Daniel Sims

Experienced cyber security professional with over eight years of experience in security operations, threat investigation, and technical delivery. Proven leader managing a CSOC team, client relations, and complex incident response cases. Specialized in SIEM/EDR and Network tooling, threat hunting, and service automation. Adept at translating technical risks into business terms for executive stakeholders.

PROFESSIONAL EXPERIENCE

Orange Cyberdefense, UK (Remote)                                                      March 2024 – Present 

• Senior CyberSOC Analyst/Technical Delivery Manager/Automation Ambassador
• Extra  responsibilities that are part of this role are in addition to those already mentioned below (which I am continuing to perform)  include involvement in a team of automation experts collaborating to enhance service production elements such as data enrichment, tuning improvements and any other facets of the business that could be tweaked 
• Automation work directed at all service platforms Orange Cyberdefense utilizes. 

Orange Cyberdefense, UK (Remote)                                                      Dec. 2020 – March 2024 

• CyberSOC Analyst/Technical Delivery Manager
• Extensive use of SIEM, endpoint and network tools for the analysis of cyber threats                via various ticketing systems - Tier 3.
• Considerable Threat Hunting expertise.
• The Technical Delivery Manger role entails facilitating the onboarding of new log sources, updating Splunk apps, troubleshooting platform issues, attending and presenting at customer  meetings and acting as the first point of contact for any incident response activity. writing premium monthly reports, adding new joiners to endpoint and SIEM platform tools among other responsibilities.
• Client Onboarding/Offboarding  - Onboarding role is comprised of taking ownership of onboarding projects . Responsibilities included insuring datamodels and sourcetypes are correct and that relevant logsources are ingested as well as configuring all relevant details in the service delivery platform.
• Mentored less experienced analysts, management function entailed creating weekly  rota’s for the whole team.

Adarma Ltd, Scotland                                                                              Nov. 2019-July 2020

• Security Operations Centre Analyst 

-  Investigated cyber incidents for FTSE 100 clients in a SIEM setting.

-  Splunk in tandem with Jira were utilized for the ticket investigation process. 

-  Additional responsibilities included threat hunts that were tailored to meet client demands. 

-  Extensive reports were composed as part of the threat hunts completed. 

-  Proficiency in the Splunk Programming Language among highlights of the role. 

- Other duties included tuning Splunk rules and creating weekly newsletters for clients. 

Scottish Business Resilience Centre, Scotland                                        Nov. 2018-Nov 2019

• Ethical Hacker/Consultant 

- Conducted external and internal web and network vulnerability tests for small and medium size businesses 

- Testing carried out in teams of two.

- Composed highly detailed vulnerability disclosure reports for clients. 

- Completed Digital Footprint analysis for individuals as part of role

ICSV International School, Austria                                                    Aug. 2013 – June 2016 

• Social Studies Teacher

- Taught World History, American History and Physical Education at the Secondary Level.

- Coached high school football team as lead coach.

EDUCATION

- Abertay University, Scotland                                                                              2016-2019

          Honours BS(c) Ethical Hacking

- Bob Jones University, United States                                                                   2009-2012

          BS Political Science/Minor in German