Ivan Izebhokhae
Edmonton
Summary
Goal-oriented IT security professional with over 5 years of experience designing and implementing security solutions across various platforms. Skilled in Incident Response, Threat Intelligence and Hunting, Patch & Vulnerability Management, Cyber Risk Management, Third Party Risk Management, Cybersecurity Training & Awareness, Cloud Security Administration, Identity and Access Management, Data Governance Risk & Compliance.
Overview
6
6
years of professional experience
1
1
Certification
Work History
Cybersecurity Specialist
TransAlta Corporation
06.2022 - Current
- Conducted security awareness training for more than 2000 employees using the knowbe4 platform and design monthly cybersecurity newsletter is line with company cybersecurity awareness program
- Reviewed and analyzed logs from web application infrastructure, web servers, proxy servers, IDS, IPS, WAF to spot malicious activity and get a better understanding of IOC or IOAs such as brute force, CSRF, web application, SQL Injection and XSS Attacks
- Developed over 20 security plans which included policies and procedures to meet government regulation and industry best practices
- Assessed gaps in security using Nessus & Tenable.io solutions to mitigate risk including business processes, technical controls, and policy improvement
- Performed Third Party Risk management on more than 3000 vendors using the Auditboard TPRM solution by generating cybersecurity assessment questionnaire to assess their cybersecurity practices and posture
- Worked with the asset management team to perform software security assessment during the new software intake process and life cycle management
- Searched, monitored, and analyzed firewalls, email servers, DNS servers and logs to identify and mitigate intrusion attempts
- Developed, maintained, and implemented best practice configurations for Palo Alto, Microsoft Endpoint Detection & Response solutions
- Implemented LAN, WAN security measures, DKIM, DMARC & SFP for emails, deployed security and antivirus patches and configuration to 3000+ devices and servers
- Facilitated ISO audits on identity and access management, reviewed security and control standards, exception requests, provided recommendation for data loss prevention
- Created and automated prevention workflows or cronjobs using PowerShell and python scripts.
Information Security Analyst
ERPteam CONSULTING Inc.
- 05.2022
- Collaborated with other security teams to ensure system aligns with overall security program
- Assessed potential risks and vulnerabilities to develop baselines while assisting with deviations from the norm
- Managed, configured, and analyzed security information using SIEM tools, and services to identify and respond to events, alerts
- Development of use cases using Splunk apps for customer satisfaction
- Designed and developed interactive Splunk dashboards for the extraction of information and visualization of meaning data
- Implemented, executed standard procedures for the administration, content management, change management, version/patch management and lifecycle management of the SIEM/log management platforms
- Used data from Splunk logs to optimize DLP tools, VPN, proxy servers, Web application firewalls implementing security defense in depth for customers
- Responsible for triaging alerts, reports of incidents, analysis of real time traffic and associated artifacts; malicious, normal, and false positives in the security operations center
- Performed threat hunting in SOC, performing root cause analysis, debugging, postmortem analysis for security incident and service interruptions.
Cloud Security Analyst
Memorial University of Newfoundland
08.2020
- Managed security-related operational metrics through automation increasing security visibility across departments; measuring the coverage and effectiveness of security tools
- Conducted threat hunting within the cloud environment (M365, Azure), while performing vulnerability scanning for network devices, applications, and databases to identify vulnerabilities
- Developed and maintained standard practices and procedures for appropriate response to unified threats, whilst monitoring activities/events to detect, classify, and act on anomalous behavior in a timely manner
- Managed, configured, and analyzed security information using SIEM tools, and services to identify and respond to events, alerts
- Assessed potential risks and vulnerabilities to develop baselines while assisting with deviations from the norm
- Evaluated and conducted risk assessments for 90+ systems, servers, applications, databases and supporting network technologies against regulatory compliance with HIPAA, PCI
- Collaborated with IT teams to execute and implement Cloud App security, Intune, defender for identity and endpoint
- Assessed and researched emerging technologies against current security architecture to determine where they fill gaps, overlap with existing solutions, or extend capabilities.
Network Technician
Impact Safety Solutions Ltd.
08.2018 - 10.2019
- Worked with a team of technicians to maintain, troubleshoot, repair, and administer local area networks (LANs), wide area networks (WANs), mainframe networks, computer workstations, connections to the Internet and peripheral equipment
- Installed remote cameras and communication devices for remote confined space monitoring (RCSM) and resolved issues on LAN/WAN, VoIP telephone, biometric, and AV system connections
- Participated in the evaluation and installation of computer hardware, networking software, operating system software and software applications
- Evaluated network performance, find ways of improvement, and did regular data backups to protect the organization’s information.
Education
Graduate Certificate in Cybersecurity/Penetration Testing -
Retrain Canada
MSc. Engineering -
Memorial University of Newfoundland
B.Engr. (Hons.) Petroleum Engineering -
University of Benin
Skills
- Microsoft 365 Defender XDR
- Microsoft 365 Suite
- Microsoft Azure
- Azure Sentinel
- SentinelOne
- SCCM
- Intune
- AWS
- Splunk SIEM & SOAR
- Nessus
- Tenable
- Qualys
- Knowbe4
- Auditboard TPRM
- BeyondTrust
- Python
- PowerShell
- Security frameworks (NIST CSF, ISO 27001, HIPAA, PCI DSS)
- DLP
- EPP/EDR/MDM/MAM
- Lockheed Martin Cyber kill Chain
- MITRE ATTACK Framework
Certification
- CompTIA Network+
- CompTIA Security+
- CompTIA Cloud+
- Microsoft Azure Security Technologies (AZ-500)
- AWS Certified Cloud Practitioner
- AWS Certified Security- Specialty
- Fortinet Network Security Associate NSE2
- Fortinet Network Security Associate NSE3
- Splunk Enterprise Security Certified Admin (SPLK-3001)
- PEGNL EIT
- CISSP(Ongoing)
Hobbies and Interests
- Travelling
- Local Volunteering
- Reading
- Soccer
Languages
English
Full Professional
Timeline
Cybersecurity Specialist
TransAlta Corporation
06.2022 - Current
Cloud Security Analyst
Memorial University of Newfoundland
08.2020
Network Technician
Impact Safety Solutions Ltd.
08.2018 - 10.2019
Information Security Analyst
ERPteam CONSULTING Inc.
- 05.2022
Graduate Certificate in Cybersecurity/Penetration Testing -
Retrain Canada
MSc. Engineering -
Memorial University of Newfoundland
B.Engr. (Hons.) Petroleum Engineering -
University of Benin
Similar Profiles
![Khawaja [Adnan] Mahmood](/assets/prs/blog/icons/people-cards.svg "Khawaja [Adnan] Mahmood")
Khawaja [Adnan] MahmoodKhawaja [Adnan] Mahmood
Lead SAP EAM Functional Consultant at TransAltaLead SAP EAM Functional Consultant at TransAlta
Carson BerryCarson Berry
Senior Technical Leader/Backsift Supervisor at TransAlta/HeartlandSenior Technical Leader/Backsift Supervisor at TransAlta/Heartland
Paul A. ZapfPaul A. Zapf
Shift Supervisor at TransAltaShift Supervisor at TransAlta
Karwan PalaniKarwan Palani
Assistant Meat Department Manager at Overwaitea Food GroupAssistant Meat Department Manager at Overwaitea Food Group
Kirsten PittsKirsten Pitts
Grounds Maintainer at Royal Mayfair Golf ClubGrounds Maintainer at Royal Mayfair Golf Club