Olivia Aladag
Cyber Security Professional
Toronto,ON
Summary
Results-driven Certified Cyber Security Analyst with 5+ professional experience in the IT field. Currently working on performing incident handling, end-point security, phishing analysis and threat hunting. Experience on security risk identification and mitigation and security infrastructure. I'm currently in progress to obtain GCIH certification and Microsoft Azure Fundamentals Certification (AZ-900).
Overview
6
6
years of professional experience
6
6
years of post-secondary education
7
7
Certifications
2
2
Languages
Work History
Security Analyst II
Cyderes
Toronto
11.2021 - Current
- Conducting real-time analysis using SIEM, and other security analytics tools with focus on identifying security events and false positives
- Analyzing potential security incidents and escalate appropriately for further triage or analysis
- Experience with utilizing security tools such as Splunk, VMware, Carbon Black, Crowd Strike, Jira, Siemplify, Avanan, Google Chronicle, Zscaler, Azure Active Directory, ServiceNow, and Microsoft Defender 365
- Investigate and address phishing incidents, taking decisive actions for network security and analyze and respond to EDR SIEM alerts, ensuring swift threat mitigation
- Perform root cause analysis on logs, traffic flows and phishing activities to identify malicious actors
- Exposure to EDR Security, Phishing, Malware, Network Traffic, MITRE ATT&CK framework and other Cybersecurity principles
- Gathering email, DNS, EDR, firewall, anti-virus, IPS, proxy logs to identify and prevent potential attacks on network
- Collaborate with Cybersecurity and Incident Response team to provide targeted threat hunting reports for ongoing engagements based on work performed on client enterprise
- Managing Email security solutions (Defender 365 and Avanan) and maintain email rules and filtering
- Familiar with incident response processes and procedures; actively participating in tabletop exercises and developing proficiency with NIST framework
Cyber Security Analyst II
Solvent CyberSecurity
05.2020 - 11.2021
- Examine and review escalated cases with Service Now ticketing system until closure
- This includes investigating and recommending appropriate corrective actions for cyber security incidents
- Liaise with Company's SOC to respond to emerging incidents in timely manner; triage details and provide support to both SOC and Business Managers
- Perform analysis of log files of Firewall, IPS, IDS, Server, and Proxy via Splunk SIEM solution
- Conduct analysis to determine legitimacy of files, domains and emails using OSINT such as VirusTotal, AnyRun, and Cisco Umbrella Investigate
- Analyze PCAP files, narrow down anomaly traffic with Wireshark, examine details of infected hosts and write IOC on executive summary reports
- Analyze CTI findings (Fraudulent domains, Phishing sites, Fraudulent Mobile Apps etc.)
- Perform post-mortem analysis on logs, traffic flows, and phishing activities to identify malicious actors
- Monitor and analyze Security Information and Event Management (SIEM) alerts through Splunk and identify security incidents for remediation and investigation
- Train and assist junior-level analysts for intelligence report writing and using closed/open-source tools to monitor, analyze cyber threats and provide recommended actions.
IT Support Assistant
Brandattack INC
01.2018 - 05.2020
- Conducted research on new technologies, tools, and techniques to improve IT operations, and determining their relevance and utility for business
- Resolved technical issues with customer service representatives, technical staff, and management
- Leveraged different software tools such as Hubstaff, Asana, Trello and Zendesk to enhance team collaboration and improve work efficiency
- Evaluated customer needs, provided service options to meet their requirement, and ensured their order satisfaction
- Trained, managed and collaborated remotely with virtual assistants on new systems and processes
- Effectively collaborated employees and upper management to ensure comprehensive customer care.
Education
M.D. -
University of Kocaeli
Kocaeli, Turkey 09.2009 - 01.2016
Skills
MITRE ATT&CK Framework, NIST, Cyber Kill Chain Framework, OWASP 10
Splunk, CrowdStrike, Cisco AMP4EP EDR, Carbon Black, Microsoft 365 Defender, DELL SecureWorks XDR
ServiceNow, Jira, Siemplify, Zscaler, Google Chronicle, Avanan, Microsoft Exchange E-Mail Security
McAffee AMP, DELL SecureWorks, Qualys Vulnerability Scanning
Powershell, Azure Active Directory
DNS, Wireshark/TCP packet analysis, TCP/IP OSI Layer
VirusTotal, Whois, AbuseIP, Hybrid Analysis, Anyrun, IBM Xforce
Kali Linux, VirtualBox, Windows
Certification
CompTIA CySA+
Timeline
Security Analyst II
Cyderes
11.2021 - Current
Cyber Security Analyst II
Solvent CyberSecurity
05.2020 - 11.2021
IT Support Assistant
Brandattack INC
01.2018 - 05.2020
M.D. -
University of Kocaeli
09.2009 - 01.2016