Jacob S.
Details
Information Systems
Indiana Institute of Technology
Eli Lilly and Company
Information Security Incident Response
▪ Led cybersecurity incident response investigations including technical analysis, resource coordination,
documenting findings, communicating status updates, and creating incident summary reports.
▪ Analyzed vulnerabilities and threats to determine their risk to operations, guiding mitigation and remediation.
▪ Partnered with strategic clients to perform regular security reviews and guide security program maturity.
▪ Served as key contributor for new managed EDR service including testing event integrations, creating process
and workflow documentation, and providing operational sign-off for implementation.
▪ Created and updated rules for detecting new indicators of compromise across multiple SIEM platforms.
▪ Developed and documented processes for critical security operations functions, such as investigating and
responding to security incidents, creating and tuning alerts, and creating and delivering vulnerability reports.
▪ Created reports, dashboards, and metrics for SOC operations.
▪ Served as an escalation point for the SOC and mentored junior staff.
2020 : 2022
Nuspire
Senior Security Engineer
▪ Conducted detailed investigations of potential security incidents, policy and standards violations, and compromises across more than 50 hospitals and 100,000 endpoints.
▪ Assisted in scripting threat intelligence vetting process and automated response procedures.
▪ Integrated customized threat feeds with security tools improving detection and response to threat events.
▪ Developed and refined SIEM use cases to reduce false positives and improve overall threat alerting.
▪ Led removable media security policy and procedure creation and implementation.
▪ Ensured system configurations were consistent with industry regulations and standards (e.g., HIPAA, PCI DSS).
▪ Collaborated with various teams to identify and reduce risks, implement controls, and improve overall security.
▪ Created, updated, and maintained incident response process, procedure, and work instruction documentation.
2019 : 2020
Bon Secours Mercy Health
Cyber Security Engineer II
▪ Redesigned network across 10 sites, adding performance, scalability, and high availability for infrastructure.
▪ Strengthened account security with single sign-on for applications and multi-factor authentication for all staff.
▪ Collaborated with software development teams to deploy and secure cloud application infrastructure.
▪ Enhanced email security with advanced threat protection, document and link scanning, and encryption.
▪ Implemented disk encryption and automatic rotation of local credentials across servers and workstations.
▪ Introduced security awareness training program for all staff.
▪ Collaborated with SOC to improve actionable alerting and reporting from SIEM.
▪ Revamped backup and recovery strategy for infrastructure, user mailboxes, and SharePoint sites.
▪ Developed scripts to automate routine processes and provide detailed reporting.
▪ Assisted in creation of company infrastructure and security policies.
▪ Provided maintenance and support for all firewalls, network storage, servers, switches, routers, and wireless.
2017 : 2019
Health Carousel
System & Network Security Engineer
▪ Administered support for employee on-boarding growth of over 200% in a year.
▪ Organized email and personal file migration for multiple business divisions to Microsoft 365.
▪ Streamlined computer and user account creation and termination process.
▪ Improved confidentiality, integrity, and availability for enterprise file servers.
▪ Standardized system hardware and software configurations across the environment.
▪ Created and maintained inventory of all equipment, software and software licenses
▪ Resolved issues related to software, hardware, phones, and printers.
2016 : 2017
Health Carousel
IT Administrator
Skills
Active Directory, Asset Security, Communication and Network Security, Cybersecurity Incident Management, Cybersecurity Incident Response, Disaster Recovery, Domain Name System (DNS), Enterprise Network Security, Group Policy, Identity & Access Management (IAM), Information Security, Information Technology Infrastructure, Infrastructure, Infrastructure Projects, Internet Information Services (IIS), Internet Protocol Suite (TCP/IP), inventory management, IT Security Operations, LDAP, Log Analysis, Log Interpretation, Log Management, Microsoft Azure, network administration, Networking, Network Operations, Network Security, Network Security Implementation, Network Troubleshooting & Tools, Secure Network Architecture, Security and Risk Management, Security Architecture and Engineering, Security Assertion Markup Language (SAML), Security Assessment and Testing, Security Information and Event Management (SIEM), Security Operations, Server Architecture, Software Development Security, Strategic Planning, Transmission Control Protocol (TCP), troubleshooting, Virtual Private Network (VPN), VMware, Windows 10, windows server, Windows Server 2012, WSUS, wireless networking, sales, windows 7, customer service, computer hardware, software installation, html, cisco technologies
About
I am an experienced cybersecurity professional that is passionate about protecting sensitive information and mitigating cyberattacks. I currently work in security operations at a leading pharmaceuticals company, detecting and responding to security incidents and reducing organizational risk.
In my previous roles I have been responsible for a variety of tasks, such as incident response, secure network and system design, security policy creation, and improving overall organization security.
I obtained a Bachelor’s Degree in Information Systems from Indiana Institute of Technology and hold several industry certifications including CISSP, CCSP, and Security+.
Profile Photo
