David Barahona
Security Analyst 2

Error

Education

  • 2020

    Bachelor's of Information Systems

    University of Houston

  • 2015

    Bachelor's of Arts

    University of Houston

Languages

  • English
  • Spanish

certifications

  • September 2023

    Sec+

  • May 2023

    AWS Solutions Architect Associate

  • December 2021

    AWS Cloud Practitioner

  • April 2021

    Azure Fundamentals - AZ-900

Profile

Security analyst with previous experience in Incident Response, Threat Vulnerability Management and Network Security. Holds a Bachelor's from the University of Houston in the Computer Information Systems program. Previous experience in Endpoint protection, Network monitoring and Security. Passionate about learning and providing real-life impact. Currently focusing in gaining knowledge and certifications in Cloud Security.

Experience

April 2023 - Present
Optum

Security Analyst 2 - Emergent Vulnerability Management

  • Proactively identify and evaluate vulnerabilities affecting company assets
  • Provide context and information around vulnerabilities and system accessibility to asset owners
  • Perform meticulous vulnerability assessments to identify security risks and prioritize remediation efficiently
  • Collaborate with cross-functional security teams to ensure swift resolution of identified vulnerabilities
  • Cooperate in continuous security improvements by reviewing and addressing vulnerabilities, reducing threat exposure.

Mar 2022 - April 2023
Change Healthcare

Security Analyst 2 - Threat Vulnerability Management

  • Analyze vulnerabilities in accordance with policies and make decisions based on pre-defined standards
  • Provide context and information around vulnerabilities and system accessibility
  • Perform security investigations on on-prem and cloud alerts using Prisma, Tenable and other tools
  • Coordination of vulnerability management reviews through release management processes following company policy
  • Ensure scanning tools remain available and with minimal downtime
  • Ensure proper functioning of vulnerability systems

Jan 2021 - Feb 2022
Change Healthcare

Security Analyst - Incident Response

  • Triage and investigation of security events including critical infrastructure and cloud technology
  • Perform investigations on security alerts and monitor tools to secure company's environment
  • Conduct network traffic analysis to investigate anomalous traffic
  • Monitor assets and critical infrastructure to ensure system uptime
  • Assist in remediation efforts to address deficiencies found during investigations

Apr 2019 - Dec 2021
CITGO

IT Security Intern

  • Improve workstation image security by 24% through implementaition of CIS benchmarks
  • Create documentation for data loss prevention and workstation hardening procedures
  • Evaluate security risks within the network daily and remediate issues
  • Generate security event reports for evaluation by upper-level management
  • Scan and collaborate with users to ensure PCs contained no personally identifiable information
  • Troubleshoot and resolve Symantec Endpoints issues
  • Produce WISP Documentation following NIST 800-53 Framework
  • Involved in SIEM selection and deployment

Professional Skills

Vulnerability Management

Tenable

SIEM

Tanium

Trend Micro

CSPM

CWP

Zscaler

Prisma

ProofPoint

Interest

  • Cloud
  • Automation
  • Python
  • Endpoint Device Management
  • Terraform
  • Ansible
  • CD/CI