Cybersecurity Operations Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the cybersecurity operations job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.

USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.

SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Create a Resume in Minutes

C Fritsch

Carey

Fritsch

9196 Luettgen Bridge

Dallas

+1 (555) 645 8255

9196 Luettgen Bridge

Dallas

Phone

p +1 (555) 645 8255

Experience Experience

Houston, TX

Cybersecurity Operations Center Analyst

Houston, TX

Stiedemann-MacGyver

Houston, TX

Cybersecurity Operations Center Analyst

Analyzes incoming security incidents, performs deep packet inspection, and provides first responder actions to Fraud Response teams
Remain informed and improve awareness of Information Security news and developments, especially in relation to the banking and financial services industry
Keep accurate and concise records for all cases
Provide accurate & priority driven analysis to detect, analyze, respond to and track security threats and vulnerabilities
Coordinate with Business Units and Technology teams to assist with incident response, remediation, and recovery efforts
Activities range in complexity from simple approvals (allowing safe software to be installed) to complex event analysis (reverse engineering malicious software or identifying traffic patterns for cyber attacks) and custom rule creation
Develop and maintain documentation, processes, procedures, and reports to improve the quality, consistency, effectiveness, and efficiency of SOC operations

Chicago, IL

Cybersecurity Operations Manager

Chicago, IL

Thiel LLC

Chicago, IL

Cybersecurity Operations Manager

Working knowledge of information/cybersecurity, infrastructure vulnerabilities, and network security products (hardware and software)
Change control management, coordination and process improvements between infrastructure and development/application management units
Demonstrated success building relationship with senior leaders, security team and key decision-makers
Support and assist the CISO to develop and maintain ongoing reporting of cybersecurity operations metrics
Assists with the preparation of operating and capital budgets and manages expenses to budget
Manage incident response activities, intrusion detection processes and security for the infrastructure
Gen endpoint prevention technologies, Data Loss Prevention, Cloud Security Broker, Web Filtering, and FWs and ensure security tools are optimized, fine

present

Detroit, MI

Cybersecurity Operations Specialist

Detroit, MI

Fay, Swaniawski and Streich

present

Detroit, MI

Cybersecurity Operations Specialist

present

Provide forensic analysis and troubleshooting to assist in the containment and remediation of security incidents working with the Incident Response team
Perform IDS monitoring and analysis, analyze network traffic, log analysis, prioritize and differentiate between potential intrusion attempts and false alarms
Provide the technical expertise and oversight of security tool/appliances deployment and implementation
Ownership of network security architecture and secure connectivity
Responsible for remediating security gaps following up on non-compliance and ensuring operational activities within IT services follow information security best practice
Responsible for the operational management of security products and services including firewalls, networks, third party connections, encryption technologies, patching, certificate management, anti-virus, email security controls, intrusion detection, intrusion prevention, virtual private networks, and identify access management
Reports security performance against established security metrics

Education Education

Bachelor’s Degree in Computer Science

Harvard University

Bachelor’s Degree in Computer Science

Skills Skills

3+ years of experience in IT leadership positions, with proven success leading highly skilled security teams within a large scale, high-availability IT operation with 24/7/365 accountability
Strong problem solving skills with the ability to understand business processes and propose appropriate technical solutions
Working knowledge of information/cybersecurity, infrastructure vulnerabilities, and network security products (hardware and software)
Experience with vulnerability assessment, penetration testing, and/or forensic analysis fields
Ability to function independently as well as in a team environment
Effective written, verbal and interpersonal communication skills
Demonstrated success building relationship with senior leaders, security team and key decision-makers
Familiar with ITIL best practices

Create a Resume in Minutes

15 Cybersecurity Operations resume templates

Read our complete resume writing guides

Cybersecurity Operations Solutions Engineer Resume Examples & Samples

Developing or enhancing existing vendor suites or custom cyber security toolsets
Setting up and deploying servers and operating systems to host critical cyber security tools
Investigating alerts using any and all available tools and data resources
5+ yrs experience with system administration at hardware, software, as well as OS levels
5+ yrs experience and knowledge of high and low level network protocols such as TCP, UDP, HTTP, SMTP, etc
2+ yrs experience administering databases and developing database applications in traditional relational databases as well as NoSQL ones

