Cyber Security Analyst
Central Forensic Science Laboratory (Central Government)
مجموع سنوات الخبرة :2 years, 7 أشهر
• The report generation following various attack scenarios, incident response, and risk assessment utilizing a range of analytical methods and instruments.
• Collaborate with a distributed team to detect and resolve information security incidents.
• Prioritize and resolve problems in a timely manner using analytical thinking, critical thinking, and following the incident management lifecycle.
• Perform analysis of Packet Capture (PCAP) files, domains/URLs, and emails to determine indicator legitimacy using Wireshark and OSINT tools such as Virus Total, and MX Toolbox Detection & Response (ED) systems and Proofpoint (TAP & TRAP), reporting findings in real time.
• Analyse information security posture of next-gen firewalls, domain name systems (DNS) and virtual private networks (VPNs) using Open-Source Intelligence (OSINT) tools Fortinet, Proof Point.
• Analyse malware infections and phishing.
• Currently enrolled in CEH certification course provided by EC Council.
• Lead a team in setting up security infrastructure and site security plan and helped in establishing security procedures for green-field projects.
• Monitored and analysed log events generated from a variety of platforms including IDS/IPS, Firewalls, WAFs, Endpoint Security and application logs.
• Configured the Web application assessment tools like Burp suite, and map and OWASP ZAP.
• Responded to crisis or urgent situations within the network to mitigate immediate and potential cyber threats Vulnerability Assessment & Penetration Testing of Networks and Network architecture redesigning with security as primary point of consideration.
• Performed complete security audit (both black box and white box) for clients.
• Analysed information security events, including threat model development, and resulting security risk analysis of systems.
• Utilized Ethical Hacking procedures to ensure proper handling of false positives.
• Participate in data security incident response, malware analysis, and the development of corrective and preventive activities.
لقد تم حذف الرابط بسبب انتهاكه لسياسة الموقع. يرجى التواصل مع قسم الدعم لمزيد من المعلومات.