Information Security Analyst Resume examples & templates

Alexandra “Alex” Cooper

acooper@emailpro.net | (612) 555-8974 | Minneapolis, MN 55401
linkedin.com/in/alexcooper-security | github.com/alexcooper-sec

Recent cybersecurity graduate with CompTIA Security+ certification and hands-on experience through internships and practical projects. Skilled in vulnerability assessment, security monitoring, and incident response procedures. Strong analytical problem-solver who thrives in collaborative environments while maintaining meticulous attention to detail when handling sensitive information.

EXPERIENCE

Information Security Analyst – SecureNorth Technologies, Minneapolis, MN
January 2023 – Present

• Monitor SIEM alerts and perform initial triage on security events across network infrastructure, resolving or escalating approximately 47 incidents per week
• Conduct weekly vulnerability scans using Nessus and prepare summary reports identifying critical findings for IT teams
• Assist in maintaining security documentation and updating incident response playbooks based on lessons learned
• Participate in security awareness training sessions for non-technical staff, helping reduce phishing click rates by 18%

Cybersecurity Intern – Minnesota State University IT Department
May 2022 – December 2022

• Supported security operations by monitoring network traffic for suspicious activity using Snort IDS
• Helped implement multi-factor authentication for faculty and administrative staff accounts
• Created and kept up documentation for security controls implementation
• Performed security assessments of 3 departmental web applications using OWASP methodology

IT Help Desk Technician (Part-time) – Rivertech Solutions
September 2021 – May 2022

• Provided tier 1 technical support to clients while maintaining 93% satisfaction rating
• Performed basic system hardening tasks including removing unnecessary services and updating software
• Documented common security issues encountered during support calls to improve team knowledge base

EDUCATION

Bachelor of Science in Cybersecurity – Minnesota State University
Graduated: May 2022 | GPA: 3.7/4.0

• Relevant Coursework: Network Security, Security Risk Management, Digital Forensics, Cryptography
• Senior Project: Developed a honeypot system to analyze common attack vectors in cloud environments

CERTIFICATIONS

• CompTIA Security+ (June 2022)
• Certified Ethical Hacker (CEH) – in progress, expected completion August 2023

TECHNICAL SKILLS

• Security Tools: Wireshark, Nessus, Snort, Splunk, Metasploit
• Networking: TCP/IP, firewalls, VPNs, network protocols
• Operating Systems: Windows Server, Linux (Ubuntu, Kali)
• Programming/Scripting: Python, Bash, PowerShell
• Compliance Frameworks: Basic knowledge of NIST, ISO 27001, HIPAA

PROJECTS

• Home Lab Security Environment – Built a virtualized security testing lab with pfSense, Security Onion, and vulnerable VMs for practice and continuous learning
• CTF Competitions – Participated in 3 capture-the-flag events (2022-2023), ranking in top 35% in National Collegiate Cyber Defense Competition

Michael Jiang

Seattle, WA | (206) 555-8217 | m.jiang@emailprovider.com | linkedin.com/in/michaeljiang

Dedicated Information Security Analyst with 5+ years of experience protecting enterprise systems and data. I blend technical expertise with strong communication skills to translate complex security concepts for non-technical stakeholders. Track record of reducing security incidents by implementing robust security controls and protocols while maintaining operational efficiency.

PROFESSIONAL EXPERIENCE

Senior Information Security Analyst | Cascade Technologies | Seattle, WA | March 2021 – Present

• Lead vulnerability management program for 2,000+ endpoints, reducing critical vulnerabilities by 63% in first year
• Implemented SIEM solution that improved incident detection time from 6+ hours to under 30 minutes
• Conduct regular security assessments and penetration tests, identifying and remediating 17 critical vulnerabilities before exploitation
• Developed and delivered security awareness training for 500+ employees, reducing successful phishing attempts by 47%
• Collaborate with IT and development teams to implement security controls throughout software development lifecycle

Information Security Analyst | Emerald Financial Services | Portland, OR | June 2019 – February 2021

• Monitored security systems and investigated alerts to identify potential security incidents (avg. 75-100 alerts daily)
• Created detailed documentation of security processes and procedures, now used as training materials for new hires
• Participated in incident response for ransomware attack, helping restore operations within 48 hours with no data loss
• Assisted with SOC 2 Type II audit preparation, addressing 23 security control gaps before successful certification

IT Security Specialist | Northwest Healthcare Partners | Portland, OR | August 2018 – May 2019

• Managed user access reviews for clinical applications, ensuring HIPAA compliance across 12 facilities
• Implemented multi-factor authentication for 1,500+ users, eliminating credential-based breaches
• Performed weekly vulnerability scans and coordinated patching of critical systems

