Home Consulting Resume PDF Resume Food Blog Tech Blog Nextcloud Plex Request
Recruiter-First Web Resume
Cybersecurity Operations • Incident Response • Security Tooling

Daniel Duggan

Cybersecurity professional with experience across incident response, financial-sector security, cloud administration, and enterprise tooling. This web resume highlights the strongest current experience and core credentials, while the PDF version remains the full record.

Open PDF Resume View Selected Experience
Experience Skills Certifications Education
Tooling

CrowdStrike

Hands-on incident response and log ingestion work across modern security operations environments.

Core Discipline

Incident Response

Experience across response workflows, alert triage, security operations tooling, and investigative support.

Industry

Financial Sector Experience

Current and prior work connected to JPMorganChase and Citibank, with strong exposure to regulated environments.

Credentials

Certifications

CompTIA CySA+, Security+, ISC2 Certified in Cybersecurity, with further security certifications in progress.

Selected Experience

Recent roles with the most hiring signal

The strongest and most relevant positions are expanded here, while older roles are compressed to keep the page recruiter-friendly without losing credibility.

Cybersecurity Analyst

JPMorganChase • New York, NY
Nov 2024 - Present

Current role centered on cybersecurity operations and incident response in a Tier 1 financial environment, with direct exposure to enterprise detection and security engineering workflows.

  • Incident response operations using CrowdStrike, Cortex, Splunk, Exabeam, and SOAR-driven alerting from ThreatConnect.
  • Acquisitions cybersecurity team support spanning monitoring, incident response, integration consulting, and tuning work based on subsidiary needs.
  • Security telemetry improvement through collaboration with engineers to ingest relevant sources into CrowdStrike NG-SIEM.

IT Cloud Administrator

Stark Carpet Corp. • New York, NY
Jan 2024 - Nov 2024

Hybrid security and cloud administration role covering Microsoft cloud services, endpoint protection, networking, and day-to-day infrastructure operations.

  • Administered Microsoft cloud platforms including Entra ID, InTune, Exchange, SharePoint, and Microsoft 365 alongside VMware ESXi environments.
  • Performed security operations work through SentinelOne, Huntress, Azure security tooling, MFA rollout, and vulnerability management support.
  • Managed infrastructure and networking across SonicWall firewalls, Datto networking, backup, RMM, VPNs, and related troubleshooting.

Info Security Engineer Lead (GRC)

Citibank • New York, NY
Jan 2023 - Jan 2024

Security governance and authentication-focused role supporting password policy analysis, MFA control review, regulatory alignment, and internal security tooling.

  • Researched and analyzed external customer password requirements to support stronger security controls with improved customer experience.
  • Reviewed IAM, MFA, and SAM procedures to strengthen cyber defense policy alignment with regulators and internal security expectations.
  • Supported internal authentication inventory work through Jira-driven delivery, XML reporting, and SQL/Cognos reporting for the MFA assessment team.

Network Administrator

Pathways Youth & Family Services • San Antonio, TX
Oct 2020 - Jan 2023

Broad infrastructure and security administration role supporting multi-site networking, endpoint support, backup, automation, and security training.

  • Implemented Cisco Umbrella filtering, RADIUS authentication, VLAN segmentation, site-to-site VPNs, and firewall changes across distributed offices.
  • Maintained backup posture, PowerShell automation, cloud email administration, and practical IT security training for staff.

Desktop Support Technician

Daemon Systems, LLC • San Antonio, TX
Jun 2018 - Sep 2020

MSP support role with hands-on device, VPN, mail filtering, patching, and migration work during a high-demand remote-work period.

  • Implemented VPN solutions for multiple companies during the 2020 remote-work shift and supported secure endpoint rollout and maintenance.
  • Managed Barracuda ESS filtering, hardware lifecycle work, Windows recovery tasks, and general MSP support operations.

IT Intern - Desktop Support

SWBC • San Antonio, TX
Aug 2017 - Dec 2017

Early enterprise IT support experience including Active Directory, SCCM, VMware, and telephony administration support.

Core Skills

Security Operations

Incident response, alert triage, vulnerability management, MFA controls, security policy review, compliance-aligned security work.

Detection / Response Tooling

CrowdStrike, Cortex, Splunk, Exabeam, ThreatConnect, SentinelOne, Huntress, Azure security tooling, Cognos reporting.

Infrastructure / Cloud

Entra ID, InTune, Exchange, SharePoint, Microsoft 365, VMware ESXi, Windows and Linux administration, backup and recovery support.

Networking / Administration

SonicWall, Cisco networking, VPN implementation, VLAN segmentation, firewall administration, PowerShell scripting, endpoint support.

Selected Projects

  • Built an n8n pipeline that parses Zillow alerts, enriches listings with HUD and Rentcast data, calculates investment metrics, and sends automated deal notifications.
  • Developed Python automation to extract property and market data from web sources and generate Excel-based analysis artifacts for underwriting workflows.
  • Created self-hosted AI-assisted workflow tooling to improve project continuity, site iteration, and personal automation across local CLI and web projects.

Certifications

CompTIA PenTest+, CASP+, and CISM

In progress or planned through continuing professional development and graduate study.

Education