Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Eric Cobbs

Henrico,VA

Summary

• Cyber security professional with experience in system architecting & engineering, security threat detection & monitoring, penetration testing, vulnerability management, cloud computing, and PCI compliance.

• Strong analytical and project management skills with a deep understanding of Agile, ITIL, and SDLC methodology.

• Proven ability to design and implement medium to large-scale security solutions.

• Participate in monthly Splunk CAB (Customer Advisory Board) focusing on Security, ITOPs, Cloud, and Splunk Enterprise discussions.

Overview

12
12
years of professional experience
1
1
Certification

Work History

Sr. Cyber Security Engineer

ElectroSoft
09.2022 - Current
  • Project – Implemented Cribl to simplify data pipeline ingestion from on-premises and cloud infrastructure to Splunk Cloud
  • Support the SOC for all escalated issues, including threat investigations, search detection enhancements, and Splunk Enterprise Security issues
  • Administer a hybrid Splunk Enterprise, Splunk Cloud, and Splunk Enterprise Security infrastructure, including data onboarding, security tools, and threat intelligence feeds integration, and creation, development, and optimization of new and existing threat detection use cases
  • Assist in administering other security tools, including CrowdStrike, Tenable IO, Carbon Black, and iBoss.

Sr. Security SIEM Engineer

Indeed
07.2021 - 09.2023
  • Migrated SIEM solutions from Elastic Search to Splunk Enterprise, followed by a later migration from Splunk Enterprise to Splunk Cloud
  • Architected and implemented Splunk Enterprise Security and Splunk SOAR, including working with the Incident Response team to build new workflows for their case management requirements
  • Implemented 100 threat detection use cases and MITRE Att&ck mappings around AWS, Azure, GCP, and Endpoint vulnerabilities
  • I worked with the audit team to implement automation of evidence collection to decrease the timing of CIS-20 evidence requests.

Lead Security Analyst – (PCI ISA)

Bowlero Corp
06.2017 - 05.2022
  • Designed, implemented, and administered Splunk Enterprise and Enterprise Security, including system integration, tuning, content management, dashboards, report creation, and PCI and MITRE Att&ck framework implementation
  • Performed infrastructure and application penetration testing and vulnerability assessments, including physical security review and social engineering testing
  • Implemented vulnerability management program for enhanced tracking of threat artifacts and patching of host, applications, and network systems
  • Managed PCI program, including implementation and administration of GRC solutions for a centralized method of automated collecting, tracking, and reporting of evidence.

Splunk Consultant (SIEM Engineer)

Atos
08.2020 - 09.2021
  • Clients – Rackspace, CarMax, Kaiser Permanente, and Baylor Scott & White Healthcare
  • Rackspace – Enhanced patch management capabilities and processes by integrating Rapid7, Splunk, and ServiceNow
  • CarMax – Redesigned Splunk architecture to allow Splunk to be used both as an SIEM and enterprise data analytic solution
  • Kaiser Permanente – Developed 140 use cases and mapped them to the MITRE Att&ck framework for threat detection and hunting within Splunk Enterprise Security
  • Baylor Scott & White Healthcare – Off-boarded Splunk infrastructure from Hurricane Labs to Atos for managed service support
  • Architected and implemented Splunk Enterprise Security for enhanced SIEM capabilities and built out workflows for Splunk Phantom (now SOAR) to automate notable events within Splunk Enterprise Security.

Security Analyst

General Electric
02.2016 - 06.2017
  • Developed Splunk dashboards and reports, including custom applications, content creation, custom integration, and workflows for the cyber security and risk department
  • Performed and analyzed penetration test results and engaged with technology partners and business units to resolve identified vulnerabilities and associated risks
  • Drove approaches for addressing vulnerabilities, including system patching, deployment of specialized controls, and code or infrastructure changes for on-premises, cloud, and mobile devices
  • Implemented and administered GRC solutions to centralize and automate processes and workflows for auditing teams.

Sr. IT Support Specialist – IPS

Capital One
12.2014 - 03.2016
  • Provided support and monitoring for Palo Alto firewalls, F5 VPN devices, and F5 ASM security tooling
  • Facilitated and supported security project in implementing sail point identity access management
  • Facilitated agile scrum master duties for weekly monitoring and reporting on team operations
  • Created weekly and monthly reports for VPN usage and ASM threat counts within Splunk
  • Provided 3rd-level administration and support for SCCM, vSphere 5/View Administrator, and wireless access point systems.

HRIS/Systems Analyst

VCU Health Systems
05.2014 - 12.2014
  • Administered antivirus and host-based firewall systems for servers and desktops
  • Administered IIS/Apache web servers, including patching and content management
  • Reviewed daily reports and remediated findings for issues the SecureIIS web application firewall generated
  • Administered human resources servers, desktops, and wireless access points, including UltiPro HRMS back office, Cognos 8, employee self-service, and other HR applications.

