting InfoSec technology
• Participate in on-call rotations with other team members
• Develop and present incident procedural upgrades to improve security posture to effectively mitigate advanced threats
• Work with Information Technology teams and update Security Standards for all technologies (Databases, Operating Systems and Network devices)
• Onboard the assets for target technologies in the enterprise security portfolio
• Help build/improve an exception process to manage policy compliance deviation
• Partner with various stakeholders to support the mitigation of threats and vulnerabilities, and incident response

Skills on Resume: 

• SOC Leadership (Soft Skills)
• Incident Management (Hard Skills)
• Security Reporting (Hard Skills)
• Incident Research (Hard Skills)
• Forensic Investigation (Hard Skills)
• IR Tooling (Hard Skills)
• Runbook Development (Hard Skills)
• Stakeholder Partnership (Soft Skills)

Job Summary: 

• Identify, contain and resolve information security incidents
• Contribute to the Incident Response process definition and development
• Analyze attacker tactics, techniques, procedures (TTPs) and identify Indicators of Compromise (IOCs)
• Provide direction on tuning of alerts, rules, signatures, parsers and custom scripts
• Identify gaps and recommended improvements to the organization's detection and incident response capability
• Collaborate with all relevant stakeholders to identify, investigate and remediate potential related threats
• Planning and implementation of playbooks and standard operating procedures
• Leading the efforts on incident documentation, communication and reporting
• Provide expert support to the SOC team, such as analysis of threats and malware

Skills on Resume: 

• Incident Resolution (Hard Skills)
• IR Development (Hard Skills)
• TTP Analysis (Hard Skills)
• Alert Tuning (Hard Skills)
• Detection Improvement (Hard Skills)
• Threat Collaboration (Soft Skills)
• Playbook Implementation (Hard Skills)
• Incident Reporting (Hard Skills)

Job Summary: 

• Incident/Event Response and Investigations
• Opening a case and declaring it an incident
• Leads the incident response process and delegates tasks to other analysts to support an incident
• Ensure the event/incident is properly documented and time-lined
• Post/Pre-incident work to ensure gaps are closed to prevent future events
• Scribe work for an incident (documents the response to an incident)
• Post-incident documentation and follow-up
• Works with Enterprise Architects to ensure the needs of the CIRC are met
• Acts as liaison between the CIRC and business partners (Loss Prevention, Brands, Enterprise Architects, Legal, Communications)
• Provides oversight to the Intelligence, Hunting, and Vulnerability Management programs

Skills on Resume: 

• Incident Response (Hard Skills)
• Case Management (Hard Skills)
• Task Delegation (Soft Skills)
• Incident Documentation (Hard Skills)
• Gap Remediation (Hard Skills)
• Incident Scribing (Hard Skills)
• Stakeholder Liaison (Soft Skills)
• Program Oversight (Hard Skills)

Job Summary: 

• Coaches and mentors junior analysts
• Provides training to junior analysts
• Review and sign off on documentation created by analysts
• Take action on threat feeds and share findings with the intelligence team
• Reviews and signs-off on any intelligence sharing
• Participates in R-ISAC forums
• Prioritizes content for security monitoring tools
• Take feedback from tuning and put it into requirements for the engineering/MSSP team
• Provide Compliance reporting as evidence for audits

Skills on Resume: 

• Mentor Coaching (Soft Skills)
• Analyst Training (Soft Skills)
• Document Review (Hard Skills)
• Threat Analysis (Hard Skills)
• Intel Validation (Hard Skills)
• Content Prioritization (Hard Skills)
• Tuning Requirements (Hard Skills)
• Compliance Reporting (Hard Skills)

Job Summary: 

• Participates and provides input in talent reviews
• Attend periodic leadership meetings
• On-call support for escalated issues
• Researches new tools and technology, updates the leadership team
• Participation in RFPs
• Provide support for the implementation of security tools
• Works with MSSP on security monitoring tools requirements/tuning
• Assist in the implementation of security tools
• Stays abreast of current security threats

Skills on Resume: 

• Leadership Input (Soft Skills)
• Meeting Participation (Soft Skills)
• Escalation Support (Hard Skills)
• Tool Research (Hard Skills)
• RFP Participation (Hard Skills)
• Tool Implementation (Hard Skills)
• MSSP Coordination (Hard Skills)
• Threat Awareness (Hard Skills)

Job Summary: 

