Nicholas Anderson
Details
Information Technology
University of Houston
2012 : 2016
shiftkey
Senior Cybersecurity Engineer
- Reported directly to the CISO. Member of the Information Security and Compliance team to ensure the hybrid Infrastructure satisfied security and compliance requirements and were configured to prevent cybersecurity threats by following best practices from the Zero Trust, NIST and CIS Frameworks.
- Served as the Subject Matter Expert for the following systems and applications : Next-Gen Antivirus (NGAV), Endpoint Detection Response (EDR), Privileged Access Management (PAM), Endpoint Privileged Management (EPM), Secure Email Gateway, Identity and Access Management, Active Directory, Unified Endpoint Management, Security Information Event Management, Cloud Security, SaaS Security, Secure Web Gateway, Endpoint Configuration and Hardening, Vulnerability Management, Single Sign On and Multi-Factor Authentication.
- Established and led the vulnerability and patch management process to ensure critical vulnerabilities found on 2500+ endpoints and 200+ Servers were remediated based on recommendations from vendors' advisories.
- Incident response, triaged, responded, and corrected cybersecurity incidents and violations, and implemented technical controls to prevent future occurrences.
- Worked closely with the Infrastructure team to provide tier 3 support and hardening of our hybrid infrastructure.
- Continually improved employee security awareness with the use of security awareness training, newsletters, InfoSec announcements, and technical controls such as USB blocking, web and content, URL and DNS filtering.
- Performed technical and compliance audits of the systems and processes, and reported findings to C-level Management and external auditors.
- Measured the effectiveness of the Cybersecurity program by reporting on KPIs and metrics.
- Participated in vendor risk management by reviewing service providers' SOC2 reports.
- Trained junior level Engineers to assist in expanding their knowledge and skillset.
2021 : 2022
CSAT Solutions LP
Senior Information Security Engineer
- Reported directly to the CTO and Director of Information Security. Systems and Security Engineer whose main responsibilities were to provide advanced troubleshooting, engineering, administration, documentation, and security hardening of our multi-cloud and SaaS environments.
- Served as the Subject Matter Expert for the following systems and applications : Cloud and SaaS Security, Secure Email Gateway, Unified Endpoint Management, Endpoint Security and Hardening, Vulnerability Management, Identity and Access Management, Cloud File Storage, Endpoint Backup Solution, Endpoint Management, Mobile Device Management (MDM), Exchange Backup Solution, Unified Communication, VoIP, Endpoint Threat Protection, Endpoint Detection Response (EDR), IP Video Surveillance and Access Control System (ACS).
- Ensured our deployments in Cloud and SaaS services followed Benchmark guidelines and best practices.
- Performed Vulnerability assessments and remediation on endpoint devices following vendors' advisories.
- Administered MDM solutions to deploy policies, profiles, applications, security & configuration settings and updates to endpoint devices such as, portables, workstations, and BYOD devices.
- Administered IaaS compute, storage, backups & restores, networking, firewalls, network security groups (NSGs), access control lists (ACLs), block and file-based storage and IP addresses.
- Improved inefficient IT workflows with the use of scripting, automation and documentation.
- Administered and monitored the backup of corporate data in the Cloud, SaaS apps, Servers, and endpoint devices.
- Measured the effectiveness of the overall IT and cybersecurity program by monitoring and reporting on KPIs and metrics.
2019 : 2021
Blue Spruce Capital Corporation
IT Security and Systems Engineer
- Member of the IT Infrastructure team that engineered, administered, and supported the critical IT infrastructure and related services on-prem and in the Cloud.
- Engineered and administered on-prem services, SaaS services, virtualization and Cloud infrastructure, including but not limited to : Exchange administration, identity and access management, access control, conditional access policy management, multi-factor authentication, virtual Server administration, mobile device management (MDM) policies, deployed enterprise applications, administered group policy objects (GPOs), maintained enterprise storage and the datacenter infrastructure, cloud migrations via Azure Migrate, etc.
- Resolved escalated incidents and requests from the Tier 1 and Tier 2 teams.
- Monitored and documented the health and configuration of the infrastructure's critical systems and services.
- Administration of the File and Print Servers and ensured the Servers are backed up and employees are granted access to the data they need and activities monitored using Varonis.
2017 : 2019
C&J Energy Services
IT Systems Engineer
- Served as the primary point of contact for IT support for the southern U.S. region and assisted with other remote locations across the U.S.
-Administered multiple MDMs for endpoint configuration and hardening for workstations, portable devices, and BYOD devices.
- Administered, troubleshot, and monitored VPN and MFA usage for a secure browsing experience and identity and access management.
