Emanuel Rios

Experience

• 

  Corporación Font S.A.

  Jan 2012 - Jun 2013

  Technical Support Analyst

  Maintenance, installation, and demonstration to external clients with Polycom equipment. Helpdesk for internal users, I received training with brands such as Microsoft and Polycom

• 

  Banco Davivienda

  Jun 2013 - Jan 2017

  Senior Technical Support Analyst

  Helpdesk for Banco Davivienda employees, for both Internal and External programs, such as Office. In my last months in the company, I worked as technical support onsite and at fairs where the bank participated

• 

  Micro Focus (formerly HP / Hewlett Packard Enterprise)

  Jan 2017 - Feb 2019

  ArcSight Technical Support

  Working as engineer in Enterprise Security Products like Arcsight SIEM. delivering support for end users and working directly with the Arcsight Software and Sources Softwares. Gaining experience with Arcsight modules ESM, Logger, EB, ArcMC(Arcsight Management Center), SmartConnector. Handling multiple testing network tools (eg: TCPDump, Wireshark, Syslog Senders, UDP/TCP Protocols, Firewall services, etc), configuring and installing Arcsight software and multiple Sources software’s (eg: MSSQL, AWS, Palo Alto Devices, Linux/Windows, etc), building stage environments for testing and troubleshooting purposes. Responsible to analyze, investigate and solve network and configuration issues with SIEM. Weniger anzeigen

• 

  DXC Technology

  Jan 2019 - now

  Analyze and perform risk assessments on the potential impact to the business of security events/incidents. Coordinating the response to security incidents by the technical groups within thebusiness, including communication with subject matter experts and between business units, directing technical resources, follow-up on tasks assigned by management to business units, and working with technical resources to complete actions if required. Initial monitoring and analysis of the output from security devices such as IPS, malware alerts, firewall logs, proxy logs, system logs, and so on. Collect and analyze data on emerging cyber threats and vulnerabilities from various sources, including threat intelligence platforms. Involved in vulnerability assessments and penetration testing to identify and address security weaknesses in the organization's infrastructure.Contributing to existing process and procedure documentation, and assist in creating new process and procedure documentation in response to dynamically changing threats, information security landscapes, and business requirementsDocument and report on security incidents, vulnerabilities, and mitigation efforts to keep stakeholders informed and ensure compliance with regulatory requirements.. Ongoing mentoring of level 1 and level 2SIRCC staff. Weniger anzeigen Receive input from various event sources, investigate it for unusual and potentially malicious behaviour that may indicate security incidents. Analyse and perform risk assessments on the potential impact to the business threat and vulnerability information in the public domain, also document the risk assessmen. For low priority incidents (e.g. unsolicited bulk e-mail notifications, one-off or small numbers of known malware infections), coordinate the incident response by the various individuals and other stakeholders within the business. Receive escalations from various security SOC teams within the business, and investigate, follow-up on, using an established process, acquire malware samples for analysis. Take ownership of documenting incidents, as part of the team contribution to the compilation of incident reports for final peer and management review, prior to release to the business.Contributing to existing process and procedure documentation, and assist in creating new process and procedure documentation in response to dynamically changing threats, information security landscapes, and business requirements. Weniger anzeigen

  • Cyber Security Incident Coordinator

    Jan 2023 - now

  • Cyber Security Analyst

    Jan 2019 - Jan 2023