Cybersecurity Analyst

Machaya Tawanda

_

Defending digital assets and mitigating risk with 4+ years of hands-on experience in threat analysis, incident response, vulnerability assessment, and penetration testing. Committed to staying ahead of emerging threats.

Get in touch with me ⬇ Download Resume
0+Years experience
0+Threats identified
0+Users protected
0%Data security
Tawanda Machaya TM πŸ›‘οΈ Available
↓
01

About

I'm a Cybersecurity Analyst with 4+ years of hands-on experience in online security research, strategic planning, execution, and system maintenance. I've built a proven track record of securing digital assets and mitigating risks across large enterprise environments.

My work spans threat analysis in 24/7 operations, vulnerability management, identity & access management, and security awareness training for thousands of users. I'm proficient in training internal teams on security protocols and preventive measures, and dedicated to creating a secure digital environment through cutting-edge solutions.

Currently pursuing a Master's in Cybersecurity at Saint Louis University, I combine practical defensive experience with a strong foundation in governance, risk, and compliance frameworks.

02

Skills & Toolset

Core Competencies

Network SecurityIncident Response Vulnerability AssessmentPenetration Testing Firewall ConfigurationSIEM Risk Assessment & MitigationEncryption Security Policy DevelopmentDisaster Recovery Team Leadership

Security Tools

SplunkSOARXDR Burp SuiteMetasploitNessus NmapWiresharkHashcat OpenVASVirusTotalRsyslog SETMSFvenom

Digital Forensics

FTK ImagerAutopsyVolatility KAPEScalpelExiftool Windows File Analyzer

Cloud & Networking

AWSAzureAWS VPC Azure Virtual NetworkSecurity Groups Network ACLsMySQL

Frameworks & Compliance

OWASP Top 10NISTISO/IEC 27001 CIS Critical Security ControlsCOBIT HIPAAPCI DSSMITRE ATT&CK Zero TrustGRCCS-VRMITIL
03

Experience

Cybersecurity Analyst

Jan 2022 – Jul 2024

Econet Wireless β€” Zimbabwe

  • Performed threat analysis in a 24/7 environment, mitigating risks and achieving 99% data security using Nmap, Nessus, and Wireshark.
  • Supervised a team of 40 instructors to deliver company projects on time.
  • Created and managed DLP rules and policies for 8,000 end users using OpenVAS and Wireshark.
  • Solely managed a comprehensive database of 20,000+ users, significantly increasing departmental performance.
  • Identified 350+ new viruses and hidden malware in under three years, protecting 15,000+ computers using Burp Suite and Metasploit.
  • Performed random security inspections across a 1,000-employee site to validate technical operations.
  • Implemented phishing simulation programs with targeted training and remediation.

Information Systems Security Analyst

Jan 2020 – Jan 2022

Econet Wireless β€” Zimbabwe

  • Conducted security risk assessments based on ISO/IEC 27001, ITIL, COBIT, NIST, and PCI-DSS.
  • Created and maintained engaging training modules, driving awareness and compliance for 8,000+ employees.
  • Managed Identity & Access Management (IAM) modules across multiple systems for 7,000+ employees.
  • Developed UAT scripts and conducted UATs for in-house and SaaS products to validate security functionality.
  • Promoted cybersecurity best practices through stakeholder security awareness training.

Production / Service Engineer

Jan 2011 – Jan 2020

Econet Wireless β€” Zimbabwe

  • Collaborated with Planning, Commercial, and Telco Vendors to design resilient, secure, highly available Value Added Services infrastructure.
  • Developed automation through scripting and tooling to identify and respond to service challenges.
  • Coordinated Business Continuity Process routines with the NOC team for minimal service impact.
  • Led on-prem and remote troubleshooting within agreed service standards.
  • Managed incidents and reduced repeat incidents through continual service improvement.
  • Mentored and supervised Graduate Trainees through onboarding, training, and placement.
04

Projects

01

Hacking Adventures with Kali Linux

Conducted hands-on penetration testing using Kali Linux to simulate real-world hacking scenarios, exploiting vulnerabilities and applying ethical hacking techniques to identify and address security weaknesses.

Kali LinuxPen TestingEthical Hacking
02

Vulnerability Assessment with OpenVAS

Executed comprehensive vulnerability assessments using OpenVAS, analyzing scan results to prioritize and remediate vulnerabilities and developing a systematic approach to proactively manage cybersecurity resilience.

OpenVASVARemediation
03

Endpoint Analysis with Velociraptor

Used Velociraptor for deep forensic investigation on individual devices, conducting detailed endpoint examinations to identify and respond to security incidents promptly and enhance incident response.

VelociraptorDFIREndpoint
04

Real-Time Security Monitoring with Wazuh

Deployed and fine-tuned Wazuh for continuous threat detection, configuring rules to align with organizational security policies and strengthening incident detection and response capabilities.

WazuhSIEMMonitoring
05

Network Traffic Analysis with Wireshark

Conducted in-depth network traffic analysis using Wireshark to identify anomalies and threats, interpreting packet captures to detect malicious activity and implement proactive security measures.

WiresharkNetworkPacket Analysis
05

Credentials

Certifications

  • AWS Certified Cloud Practitioner
  • PMP β€” Project Management Professional

Education

  • M.S. Cybersecurity (In Progress) Saint Louis University β€” Missouri, USA
  • B.Sc. Computer Science (Honors) NUST β€” Bulawayo, Zimbabwe
  • Advanced Diploma β€” Telecommunications Systems City & Guilds β€” London, UK
06

Get in touch

Open to cybersecurity roles, collaboration, and security consulting. Let's build a more secure digital environment together.

βœ‰ Email[email protected] ☎ Phone+1 314 305 6840 ⧉ Quick actionCopy email address