Cybersecurity Operations Analyst Resume Examples & Samples

2 to 5 years of experience with IP network and routing along with deep packet analysis using tools like Wireshark
2 to 5 years of experience with products of IPS/IDS, AV, and Anti-Malware products like McAfee, FireEye, etc
2 to 5 years of experience with security incident response process and procedures
2 to 5 years of experience with information security best practices
2 to 5 years Unix/Wintel experience
GIAC Global Certified Incident Handler or Equivalent
CCNA or Equivalent
CISSP or Equivalent

Cybersecurity Operations Engineer, Junior Resume Examples & Samples

Experience with tracking and reporting of >1000 systems, including large software deployment, upgrade, or security flaw remediation
Experience in interfacing with customers daily
Experience with weekly reporting of progress and remediations
Ability to improve and automate processes
Security+ Certification

Cybersecurity Operations Manager Resume Examples & Samples

10+ years of experience in IT with at least 5 of those years of experience in a Cybersecurity operations role
3+ years of experience in a technical leadership role, providing direction to a team for managing people, employee career development, team building, and conflict resolution
Experience with multiple security platforms and layers, including anti-virus, firewalls, proxy servers, intrusion prevention systems, logging correlation and management, operating systems, protocols, and incident response
Experience with design and architecture using modern design patterns in a Cloud environment
Experience with Cloud models, including IaaS, PaaS, SaaS, and the security implications and requisite control frameworks
Knowledge of security best practices, including least privilege, defense in depth, or attack surface analysis
Knowledge of Cloud and IT Infrastructure services, including security, directory services, identity management, network, systems, storage, databases, PKI, VPN, SSO, federation services, or WIFI
Ability to demonstrate excellent decisive judgment and the potential business impact when the team is researching a security event or incident
BA or BS degree in MIS, Computer Information Systems, CS, or an IT-related field
Certified Information Systems Security Professional (CISSP) Certification
CISA, CIPP, CISM, PCI-QSA, or a related Certification

Cybersecurity Operations Manager Resume Examples & Samples

Design, implementation, and documentation of new information security solutions to support the various Citi Electronic Trading environments
Deployment, configuration and maintenance of the STI Firewall environment
Design and deployment of high-performance, low-latency technology solutions
Compliance and Controls – participate in various reporting functions, metrics analysis and vulnerability remediation initiatives
Stability and resiliency of the infrastructure
Change control management, coordination and process improvements between infrastructure and development/application management units
Ownership of Infrastructure Problem, Incident and Change management
Strong communication (verbal and written) skills
High work standards and high bandwidth for work
Proven achiever
Standard office documentation and communication tools
Extensive hands-on knowledge of Juniper/Netscreen, Firewalls and related tools (e.g. NSM), as well as PaloAlto
Hands-on skills in one or more of the following fields is desirable: Scripting language (e.g. Perl, shell script, etc), Remote access solutions, VPN
Strong understanding of IP networking concepts and TCP/IP protocols is mandatory
Strong understanding of Information Security domains, and best practices
Strong knowledge of network firewalls, IDS, VPN, and vulnerability management is required
6 years min experience working in the IT field, with min of 2 in the Financial services industry
Experience of customer support in a time critical environment
Experience designing complex security solutions

Cybersecurity Operations Specialist, Senior Resume Examples & Samples

10 years of experience as a Cyber subject matter expert (SME)
Experience with the Special Access Program (SAP) or Special Access Required (SAR) program
Experience with international security cooperation programs, including foreign military sales
Experience in Japan, including working with the Japanese Ministry of Defense (JMoD)
Knowledge of the F-35 Joint Strike Fighter program a plus
Ability to work well with people of other cultures
Possession of excellent interpersonal and intercultural skills
TS/SCI clearance preferred
Certified Information Systems Security Professional (CISSP) or related Network Certification preferred

Cybersecurity Operations Manager, Senior Resume Examples & Samples

12 years of experience in leading technical project delivery with commercial clients in a fast-paced environment
Experience with leading complex Cybersecurity capability design and implementation projects for Fortune 500 clients, including the implementation of new people, processes, and technologies for threat prevention, detection, and response
Ability to manage and lead multiple fast-paced delivery teams across various challenging commercial environments
Ability to work with senior partners and executive officers to foster positive client and vendor relationships, identify new business opportunities with existing clients, and develop mutually beneficial partnerships
5 years of experience with top tier management and consulting firms supporting large engagements
Experience with multiple market verticals, including financial services, healthcare, energy, consumer products, high-technology, and pharmaceuticals
Experience with coaching and mentoring junior staff on functional expertise
Ability to be a self-starter and thrive in a fast-paced consulting environment
Possession of excellent client facilitation skills

