Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Generic

Nilson Tang

Securtiy Analyst
Hong Kong

Summary

Seasoned cybersecurity professional with over 7 years of extensive experience as a Security Operations Center (SOC) Analyst, CERT team member, and Security Engineer/Analyst. Skilled in incident response, threat detection, SIEM management, and implementing advanced security measures. Seeking a challenging role to leverage expertise in enhancing cybersecurity strategies and mitigating emerging threats for organizational resilience and security excellence.

Overview

7
7
years of professional experience
5
5
years of post-secondary education
3
3
Certifications
3
3
Languages

Work History

Security Analyst

John Swire & Sons
Hong Kong
09.2024 - Current
  • Coordinate security efforts with outsourced managed security services providers to handle threat and SOC activities, ensure high-quality service delivery, and maintain compliance through established KPIs and metrics, while continuously reviewing and adjusting remediation strategies based on regular performance evaluations
  • Manage the day-to-day operations of various security devices, including but not limited to Endpoint Security, Web Application Firewall (WAF) and Email Security
  • Manage escalated security incidents from the SOC, service desk, and technical support teams
  • Identify security vulnerabilities and provide recommendations on cybersecurity measures to ensure that application
  • Conduct research on latest technology and select the more suitable solutions for company infrastructure enhancement

Senior SOC Analyst/CERT Team Member

Thales
Hong Kong
05.2021 - 08.2024
  • Managed Security Information and Event Management (SIEM) platform, including creating and fine-tuning correlation rules and mappings with MITRE ATT&CK framework, enhancing threat detection capabilities.
  • Utilized tools such as malware sandbox, Endpoint Detection and Response (EDR) systems like Sentinel One, email protection solutions such as ProofPoint, and orchestration platforms like XSOAR to proactively identify and respond to security threats.
  • Contributed to Computer Emergency Response Team (CERT) in responding to security incidents, coordinating efforts to contain and eradicate threats effectively.
  • Assisted in developing incident response playbooks and SOPs, supporting streamlined response processes and adherence to industry best practices.
  • Participated in post-incident analysis and reporting, assisting in identifying root causes and recommending preventive measures to enhance security posture.
  • Supported tabletop exercises and simulations to test incident response readiness and improve team coordination.
  • Maintained accurate documentation of all CERT activities, facilitating knowledge sharing across multiple business units.
  • Reduced false alarms by fine-tuning intrusion detection system configurations based on historical analysis of incidents.

Security Engineer/Security Analyst

CITIC Telecom CPC
07.2020 - 05.2021
  • Provide 2nd tier support on Managed Security Services, specifically on information security incident management; Investigate, respond and provide recommendations in timely manner
  • Design and maintain SIEM(Splunk) rules with on-going tuning
  • Implemented, and maintained security controls and technologies to protect against cyber threats and vulnerabilities, including hardware and software hardening measures.
  • Prepare, review and update operation procedures and guidelines
  • Perform Managed Security Services devices change management; Test and apply patches or upgrades with records
  • Prepare service reports for customer and internal parties
  • Regular meeting with customer for service review

SOC Analyst

Thales
10.2018 - 07.2020
  • Assisted in monitoring and analyzing security events and alerts to identify potential threats and vulnerabilities.
  • Supported incident response activities, including initial investigation, documentation, and escalation of security incidents.
  • Contributed to development and maintenance of SOC processes, procedures, and documentation.
  • Participated in security tool deployment(e.g. Log Collector/Receiver, SIEM, Firewalls, VPNs & VMs) and configuration, ensuring optimal performance and effectiveness.
  • Collaborated with senior SOC analysts to enhance threat detection capabilities and response strategies.
  • Prepare service reports for customer and internal parties
  • Monthly meeting with customer for service review

Education

Information System Security -

Sheridan College
Oakville, Toronto, ON
09.2013 - 09.2018

Skills

Post-Incident Analysis and Reporting

undefined

Certification

CISSP - Certified Information System Security Professional

Languages

English
Advanced (C1)
Chinese (Cantonese)
Bilingual or Proficient (C2)
Chinese (Mandarin)
Advanced (C1)

Timeline

Security Analyst

John Swire & Sons
09.2024 - Current

Senior SOC Analyst/CERT Team Member

Thales
05.2021 - 08.2024

Security Engineer/Security Analyst

CITIC Telecom CPC
07.2020 - 05.2021

SOC Analyst

Thales
10.2018 - 07.2020

Information System Security -

Sheridan College
09.2013 - 09.2018

Similar Profiles

  • Nicholas AlstonNicholas Alston

    Shop Assistant at John,John And Sons Welding And FabShop Assistant at John,John And Sons Welding And Fab

  • Deepa PrakashDeepa Prakash

    Senior Scrum Master/ Agile Project Manager at John Wiley & SonsSenior Scrum Master/ Agile Project Manager at John Wiley & Sons

  • Lian MolinaLian Molina

    Machine Operator/Assembler at John F Martin and SonsMachine Operator/Assembler at John F Martin and Sons

  • Zhiqi YaoZhiqi Yao

    Teacher's Assistant at The University of Hong KongTeacher's Assistant at The University of Hong Kong

  • Leo KaHung LeungLeo KaHung Leung

    Senior Systems Analyst at Nan Fung GroupSenior Systems Analyst at Nan Fung Group

CREATE PROFILE
Nilson TangSecurtiy Analyst