CV

DAVID H

Cybersecurity and Business Continuity Professional

Profile

GRADUATE OF THE SANS INSTITUTE GOVERNMENT FUNDED UPSKILL IN CYBERSECURITY PROGRAMME 2022, CURRENTLY EXPLORING OPPORTUNITIES WITHIN THE CYBER SECTOR WITH AN AMBITION TO PROGRESS INTO IR.

Experienced SOC/NOC Analyst with a passion for cybersecurity and an emphasis on threat detection. Experianced in triage of events and investigations into alerts utilising MS Sentinel/MDE and SPLUNK. Selected from 2000 candidates for the prestigious SANS Upskill in Cyber Programme, funded by the UK Government to bridge the sector skills gap. Completed intensive training in SOC skills, Network Threat Hunting, Purple Team Tactics, and Cloud Attacks with John Strand’s BHIS Antisyphon Training.

Holding GIAC SEC275 (GFACT) and SEC401 (GSEC) certifications, showcasing a strong cybersecurity foundation. Invited to the SANS advisory board based on exceptional performance in the GSEC exam.

Skilled in Business Continuity (BC) and Disaster Recovery (DR) with a focus on hardware and Bare Metal OS deployments for infrastructure recovery. Proficient in incident response, vulnerability management, security monitoring, and threat hunting.

Seeking a challenging role within Cyber Seecurity to apply my expertise in incident detection and response, log analysis, network monitoring, and security tool utilization. Committed to ongoing professional development and staying current with emerging cybersecurity trends.

Education & professional development

GIAC GSEC SEC401 Security Essentials for Network, Endpoint, and Cloud
Security skills and techniques required to protect and secure critical information and technology assets on premise and cloud, and how to directly apply the learned concepts into a defensive strategy. Includes 18 hands-on Labs.

GIAC GFACT SEC275 Foundations for Computers, Technology, and Security
Covered core knowledge and developed practical skills in computers, technology, and security foundations.

CompTIA Linux+
Covered Linux system architecture, networking, security, troubleshooting, and package management

ITIL V3 Foundation
Introduction into the end-to-end creation, delivery and continual improvement of IT products and service delivery.

HND in Electronics and Communications Engineering (Merit)
Studied analogue/digital electrical electronic theory, design and application. Specialised in Mobile communications.

Currently studying
Microsoft SC-200, Spluck Certified Defender, ISC² CISSP, BTL1

Skills

10 years’ technical and monitoring experience in Data Centre environments (NOC) and more recently SOC.
8 years’ BC and DR planning, managing hardware invocations for multiple clients.
Experiance with triaging events in Splunk and use of SPL query Language
Solid experiance with Forcepoint products for Data Loss Prevention and Protection.
Knowledge of Triaging events in Azure Defender / Sentinel and the use of KQL query language.
Good knowledge of End-point triage encompassing both Linux and Windows systems.
Solid skills in Linux/Windows Desktop and Server from extensive home lab experience.
Basic Python, PowerShell knowledge with some BASH and PowerShell scripting knowledge.
Good knowledge of PCAP analysis looking for C2 and Data exfil.
Some AD / GPO knowledge from recently studying Red Team attacks on User/SPN’s for Privleage escalation and laterial movement gaining TGT, Tokens, Silver/Golden Tickets.
Well-versed in many engineering disciplines including IT, networking, electronic, electrical, and mechanical engineering, providing a broad range of engineering knowledge and diagnostic expertise.
Extensive experience in client liaison, handling live DR invocations, and effectively communicating with clients ranging from micro entities to large multi-nationals.
Soft skills include Report Writing, Presentastion of Weekly stats, communication with varying levels of business including c-suite
Good training skills, developed through previous roles as a NOC shift leader and Lead Repair Supervisor Technician.

Work Experience

NCC Group - Remote

Security Analyst R1 (DLP) | 2023 - Present

Supported the company’s

Key Achievements: Recovery Specialist

Successfully

Sungard AS - Woking, Coventry, Leicester, National

Business Continuity Specialist | 2014 - Present

A reactive role ensuring clients were able to continue with business as usual following a major incident, this included cyber threats, though to building and technology incidents.