Cybersecurity Operations Center Analyst Resume Examples & Samples

Activities range in complexity from simple approvals (allowing safe software to be installed) to complex event analysis (reverse engineering malicious software or identifying traffic patterns for cyber attacks) and custom rule creation
Reviews system logs and responds to security events for host based incidents
Analyzes incoming security incidents, performs deep packet inspection, and provides first responder actions to Fraud Response teams
Provide accurate & priority driven analysis to detect, analyze, respond to and track security threats and vulnerabilities
Utilize information security and monitoring tools in order to gather additional context needed to investigate an events of interest
Coordinate with Business Units and Technology teams to assist with incident response, remediation, and recovery efforts
Keep accurate and concise records for all cases
Develop and maintain documentation, processes, procedures, and reports to improve the quality, consistency, effectiveness, and efficiency of SOC operations
Contribute to the continuous improvement and growth of the SOC and Information Security
Remain informed and improve awareness of Information Security news and developments, especially in relation to the banking and financial services industry
Continue to develop technical skills to expand knowledge and understanding of key Information Security controls
Self-starter with initiative and drive for continuous improvement
Must be a team-oriented individual who works well with others and places a premium on the group’s success
Demonstrate strong organizational, research, analytical and problem-solving skills to evaluate situations and respond appropriately
Familiarity with concepts related to security disciplines such as: malware analysis, computer forensics, cyber incident response, network intrusion detection, network traffic and packet analysis, penetration testing, vulnerability scanning, compliance, audit, or cyber threat intelligence
Possess a firm understanding of information security principles, controls, and technologies
Must possess excellent written and verbal communication skills
Bachelor’s degree in Computer Science, Managing Information Systems, or other technology-based discipline. *Experience may be substituted for some education
Three or more years of experience in Information Technology or Information Security. **Education may be substituted for some experience
One or more years of experience in Information Security
Experience with a diverse set of hardware, software, and operating systems
Subject matter expert (SME) in one or multiple areas such as Windows, UNIX, mainframe, firewalls, networking, intrusion detection, threat detection/analysis, or information risk management
Relevant information security certification such as (CISSP, CISA, SANS/GIAC, Security+, etc.) are a plus
Experience with SIEM systems is a plus
Experience working in a Security Operations Center environment is a plus

Cybersecurity Operations Manager Resume Examples & Samples

Coordinate, manage, coach, develop, and lead the team responsible for cybersecurity operations
Bachelor degree in computer science or a related field and/or equivalent combination of education, certification and experience
Advanced knowledge of TCP/IP networking

Senior Cybersecurity Operations Center Analyst Resume Examples & Samples

Conduct network, endpoint, and log analysis by utilizing various consoles on a regular basis to analyze and triage cybersecurity events (e.g., SIEM, IPS, firewall, etc.) and perform continuous hunt across the environment
Provide 24x7 operational support for escalations on a rotating shift basis
Train and assist other analysts on the policies and procedures of the CSOC. Review their research, analysis and conclusions for completeness
Oversee execution of established operational processes and procedures by CSOC analysts to analyze, escalate, and lead remediation of security incidents
Bachelors’ Degree in Cybersecurity, Computer Science, MIS or other degrees with high level understanding of network and application security and information systems
Five or more years of Cybersecurity experience in a security operations center with strong understanding of Cybersecurity frameworks and incident and security event management
SANS (Multiple), CISSP, CISA, CISM, others as applicable
Five or more years of experience analyzing host and network based logged events (i.e. firewall, IPS/IDS, Windows, Web, proxy, and mail filtering)
Experience with SIEM technology and logging environments
General networking understanding and/or experience to include Understanding of TCP/IP communications & knowledge of how common protocols and applications work at the network level, including DNS, HTTP, and SMB
Experience with forensics and malware analysis concepts and methods
Familiarity or experience with the Cyber Kill Chain® methodology
Knowledgeable of Duke Energy’s IT Security policies
Possession of multiple industry standard certifications such as SANS GIAC/GCIA/GCIH/GCFA, CISSP, CISA, CISM, etc. or other network / system security certifications
Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain
Demonstrated capability to work with little management oversight and must have strong personal initiative
Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings and provide briefings to various levels of staff / management
Ability to work in high pressure situations and within a team environment
Experience with writing and editing technical documentation and operational procedures
Demonstrated effective problem solving & analytical skills

