Profiles search
Janice Chen
Senior Information Security Analyst at SurveyMonkey
San Francisco, CA, United States
Details
Experience:
2022 : Present
SurveyMonkey
Senior Information Security Analyst
-Developed threat detections for Zero-Day vulnerabilities as well as any exploitable attacks.
-Created automation playbooks for repetitive tasks to improve efficiency and gain insights.
-Deploy, configure, manage, and administer Devo, Crowdstrike, Zscaler ZIA and Zscaler DLP solutions to protect 1600 users globally based on security policies.
-Lead cross functional effort to ensure compliance with PCI DSS, ISO 27001, HIPAA, SOC2 and GDPR.
-Identified security gaps within the organization and implemented security tools to enhance intrusion detection.
-Analyze and triage network intrusions to identify urgent events for escalation.
-Audited and tuned firewall rules to prevent suspicious ingress network traffic which reduces risk and improves throughput on our network.
2019 : 2022
SurveyMonkey
Information Security Analyst III
-Shift lead in a 24x7x365 SOC, responsible for post-detection remediation and event escalation.
-Performed analysis via log review, packet analysis, and investigations into possible indicators of compromise.
-Identified security flaws and vulnerabilities to improve security processes and reduce risk.
-Threat hunting from known IOCs and diminish the chance of system compromises.
-Correlated and discovered relationships between seemingly unrelated events and incidents.
-Updated signatures to help us look for new malware and other software vulnerabilities.
-Monitored DLP in O365 and mitigated data loss to prevent information spillage.
-Prevented thousands of users from infections like emotet, kovter and other C2s.
2017 : 2019
ASRC Federal
Senior Information Security Analyst
- Monitor NASA agency sensors and Security Operations Center systems for incidents and malicious activity.
- Analyze IDS events and identify relevant incidents.
- Perform packet analysis and analyze network traffic for security events.
- Coordinate with both Tier 1 and Tier 3 teams while providing incident handling and response support for the agency.
- Worked in a 24x7x365 environment to monitor, detect, and report suspicious and hostile activity on NASA networks
-Monitor any suspicious activity in user's accounts/disable accounts if needed
-Analyze phishing emails/discover new IOCs and perform sinkhole blocks.
-Investigate compromised accounts and perform necessary actions to prevent anymore compromises
2014 : 2017
NASA Ames Research Center (ASRC Federal Contractor)
Information Security Specialist
- Troubleshoot and monitor supercomputers.
- Worked at the Security Operation Center in Tier 1 responding to security incidents.
- Report and documented all security incidents.
- Monitor help desk calls and respond appropriately to user requests and problems identified through review.
- Interact with customer service management, supervisors, and coordinators to communicate any problems, issues, or concerns about current help desk practices to assist in correcting any inefficiencies.
- Assist with answering calls and answers escalated or referred customer representative help desk calls from the staff.
2013 : 2014
NASA Ames Research Center (Contractor)
Control Room Analyst
SurveyMonkey
Senior Information Security Analyst
-Developed threat detections for Zero-Day vulnerabilities as well as any exploitable attacks.
-Created automation playbooks for repetitive tasks to improve efficiency and gain insights.
-Deploy, configure, manage, and administer Devo, Crowdstrike, Zscaler ZIA and Zscaler DLP solutions to protect 1600 users globally based on security policies.
-Lead cross functional effort to ensure compliance with PCI DSS, ISO 27001, HIPAA, SOC2 and GDPR.
-Identified security gaps within the organization and implemented security tools to enhance intrusion detection.
-Analyze and triage network intrusions to identify urgent events for escalation.
-Audited and tuned firewall rules to prevent suspicious ingress network traffic which reduces risk and improves throughput on our network.
2019 : 2022
SurveyMonkey
Information Security Analyst III
-Shift lead in a 24x7x365 SOC, responsible for post-detection remediation and event escalation.
-Performed analysis via log review, packet analysis, and investigations into possible indicators of compromise.
-Identified security flaws and vulnerabilities to improve security processes and reduce risk.
-Threat hunting from known IOCs and diminish the chance of system compromises.
-Correlated and discovered relationships between seemingly unrelated events and incidents.
-Updated signatures to help us look for new malware and other software vulnerabilities.
-Monitored DLP in O365 and mitigated data loss to prevent information spillage.
-Prevented thousands of users from infections like emotet, kovter and other C2s.
2017 : 2019
ASRC Federal
Senior Information Security Analyst
- Monitor NASA agency sensors and Security Operations Center systems for incidents and malicious activity.
- Analyze IDS events and identify relevant incidents.
- Perform packet analysis and analyze network traffic for security events.
- Coordinate with both Tier 1 and Tier 3 teams while providing incident handling and response support for the agency.
- Worked in a 24x7x365 environment to monitor, detect, and report suspicious and hostile activity on NASA networks
-Monitor any suspicious activity in user's accounts/disable accounts if needed
-Analyze phishing emails/discover new IOCs and perform sinkhole blocks.
-Investigate compromised accounts and perform necessary actions to prevent anymore compromises
2014 : 2017
NASA Ames Research Center (ASRC Federal Contractor)
Information Security Specialist
- Troubleshoot and monitor supercomputers.
- Worked at the Security Operation Center in Tier 1 responding to security incidents.
- Report and documented all security incidents.
- Monitor help desk calls and respond appropriately to user requests and problems identified through review.
- Interact with customer service management, supervisors, and coordinators to communicate any problems, issues, or concerns about current help desk practices to assist in correcting any inefficiencies.
- Assist with answering calls and answers escalated or referred customer representative help desk calls from the staff.
2013 : 2014
NASA Ames Research Center (Contractor)
Control Room Analyst
Company:
SurveyMonkey
Spoken Language:
Chinese, English
Profile Photo
