Mohsin Khan
Fairfax Station
Summary
Results-driven IT professional with notable success in planning, analysis and implementation of security initiatives. Strengths in providing comprehensive network design and security frameworks.
Overview
16
16
years of professional experience
1
1
Certification
Work History
Cyber Security Analyst
Oracle Cerner
08.2022 - Current
- Log and Investigate tickets within ServiceNow/JIRA systems etc
- Running security scans and analyzing system triages to determine the malicious activity
- Support monitoring of all Information Assurance Devices (IADs) to identify and document all intrusions and attempted intrusions
- Report security incidents and/or network intrusions to Incident Handlers for dissemination to appropriate points of contacts
- In depth analysis of security incidents and requesting and approving containment of the workstations
- Leverage SIEM platform by creating and executing search queries, dashboards, and alerts to identify threats and assist in investigations
- Assist in producing status reports and briefs to senior leadership; provide analysis for correlated information sources
- Maintaining proficiency in the use and production of visualization charts, link analysis diagrams, and database queries
- Manage and implement all network security processes and maintain proper reports for same
- Identify existing information and production efforts on cyber threats, vulnerabilities, and consequences
- Deploy and configure Palo Alto Firewalls as per prescribed guidelines and blueprints
- Assist with the development of playbooks and processes for day-to-day SOC operations
- Ensure that all Systems within their area of responsibility are certified, accredited, and reaccredited.
Ebay Seller
Entrepreneur
01.2008 - Current
- Developed a reselling business on 3rd party platforms, eBay & Amazon
- Began at 13 years old honing business management, accounting, & sales skills working w/ various distributors and sellers across the country in diverse markets
- Maintained 100% positive feedback rating.
Cyber Security Analyst
BAE Systems
07.2022 - 11.2022
- Coordinate investigation and response efforts throughout the Incident Response lifecycle
- Correlate and analyze events and data to determine scope of Cyber Incidents
- Acquire and analyze endpoint and network artifacts, volatile memory, malicious files/binaries and scripts
- Recognize attacker tactics, techniques, and procedures as potential indicators of compromise (IOCs) that can be used to improve monitoring, analysis and Incident Response
- Develop, document, and maintain Incident Response process, procedures, workflows, and playbooks
- Tune and maintain security tools (EDR, IDS, SIEM, etc) to reduce false positives and improve SOC detection capabilities
- Document Investigation and Incident Response actions taken in Case Management Systems and prepare formal Incident Reports
- Create metrics and determine Key Performance Indicators to drive maturity of SOC operation
- Develop security content such as scripts, signatures, and alerts.
Cyber Security Analyst
MTX Group
01.2022 - 05.2022
- Use of SIEM technology tools to monitor security events
- Analyze and report cyber threats as well as assist in deterring, identifying, monitoring, investigating, and analyzing computer network intrusions
- Support monitoring of all Information Assurance Devices (IADs) to identify and document all intrusions and attempted intrusions
- Test systems for potential vulnerabilities
- Managed inbound and outbound calls, voice messages, and emails
- Manage and implement all network security processes and maintain proper reports for the same
- Responsible for Malware Analytics & Vulnerability Assessments by investigating events similar in complexity to Bash attempts and SQL injections
- Running security scans and analyzing system triages to determine the malicious activity
- Investigate all reported suspicious emails and determine whether the email is malicious, non-malicious or legitimate and reply to the user who reported the suspicious email with a message reporting the determination and any recommendations
- Engaged in cyber threat hunting activities
- Update SOPs and company's security policies as per the requirements of the business
- Provided on-call support to 24x7 security monitoring
- Perform a shift handoff at the end of every shift to provide situational awareness to the incoming shift.
Cyber Defense Incident Responder
Stealth Investigative Agency
02.2019 - 12.2021
- Investigate all security alerts received by making use of all tools and log files possible to determine if the alert is a false positive, a security event, an actual attack, and/or a security incident
- Escalate any security incident (the confidentiality, integrity, or availability of any information or information asset is negatively impacted) to Incident Response (IR)
- Process and complete tickets received from ServiceNow such as Non-Standard Software Require, Unblock Request, Lost and Stolen, etc
- Write and distribute reports, including but not limited to the Shift Report, the Daily Virus Report, the Daily Activities Report, Daily Shift Tracker, the Weekly Activities Report, the Blue Coat Report, Investigation Reports, etc
- Quarantine the machines with suspicious behavior and initiate triage
- Process and complete tickets received from ServiceNow such as Non-Standard Software Require, Unblock Request, Lost and Stolen, etc
- Assist coworkers where necessary, including but not limited to onboarding, training, investigations, reports, etc
- Escalate any security incident (the confidentiality, integrity, or availability of any information or information asset is negatively impacted) to Incident Response (IR)
- Daily monitoring of network flows and log analysis.
