NAOMI KOSGEI
+254727405202
Summary
A skilled cyber security professional with direct hands-on working experience and active collaboration specialized in performing in-depth investigations, responding to security incidents in real-time and providing clear actionable recommendations to address security gaps.
Enthusiastic fast learner who adapts to new technology easily and keeps current with industry certifications and emerging security products.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Cyber Security SOC Analyst
Safaricom PLC
Nairobi, Kenya
08.2022 - Current
- Monitoring systems for potential threats and vulnerabilities to enhance network security using SIEM tools, familiarity with MITRE ATT&CK framework and Cyber Kill Chain.
- Performing in-depth analysis and investigations of security incidents through detailed raw log event analysis and documenting findings.
- Providing technical support during high-priority incidents, ensuring timely resolution with minimal impact on business operations.
- Setting up SOAR system, deployment, administration and integration with the SIEM to implement automation of the SOC process through playbooks.
- Performing periodic and on-demand audits of systems on the SIEM to ensure quality assurance of the SOC process.
- Reducing false positives by fine-tuning intrusion detection system configurations based on analysis of incidents hence mitigating alert fatigue.
- Providing expert guidance on cybersecurity trends, emerging threats and recommendations to managed security customers.
Cyber Security Operations Intern
Safaricom PLC
01.2022 - 08.2022
- Enhanced network security by implementing advanced threat detection and mitigation strategies to improve organization's security posture..
- Interacted extensively with network, database, and cloud security tools including Cisco ISE (Identity Services Engine), Cisco SMA (Security Management Appliance), and various Intrusion Prevention Systems (IPS).
- Successfully onboarded multiple sites to comprehensive security monitoring systems such as WAF (Web Application Firewall), and Tripwire, ensuring organization's security posture and compliance.
- Engaged in continuous patching of Windows and Linux devices, identifying potential weaknesses, and implementing recommended security measures to maintain a robust security posture.
- Collaborated with cross-functional teams like GRC to perform audits to ensure security measures aligned with industry standards and regulatory requirements.
- Assisted with issuance of certificates to sites and supporting when needed.
- Investigated and troubleshooted with external users/vendors with issues relating to MFA, VPN access.
Software Delivery Graduate Trainee
Huawei Technologies
07.2021 - 01.2022
- Performed comprehensive product testing and delivery of the software services including maintenance and support, addressing and resolving issues to maintain operational efficiency.
- Conducted API testing using Postman to verify functionality, reliability, and performance of APIs.
- Monitored system alarms utilizing tools such as Grafana, Kibana, and Prometheus, promptly addressing any alerts to ensure system stability and performance.
- Set up mobile systems in servers (ATAE), configuring environments for optimal operation.
- Configured blade servers and managed IP settings, ensuring proper network integration and performance.
Student Intern
Jamii Telecommunications Limited (JTL)
05.2019 - 08.2019
- Monitored network operations and handled problem and event ticketing at the NOC support center, ensuring rapid response and resolution of issues.
- Installed and configured Optical Network Units (ONUs) for the Gigabit Passive Optical Network (GPON), contributing to the expansion and reliability of high-speed internet services.
- Addressed and resolved technical issues on-site, including testing signal strength using Optical Time Domain Reflectometer (OTDR) equipment to ensure optimal network performance.
- Conducted quality control checks for network optical fiber implementation, ensuring adherence to industry standards and project specifications.
Education
Certificate in Data Science -
Moringa School
03.2021
Bachelor of Science - Computer Science
University of Eldoret
03.2021
Skills
- Security Operations(SIEM and SOAR systems management)
- Security Incident Handling and Response
- Threat and Log Analysis
- Network and Endpoint Security
- TCP/IP Networking
- Linux and Windows Operating Systems
- Excellent communication skills
- Analytical and problem solving mindset
- Team collaboration
Certification
- Fortinet Certified Professional (FCP) in Network Security, 03/2024
- CompTIA Security+ Certification, 02/2023
- Fortinet Network Security Associate- NSE 1 to 3, 05/2023
- Amazon Web Services Cloud Practitioner- AWS, 05/2022
Trainings
- Palo Alto - Cortex XSOAR Engineer and Administrator
- Fortinet - NSE 4 FortiGate and NSE 6 FortiSIEM
- Cisco - Implementing and Operating Cisco Security Core Technologies(SCOR) 1.0
- Cisco - Developing Applications and Automating Workflows Using Cisco Core Platforms (DEVASC) 1.0
- AWS : Security Best Practices (Technical)
References
- Patricia Rotich, SOC and IR Manager - Safaricom PLC, +254720561646
- Timothy Musingo, Senior Engineer Cyber Security - Safaricom PLC, +254722451533
- Alex Michugu, Lead Cyber Security - Prudential PLC, +254723157980
- Hillary Kirui, Software Delivery Engineer - Huawei Technologies, +254714202968
Timeline
Cyber Security SOC Analyst
Safaricom PLC
08.2022 - Current
Cyber Security Operations Intern
Safaricom PLC
01.2022 - 08.2022
Software Delivery Graduate Trainee
Huawei Technologies
07.2021 - 01.2022
Student Intern
Jamii Telecommunications Limited (JTL)
05.2019 - 08.2019
Certificate in Data Science -
Moringa School
Bachelor of Science - Computer Science
University of Eldoret