Jacob Bond
Education:
M. S. Information Security Engineering
SANS Technology Institute
2023 : 2026
Bachelor of Science - BS
Computer and Information Systems Technologies/Information Assurance
Southern Illinois University, Carbondale
2015 : 2018
Certified Cisco Associate
Information Technology
College of Lake County
2014 : 2017
Experience:
• Lead and take part in escalated global Security Event Investigations and Incident Response in both Cloud and On-Premises environments involving thorough lessons-learned reports with security oversight of preventative measures as a follow-up to upper management.
• Lead various Security Automation Efforts affecting both Cloud and On-Prem environments to align threat management goals with NIST maturity model and ensure internal relationships are more easily managed and leveraged to meet organizational security objectives and SLAs.
• Lead various aspects of Detection Engineering derived from adversarial research, risk analysis approach of CTI sources, and coupled with purple teaming all while managing various vendor/internal partnerships to bring long term sustainability and value of alerting and response.
• Present on Threat Briefings with succinct, actionable objectives from both OSINT and CTI reported threats, risks, and vulnerabilities (including zero days) to hypothesize and plan new detection efforts for our tools.
• Perform Threat Hunting duties derived from CTI sources, internal research, and Red Team reports to identify active threats, gaps/risks and build new (or tune current) monitoring capabilities.
• Take Lead on Solution Assessments & General Maturity Enhancement Projects using standardized risk management and business strategy as guidelines for developing definitive KPI's and target matrices in an overall effort to enhance identification and response capabilities.
• Lead SOC documentation and project management efforts to ensure operational efficiency and IR effectiveness standards are met against NIST Cybersecurity Framework and ISO 27001 and aligned with department strategy.
2022 : Present
CyberArk
Cybersecurity Analyst
• Lead and instruct Ethical Hacking course equipped with live lectures, labs, and assignments equipped to train students in industry standard skills for advanced roles in cybersecurity and obtain an accredited degree.
• Co-develop physical and virtual lab environments with team derived from CTI and field research to understand modern adversarial techniques (MITRE) to equip students with a strong grasp of defensive controls and procedures.
• Hold 1-on-1’s with students for mentoring, gathering, and providing feedback to meet goals of empower student skillsets and passions bridging personal goals with industry standards.
• Utilize Canvas to create class support documentation under the guidelines of management to enhance classroom experience for students in a high availability fashion.
-------------------------------------------------------------------------------------------------------------------
Current Courses :
• Ethical Hacking (EC-Council's CEH)
2023 :
McHenry County College
Network Security Adjunct Faculty
• Teach courses for industry recognized CyberSec certifications fit with practical analysis, group discussions, and critical thinking methodologies.
• Teach and explain security concepts and frameworks in a understandable and digestible manner to individuals unfamiliar to information security (and sometimes IT).
• Conduct program consulting and development to establish a regionally and nationally recognized CyberSec introductory and upskill programs utilizing essential Project Management skills.
• Attend Tech and Security Summits to present on Cyber Security topics and Higher Education efforts on formalized panels.
• Design feedback surveys to feed into improvement initiatives for rest of department and courses.
• Hold 1 on 1's with students after hours to mentor through specific material and by helping them design and plan career paths by assessing personal desires, industry needs, and qualifications of various roles in the industry.
-------------------------------------------------------------------------------------------------------------------
Current Courses :
• CompTIA Sec+
• CompTIA A+
• CompTIA IT Fundamentals
• CompTIA Cybersecurity Analyst+
• Introduction to Information Security
• Introduction to Python Programming
• Intermediate Python Programming
• Public Speaking for a Career in Technology
2021 :
Harper College
Cybersecurity Instructor/Program Consultant
• Handle Incident Response investigations that stem from collaborative Threat Hunting and utilization of enterprise-grade security solutions.
• Build and implement basic EDR detections or collaborate with Engineers for advanced detections to increase monitoring capabilities in weak areas or to completely mitigate a specific attack vector in response to a risk assessment.
• Oversee all Incident Response documentation creation aligned with NIST and MITRE ATT&CK framework and baseline needs of organization to sustain remediation efforts.
• Assisting with building out Threat Intelligence Program by standardizing the Threat Briefing process to contribute to a full circle process of the Threat Intelligence Life Cycle.
• Initiated, then managed and built out Intern Program to define base level career-requirements and pathing of the Dpt. and both train and hire interns to fill entry-level needs/roles with heavy project management utilization.
• Take lead on building out maturity models and initiative documentation to represent Defense in Depth Strategy, Operations, and Tactics in an effort to assess capability, needs, and requirements of responding to Cyber Threats facing the business.
2021 : 2022
Paylocity
Cyber Threat Analyst
• Performed basic SOC triage and investigation duties that aligned with NIST IR framework and supported Mid-Level and Senior Level Analysts/Engineers
• Leveraged and built PowerShell batch scripts to help automate response to security events and reduce time to resolution.
• Built IR playbooks that aligned with NIST Framework to respond to specific detections created by Senior Analysts and Engineers in a collaborative, proactive effort to mitigate risk.
• Handled day-to-day client incident cases regarding financial fraud and unauthorized entry with follow-up that involved tailored lessons-learned reports and metricized security awareness training to improve remediation efficiency.
•Gave semi-weekly Threat Briefing presentations and exercised approaching macro-level security problems and apply them to micro-level needs of our specific company/industry.
•Define and illustrate security processes and triage paths for the department and external collaborative efforts that require influential standardization across organization to meet remediation needs and improve time to resolution and service level agreements.
2019 : 2021
Paylocity
Associate Cyber Threat Analyst
Company: CyberArk
Years of Experience: 10
Please contact me for a resume containing a list of more detailed tasks and responsibilities.