About Laraib Sarmad

Cyber Security Analyst

HIAS (Hebrew Immigration Aid Society)11/2023 – 3/2025

• Investigated and triaged 1,000+ monthly security events, leveraging log analysis, threat intelligence, and SIEM tools to identify root causes, contain threats, and deliver actionable insights via custom-built dashboards.
• Developed and maintained incident response playbooks and SOPs aligned with ISO/IEC 27001, reducing security incidents by 47% through pre-defined timelines and escalation paths.
• Performed in-depth vulnerability assessments using Qualys, focusing on Docker and endpoint misconfigurations; automated remediation processes and improved SOC (Security Operations Center) efficiency by 30% through documented escalation workflows.
• Delivered frontline response during global security incidents, ensuring timely containment, coordinating remediation across departments, and providing clear incident summaries for leadership.
• Managed social media threat investigations (doxing, impersonation) and implemented proactive security monitoring strategies to support a risk-based ISMS approach, reducing exposure to reputational attacks.
• Collaborated with legal, IT, and global safety teams to assess vendor risk, respond to security questionnaires, and ensure data handling met compliance expectations.

IT Consultant (Hardware and Software Troubleshooting)

Pace UniversityAugust 2022 - May 2023 (10 months)

Pleasantville, New York, United States

• Conducted computer scans to identify and address vulnerabilities using Splunk and Malwarebytes to effectively secure system against threats, resulting in 30% decrease in security incidents and interruptions to critical systems
• Diagnosed and resolved 10+ microcomputer systems and peripheral technical issues daily to minimize disruptions; implemented Malwarebytes to prevent, detect, and remove viruses, safeguarding systems and data integrity
• Spearheaded data integrity and protection efforts by implementing comprehensive data mining, risk mitigation, and incidence response strategies to reduce security breaches by 20% and improve response time by 15%

Information Security Program Assistant

Pace University - Seidenberg School of Computer Science and Information SystemsFebruary 2022 - May 2022 (4 months)

Pleasantville, New York, United States

• Executed simulated ethical hacking attacks to educate students on mitigation strategies, cataloging information and developing cybersecurity curriculum to train 10-15 undergraduate students
• Directed daily operations for team exercises to facilitate hands-on cybersecurity training and employing tools, increasing student understanding of effective mitigation strategies and skill development by 40%
• Completed competitive analysis to evaluate and optimize processes and programs, resulting in 20% reduction in processing time and seamless transition between collaborating institutions
• Led security awareness training program, driving 7% improvement in identifying and combating phishing attacks.

Technical Support Specialist

Rockland Community CollegeJanuary 2020 - May 2021 (1 year 5 months)

Suffern, New York, United States

• Guided 30+ undergraduate students in navigating campus resources & software, troubleshooting & resolving technical issues while empowering students with disabilities to have immersive college experience.
• Facilitated academic success for 5 students with disabilities each semester by taking comprehensive notes and providing personalized computer support, ensuring equal participation and access to educational resources.