Nimrod Moyo

Achievements

• Reduced incident response time by 13% through automation of vulnerability management processes and optimizing the incident triage workflow
• Established a risk management framework that included a comprehensive risk register, leading to a 15% improvement in identifying and mitigating security risks
• Reduced false positives in security alerts by refining threat intelligence sources and honing detection algorithms.
• Led penetration tests across network, web, and mobile applications, identifying critical vulnerabilities that reduced the attack surface by 30%.

Core Responsibilities

Vulnerability Management & Incident Response

• · Deployed and managed vulnerability scanning tools like Nessus and Tenable across infrastructure, improving detection and remediation of security flaws.
• · Configured and managed firewalls, IDS/IPS systems, and SIEM solutions to ensure real-time monitoring and response to incidents.
• · Led incident response efforts, including root cause analysis, containment, and mitigation, while managing the 24/7 Security Operations Center (SOC) for continuous monitoring.

Security Device & System Deployment

• · Deployed and configured security devices such as firewalls, intrusion detection/prevention systems (IDS/IPS), and EDR tools, ensuring the integrity and confidentiality of the organization's data.
• · Secured cloud environments (Azure) by integrating identity and access management (IAM), encryption, and key management solutions, ensuring adherence to compliance frameworks like ISO27001 and GDPR.
• · Implemented automation for patch management and vulnerability reporting, ensuring timely updates across all systems, reducing human intervention and error.

Security Operations & Governance

• · Conducted regular audits, risk assessments, and vulnerability scans, ensuring alignment with industry standards like ISO-27001, PCI-DSS, and NIST-CSF.
• · Automated reporting systems for vulnerability tracking, delivering clear and actionable insights to executive stakeholders.
• · Collaborated with cross-functional teams, providing technical guidance and ensuring security measures were integrated into system and product designs.

Security Awareness & Training

• · Developed and delivered security awareness programs for 300+ employees, significantly reducing phishing attack success rates by 25%.
• Conducted regular phishing simulations and training on emerging cybersecurity threats, using platforms like KnowBe4 to enhance staff awareness.

• Executed comprehensive penetration testing and security consulting across both IT and Operational Technology (OT) environments, significantly enhancing EY clients' cybersecurity resilience
• Spearheaded vulnerability assessment and penetration testing (VAPT) engagements, in some cases managing the entire project lifecycle from proposals and scoping and to planning, execution, and detailed reporting
• Ensured strict compliance with various cybersecurity frameworks, including NIST, ISO 27001, HIPAA, and PCI DSS, aligning client operations with industry best practices and data protection standards
• Performed Active Directory penetration testing with MITRE ATT&CK techniques, resulting in enhanced vulnerability mitigation and security practices
• Assessed SCADA and OT security systems, aligning operations with industry standards, and reduced risks in critical infrastructure
• Conducted ITGC testing for access and change management in support of financial audits
• Reviewed IT security policies, Business Continuity Plans (BCP), and Disaster Recovery Plans (DRP), providing actionable recommendations that improved resilience
• Supervised and mentored junior cybersecurity team members, fostering skill development and ensuring the delivery of high-quality project outcomes
• Managed IT Security Due Diligence efforts to integrate effective security measures within IT operations, enhancing overall governance and risk management strategies
• Developed and delivered comprehensive reports and presentations that communicated findings, risks, and actionable recommendations to clients, facilitating informed decision-making at both technical and executive levels
• Engaged regularly with stakeholders to promote security awareness and compliance, driving a culture of cybersecurity across organizations
• Led internal training sessions to improve team capabilities in vulnerability management, threat analysis, and incident response, enhancing the overall effectiveness of the cybersecurity practice
• Supported business development by contributing to proposal writing, securing additional client contracts.

• Administered Active Directory (AD), managing user accounts, group policies, and access controls to ensure secure authentication and authorization processes
• Incident Resolution, diagnosed and resolved technical issues related to firm-standard software, hardware, and mobile technologies, preventing future occurrences through trend analysis
• Managed Microsoft 365 suite, overseeing deployment, user configuration, and ensuring seamless collaboration and communication across the organization
• Maintained firewall configurations, implementing rules and policies to protect network integrity and prevent unauthorized access
• Configured and monitored VPN connections, facilitating secure remote access for employees and ensuring encrypted data transmission
• Oversaw Azure cloud services, handling resource provisioning, cost management, and implementing best practices for cloud security and compliance
• Implemented and enforced IT security policies, conducting regular audits and updates
• Provided technical support and training to staff, enhancing IT literacy and promoting efficient use of technology resources
• Technology Needs Assessment: Maintained a comprehensive understanding of IT Services and the firm's business to address and anticipate end user technology needs and productivity issues.
• Contributed to business continuity efforts by maintaining up-to-date documentation of all IT infrastructure components and configurations.

• Helpdesk first line support
• Assisted in monitoring and maintaining network infrastructure for services including Wi-Fi, Fibre, MPLS, and VSAT, ensuring optimal performance
• Supported the implementation of security protocols and compliance checks, contributing to the company’s robust cybersecurity framework
• Participated in data analysis using Splunk to identify trends and potential issues, aiding in proactive system management
• Collaborated with the IT team to manage ServiceNow ticketing, improving response times and service quality
• Contributed to IT projects, providing research, documentation, and administrative support to senior analysts
• Facilitated hardware and software upgrades, ensuring compatibility and minimal service disruption.
• Enhanced system efficiency by troubleshooting and resolving hardware and software issues.