SOC Analyst | PKI | Active Directory

Overview

Looking for full-time work (8 hours/day)

at $10.23/hour ($1,799.99/month)

Post-graduate degree (Masters, Doctorate, etc.)

Last Active

February 6th, 2024 (78 days ago)

Member Since

May 26th, 2021

Profile Description

? Monitor incoming alerts, reports, and metrics from a variety of a systems to perform triage?
Perform minor response to non-serious, non-complex events (malware, data  leakage, account misuse, etc.)?
Perform automated or manual patching of discovered vulnerabilities or  misconfigurations?
Escalate more serious or complex events to senior security team staff?
Clearly explain event sources and resolutions to clients?
Clearly document steps taken?
Follow documented procedures to drive resolution?
Make recommendations for improvements to processes and tools? Monitor incoming alerts, reports, and metrics from a variety of a systems to perform triage? Perform minor response to non-serious, non-complex events (malware, data leakage, account misuse, etc.)? Perform automated or manual patching of discovered vulnerabilities or misconfigurations? Escalate more serious or complex events to senior security team staffClearly explain event sources and resolutions to clients? Clearly document steps taken? Follow documented procedures to drive resolution? Make recommendations for improvements to processes and tools
VSS (Video Surveillance System)
? Create Tier-0 Weekly Report by exporting file, template, importing to Excel, sharing, and improving template as needed.? Create weekly report using Crowdstrike Spotlight, VSS SharePoint, and Excel template, share to requester, and improve template as needed.? VSS Weekly Report: Export assets from Crowdstrike Spotlight, CMDB IDs and details from SNOW/CMDB, upload to SharePoint, inform VSS Manager.? Internet Exposure Weekly Report - Export scan results, run script, copy to template, upload to SharePoint, send email notification.? Weekly PowerPoint presentations and end-of-week reports are reviewed, including support cases, adhoc scan requests, weekly reports, planned and ongoing works, items to discuss, and out-of-office leave requests. The updated version is uploaded to SharePoint and discussed with the VSS Service Owner on Mondays.? Update scan scope, export file, template, and targets/IP addresses for regional scanning in Nessus Scanner.? Documenting scan completion involves exporting file/results, attaching script, running script, and uploading resulting file.? Review VSS IM Mailbox notifications and update IP addresses.? Vulnerability Notification: Review user feedback, assist, track email status.? To perform an Ad Hoc Scan Request, follow these steps:1. Monitor the VSS SNOW Dashboard for requests.2. Review if the request is for Network Scan or Agent Scan. If it's for Agent Scan,  provide the machine's hostname and IP address. If it's for Network Scan, provide
the machine's IP address.3. Check Managed Assets in Crowdstrike Spotlight.4. Review if vulnerabilities are found in the machine. If no vulnerabilities are found,
advise the requester. If found, export the scan result and encrypt it before
attaching it to the SNOW ticket.5. Send an email notification to the requester that the scan result is attached to the
TicketNetwork Scan.6. Check the location of the IP Address and use the designated scan region. If multiple  locations are requested, use NA Nessus Scanner.7. Copy the template for the scan and paste it in the RITM folder.8. Configure the IP Address to the target of the scan and run it.9. Export the result, download the template, import it, and refresh Upgrade to see actual infond the updated template file to the requester.
? Download last month's EY End Month Report, review Asset Discovered, Vulnerabilities Found, and Asset Scanned values, refresh tables, review VSS Snow Dashboard ticket numbers, transfer to PPT file, upload to Global SOC SharePoint, and send email notification to EY Manila Managers and SecOps analyst.
PSAT (Phishing/Proofpoint and Security Awareness Training)
? Download last month's EY End Month Report, review Asset Discovered, Vulnerabilities Found, and Asset Scanned values, refresh tables, review VSS Snow Dashboard ticket numbers, transfer to PPT file, upload to Global SOC SharePoint, and send email notification to EY Manila Managers and SecOps analyst.? Acknowledge PSAT scan requests, run security scans, review false positives, share reports, and perform rescans.? MASS Scan: upload, initiate, review, update progress, and initiate Enterprise scans for failed sites.? Monthly scan, review tagged sites, update status trackers.? Acknowledge ad hoc request, run scan, review, share security folder.? Acknowledge F5 scan requests, check previous scan activity, run validation scan, confirm application vulnerability.? HackeUpgrade to see actual infoe Report Screening involves acknowledging pending reports, reviewing vulnerability scope, forwarding to PSAT Team for remediation, closing if rejected, and retesting confirmed fixes.? Remediation troubleshooting: Communicate with application owners for guidelines and exceptions.? Manage AWS services for BurpSuite Enterprise.? Support automation projects for service tools integration.