- Administration of on-prem services and SaaS applications for identity and access management and collaboration in a hybrid environment.
- Configured and supported corporate IP phones and the Telephony system.
- Created and maintained standard operating procedures and documentation for other IT staff and end users.
- Asset & Inventory Management (Negotiating with Vendors, Purchasing and Procurement) and collaborated with vendors to resolve escalated incidents.
2015 : 2017
Starr Companies
Systems Administrator
Skills
Active Directory, Amazon Web Services (AWS), Automation, Cloud Access Security Broker (CASB), Cloud Computing, Cloud Security, Computer Hardware, Customer Service, Cybersecurity, Cybersecurity Incident Response, Cyber Threat Intelligence (CTI), Data Center, Digital Risk Protection, EDR, Email Security, Identity and Access Management (IAM), Information Security, Information Technology, Internet Protocol Suite (TCP/IP), Leadership, MacOS, Microsoft 365, Microsoft Azure, Microsoft Exchange, Microsoft Office, Mobile Device Management, Networking, Office 365, Office 365 Administration, Orchestration, Powershell, Risk Management, Secure Web Gateway (SWG), Security Information and Event Management (SIEM), Server Administration, Single Sign-On (SSO), SOAR, Storage Area Network (SAN), System Administration, System Center Configuration Manager (SCCM), Technical Support, Threat Modeling, Troubleshooting, Unified Endpoint Management, Virtualization, VMware, VMware vSphere, Windows, Windows Server, XDR, Computer Software, Basic Networking, Computer Diagnostics, IT, Windows 7, Windows XP, Windows Vista, Operating Systems, Public Speaking
About
Cybersecurity Engineer and aspiring leader, with a Bachelors degree in Computer Information Systems, with experience driving Cybersecurity initiatives, and establishing and improving Cybersecurity defenses and processes at multiple companies. I have more than a decade of combined experience in Cybersecurity and IT Engineering, along with securing Cloud, SaaS and on-prem environments while following best practices from Cybersecurity Frameworks (Zero Trust, NIST, CIS, SOC, MITRE ATT&CK).
Experience with:
- Zero Trust, MITRE ATT&CK, NIST, CIS, SOC CSFs
- Azure and AWS Cloud Security, Cloud Security Posture Management (CSPM)
- Identity and Access Management (IAM), Privileged Access Management (PAM), User and Entity Behavioral Analytics (UEBA)
- Security Information and Event Management (SIEM), Security Orchestration Automation and Response (SOAR)
- Endpoint Management, Mobile Device Management (MDM, MAM), Endpoint Security and Hardening, Endpoint Privilege Management (EPM), Asset Management
- Endpoint Detection Response, Next-Generation Antivirus (EDR, NGAV), Extended Detection and Response (XDR)
- Multi-Factor Authentication (MFA), Single Sign On (SSO)
- Email Security, Secure Email Gateway
- Incident Response, Backup and Disaster Recovery
- Tabletop Exercises, Teaming with Red Teams and Penetration Testers
- Vulnerability and Patch Management
- Employee Security and Awareness Training
- Web Filtering, URL and Content Filtering, Firewall, Next-Generation Firewall (NGFW), SWG
- Data Loss Prevention (DLP), Data Protection
- Risk Identification, Assessment and Management
- Measuring and Reporting KPIs and Metrics
Familiar with the following technologies and tools:
- Azure and AWS IaaS Security
- Microsoft 365, Azure, Okta, Google Workspace
- Crowdstrike, Cylance, Microsoft Defender, Netskope, Zscaler
- Nessus, Qualys, Crowdstrike Spotlight
- Rapid7 (Vulnerability Management, SIEM, SOAR, CSPM), Microsoft Sentinel
- Proofpoint, Mimecast, Exchange Online Protection
- Active Directory, Azure Active Directory, DNS, DHCP
- SCCM, MECM, Intune, Jamf, AirWatch, NinjaOne
- Thycotic, Delinea, BeyondTrust, LastPass
- Windows, macOS, iPadOS, iPhone, Android
- Azure MFA, Okta MFA, RSA SecurID, Yubikey
- SAML, OAuth, SCIM, OpenID Connect (OIDC)
- Windows, Exchange and Active Directory PowerShell
- Exchange, Teams, SharePoint, OneDrive, BOX
- VMware vCenter, Virtualization
- Genetec Security Center, Synergis, Omnicast
- ManageEngine AD Audit Plus
- Windows Server Update Services (WSUS)
- Bitlocker, FileVault, Encryption
- Apple Configurator, Apple Business Manager
Profile Photo
