Skills
Security & Vulnerability Management
• Vulnerability Scanning: Qualys, enterprise scanning platforms
• CVE analysis, CVSS scoring, NIST risk frameworks
• Risk-based remediation & exposure reduction
• Patch governance & compliance validation
• Security control testing & validation
• DLP investigation & policy enforcement
• Incident response support & escalation workflows
Security Operations / Monitoring
• Security alert triage & event analysis
• Log review & investigation support
• SIEM exposure (enterprise environments)
• Root cause analysis & remediation tracking
• Data exposure & policy violation investigations
• Identity & Access Management (IAM)
• Active Directory (AD DS), Group Policy
• Access provisioning & entitlement governance
• Segregation of Duties (SoD) controls
• Privileged access review support
• BitLocker encryption
Endpoint & Infrastructure Security
• Windows 10/11, Windows Server
• Linux exposure
• SCCM / MECM / Intune
• VMware
• Endpoint security baselines
Cloud & Virtualization
• Microsoft Azure (VMs, Security Monitoring, Backup)
• Azure security posture support
• Azure Backup, monitoring integrations
• Docker (basic exposure)
Monitoring & Enterprise Tooling
• SCOM
• SolarWinds
• ServiceNow (Incident, Change, Request)
• RSA SecurID
• Enterprise ticketing & workflow documentation
Automation & Scripting
• PowerShell (automation & remediation scripting)
• Python (exposure)
• .NET / Java (foundational knowledge)
About
IT Security and Vulnerability Management Analyst with progressive experience supporting
application,IT Security & Vulnerability Management Analyst with 8+ years of progressive
experience supporting enterprise security operations, vulnerability remediation, IAM
controls, and regulated banking environments. Hands-on expertise in CVE analysis, risk-
based vulnerability prioritization (CVSS), DLP event investigation, endpoint hardening,
patch governance, and security control validation.
Strong background collaborating with SOC, infrastructure, cloud, and application teams to
reduce attack surface, strengthen compliance posture, and improve remediation SLAs
across large-scale Microsoft and hybrid environments.
Experience supporting enterprise tooling including SIEM, endpoint protection, IAM
governance, vulnerability scanning, and cloud security monitoring.
Profile Photo
