Kaka Sheidu
Digital Forensic And Incident Response Specialist
Lekki,Lagos
Summary
Dedicated Cybersecurity professional specializing in Digital Forensics and Incident Response (DFIR) with a history of meeting company goals, utilizing consistent and organized practices, and upholding client confidentiality, integrity, and privacy privileges. Adaptable to new situations and challenges, intelligent, insightful, and pragmatic with a resourceful approach and familiarity with many facets of SOC Operations and Incident Handling. Recognized for performance excellence in Cyber Security CTFs and contributions to success with eagerness to help the team achieve company goals while also offering excellent communication and good judgment.
Overview
3
3
years of professional experience
6
6
years of post-secondary education
Work History
Senior Cybersecurity Consultant - DFIR Specialist
Ernst & Young
Lagos, Nigeria
08.2023 - Current
- Performed and assisted in emergency incident response and threat-hunting activities across incidents or security breaches related to malware, phishing, and insider threats for over 2 priority organizations using EDRs, XDRs, and SIEMs as touch-points and providing detailed easy to understand reports.
- Effectively performed forensic memory, logs and network analysis/extractions for clients during breaches and incidents.
- Revamped and authored security incident playbooks, IR plans/procedures, Chain of Custody document and incident report template for clients.
- Assisted clients in optimizing their Digital Forensic Capabilities.
- Reviewed existing Cloud Security Monitoring operations for Client SOC teams providing up to standard SOP documents.
- Built relationships and fostered effective communication with Clients personnel to conduct investigations.
- Recommend improvements in security systems and procedures.
- Coauthored proposals to Clients or in response to Client RFP's that led to successful engagement with clients.
- Effectively adhered and worked with clients under agreed Scope of Work (SOW) SLA.
Incident Response Analyst
UBA Group
11.2022 - 07.2023
- As an incident response analyst at the headquarters of a Pan-African bank, I executed and supported emergency incident response and threat-hunting operations dealing with incidents or security breaches associated with malware, phishing, and insider threats for over 21 branch-domiciled countries across Africa, employing EDRs, XDRs, and SIEMs as key tools.
- Co-authored and Revamped security incident playbooks, IR plans/procedures, and report template, highlighting breaches, vulnerabilities, and remedial measures for UBA Group as a whole
- Facilitated internal security tabletop simulation drills to foster client preparedness or readiness to mitigate damage and liability during security breaches.
- As a team member, I participated in continuous improvement by generating suggestions, engaging in problem-solving activities to support teamwork.
Incident Responder
CyberSOC Africa
Lagos, Nigeria
04.2022 - 11.2022
- As MSSP incident response analyst, I performed and assisted in emergency incident response and threat-hunting activities across incidents or security breaches related to malware, phishing, and insider threats for over 5 priority organizations using EDRs, XDRs, and SIEMs as touch-points while collaborating with law enforcement to apprehend threat actors.
- As a forensic analyst, I effectively performed forensic memory analysis/extractions on over 8 compromised critical assets (laptops, servers, and mobile devices) with cutting-edge technologies like Cellebrite and Blackbag for 4 priority organizations.
- Effectively performed a chain of custody evidence logging and handover during incident handling.
- Authored Client's security incident playbooks, IR plans, and reports, highlighting breaches, vulnerabilities, and remedial measures for over 5 priority organizations.
- Co-hosted security tabletop simulation drills to foster client preparedness or readiness to mitigate damage and liability during security breaches for 3 priority clients.
- As a team member, I participated in continuous improvement by generating suggestions, engaging in problem-solving activities to support teamwork.
Cyber Security Analyst
CyberSOC Africa
09.2020 - 03.2022
- Monitored and evaluated security threats against critical assets in a 24x7x365 MSSP using SIEM, EDR and XDR technologies to priority organizations in banking and financial technologies
- Investigated and provided adept recommendations to security events (e.g Unauthorized access, service exploitation, privilege escalations, firewall traffics etc.) to determine breaches and remediation process.
- Reported and initiated escalation of Immediate threats to clients with effect.
- Authored and documented Standard Operating Procedure (SOP) document for daily use by SOC Analysts.
- Assisted as a first-line security analyst in threat hunting and computer security incident response.
- Designed and spearheaded internal SOC CTF platform as part of a mentorship and training exercise for incoming SOC Analysts.
- With good communication skills, I actively listened to customers, handled concerns quickly, and escalated major issues.
- Participated in continuous improvement by generating suggestions and engaging in problem-solving activities to support teamwork.