Cybersecurity Operations Manager, Senior Resume Examples & Samples

12 years of experience in leading technical project delivery with commercial clients in a Fast-paced environment
Ability to manage and lead multiple Fast-paced delivery teams across various challenging commercial environments
Experience with multiple market verticals, including financial services, healthcare, energy, consumer products, High-technology, and pharmaceuticals
Ability to be a Self-starter and thrive in a Fast-paced consulting environment

Cybersecurity Operations Manager Resume Examples & Samples

Gen endpoint prevention technologies, Data Loss Prevention, Cloud Security Broker, Web Filtering, and FWs and ensure security tools are optimized, fine
Tuned, and integrated into operational procedures
Experience with multiple security platforms and layers, including anti
Virus, firewalls, proxy servers, intrusion prevention systems, logging correlation and management, operating systems, protocols, and incident response
BA or BS degree in MIS, Computer Information Systems, CS, or an IT
CISA, CIPP, CISM, PCI
QSA, or a related Certification

Cybersecurity Operations System Analyst Resume Examples & Samples

Implement, monitor, and manage advanced security technologies: SIEM, Firewalls, IPS, Endpoint Detect and Respond (EDR), Endpoint Threat Management (ETM), and other security related devices
Work with HP internal partners, vendors, and service providers to provide documentation for regulation compliance and adherence to applicable laws, industry and regulatory requirements, as well as HP Cybersecurity policies and standards
Perform incident management/response across the enterprise and provide consistent security monitoring, response, follow-up investigation, and determination of root cause. Evaluates security alerts generated by internal systems, vendors, and other industry sources
Manage Cybersecurity project delivery
First Level University degree in Information Technology, Cybersecurity, or related field
5+ years in project management roles or in like roles/businesses
2-3 years of relevant experience in Cybersecurity operations, Information Security or IT domains that have relatable experience
Understanding of ISO 27001/27002, and NIST Cybersecurity Framework
Security Certifications, such as CCSP, CISM, CISSP, CRISC, CISA or other Information Security or IT disciplines
On the Project Management Professional (PMP) Certification path

Cybersecurity Operations Specialist Resume Examples & Samples

Bachelor degree in an information technology discipline or equivalent IT experience required
Any relevant IT or security certifications including CISSP, CISM, CRISC, CEH or SANS certs are expected
Extensive experience (5+ years) in information security operations and/or related IT operational functions
Requires demonstrable background in: security products and technologies; security engineering, networking protocols and data center; security analysis and investigations
Expert level understanding of malware kill chain and pervasive threat attack methods and remediation
Demonstrable ability to analyze network packets and log data
Experience with Splunk, ElasticSearch, Tripwire, Wireshark or other analytics tools a plus
Experience with McAfee ePO server, Dell KACE and Infoblox a plus
Programming experience in scripting languages such as Windows PowerShell, Python, Perl, etc, highly desirable
Ability to multi-task, prioritize, coordinate, work well under pressure and meet deadlines
Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to both technical and non-technical audiences
Must be a critical thinker with strong problem solving skills and a “can do” attitude

Cybersecurity Operations Resume Examples & Samples

Drive integration of the cybersecurity incident and event management framework to ensure consistency and alignment of incident response plans with technology and business response plans
Develop and document processes to ensure consistent and scalable response operations and ensure continuous improvement to the firm’s incident response plans
Own and manage incident response plans, playbooks and knowledgebase
Coordinate and develop incident response plans for third party incidents (vendors, cloud providers, etc.)
Ensure operational readiness though collaboration with the Cybersecurity Exercise and Drills team and the firm’s crisis management functions
Provide operational support to incident responders during critical or large scale incidents
Manage deliverables pertaining to regulatory & legal engagements, including timely response to inquiries, reporting and metrics, and providing substantiation material
Ensure that the Incident response framework complies with applicable security policies and industry standards
Communicate effectively with representatives of the Lines of Business, technology specialists, and third parties
5-7+ years experience in incident coordination roles
Must have a extensive Information Business Risk background, including risk analysis, privacy, and data protection
Undergraduate degree in a relevant discipline, Graduate degree is preferred
Information security certifications (such as GCIH, CISSP, CISM or related certifications) preferred