• Respond to cybersecurity attacks and incidents against FRBSF
• Lead the implementation of sound and creative cyber operations for security monitoring and incident response programs
• Devise and implement security monitoring and alerting for FRBSF’s on-prem and cloud-based computing environments
• Use metrics to iteratively create, enhance, and tune security procedures
• Monitor the external cyber threat landscape, assess evolving threat actor tactics and techniques, and apply these lessons to detect, hunt and respond
• Champion and promote security orchestration and automation frameworks across security monitoring and incident response
• Work collaboratively with technology and business partners to uplift security standards, procedures, and methodologies
• Develop technical and operational solutions that enhance the enforcement of security policies, enable investigation, mitigate risk, and expedite corrective measures

Skills on Resume: 

• Incident Response (Hard Skills)
• Cyber Operations (Hard Skills)
• Security Monitoring (Hard Skills)
• Procedure Tuning (Hard Skills)
• Threat Analysis (Hard Skills)
• Security Automation (Hard Skills)
• Partner Collaboration (Soft Skills)
• Risk Mitigation (Hard Skills)

Job Summary: 

• Reviews the cost-effectiveness and practicality of existing information security procedures and systems
• Makes suggestions for the improvement of these same procedures and systems
• Interprets information security policies, standards, and other requirements in light of specific internal information systems
• Assists with the implementation of these and other information security requirements
• Assists with the documentation of information security incidents as well as the analysis of the circumstances enabling or permitting these same incidents to take place
• Provides in-depth technical advice for investigations of information security incidents including internal frauds, hacker break-ins, and system outages
• Reviews the cost-effectiveness and practicality of existing information security procedures and systems
• Makes suggestions for the improvement of these same procedures and systems
• Participates in, and acts as a technical leader in, periodic information systems risk assessments including those associated with the development of new or significantly enhanced business applications

Skills on Resume: 

• Procedure Evaluation (Hard Skills)
• System Improvement (Hard Skills)
• Policy Interpretation (Hard Skills)
• Requirement Implementation (Hard Skills)
• Incident Documentation (Hard Skills)
• Technical Investigation (Hard Skills)
• Risk Assessment (Hard Skills)
• Technical Leadership (Soft Skills)

Job Summary: 

• Apply cybersecurity analyst skills to detect and perform remediation activities and recommendations for cybersecurity events across a wide range of security technologies and capabilities
• Coordinate responses to security incidents promptly as the Technical SMEs in various Cyber Security Platforms
• Act as the escalation point for security incidents during shifts
• Train and mentor junior analysts
• Develop and maintain effective working relationships with various internal and external stakeholders during an incident
• Present technical information in a manner that is easily understood by all stakeholders
• Ensure that the information provided empowers stakeholders and enables them to manage customer experience effectively
• Identify areas of gaps and recommend appropriate security controls or solutions to implement
• Provide recommendations to tune and uplift Telstra's Cyber Security process and technologies, working closely with the Integration and Tuning team
• Contribute to knowledge sharing within the team via documentation of new processes and updates to existing ones
• Problem management tasks and assisting with SOC improvement activities
• Identify process improvements within the SOC and drive solutions
• Develop and improve Incident Response Playbooks

Skills on Resume: 

• Cyber Detection (Hard Skills)
• Incident Coordination (Hard Skills)
• Escalation Handling (Hard Skills)
• Analyst Mentoring (Soft Skills)
• Stakeholder Relations (Soft Skills)
• Technical Communication (Soft Skills)
• Control Recommendation (Hard Skills)
• Playbook Development (Hard Skills)

Job Summary: 

• Conducts application, system, network and business security risk assessments, including technical risk assessments on information systems
• Identifies, articulates and evaluates technology, security and privacy risks internally and with third parties
• Utilizes multiple risk modeling techniques to develop the analyses that drive awareness and prioritization
• Evaluates, recommends and monitors risk treatment plans
• Ensures cyber risks are appropriately managed within risk appetite tolerance and limits
• Assists with aggregation, analysis and reporting of security risk metrics
• Maintain relationships inside and outside of IT to enable the discovery of risks outside formal risk assessments
• Ensures communication and awareness of the security risk management framework
• Coordinates risk management (avoidance, mitigation, sharing, and acceptance) including policy exception-based requests
• Maintains an awareness of industry and global security and risk events, existing and proposed security-standards changes, legislation and regulations about information security
• Supports the third-party risk management security support function
• Supports the department with the management, marketing, and leading of information security awareness training

Skills on Resume: 

• Risk Assessment (Hard Skills)
• Risk Evaluation (Hard Skills)
• Modeling Analysis (Hard Skills)
• Treatment Planning (Hard Skills)
• Risk Management (Hard Skills)
• Metric Reporting (Hard Skills)
• Stakeholder Relations (Soft Skills)
• Awareness Training (Soft Skills)