Summary
Overview
Work History
Education
Skills
Websites
Certification
Awards
Timeline
Generic

Collins Ondiek

Cybersecurity Analyst
Nairobi

Summary

Cybersecurity professional with hands-on experience as a Cybersecurity Analyst at HFGroup and Serianu, specializing in threat detection, incident response, and vulnerability management. Certified in CCNA and Cisco CyberOps, CCNP Skilled in SIEM, IDS/IPS, EDR, NAC, DLP, and firewall management, using tools like FortiSIEM, Security Onion, Wazuh, Darktrace

Overview

4
4
years of professional experience
15
15
years of post-secondary education
12
12
Certifications

Work History

CyberSecurity Analyst

Housing Finance Group Bank
12.2024 - Current
  • Fine-tuned and customized IDS/IPS rules on FortiSIEM and Security Onion hence reducing false positives and enhanced threat identification
  • Monitored network security using SIEM tools, including FortiSIEM, Security Onion, Darktrace, and Wazuh
  • Generated incident reports and escalated significant incidents to upper-tier SOC teams for further investigation
  • Provided support for Network Access Control (NAC) ensuring compliance using Portnox.
  • Conducted database security monitoring/Bank Transactions and analyzed logs from Guardium for potential security threats.
  • Conducted threat simulations and penetration testing using Nessus to evaluate system vulnerabilities.
  • Managed incident tickets and performed transaction monitoring across all channels, including card transactions and mobile/internet banking.
  • Managed the McAfee ePolicy Orchestrator (ePO) server, enforcing centralized security policies across endpoints, overseeing threat detection, automated patch management, compliance reporting, and endpoint protection.
  • Managed CyberArk Privileged Access Management (PAM) and ensured SIEM and File Integrity Monitoring (FIM) audit requirements are met.

Security Operations Center Analyst (SOC Analyst)

Serianu Limited
03.2023 - 12.2024
  • Performed SIEM Monitoring & Log Analysis: Monitored and analyzed security events using SIEM platforms (FortiSIEM, Wazuh, Security Onion), investigating real-time alerts from log management systems (Elasticsearch, Kibana). Tuned detection rules in IDS/IPS tools (Suricata, Snort) to improve threat detection accuracy.
  • Investigated Threat Intelligence & Forensics: Analyzed attack patterns from Cyber Threat Intelligence Platforms and created detection dashboards in visualization tools (Kibana).
  • Conducted forensic investigations using packet analysis tools (Wireshark, CapMe) and profiled network assets with reconnaissance tools (PRADS). Ingested and indexed logs into Elasticsearch, applying index patterns for structured data retrieval.
  • Executed Incident Response & Compliance Audits: Conducted monthly and quarterly vulnerability assessments (Tenable Nessus) and offline network configuration audits to identify security gaps.
  • Developed Security Automation & Scripting: Created Python scripts for log parsing, regex-based threat hunting, and automated threat intelligence ingestion.
  • Managed security tools(Elasticsearch database) in containerized environments (Docker, Conda) to ensure efficient deployment and scalability.
  • Enhanced Network Security & Hardening: Strengthened security postures by finetuning intrusion detection signatures in Suricata and Snort, reducing false positives and noise.
  • Conducted Red Team & Adversary Simulation: Assisted in penetration testing and red team exercises to assess network resilience. Used offensive security tools (Metasploit, Cobalt Strike, Empire) to simulate real-world attacks and enhance defensive security measures.
  • Conducted Security Awareness & Training for employees, educating them on phishing threats, password hygiene, and social engineering tactics.
  • Conducted threat hunting and incident response using Endpoint Detection and Response (Trellix (McAfee) EDR), analyzed endpoint behavior, and mitigated security incidents.

CyberSecurity and Forensics/Intern

Global Forensics Services Limited
06.2021 - 12.2021
  • Conducted digital forensics and incident response on various platforms, including Windows, Linux, and macOS systems
  • Utilized tools like FTK Imager, Kape, and Autopsy for data acquisition, imaging, and analysis of digital artifacts to identify security incidents
  • Developed custom analytics for Splunk and other SIEM systems, based on CTI and other threat intelligence sources, to improve detection and response capabilities
  • Leveraged analysis tools such as Registry Viewer, RegRipper, and Volatility to collect and analyze evidence, identify patterns and anomalies, and draw conclusions based on findings
  • Collected and preserved evidence from computer systems in accordance with legal standards
  • Wrote reports of security incidents and communicated with key stakeholders about IT security threats
  • Performed formal security audits and risk assessments with a view to minimize exposure on client/customer interface.

Education

Cybersecurity Analyst -

CyberShujaa Training Program
01.2022 - 12.2022

Bachelor of Science - Computer Security and Forensics

Jaramogi Oginga Odinga University of Science and Technology
01.2018 - 12.2022

Kenya Certificate of Secondary Education - undefined

Moi Forces Academy
01.2014 - 12.2017

Kenya Certificate of Primary Education - undefined

Agoro Sare Primary School
01.2009 - 12.2013

Skills

Familiarity with CTI tools and frameworks

Network Monitoring

Monitoring tools

Traffic Analysis

Threat Modelling

Cyber Security related Standards

undefined

Certification

CCNP

Awards

Earned a SCHOLARSHIP and Graduated from CyberSHUJAA Training program

Timeline

CyberSecurity Analyst

Housing Finance Group Bank
12.2024 - Current

Security Operations Center Analyst (SOC Analyst)

Serianu Limited
03.2023 - 12.2024

Cybersecurity Analyst -

CyberShujaa Training Program
01.2022 - 12.2022

CyberSecurity and Forensics/Intern

Global Forensics Services Limited
06.2021 - 12.2021

Bachelor of Science - Computer Security and Forensics

Jaramogi Oginga Odinga University of Science and Technology
01.2018 - 12.2022

Kenya Certificate of Secondary Education - undefined

Moi Forces Academy
01.2014 - 12.2017

Kenya Certificate of Primary Education - undefined

Agoro Sare Primary School
01.2009 - 12.2013
Collins OndiekCybersecurity Analyst