Nathan Chan

Top cybersecurity professional looking for work in network security and SOC monitoring opportunities.

Paradise Global, Fully Stack Developer and Security Vancouver, BC

October 2022 – December 2022 (3 months)

• Managed the website / e-shop for Paradise Global Business Mission Wellness Education Inc.
• IT / Cybersecurity Lead

MNP Digital, Technology Solutions Analyst, Cyber Security (DFIR / Purple Team) Vancouver, BC

June 2021 – June 2022 (1 year)

• Wrote elite, detailed, and precise reports for MNP clients matching them to the MITRE ATT&CK cycle and TTPs.
• Reverse engineered malware statically and dynamically to find IoCs and malicious Win32 API calls and functions.
• Performed technical investigations on majority of ransomware / data breach security incidents to identify root cause analysis for well-known and large industrial, commercial, and municipal cases.
• Championed and assessed complex TTXs (table-top exercises) to support security awareness and maturity
• Participated in workshop creation for teaching staff about Powershell deobfuscation and malware reverse engineering
• Wrote Python scripts to sort and analyze big data for breached data

Mosse Cyber Security Institute, Remote Intern Vancouver, BC

June 2020 – January 2022 (1 year 8 months)

• Performed network vulnerability scans.
• Exploited vulnerabilities with state-of-the-art hacking tools like Metasploit.
• Defended web applications against common vulnerabilities such as SQL injection, XSS, etc.

Global Relay, Cyber Security Specialist

March 2019 – June 2020 (1 year 4 months) Vancouver, BC

• Scripted in Python, BASH, and PowerShell to automate reporting for different systems using appropriate REST APIs.
• Worked with ArcSight / Splunk SIEM to triage incidents for the CSOC (Cyber Security Operations Center).
• Worked with different types audits: ISO 27001/2 and SOC 2 Audits.
• Monitored the CSOC Operations in a 12-hour shift basis.

Lululemon Athletica, Incident Response Analyst

May 2016 -- May 2017 (1 year 1 month contract) Vancouver, BC

• Worked with Trustwave SIEM to analyze log collection.
• Provided incident response to incoming incidents relating to malware and built IRP (incident response procedures).
• Knowledge of authentication and authorization mechanisms (SSO and MFA) for hardening Windows Server.
• Trained with Carbon Black suite: CBDefense and CBResponse
• Experience with IDSes and IPSes such as FireEye, TippingPoint, Symantec Endpoint (SONAR) to detect attacks before they come into place.
• Used Mandiant RedLine to analyze indicators of compromise, Internet history artifacts, and related activities.
• Escalated tickets to ServiceNow for quick incident response.
• Used Autopsy and FTK Imager to examine and analyze electronic media in suspected hacking and malware cases.
• Created KB (knowledge-base) documents for lower levels of Corporate Support and Store Support to follow.
• Drove SLAs to completion within a timely basis for critical malware alerts.
• Proficient with PowerShell and experienced in Windows server/client OS, Active Directory, and O365.
• Worked with different types of frameworks: SOX, NIST, and PCI-DSS.

Implemented security best practices at lululemon's Security Awareness Day

Offensive Security - Penetration Testing with Kali (PWK course)

British Columbia Institute of Technology Burnaby, BC

Bachelors of Technology in Forensics Program (Computer Crime), 2019

Courses Completed including

• Project Management for Investigations
• Internet for Investigation
• Network Exploits and Vulnerabilities
• Computer Security Networks
• Computer Forensics
• Introduction to Computer Crime Studies
• Computer Crime Investigative Techniques
• Industrial System Security
• Research Methodology

Douglas College New Westminster, BC

Diploma in Computing Science and Information Systems, 2010