Cybersecurity Operations Manager Resume Examples & Samples

Oversee and lead the coordination process of all Cybersecurity Operations activities such as incident management, vulnerability and patch management, and threat analytics
Work with and manage third party service partners as needed on risk assessments, vulnerability scans, penetration testing, incident management, managed SIEM, IDS/IPS, Data Loss Prevention (DLP), and threat intelligence
Manage the consolidation of large sets of data specific to threats and vulnerabilities to apply accurate risk weighting and prioritization
Coordinate remediation efforts of identified cybersecurity vulnerabilities
Provide Incident Response support when analysis confirms actionable incident
Ensure the successful completion and recording of scanning activities as required by audit and regulatory authorities
Investigate, document, and report on information security issues and emerging trends
Coordinate efforts with GRC functions to meet and exceed Risk and Compliance requirements
Coordinate and assist in the development, automation, execution and monitoring of security operations controls in support of the Information Security Program
Participate in the research, evaluation, design, and testing of information security solutions to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications and software, liaising with the Enterprise Security Architect and/or Engineer as necessary
Support and assist the CISO to develop and maintain ongoing reporting of cybersecurity operations metrics
Support and assist the CISO to develop and maintain pertinent standard operating procedure documentation
Support the CISO and assist the CISO team in developing and maintaining the security program, and drive security projects that address identified risks and business security requirements while serving as an active and consistent participant in the information security governance process

Cybersecurity Operations Analyst Resume Examples & Samples

Experience with representing agency-level interests at meetings and exchanges
Experience with Microsoft Office, including Word and PowerPoint
DoDI 8570 Certification, including CISSP or Security+
Experience with coordinating and consolidating input and feedback across multiple staffing levels and agencies
Experience with researching and analyzing Cyber threat information
Experience with intelligence databases and analytical tools or similar intelligence reporting systems
Knowledge of DoD operational Cybersecurity roles and responsibilities, including C2 relationships between various stakeholders
MA or MS degree

Cybersecurity Operations Analyst Resume Examples & Samples

Serves as an analyst, working alone, with other analysts, or with SMEs, to determine the severity and complexity of issues pertaining to the security and protection of systems data, to ensure the protections, conservation and accountability of proprietary, personal, or privileged electronic data
Monitor and respond to security incidents, offering collaboration in an effort to ensure prompt and effective resolution
Collaborates with director, managers, project managers, architects, and other individuals to ensure continuity and communication across teams
Collaborates with director, managers, and other technical personnel to ensure mitigation of risks to the company
Promotes continued integration of technological advances to further enhance security and reduce risks
Able to work in 24hour on-call environment

Cybersecurity Operations Manager Resume Examples & Samples

Creation and maintenance of operational reports for Key Performance Indicators and Metrics
Plan, organize, direct, implement and evaluate processes and manage resources to achieve desired results
Convey technical information to audiences of varying degrees of technical understanding
Lead, facilitate, and interact effectively with upper levels of management on cybersecurity topics
Drive process improvement
Coordinate vendor activities, including cybersecurity assessments and participate in contract negotiations
Assists with the preparation of operating and capital budgets and manages expenses to budget
Manage security operations resources, outline direction and determine priorities based on the Cybersecurity Roadmap and enterprise direction
Develop Project Charters to outline scope, requirements, budget, deliverables and key milestones for product implementations
Liaise with project management, business analysts and technical resources to drive key projects forward
Manage incident response activities, intrusion detection processes and security for the infrastructure
Working knowledge of information/cybersecurity, infrastructure vulnerabilities, and network security products (hardware and software)
Experience with vulnerability assessment, penetration testing, and/or forensic analysis fields
Familiar with ITIL best practices
Effective written, verbal and interpersonal communication skills
Strong problem solving skills with the ability to understand business processes and propose appropriate technical solutions
Ability to function independently as well as in a team environment
Critical thinking skills and high self-motivation are essential, and must drive process improvement
Demonstrated success building relationship with senior leaders, security team and key decision-makers
Bachelor's degree in Computer Science or combination of education and related work experience
3+ years of experience in IT leadership positions, with proven success leading highly skilled security teams within a large scale, high-availability IT operation with 24/7/365 accountability
Experience with the NIST Cybersecurity Framework (preferred)

