Profiles search

R. Colin MacDonald

Cybersecurity Analyst | OSCP | Threat Detection, Incident Response & Offensive Security
New Brunswick, Canada
View resume Unlock resume

Skills

Security Operations (SOC), Incident Response, Threat Hunting, Detection Engineering, Vulnerability Management, Penetration Testing, Security Monitoring, Security Investigations, Threat Intelligence, Risk Assessment, Active Directory Security, Web Application Security Testing, Vulnerability Validation, Privilege Escalation, Post-Exploitation, External Penetration Testing, Internal Network Penetration Testing, Attack Path Analysis, Security Reporting, Microsoft Sentinel, Splunk, IBM QRadar, Log Analysis, Detection Rule Development, Alert Triage, MITRE ATT&CK, Security Analytics, Endpoint Detection and Response (EDR), Microsoft Defender, Endpoint Security, Windows Security, Linux Security, Identity Security, Active Directory, Microsoft 365 Security, Security Hardening, Vulnerability Scanning, AWS Security, Azure Security, Cloud Security, Identity and Access Management (IAM), Zero Trust, Python, PowerShell, Bash, SQL, Networking, TCP/IP, DNS, HTTP/HTTPS, Wireshark, Nmap, NIST Cybersecurity Framework, CIS Controls, Compliance Support, Security Documentation, Security Awareness, OSCP, Security+

About

Cybersecurity professional with experience supporting enterprise security operations, threat detection, incident response, vulnerability management, and offensive security initiatives. Background includes monitoring and investigating security events, threat hunting, detection engineering, vulnerability validation, and security assessment activities.

Holder of the OSCP certification with practical experience in penetration testing methodologies, Active Directory security, privilege escalation, web application testing, and post-exploitation techniques. Familiar with SIEM technologies, endpoint security platforms, vulnerability scanners, and cloud security concepts.

Recognized for strong analytical skills, attention to detail, and the ability to communicate technical findings clearly to diverse audiences. Seeking opportunities where both defensive and offensive security skills can be applied to improve organizational resilience and security maturity.