Onyekachi Anyalechi

• Worked as part of an Incident Response team for a top Irish utility company following a critical data breach.
• Worked with a third-party SIEM tool, Qradar SIEM, for incident response, log monitoring, and in-depth investigations.
• Liaised with the client's third-party providers on scheduling, log onboarding, design, validation, and verification of detection rules.
• Utilised the Microsoft Defender Advanced Threat Hunting platform with KQL for proactive threat detection.
• Managed and created Microsoft Defender alerts for enhanced monitoring capabilities.
• Conducted various tabletop war-gaming exercises to enhance incident response readiness.
• Performed an audit of the Respond function of a client to determine the effectiveness of incident response capability.
• Assessed the alignment of the Supplier Risk Management Framework with the NIS 2 Directive.
• Developed action plans to address findings, and enhance cybersecurity posture.
• Conducted comprehensive assessments of physical and remote access controls.
• Provided recommendations for improving third-party access security.
• Performed a pre-go-live assessment of O365 implementation processes and controls.
• Assessed Identity and Access Management, Microsoft Intune, and Azure Information Protection capabilities.
• Assisted in designing an enterprise-level ransomware incident response playbook.
• Developed crisis-level governance, communication, and coordination protocols.
• Established procedures for tracking and responding to ransomware incidents.

• Led threat intelligence initiatives to identify and assess potential risks for private and public-sector clients.
• Oversaw data scraping efforts from surface and dark web sources to detect cases of illicit sales, including narcotics, human trafficking, and illegal weapons.
• Identified and prioritized vulnerable critical assets exposed on the public internet, such as databases, passwords, RDP ports, ICS, and IoT devices.
• Created and presented comprehensive advisory reports recommending security best practices to enhance the client’s security posture.
• Managed the investigation of emerging malware threats, and developed alerts and custom detection rules to proactively mitigate risks.
• Monitored and analyzed cyber breach reports from official government sources and cybersecurity researchers to communicate potential threats to stakeholders.
• Leveraged open-source cybersecurity tools (e.g., VirusTotal, Any.Run, Triage) to track the latest malware, ransomware, and APT attacks impacting clients.
• Conducted targeted investigations on the dark web to identify third-party ransomware attacks and data breach notifications affecting government and corporate clients.
• Implemented Twitter Boolean search algorithms to track discussions around breaking cybersecurity stories and organized crime syndicates.
• Led threat-hunting efforts using Shodan to explore trending CVEs, exposed databases, and other vulnerabilities affecting clients.
• Collaborated with security researchers on platforms like YouTube and Reddit to investigate trending CVEs and Proof of Concept developments.

• Led comprehensive reviews of client access controls to ensure appropriate permissions and restrictions, enhancing overall security posture.
• Maintained an up-to-date Information Security Risk Register to effectively track, manage, and mitigate potential security risks across the organisation.
• Examined, developed, and implemented security procedures, processes, and policies for various technologies to ensure robust protection and compliance.
• Managed and organized simulated phishing campaigns, along with conducting training sessions to raise awareness of cyber threats among employees.
• Assessed potential risks associated with third-party providers, both for current and prospective suppliers, to ensure alignment with security standards.
• Provided strategic security advice and recommendations for IT projects, ensuring that security considerations are integrated into project planning and execution.
• Documented and coordinated efforts to address and resolve identified vulnerabilities, facilitating timely remediation, and risk reduction.
• Conducted thorough IT security assessments using ISO 27001, PCI DSS, and NIST standards for major infrastructure and applications, identifying and addressing potential information security threats.

Working as a Network Security Trainee at IT Career Switch, this program gave me the opportunity to acquire practical skills in the IT industry. Some of the courses on offer are well-selected, professional, accredited, and industry-recognized IT Support courses by CompTIA, Microsoft, and Cisco. Skills acquired in this training include:

• Developing proficiency skills in installing, upgrading, and configuring Windows, Mac OS, and Linux operating systems, ensuring optimal performance and security for client devices.
• Configuring Microsoft Windows networking on client desktops, as well as setting up network configurations for Mac OS and Linux systems, to ensure seamless connectivity and functionality.
• Troubleshooting various client devices, diagnosing issues efficiently, and implementing effective solutions to minimize downtime and enhance user experience.
• Documenting IT processes and procedures to ensure clarity and consistency in operations, facilitating knowledge sharing, and compliance with organizational standards.
• Maintained an up-to-date Information Security Risk Register to track and manage potential risks, enabling proactive risk mitigation strategies, and enhancing overall security posture.
• Examined and developed security procedures, processes, and policies for different technologies, ensuring effective protection against threats, and compliance with industry standards.
• Demonstrated ability to provide support across various operating systems, enhancing user satisfaction, and operational efficiency.
• Worked collaboratively with cross-functional teams to address technical challenges, ensuring alignment with organisational goals, and fostering a culture of continuous improvement.
• Committed to promoting security awareness and best practices among users, contributing to a more secure computing environment.

• Produced informative technical reports and recommendations for management, facilitating informed decision-making, and strategic planning.
• Analysed and implemented efficient schedules for the production, storage, and dispatch of orders, optimizing operational workflows, and enhancing productivity.
• Developed and maintained the stock database system, ensuring accurate inventory tracking and management.
• Ensured relevant applications were up to date, improving system performance and user experience.
• Maintained an inventory of all hardware and software applications, supporting effective asset management and resource allocation.
• Researched and developed cost-saving initiatives through staff workshops, fostering a culture of innovation and continuous improvement.
• Analysed conditions, assessed potential risks, and provided effective solutions to address issues raised, enhancing operational resilience and efficiency.

• Demonstrated exceptional IT support expertise, effectively bridging the gap between technical teams and non-technical end users through clear communication.
• Created new users and conducted reviews of user activities, including privilege access management (PAM) review.
• Oversaw the incident queue, escalating issues to the Development Team when necessary, conducting triage, and re-prioritisation.
• Ensured seamless software integration into the organization's Core Lending system and other payment systems, strictly adhering to functional requirements, change control procedures, system compliance, and interface specifications, thereby meeting regulatory and compliance standards.
• Orchestrated a diverse range of service responsibilities, encompassing Continual Service Improvement (CSI), Risk Management, IT Change Management, Service Asset and Configuration Management, Release Management, Problem Management, Incident Management, Service Level Management, Access Management, and Service Catalog Management.
• Tracked and supervised internal and third-party application development, as well as system infrastructure change requests, ensuring a uniform application deployment and system availability.
• Played an integral role as a member of the IT Application Support and Monitoring team, providing on-call support on a rotational basis for all IT applications, ensuring continuous system availability, with an exceptional 99.99% uptime.