Incident Analyst (Night Shift)

Capital One
05.2013 - 07.2014
  • Monitored and escalated alerts of all network & system devices, as well as facilitated bridge calls to remediate found issues
  • Provided support for Voice Operations and Online Banking Solutions
  • I have assisted other IT Service management teams with cross-process integration for continuous availability/stability of IT Services
  • Responsible for the approval and documentation of after-hour urgent changes.

Windows Application Specialist

Estes Express Lines
07.2013 - 05.2014
  • Provided application and infrastructure support for line of business applications, including application maintenance/upgrades and end-user support
  • Provided technical support to implement new projects: Enterprise Content Management System, Enterprise Service Bus, Pickup/Delivery, and fleet maintenance solutions
  • I researched and evaluated COTS applications for feature sets, hardware costs, training and support costs, implementation capability, and API integration capability
  • Provided capacity planning and monitoring of designated systems relating to online services.

LAN Administrator

Dominion Power
05.2012 - 05.2013
  • Led efforts in identifying and upgrading systems and applications for the Windows 7 migration project
  • Provided technical support to 500+ users, including printers, Windows XP/7, VPN, and mobile devices
  • Provided application support for Nice Etrali Systems, PI Systems, AFT Products, and Microsoft Office applications
  • Managed IIS servers, files servers, FTP servers, and server patching/maintenance for Windows servers.

HRIS Support Analyst

VCU Health Systems
11.2011 - 05.2012
  • Provided technical support to 90+ users
  • Created, deployed, and maintained Windows XP/7 images for the human resource dept
  • I worked with the decision support team and database tools using Cognos 7 and SQL Server for building and creating reports
  • Create, manage, and maintain active directory local user accounts, groups, workstations, servers, and printers
  • Provided application support for UltiPro HRMS, Microsoft Office, and other HR applications.

Education

Master of Science in Information Technology - Information Security Management

Colorado Technical University
Colorado Springs, CO
02.2016

Bachelor of Science - Cyber Security

ITT Technical Institute - Indianapolis
Indianapolis, IN
02.2014

Skills

  • SQL, Bash, Batch, PowerShell, Python
  • Splunk Enterprise, Splunk Cloud & Splunk Enterprise Security
  • PCI, NIST & CIS20 Compliance
  • Endpoint Security Solutions
  • Identity and Access Management
  • Cloud Security Expertise

Certification

  • Certified Ethical Hacker v11
  • Splunk Certified Cybersecurity Defense Analyst
  • Splunk Enterprise Certified Admin
  • Splunk Enterprise Security Certified Admin
  • Splunk Core Certified Power User
  • PCI Professional
  • ITIL Foundation v3
  • MITRE ATT&CK Adversary Emulation Methodology
  • AWS Cloud Practitioner

Timeline

Sr. Cyber Security Engineer

ElectroSoft
09.2022 - Current

Sr. Security SIEM Engineer

Indeed
07.2021 - 09.2023

Splunk Consultant (SIEM Engineer)

Atos
08.2020 - 09.2021

Lead Security Analyst – (PCI ISA)

Bowlero Corp
06.2017 - 05.2022

Security Analyst

General Electric
02.2016 - 06.2017

Sr. IT Support Specialist – IPS

Capital One
12.2014 - 03.2016

HRIS/Systems Analyst

VCU Health Systems
05.2014 - 12.2014

Windows Application Specialist

Estes Express Lines
07.2013 - 05.2014

Incident Analyst (Night Shift)

Capital One
05.2013 - 07.2014

LAN Administrator

Dominion Power
05.2012 - 05.2013

HRIS Support Analyst

VCU Health Systems
11.2011 - 05.2012

Master of Science in Information Technology - Information Security Management

Colorado Technical University

Bachelor of Science - Cyber Security

ITT Technical Institute - Indianapolis

Similar Profiles

  • GULAB SINGH

    GULAB SINGHGULAB SINGH

    Telecommunications Technician at EUREKA ELECTROSOFTTelecommunications Technician at EUREKA ELECTROSOFT

    View Profile
  • Katrina Williams

    Katrina WilliamsKatrina Williams

    Senior Executive Admin at Electrosoft Services Inc/Defense Logistics AgencySenior Executive Admin at Electrosoft Services Inc/Defense Logistics Agency

    View Profile
  • Nikhil Maheshwari

    Nikhil MaheshwariNikhil Maheshwari

    Relationship Manager at Webtel Electrosoft Pvt LtdRelationship Manager at Webtel Electrosoft Pvt Ltd

    View Profile
Eric Cobbs