Skills
SIEM: Microsoft Sentinel (as a design partner), Qradar, Arcsight, SPLUNK, Microsoft LogAnalytycs, Varonis DatAlert (as a design partner), Symantec.
EDR: Crowd Strike, Carbon Black, SECDO (Palo Alto) (as a design partner), Symantec End Point
Protection
Antivirus: Microsoft Defender, McAfee EPO, Trend Micro, Symantec, Kaspersky, Clam.
IPS: CISCO, McAfee, Trend Micro
DLP: Force Point, Solar Winds, McAfee, Microsoft Office 365 ATP (as a design partner)
Firewall: NGFW: Palo Alto, Cisco, Check Point, Juniper, Fortinet
Data Base: Fortinet, Imperva
Application: F5, Imperva
Orchestration and Automation: Demisto, Siemplify (as a design partner), Microsoft (as a design partner), Splunk, Swimlane
Cloud Security: Microsoft MCAS, Proof Point, Dome9
Mail protection: Proof Point, Microsoft Office 365 ATP (as a design partner)
Vulnerability Management: Rapid7, Qualys, Tenable.sc, Windows Defender Advanced Threat
Protection (Hexadite AIRS) (as a design partner), Nessus
Programming languages: PowerShell, Python, Kusto, C++, SQL- basic, VHDL, Assembler, HTML, XML.
Others: Azure ATP, Grafana, Microsoft Teams, Iron Scale, CM, RSyslog, ServiceNow, Slack, Smartsheet, G Suite, Trello, Lucidchart, Alienvault, Virus Total, ANY.RUN, WireShark, Elastic, Kibana, etc.
About
Senior Cyber Security Manager with Bachelor of Science and 9 years’ experience managing security operations and administration by providing leadership and tactical direction to diverse teams, including analysts, engineers, and architects.
• Vast experience in Initiation, Development, and Implementation of the Security Operational Centers SOC, from scratch to fully operational phase as well as managing SOC after implementation.
• Incident Response leader IR for large financial and critical infrastructure organizations, in last 11 years.
• Management of the Programs:
▪ Vulnerability Management
▪ IR
▪ Could Security
▪ Security Awareness
▪ Threat Intelligence
▪ Bug bounty
▪ Change Management
▪ Identity Management/Access Management
▪ Security Questionnaires (Vendors/Costumers)
• Expertise and experience in integrating, administrating and as design partner with security systems such as: SIEM, EDR, DPL, IPS, AV, FW (App, DB, NGFW), SOAR, Cloud Security tools, Mail protection, etc.
• Use and compliance with frameworks and regulations such as GDPR, PIPETA, CobIT, NIST (800-53, cybersecurity), ISO27001, ITIL, OWASP, PCI, FISMA, GLBA, HIPAA, and other data privacy and security standards and regulations.
• Develop Security Policies and Procedures for all applicable regulatory compliance requirements
• Security operations as an Enabler and not a Show-Stopper attitude integration in organization.
• Assist the CISO in management of all other security program areas, and functions.
• Excellent organizational skills and strong attention to detail
• Creating healthy team relationships with curiosity driven vision.
Profile Photo