EDUCATION & CERTIFICATIONS

Bachelor of Science, Information Technology – Oregon State University, 2018

Certified Information Systems Security Professional (CISSP) – Obtained March 2022

Certified Ethical Hacker (CEH) – Obtained January 2020

CompTIA Security+ – Obtained September 2018

TECHNICAL SKILLS

• Security Information and Event Management (SIEM): Splunk, IBM QRadar
• Vulnerability Management: Tenable Nessus, Qualys
• Network Security: Palo Alto firewalls, Cisco ASA, VPNs
• Cloud Security: AWS security services, Azure Security Center
• Penetration Testing: Metasploit, Burp Suite, Kali Linux
• Endpoint Protection: CrowdStrike, Carbon Black, Microsoft Defender
• Security Frameworks: NIST CSF, ISO 27001, CIS Controls
• Programming/Scripting: Python, PowerShell, Bash
• Risk Assessment & Management

ADDITIONAL INFORMATION

Volunteer, Pacific Northwest CyberSecurity Conference – Technical Committee Member (2021-Present)
Developed open-source tool for automating phishing awareness campaign metrics (github.com/mjiang/phishmetrics)

Michael T. Reeves

Boston, MA 02108 • (617) 555-8214 • m.reeves@emailpro.net • linkedin.com/in/michaeltreeves

Information Security Analyst with 8+ years of experience strengthening security postures across financial services and healthcare sectors. Skilled in vulnerability management, security assessments, and incident response. Reduced security incidents by 37% at Meridian Financial through implementation of enhanced monitoring capabilities and employee security awareness training. CISSP and CISM certified with strong technical and communication abilities.

EXPERIENCE

Senior Information Security Analyst | Meridian Financial Group | Boston, MA | June 2019 – Present

• Lead security operations for a financial institution with $4.2B in assets, managing a team of 3 junior analysts
• Implemented SIEM solution that improved threat detection time from 6+ hours to under 45 minutes
• Conducted 15+ security assessments annually, identifying and remediating critical vulnerabilities
• Spearheaded security awareness program resulting in 94% reduction in successful phishing attempts
• Created and maintained security policies and procedures to ensure compliance with GLBA, PCI-DSS, and SOX
• Collaborated with dev teams to integrate security controls into CI/CD pipeline (cut post-deployment security fixes by 41%)

Information Security Analyst | Northeast Healthcare Systems | Worcester, MA | August 2016 – May 2019

• Managed vulnerability scanning program across 2,300+ endpoints, prioritizing remediation efforts
• Responded to and analyzed security incidents, including a ransomware attempt that was stopped before encryption
• Performed security reviews of third-party vendors and cloud service providers
• Led implementation of multi-factor authentication for 1,700+ clinical staff (completed 2 months ahead of schedule)
• Developed security metrics dashboard for executive reporting, improving visibility into security posture

Security Operations Specialist | TechDefend Solutions | Cambridge, MA | March 2015 – July 2016

• Monitored security alerts and events for 20+ client organizations in a SOC environment
• Investigated and triaged potential security incidents, escalating as appropriate
• Documented incident response procedures, reducing average response time by 22%
• Performed regular log reviews and created custom correlation rules to reduce false positives

EDUCATION & CERTIFICATIONS

Bachelor of Science, Computer Science | Boston University | Boston, MA | 2014

Certifications:

• Certified Information Systems Security Professional (CISSP) | 2018
• Certified Information Security Manager (CISM) | 2020
• Certified Ethical Hacker (CEH) | 2017
• GIAC Security Essentials (GSEC) | 2016

TECHNICAL SKILLS

• Security Tools: Splunk, QRadar, Nessus, Qualys, Wireshark, Metasploit, Burp Suite
• Operating Systems: Windows Server, Linux (RHEL, Ubuntu), macOS
• Networking: Firewalls, IDS/IPS, VPNs, TCP/IP, DNS
• Frameworks: NIST CSF, ISO 27001, MITRE ATT&CK
• Cloud Security: AWS, Azure (intermediate), security architecture
• Programming: Python, PowerShell, Bash scripting

PROJECTS & ACHIEVEMENTS

• Led red team exercises that uncovered 3 critical control gaps in network segmentation (2021)
• Presented “Practical Threat Hunting for Mid-Size Organizations” at New England Security Conference (2020)
• Developed custom threat intelligence aggregation tool using Python and ElasticSearch (ongoing)
• Recipient of Meridian Financial’s “Security Excellence Award” for incident response during attempted breach (2019)