Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Military Experience
Generic

Manal Malik

Springfield

Summary

Lead Cyber Defense Analyst with a proven track record of spearheading threat detection, enterprise vulnerability management, and incident response operations across critical government, military, and enterprise sectors. Direct operational manager who drives cross-functional SOC teams, optimizes security architectures, and identifies critical gaps in security posture in sensitive environments. Adept at translating complex threat telemetry into resilient defensive postures aligned with NIST SP 800-53 frameworks.

Overview

8
8
years of professional experience
1
1
Certification

Work History

Cyber Defense Analyst Lead

Maximus
Arlington, VA
12.2023 - Current
  • Utilize Trellix ENS Threat Prevention to perform signature-based analysis, responding to DISA tasking orders (DTOs), and blocking malicious uploads and software to secure enterprise endpoints.
  • Lead high-level Authorizing Official (AO) meetings, presenting critical risk postures, vulnerability trends, and compliance metrics to secure and maintain the Authority to Operate (ATO) across hybrid, highly secure SAP environment.
  • Govern the technical review, validation, and brief risk assessment of high-impact Requests for Configuration Changes (RFC) to Cyber Chief.
  • Conduct log analysis in Splunk Enterprise Security (ES) to reconstruct incident timelines and CAT 5 incidents during high-priority threat investigations.
  • Author mitigation reports for leadership, detailing technical measures taken to address DTOs and validating the closure of security gaps.
  • Oversee enterprise-wide vulnerability management structure; strategically design scan policies, credentials, audit files, and repositories to build comprehensive discovery, vulnerability, and STIG SCAP scans.
  • Highlight gaps in security posture within the enterprise and SOC tools.
  • Establish continuous training and mentorship initiatives for junior analysts, developing standard tabletop exercises and tracking team performance metrics to advance incident readiness.
  • Manage the design, distribution, and enforcement of operational schedules and workflows, maximizing core hour coverage ,and eliminating operational gaps across enterprise security components.

All Source Intelligence Analyst

Airforce
Langley-Eustis AFB
09.2023 - Current
  • Direct the fusion of multi-source intelligence (SIGINT, GEOINT, HUMINT, OSINT, ELINT) to identify, track, and assess global adversary military capabilities, disposition of forces, and geopolitical threats.
  • Deliver strategic intelligence briefs (CUB, CIB, IPB) to senior military leadership, driving operational decision-making, assessments, and theater-level threat awareness.
  • Oversee and manage the application of structured analytic techniques of the cell to validate intelligence findings, challenge assumptions, and accurately forecast adversary intent and capabilities.

Cyber Incident Responder

ASRC Federal
Quantico, VA
10.2022 - 11.2023
  • Monitor network and system activity to detect, investigate, and respond to cybersecurity incidents using tools such as Tanium, McAfee ePO, Menlo, and Forescout.
  • Conduct dynamic and static malware analysis using REMNux in sandbox environment to identify and mitigate threats quickly and effectively.
  • Analyze signature-based alerts within Trellix to identify adversary patterns and TTPs, correlating malicious indicators with known threat actor profiles to enhance defensive posture.
  • Neutralize threats identified in Cyber Task Orders (CTOs) by deploying custom YARA rules via Tanium Threat Response, initiating On-Demand Scans (ODS) across local drives to identify and collect malicious artifacts for forensic analysis.
  • Utilize Menlo and Trellix to audit user activities, perform session reconstruction, and enforce device-compliance policies during internal security investigations.

Information Technology Specialist (25B)

National Guard
Fredericksburg, VA
04.2018 - 04.2023
  • Led the team for installation, configuration, and structural maintenance of secure enterprise networks, VOIP systems, and encrypted NIPR/SIPR communications across high-security tactical environments. Briefed all updates and progress to leadership.
  • Managed Identity and Access Management (IAM) lifecycle operations, administering Active Directory and governing access controls for highly classified and unclassified infrastructure.
  • Authored foundational SOPs and technical documentation, standardizing enterprise IT operations and security baselines across the unit.

Queue Manager

TEKsystems
Quantico, VA
06.2021 - 10.2022
  • Orchestrated the triage, management, and escalation of ServiceNow ticket queues, directing cross-functional coordination between network administrators, SOC teams, and Tier II technicians for rapid incident resolution.
  • Enforced strict SLA compliance by executing quality assurance reviews on complex incident tickets and optimizing escalation pathways.
  • Collaborated as a strategic partner with enterprise teams to support large-scale agency migrations, critical software deployments, and infrastructure modifications.

Desktop Adminstrator

TEKsystems
Quantico, VA
10.2019 - 07.2021
  • Chaired comprehensive desktop support operations for classified and unclassified environments, mitigating downtime by resolving complex VPN, software, and hardware failures.
  • Administered enterprise user accounts, permissions, and security parameters using Active Directory, Microsoft Management Console, Remedy, and PowerShell.
  • Monitored endpoint security telemetry, rapidly identifying, isolating, and escalating firewall blocks and host-based security flags via McAfee HIPS.
  • Directed and managed an organization-wide OS upgrade initiative impacting over 2,000 users, executing the rollout ahead of schedule with zero data loss or operational downtime.

Education

Bachelor of Science - Cybersecurity And Information Assurance

Western Governors University
Salt Lake City, UT
06-2026

High School Diploma -

Gar-Field High School
Woodbridge, VA

Skills

  • Cyber Security & SOC Operations
  • Vulnerability Management & Compliance
  • Multi-Source Intelligence Fusion
  • IT Infrastructure & Systems Administration
  • Comptia Security
  • CEH
  • Splunk Cyber Defense Analyst
  • ACAS 101, 201
  • TS/SCI CI Poly

Certification

Security +, CEH, ACAS 101, ACAS 201, Splunk Search Expert Trained- FastLane, Splunk Cyber Defense Analyst Cert (pending), Tanium TANE essentials certified, HBSS certified

Languages

Hindi
Native or Bilingual
Urdu
Native or Bilingual

Timeline

Cyber Defense Analyst Lead

Maximus
12.2023 - Current

All Source Intelligence Analyst

Airforce
09.2023 - Current

Cyber Incident Responder

ASRC Federal
10.2022 - 11.2023

Queue Manager

TEKsystems
06.2021 - 10.2022

Desktop Adminstrator

TEKsystems
10.2019 - 07.2021

Information Technology Specialist (25B)

National Guard
04.2018 - 04.2023

Bachelor of Science - Cybersecurity And Information Assurance

Western Governors University

High School Diploma -

Gar-Field High School

Military Experience

Military School

  • U.S. Army Cyber Center of Excellence Fort Gordon, GA (2018)
  • U.S. Airforce All Source Intelligence Analyst Goodfellow AFB, TX (2025)

Similar Profiles

CREATE PROFILE
Manal Malik