Director, Cybersecurity Operations Resume Examples & Samples

Partnering with the Security Engineering and the IT Engineering to ensure deployed security solutions meet the requirements of the bank to protect our clients and employees data
Lead the security incident response process, including the ongoing monitoring of threats and vulnerabilities, and response to security events
Lead the development of a modern next generation SOC; develop plans that align with that strategy
Provide metrics and KPIs on the performance of security controls and incident response
Drive operational efficiencies in SOC through automation and orchestration of response playbooks
Give guidance to other business units on current threats and best practices
Partner with business continuity management team and IT on incident response plans
Manage the skills development of the security operations team

Cybersecurity Operations Resume Examples & Samples

Develop incident response plans, playbooks and knowledgebase
Develop incident response plans for third party incidents (vendors, cloud providers, etc.)
5 years experience in incident coordination roles
Must have a solid background in production incident management
Undergraduate or higher level degree in a relevant discipline

Cybersecurity Operations Center Manager Resume Examples & Samples

Minimum 10 years' experience of applicable professional services and/or information security experience and expertise
Minimum 8 years' experience focus in cybersecurity with four or more years of experience in the preservation and analysis of data during a computer investigation
Minimum 4 years' experience leading security practitioners in accomplishing work in challenging data, information technology or cybersecurity environments
Must have a management oriented security certification. (Certified Information System Security Professional (CISSP) certification is preferred.)
Highly advanced skills and detailed understanding of network design, security protocols and systems administration with excellent analytical and problem solving skills
A solid understating of manual, automated application penetration skills, vulnerability scanning and analysis as well as skill in careful, limited live testing in live production environments. Ability to develop scripts and other facilitative technical tools
Experience in teaching and learning environments to include preparing and presenting lectures or instruction in network or information security
Knowledge and expertise in building and operating a Cybersecurity Operations Center
Experience working in a distributed governance environment that requires collaboration across multiple units to establish and implement policies and operate processes
Professional supervisory certification in computer forensics (e.g., GIAC Certified Forensics Examiner (GCFE), Computer Hacking Forensic Investigator (CHFI), Certified Cyber Forensics Professional (CCFP), or specific certifications in reverse engineering of malware, web application penetration testing, forensics analysis, continuous monitoring, or forensics tools like EnCase Certified Examiner (EnCE)

VP, Global Cybersecurity Operations Resume Examples & Samples

Build out and manage 24/7/365 frontline security operations teams with nodes spanning all National Grid regions
Build, lead, and manage a team of technical security engineering staff that actively operate, maintain, customize, and configure information security tools and processes in support of the information security program
Direct the operations of the security teams in real-time monitoring and providing rapid reaction to alerts and anomalies generated by global security defences
Ensure that operational security activities are undertaken by the various parties to ensure that National Grid’s applications, environments, and networks are secure including: patching, server hardening, code reviews, penetration testing, ethical hacking, security reviews and vulnerability assessments
Work with the VP Cybersecurity, CSO, CISO, and CTO to develop metrics to evaluate components of security maturity, such as, but not limited to, patch schedules and completion, network traffic abnormalities, log exception tracking, and change control adherence
Define the scope of cyber security penetration tests, and coordinate and communicate with appropriate teams and management
Form and lead incident response teams in response to security events, and provide overall leadership during the execution of the incident response process
Champion continuous improvement across National Grid by identifying and overseeing enhancements to processes and tools
Direct the completion of post mortem analysis, document findings and provide recommendations to appropriate leadership
Research and keep abreast of testing tools, techniques, and process improvements in support of security event monitoring, detection and incident response
Provide advanced analysis and direction as needed
3+ years (5+ preferred) demonstrated experience managing the global cybersecurity operations of an international company
10+ years of demonstrated hands-on technical experience in cybersecurity operations, malware analysis, host forensics, reverse engineering, network traffic analysis, cyber intelligence, and development of custom tools
15+ years demonstrated experience working in information technology (IT) and cybersecurity operations of large (10k+ person) organizations with increasing levels of scope, operations, and budget responsibilities
A high degree of technical knowledge regarding information technology, operational technology, industrial control systems, computer systems, access controls, firewalls, intrusion detection systems, and overall knowledge of technical security systems
Demonstrated experience building and training highly talented, productive, and effective security teams
Demonstrated ability to communicate situation reports to both highly technical and non-technical stakeholders
Demonstrated ability to create and provide reports to senior leadership regarding the performance of incident management and the current state of cybersecurity
Demonstrated ability to communicate, present and report via metrics
Demonstrated excellent verbal, written communication, facilitation, and interpersonal skills
Experience with applicable compliance and global regulatory requirements required. Experience in the energy-sector is preferred, but not required. At a minimum, must have demonstrated strengths facing similar challenges in another industry or governmental / regulatory sector
Graduate degree in computer science, computer engineering, or an equivalent relevant technical field

