Profiles search
Levi Davis
Information Security Engineer at Cardinal Health
Columbus, OH, United States
Details
Education:
Bachelor's degree
Computer and Information Systems Security/Information Assurance
SANS Technology Institute
2022 : 2023
Pre-Business
University of Cincinnati-Raymond Walters College
2010 : 2012
Computer and Information Systems Security/Information Assurance
SANS Technology Institute
2022 : 2023
Pre-Business
University of Cincinnati-Raymond Walters College
2010 : 2012
Experience:
2023 : Present
Cardinal Health
Information Security Engineer
•Emulated adversary tactics, techniques, and procedures against Cardinal Health security controls to identify security gaps, validate control efficacy, and test incident response playbooks.
•Engineered detections to expand on and enhance our security posture based on security gaps identified in red/purple team engagements and adversary emulations.
•Installed, setup, and configured our adversary emulation platform allowing Cardinal Health to regularly test controls against known threat actor techniques.
•Authored the process that outlines collaboration and communication requirements for adversary emulations. This process allows internal teams to request adversary emulation services.
•Participated in a risk management workshop held by the Information Security organization. This workshop's goal was to identify where we can improve in our qualitative and quantitative approach to risk. I provided the unique insight of security risks from an attacker's point of view.
2021 : 2023
Cardinal Health
Senior Information Security Analyst
•Identified, investigated, and triaged security incidents for a global managed security service provider
utilizing several different tools including SIEMs, IDS, IPS, and EDR solutions.
•Performed dedicated threat hunts through various client networks including traditional on-premesis,
cloud, and hybrid utilizing the Mitre ATT&CK framework.
•Researched security vulnerabilities and exploits across multiple OSINT sources in order to prioritize
remediation plans based on business impact. The exploits researched are then turned into new alert
logic to identify future exploit attempts within our customer networks.
2020 : 2021
ManTech
Cyber Security Analyst
• Responsible for 6 System Administrators in a 24x7 Network Operations Center that monitors and ensures the constant availability of over 200 virtual machines across 6 network enclaves.
• Allowed 3,000 users to have continued network access during a 2019 network upgrade. Proposed and engineered a network design that was approved by the installation team and the ship, avoiding what would have been a 30-day network outage.
• Planned and supervised a PC refresh of 1,500 computers across 15 departments, an evolution took only two weeks after originally being scheduled for six weeks.
• 1 of 12 designated fleet representatives out of a pool of 11,358 sailors chosen to build and develop a Consolidated Afloat Network and Enterprise Services (CANES) training pipeline for Information Systems Technicians across the fleet.
2017 : 2020
US Navy
Network Operations Center Team Lead
• Linux System Administrator for a system that incorporates aviation, surface & subsurface maintenance, supply, inventory, finance, and administration. Strong uptimes and reliability resulted in receiving a 98% during a 2017 supply and maintenance inspection.
• Lead Microsoft Exchange Administrator. Responsible for 12 on-prem 2016 Microsoft Exchange servers for over 5500 users and supporting over 750,000 email transactions monthly.
• Principal Active Directory administrator. Responsible for managing the schema of over 5500 users and 1500 computers across 7 domains.
• Collaborated planned outages and maintenance between the network operations center lead and the helpdesk supervisor to appropriately communicate impacts expected to end users.
2017 : 2018
US Navy
System Administrator
Cardinal Health
Information Security Engineer
•Emulated adversary tactics, techniques, and procedures against Cardinal Health security controls to identify security gaps, validate control efficacy, and test incident response playbooks.
•Engineered detections to expand on and enhance our security posture based on security gaps identified in red/purple team engagements and adversary emulations.
•Installed, setup, and configured our adversary emulation platform allowing Cardinal Health to regularly test controls against known threat actor techniques.
•Authored the process that outlines collaboration and communication requirements for adversary emulations. This process allows internal teams to request adversary emulation services.
•Participated in a risk management workshop held by the Information Security organization. This workshop's goal was to identify where we can improve in our qualitative and quantitative approach to risk. I provided the unique insight of security risks from an attacker's point of view.
2021 : 2023
Cardinal Health
Senior Information Security Analyst
•Identified, investigated, and triaged security incidents for a global managed security service provider
utilizing several different tools including SIEMs, IDS, IPS, and EDR solutions.
•Performed dedicated threat hunts through various client networks including traditional on-premesis,
cloud, and hybrid utilizing the Mitre ATT&CK framework.
•Researched security vulnerabilities and exploits across multiple OSINT sources in order to prioritize
remediation plans based on business impact. The exploits researched are then turned into new alert
logic to identify future exploit attempts within our customer networks.
2020 : 2021
ManTech
Cyber Security Analyst
• Responsible for 6 System Administrators in a 24x7 Network Operations Center that monitors and ensures the constant availability of over 200 virtual machines across 6 network enclaves.
• Allowed 3,000 users to have continued network access during a 2019 network upgrade. Proposed and engineered a network design that was approved by the installation team and the ship, avoiding what would have been a 30-day network outage.
• Planned and supervised a PC refresh of 1,500 computers across 15 departments, an evolution took only two weeks after originally being scheduled for six weeks.
• 1 of 12 designated fleet representatives out of a pool of 11,358 sailors chosen to build and develop a Consolidated Afloat Network and Enterprise Services (CANES) training pipeline for Information Systems Technicians across the fleet.
2017 : 2020
US Navy
Network Operations Center Team Lead
• Linux System Administrator for a system that incorporates aviation, surface & subsurface maintenance, supply, inventory, finance, and administration. Strong uptimes and reliability resulted in receiving a 98% during a 2017 supply and maintenance inspection.
• Lead Microsoft Exchange Administrator. Responsible for 12 on-prem 2016 Microsoft Exchange servers for over 5500 users and supporting over 750,000 email transactions monthly.
• Principal Active Directory administrator. Responsible for managing the schema of over 5500 users and 1500 computers across 7 domains.
• Collaborated planned outages and maintenance between the network operations center lead and the helpdesk supervisor to appropriately communicate impacts expected to end users.
2017 : 2018
US Navy
System Administrator
Company:
Cardinal Health
Years of Experience:
10
Skills
Active Directory, Active TS/SCI Clearance, Amazon Web Services (AWS), Cisco IOS, Cisco Networking, Customer Interaction, Customer Service, Cybersecurity, Cyber Threat Hunting (CTH), Detection Engineering, Hosted Microsoft Exchange, Information Security, Leadership, Linux, Linux System Administration, Management, Microsoft Excel, Microsoft Exchange, Microsoft Servers, Microsoft Word, Music Industry, Network Administration, Powershell, Project Management, Red Hat Linux, Red Teaming, Risk Management, Sales, Security Information and Event Management (SIEM), Social Networking, System Administration, Threat Modeling, Time Management, Ubuntu, VMware, VMware vSphere, Windows Server
About
Cybersecurity analyst with a strong background in system administration and NOC operations. A Cybersecurity analyst that also understand the need for operational continuity. Let's build something.
Profile Photo