Supported the company’s business continuity (BC) and disaster recovery (DR) services, focusing on network, SAN storage, and server hardware recovery.
Deployed and configured MS Windows, Linux, and VMware operating systems for servers and desktops.
Sound understanding of Cisco IOS Switch, Router and Firewall configuration
Collaborated with clients to develop and document DR plans, test procedures, and special instructions.
Ensured compliance with data protection and security standards.
Site Manager of a DR facility, including a front and back Office, Computer Equipment Room (CER) and Work Area resources. This encompassed building security management to ISO-27001 and PCI/DSS compliance.

Key Achievements: Recovery Specialist

Successfully delivered and supported some major disaster events for clients to ensure their business impact was minimised and stakeholder losses were kept to a minimum.
Assisted in identifying keys areas of improvement within security and documentation processes to assist the company in gaining PCI-DSS and ISO 27001 certification for the workplace facilities and its infrastructure.
Solely manged the national Quick-Ship hardware service, which included network technologies, SAN storage, Intel server hardware, and a fleet of articulated mobile datacentres (DC’s). Ensured the mobile DCs were maintained, licenced and safe for public use, and ready for invocation 24/7.

Data Centre Operation Analyst | 2012 - 2014

Provided network operations support within a highly secure data center environment.
Installed, tested, and troubleshot connectivity for servers, routers, and switches.
Responded to client issues promptly and effectively, adhering to company guidelines and SLAs.

2004 – 2011, Foreshore Ltd, St. Helier, Jersey

Senior Data Centre Technician (Shift Leader) | 2004 to 2011

L1/L2 support within a NOC environment of a small sized business ISP.
Duties include the troubleshooting and resolving of internet, DNS, IP, mail and web service issues via telephone, email and ticket system ensuring ISO / iTil guidelines were maintained from initial response to final resolution.
Monitoring of network connectivity, power, and environmental infrastructure.
Hardware/software instillation and troubleshooting on business servers operating Linux and Windows platforms.
Maintain the security of the data centre to ISO27001/PCI-DSS standards.
Tape rotation and online backup maintenance.
Supervising a shift of three DC operators.

Key Achievements: Data centres

Sole author of numerous procedures allowing new services to seamlessly integrate into the company’s service portfolio for installation, delivery, and 1^st line support by NOC technicians.
Assisted in identifying keys areas of improvement within security and documentation processes to assist the company in gaining PCI-DSS and ISO 27001 certification for the data centre and its infrastructure.
The continued excellence in support for all aspects of the NOC environment was rewarded by achieving Jersey Medium Business of the Year in 2008.

1999 – 2004, Marconi Product Support, Coventry

Test and Repair Engineer (Work Cell Leader)

Repair of Marconi SDH Optical TX/RX, Router and Switch cards for production and customer units to a component level maintaining ISO telecommunications regulations. Supervision of three repair operatives.

Key Achievements:

Appointed the responsibility to oversee and deliver an urgent upgrade project for a major telecoms provider whose boards were failing in field, after optimising the re-work and workflow, training 2 repair technicians we were able to support and deliver the clients technology back to a functional state.
Selected to work in Belgium to assist in the deployment of new support services for Compaq laptops.

Other Experience

Assistant Mechanic (College Placement)

British National Super Bikes (Privateer).

A completely voluntary part of the course in motorcycle engineering.
British Superbike Team in maintaining, servicing and the complete engine rebuilding of a Ducati 998 Corsa race motorcycle.
Ensuring the motorcycle was ready to race even after crashes and engine failures.

Key Achievements:

Selected as one of only two assistants from over eighty students to work on this project.
The nature of the work and the Pit-Lane/Race environment meant that a high attention to detail was essential along with developing the ability to work under pressure.

Additional Information

Have an Azure lab environment with an AD populated by Badblood for Vulnerability analysis.
Home IDS based on Zeek using Rita.
Member of OWASP
Voulnteer for BSides (most recent leeds 2023, Assistant on Track 3)
Previously SC NPPV and Met. Police Cleared (Expired)

Hobbies:

Cooking and Chocolate making (Trained Patisserie Chef now retired)
Wood working, Windsurfing, Photography.
3D printing and anything in the maker space including mechanical / electronic projects.
Recently started to discover SDR and built a basic system with a HackRF