KEVIN OSADIAYE

• Triaging and analysis of security alerts and incidents emanating from security tools such as EDR, IDS/IPS, Firewall and SIEMs.
• Performing root cause analysis for various security incidents by analyzing logs, network traffic, SIEM logs, IDS/IPS, and open-source intelligence tools to determine network threats.
• Investigating and responding to malware-related incidents and performing remediation actions to eliminate potential threats within the network.
• Fine-tuning of alerts on EDR to reduce false positive alerts by allow-listing and block-listing of IOCs and IOAs.
• Collaborating with wider IT team and business teams on security projects, compliance, incident response, and ensuring security integration across the organization.
• Analyzing emails emanating from phishing campaigns against the company.
• Monitoring and investigating identity access and management cases and ensuring they are not violated within the organisation.
• Troubleshooting Web pages upon deployment and configuration of Web gateway (Netskope).
• Developing high-level security monthly reports for the business.
• Developing and updating standard of procedures (SOP)/playbooks for incident response in line with ISO 27001, NIST, PCI-DSS and GDPR framework.
• Collaborating with the red team (Penetration Tester) to improve the security posture of the network.
• Liaise with internal stakeholders about cyber security issues and provide recommendations to improve the security posture of the environment.

• Responsible for monitoring security investigations, logging of incident on ServiceNow and updating on security responses to business stakeholders.
• Investigated phishing and social engineering campaigns and performed complete remediation as per the threat.
• Investigated malware events triggered from EDR and performed remediation by removing malicious files from network device.
• Managed security alert queue for assigned businesses, identifying opportunities to tune/allowlist to ensure high-fidelity of alerts for use cases.
• Responded to DDOS alerts within Cloudflare, determine if impactful and performed remediation actions where needed.
• Developed Use Cases to improve threat detection capabilities within the SOC and actively involved in multiple SOC Projects.
• Managing escalations for DLP alerts

.Responsible for handling and tracking service requests and issues received via phone, email, and the customer self-help site.

· Tagging of devices within the network · Ensured that requests and incidents are promptly logged in a ticketing system.

· Worked with other teams to conduct research, troubleshoot, and analyze issues that were reported.

·Ensured that users' laptops and workstations are virus-free and functional.

· Ensured hardware/software inventory is accurate and up to date.

· Implement operating system software upgrades on systems.