Cyber security

As part of the Santander Global Incident Management team, my responsibility involved managing and coordinating between different teams in order to effectively respond to major cyber incidents across our Global entities and ensuring that senior management had an accurate understanding of the situation. Incidents were taken through the incident life-cycle with a focus on identifying and mitigating the threat and working to minimize future risks of re-occurrence. I also took charge of numerous cyber initiatives to help further build the banks cyber resilience and readiness to face further threats.

The global nature of KPMG and the opportunity to work in their newly developed GSOC allowed me an exciting opportunity to work in a developing security environment. This along with my responsibilities as a senior analyst, allowed the opportunity to test new tools being rolled out, provide valuable input into the development of key policies and procedures, participate in key negotiations and vendor discussions, assist in the rule tuning and roll out of the SIEM solution and more. My primary responsibilities in the GSOC as a senior analyst included: 

    • Managing a team of analysts and acting as point of escalation for them when they discovered an event that could be an incident.
    • Carrying out extensive incident triaging and response.
    • Regularly reviewed threat intel feeds and extracted IOCs in order to help facilitate threat hunting.
    • Working very closely with the local support teams in order to help manage an incident from detection to resolution.
    • Provided regular briefings to senior management on the current security posture and status of any ongoing major incidents.

The course focused on teaching students all the fundamental and key networking technologies and concepts including trouble shooting. It had a strong focus on programming as well with courses in Java,  C++ and Assembly language