- Conducted security audits to identify vulnerabilities
Education
Bachelor of Technology - Cyber Security Science
Federal University of Technology Minna
Minna, Niger 05.2014 - 12.2019
Skills
Communication, Teamwork, Personal growth, and development, Adept thinking, Adaptability, and Building relationships
Cellebrite UFED Touch2, Blackbags Blacklight Responder, Cellebrite Physical Analyzer, Autopsy, Volatility, FTK Imager, FireEye Redline, and SysInternals, CSI Linux, Velociraptor, etc
SIEM/EDR/XDR Tools - Microsoft Defender for Endpoint (MDE), Microfocus ArcSight, IBM QRadar, Splunk, DarkTrace, CB Defense, RSA Netwitness/ECAT, AlienVault USM Appliance/Anywhere, CrowdStrike Falcon, Exabeam Advance Analytics and Datalake, Rapid7 Insight IDR and VM, and CrowdStrike Falcon
Operating Systems - Windows, Linux, Mac
Incident Identification/Triage, simulations, investigations, containment, and reporting
Accomplishments
- Attained the 'Certificate of Graduation' as a recipient of the CyberTalents Blue Team Scholarship 2023, sponsored by Trend Micro, in recognition of successful program completion.
- Contributing expertise as a technical consultant for a prominent global organization within the prestigious Big Four Accounting firms
- Collaborated in the development of incident response procedures, playbooks, and incident report templates, contributing to the successful stabilization of the Incident Response Team and Unit at UBA Group and various client organizations.7
- Developed and compiled a comprehensive Incident Response First Responder workflow guide, enhancing the ability of SOC analysts to promptly contain incidents at CyberSOC Africa, thereby facilitating efficient escalation to the Emergency Incident Response Team.
- Led a collaborative effort with a team of four to design and implement a robust threat-hunting model and client reporting template at CyberSOC Africa, enhancing cybersecurity measures.
- Collaborated with a team of 3 to create a simulated EVE environment for security-related drills for technical tabletops reflecting roles and responsibilities referenced in the client's IR Plan at CyberSOC Africa.
- Achieved excellent team synergy through the hosting of team bonding exercises.
- Participated as a Panelist in the 2021 NaijaSecForce Virtual Cybersecurity Awareness Month, discussing the topic - How to get started in Capture -The Flag Ethical Hacking Challenges.
- Participated as a Speaker at the 2021 Diary of Hackers Cyber Security Awareness Month on the topic - How to Get Started In Cyber Security.
- Achieved successful collaboration with project supervisors to co-author and publish my final year undergraduate project on ResearchGate, titled "DEVELOPMENT OF CRYPTO-BIOMETRIC SYSTEM USING FINGERPRINT AND RSA MODEL FOR SECURE COMMUNICATION".
Affiliations
- Nigeria Security Force (NaijaSecForce)
- National Association of Cyber Security Science Students
- Diary of Hackers (Nigeria Chapter)
- SheSecures - Africa
Timeline
Senior Cybersecurity Consultant - DFIR Specialist
Ernst & Young
08.2023 - Current
Incident Response Analyst
UBA Group
11.2022 - 07.2023
Incident Responder
CyberSOC Africa
04.2022 - 11.2022
Cyber Security Analyst
CyberSOC Africa
09.2020 - 03.2022
Bachelor of Technology - Cyber Security Science
Federal University of Technology Minna
05.2014 - 12.2019
Other Qualifications
- Cellebrite Windows Forensics Investigator (CWFI) training
- Certified in Cellebrite Mobile Forensic Fundamentals (CMFF)
- Splunk 7.x Fundamentals certified
- Certified in the Foundation of Operationalizing MITRE ATT&CK
- Certified in Autopsy Basics and Hands-On
- Certified in VMware Carbon Black Cloud Endpoint Standard Associate Analyst Training
- Exabeam Fusion SIEM Training for Security Analysts (EDU-2570) (EMEA)
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Interests and Hobbies
Gaming, watching movies, Japanese Animes, music, studying, sketching, and outdoor activities.
Quote
There is a powerful driving force inside every human being that, once unleashed, can make any vision, dream, or desire a reality.
Tony Robbins
Other Qualifications
- Cellebrite Windows Forensics Investigator (CWFI) training
- Certified in Cellebrite Mobile Forensic Fundamentals (CMFF)
- Splunk 7.x Fundamentals certified
- Certified in the Foundation of Operationalizing MITRE ATT&CK
- Certified in Autopsy Basics and Hands-On
- Certified in VMware Carbon Black Cloud Endpoint Standard Associate Analyst Training
- Exabeam Fusion SIEM Training for Security Analysts (EDU-2570) (EMEA)
Interests and Hobbies
Gaming, watching movies, Japanese Animes, music, studying, sketching, and outdoor activities.