•Performed cross platform audits of Active Directory (AD)objects and user permissions.
•Developed organizational units in Active Directory (AD) and managed user security with group policies.
•Transitioned users from multiple legacy domains into a consolidated Azure AD configuration.
•Configured Group Policy Objects to create a secure Windows Infrastructure.
•Created user ID's, roles, groups OU's etc.
•Managed Group Policy Objects (GPOs) throughout the Active Directory (AD) enterprise
•Provided third level help desk support for problems relating to Active Directory.
•Used SNow(Service Now) to track ticket progress and enter updates to have on going record of case activity till resolution is reached and ticket closed.
•Coordinated and monitored multiple location systems migrations. Troubleshoot and write service tickets as necessary. Coordinated with Business Units in identifying business/system needs to provide necessary resources.Provided needed support of the existing infrastructure including servers, backups,etc.•Administer Active Directory commands using Powershellscripting.
•Implement best practices and processes to enable team and the end-user to work more efficiently.
•Served as a single point of contact for assistance on managing digital certificates for P&G groups and Non P&G Groups.
•Administered SSL certification deployments and PKI infrastructure.
•Performed verifications on incoming certificate requests (via ServiceNow) to ensure they were in compliance with baseline requirements for SSL certificates.
•Single point of contact for P&G and Non P&G employees
during the process of creating / renewing / revoking / re-issuing SSL digital certificates.
•According to the requirements of the P&G groups issued both Entrust CA (External) and P&G CA (Internal) certificates.
•Hands on experience on creating certificate signing requests (CSR) via openssl and Microsoft Management Console (Windows Server 2012)
•Assisted in certificate troubleshooting on the following platforms (IIS 7 / IIS 8 / IIS 10, SAP, Tableau servers etc.)
•Exposure on the following command lines which are used with creating CSR’s and retrieving certificates (Certreq and Certutil)
•Holds a security administrator account in a certificate issuing authority named as Entrust.
•Issued the following types of server and client authenticated certificates like Standard, Advantage, UC Multi and Wildcard via Entrust or Venafi
•Following tools were used in SSL certificate processing Notepad++, CSR decoder, OpenSSL, Microsoft Management Console and windows command prompt.
?Develops and built EDI specification and maps (inbound and outbound) base on the required document, structure and specifications from clients.
?Applies simple to moderate changes or enhancements to EDI map data translation process or map logic.
?Does paper mapping to define map rules based on clients’ requirements.
?Prepares test data and performs unit testing to ensure deliverables are defect free.
?Communicates overall status of map development / changes to development leads and change in map status to other interface parties (i.e. Lead Analyst, Function Testers and Integration).
?Develop TLW forms
?Can develop CSV, XSLT and PDF for IWF
?Develop either AIC, AO or AL report Template
?Engage the client to obtain EDI requirements.
?Ensure the completeness and accuracy of the map packages and requirements documentation from client.
?May create the client map specification/correlation for handover to development team.
?Ensures accuracy of approval packages sent for client sign-off
?Identifies necessary specifications and map updates for new functionalities and change request
?Collaborates with analyst/developer, functional tester and integrator to resolve map development and queries.
?Ask technical assistance from more experience peers (analyst at senior level).
?Communicates overall status of specs creation/validation to Team Lead.
?May review map specifications developed by associate analysts
?Provides map status update to clients, leads, project managers and counterparts as necessary
?Provides assistance to associate analysts