Security Analyst II Shift Lead @ Building and maturing capabilities in a SOC Served as key member of the CSIRT team Developed use cases for monitoring abnormal traffic utilizing SIEM Configuring/tuning IDS/IPS, FW's, proxies, AV, SIEM products Continuously building efficiency around processes and procedures Collaborated to develop an enterprise wide IR process Mentoring Junior level Analysts From November 2012 to Present (3 years) Security Analyst @ Responsible for monitoring and validating attacks against BCBS network using a variety of security monitoring tools like SIEM, IDS/IPS system, Endpoint Protection systems Performing packet level analysis Built scripts to automate tasks From November 2011 to November 2012 (1 year 1 month) Infrastructure Analyst @ Implemented SecureFTP solution across enterprise Tested websites in development to verify if they are meeting security standards Improved compliance of systems to make sure they were meeting proper security guidelines Patch management of servers using WSUS Upgrade SEP on 200+ servers From June 2011 to September 2011 (4 months) Network/Systems Administrator @ Implemented a help desk ticketing solution that allowed faster and more efficient handling of IT issues reported by end users Managed group policy in Active Directory for domain users. Adding, removing or updating user account information, resetting passwords Implemented a captive portal solution for Park District patrons who were using Park District’s Wi-Fi hotspot service Resolved Help Desk issues for 100+ full time users From June 2010 to June 2011 (1 year 1 month)

Bachelor, Science Information Assurance and Security Engineering @ DePaul University From 2009 to 2011 Faraz Ahmad is skilled in: Security, Network Security, Information Security..., Vulnerability Assessment, Information Security..., Penetration Testing, Security Audits, CCNA, Vulnerability Management, Security Awareness, Vulnerability Scanning, Security Assessments, Ethical Hacking, Information Assurance, IDS, Nessus, Computer Security, Cyber Security, Computer Forensics, Intrusion Detection, IPS, IT Audit, Encryption, Active Directory, Firewalls, Risk Assessment, TCP/IP, HIPAA, Cryptography, Bluecoat, Antivirus, Security Policy, Security Operations, Physical Security, VPN, Access Control, Malware Analysis, ArcSight, SIEM, Sourcefire, Nmap, Checkpoint, EnCase, Wireshark, PCI DSS, Information Security, Security Architecture..., CISSP, Application Security, ISO 27001