Senior Manager, Cybersecurity Operations Resume Examples & Samples

Minimum Year(s) of Experience: 10 years' in Information Technology, with 5 years in information security
Managing maintenance and support, and conducting analyses of information technology solutions including: firewalls, active directory, Windows Operating Systems, intrusion detection and prevention systems, proxy servers, endpoint forensics, breach indicators, and log aggregation technology
Understanding network threats and fundamentals of incident response process and procedures, emphasizing innovation and leveraging knowledge of cyber-attacks, security monitoring and incident response related to knowledge domain and associated tools
Security incident handling and forensics skills including knowledge of common probing and attack methods, network/service discovery, system assessment, viruses and other forms of malware
Experience mitigating and addressing threat vectors including Advanced Persistent Threat (APT), Distributed Denial of Service (DDoS), Phishing, Malicious Payloads, Malware, etc
Knowledge of hacker methodologies and tactics, system vulnerabilities and key indicators of attacks and exploits
Utilizing security perimeter enforcement, security logging and/or monitoring solutions, i.e. Palo Alto, GlobalProtect, McAfee ePO, Aruba ClearPass, Tenable NESSUS, ProtectWise, OpenDNS Umbrella, Avecto, and SecureAuth
Understanding of a wide range of cybersecurity tools such as user behavior analytics, next-gen anti-virus, multi-factor authentication, mobile device management, data loss prevention, etc
Experience monitoring, managing and improving service settings, data protection and auditing controls within an enterprise cloud service environment; MS O365 and Azure highly preferred
Knowledge of programming languages, SDLC technologies/methodologies and scripting
Understanding of stakeholder and change management, and influencing without authority
Planning, maintaining and improving security technology such as network packet capture, intrusion detection, security information and event management, and/or endpoint malware/security solutions
Learning new security technologies, implementation requirements, and how to integrate security technologies into a larger solution
Analyzing new networking solutions, identifying potential security concerns, developing approaches to mitigate identified risks, and work with IT teams to implement recommendations
Writing, communicating, facilitating, and presenting cogently; to and/or for all levels of industry audiences, clients and internal staff and management on technical concepts and issues, including translating technical security verbiage into non-technical verbiage for various business leaders
Utilizing creative problem solving and multitasking skills to work effectively as part of a team and/or independently, while focusing on researching pertinent technical matters, emphasizing an attention to detail
Leading security staff, including direct reports, matrix reports, and contractors to create an atmosphere of trust, seeking diverse views to encourage improvement and innovation, answering questions and providing direction to less-experienced staff, coaching staff including providing and accepting timely, meaningful written and verbal feedback

Associate Cybersecurity Operations Center Analyst Resume Examples & Samples

Bachelor’s Degree in Cybersecurity, Computer Science, MIS or other degrees with high level understanding of network and application security and information systems
Experience in a security operations center and/or system administration role
Direct background or exposure to cyber security operations
Knowledge of network monitoring, analysis, troubleshooting, and configuration control technologies
General networking understanding and/or experience
Windows and UNIX/Linux command line scripting experience and programming experience
Demonstrated understanding of the life cycle of network threats, attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques and procedures (TTPs)
Familiarity or experience with the Cyber Kill Chain methodology
Knowledgeable in the NIST Cybersecurity Framework
Willingness to pursue industry standard certifications such as Security+, SANS GIAC/GCIA/GCIH/GCFA, CISSP, etc. or other network / system security certifications
Innovative – ability to recognize and seek improvement and efficiency opportunities