Mobile Application Owner
Entrepreneur
01.2018 - 01.2021
- Constructed a mobile application centered on being an organizational platform dedicated to facilitating live PickUp Basketball games (iPhone & Android)
- Led the project development, worked with UI/UX designers throughout the process
- Consistently worked on design iterations, feature implementation, and testing
- Met with different local universities & gyms to coordinate application integration into their facilities.
IT Support Specialist
Center for Pain & Rehabilitation
08.2015 - 06.2018
- Prepare laptops/desktops for users
- Process including installing appropriate image and software's, hard drive encryption, Windows updates, PC peripheral checks, data transfer, and set-up of the workstation
- Prepare images for various departments using Windows Deployment Services
- Duties to prepare image include, installing appropriate software's and updates, removing unwanted programs, uploading the image to server, and installing the image onto a PC/laptop for testing
- Use Dame Ware & RDP for remote connection to resolve user issues for installing/uninstalling software and provide updates due to admin rights
- Responsible for incident response work including analyzing events, identifying false positive vs
- Real threats, identifying host involvement, comparing scan results, analyzing logs, and prioritizing incident/events
- Helps to solve Tier II incidents and events
- Escalated support requests as well as end user support requests and resolves requests in a timely manner.
IT Help Desk Analyst
Advanced Marketing Firm
11.2016 - 03.2017
- Respond to incoming requests for information via mail, telephone inquiries, and assisting walk-ins
- Performs quality checks on all work to ensure accurate documentation and proper invoicing
- Ability to accurately and efficiently execute data entry, data retrieval, and all other tasks associated with release of information services and time reporting
- Work without supervision, organize workload and prioritize work tasks to meet production goals
- Assign, prioritize, suspend, escalate, and close tickets
- Reply to user's questions and create or log tickets for any new issues
- Escalated support requests as well as end user support requests and resolves requests in a timely manner.
Education
B.A. Management & Leadership -
University Of Mary Washington
Fredericksburg, VA05.2021
A.A. General Studies -
Northern Virginia Community College
Annandale, VA05.2018
Skills
- Security Operations Center
- Incident Response
- Endpoint Protection
- DDoS prevention
- Identity Management
- Procedure Documentation
- Erecting firewalls
- Risk Assessment
- Access Control
- SIEM management
- Threat Intelligence
- Security Policies
Certification
- Public Trust Security Clearance
- CompTIA Security +
- CompTIA CySA+
- CompTIA CASP+
- Data analysis w/Excel
- Contact Tracing Certification
- Language Fluency: English, Urdu, Punjabi, & Hindi
- NRFFoundation Certificate of Customer Service
- NRFFoundation Certificate of Professional Selling
- Future Business Leaders Certificate of Business
Languages
Urdu
Native or Bilingual
Punjabi
Native or Bilingual
Hindi
Native or Bilingual
English
Native or Bilingual
Timeline
Cyber Security Analyst
Oracle Cerner
08.2022 - Current
Cyber Security Analyst
BAE Systems
07.2022 - 11.2022
Cyber Security Analyst
MTX Group
01.2022 - 05.2022
Cyber Defense Incident Responder
Stealth Investigative Agency
02.2019 - 12.2021
Mobile Application Owner
Entrepreneur
01.2018 - 01.2021
IT Help Desk Analyst
Advanced Marketing Firm
11.2016 - 03.2017
IT Support Specialist
Center for Pain & Rehabilitation
08.2015 - 06.2018
Ebay Seller
Entrepreneur
01.2008 - Current
B.A. Management & Leadership -
University Of Mary Washington
A.A. General Studies -
Northern Virginia Community College
Similar Profiles
Sudhakara Shankara ShettaraSudhakara Shankara Shettara
Senior Scrum Master/Agile Coach/RTE (SAFe) at Cerner Corporation (Oracle-Cerner)Senior Scrum Master/Agile Coach/RTE (SAFe) at Cerner Corporation (Oracle-Cerner)
Vivek KulkarniVivek Kulkarni
Partnership Analyst I at Oracle Cerner(Previously known as Cerner Healthcare Solutions)Partnership Analyst I at Oracle Cerner(Previously known as Cerner Healthcare Solutions)
Praveen ThadigiriPraveen Thadigiri
Manager, Client Support – IRC Event & Incident Management at Oracle Cerner Healthcare India Pvt. Ltd.Manager, Client Support – IRC Event & Incident Management at Oracle Cerner Healthcare India Pvt. Ltd.