Kelvin Agyei
Cybersecurity Analyst
Memphis,TN
Summary
Results-driven Cybersecurity and Vulnerability Management Professional with a Master's Degree in Information Systems, Certified Cybersecurity Professional, and Certified in AI Governance. Certified Cybersecurity Professional with over 7 years of progressive experience across Security Operations, Vulnerability Management, and Remediation Engineering. Adept at identifying, assessing, and driving remediation of critical vulnerabilities across hybrid environments. Proven track record of collaborating with IT, DevOps, and GRC teams to reduce risk exposure, meet compliance mandates, and enhance organizational security posture. Strong foundation in vulnerability scanning tools, CVSS scoring, risk prioritization frameworks, and automation for remediation tracking. Proficient in cybersecurity practices, including risk assessment, access control, incident response, IT security policy, and social-engineering defense, with project management expertise in Agile and Waterfall methodologies, Gantt charts, sprint planning, and stakeholder communication, and skilled in using Python, Tableau, SQL, Excel, Microsoft Project, Visio, R, JavaScript, and Microsoft Office Suite.
Overview
10
10
years of professional experience
1
1
Certification
Work History
Vulnerability Analyst
America CyberSquad ACS
Columbus
01.2024 - 12.2025
- Conducted enterprise-wide vulnerability scans using Tenable.io, Nessus, achieving 95% scan coverage across 600+ cloud/on-prem systems.
- Developed automated cybersecurity metrics and dashboards using Python and Excel to track vulnerability trends, remediation progress, and risk exposure for leadership review.
- Assessed 400+ CVEs using CVSS, MITRE ATT&CK, and CISA KEV, integrating intel to prioritize high-risk threats.
- Leveraged exploit intel to correlate vulnerabilities with active threats, reducing critical exposure by 45%.
- Prioritized remediation workflows, maintaining 98% NIST/ISO/RMF compliance within SLA timelines.
- Coordinated patches for 200+ vulnerabilities in CI/CD, validating fixes post-remediation.
- Built Python/PowerShell automation scripts reducing reporting effort by 35%.
- Performed container-level RCA using Twistlock, rebuilding 60+ container images to eliminate CVEs.
- Created Splunk dashboards to track vulnerability trends improving audit visibility for CORA/CCRI readiness.
- Authored YARA/Sigma rules detecting 30+ exploit behavior indicators.
- Conducted Web App testing mitigating 20+ OWASP Top 10 vulnerabilities.
- Maintained Jira/ServiceNow remediation documentation for HIPAA, PCI-DSS, NIST CSF compliance.
- Mentored junior analysts improving VM workflow efficiency by 20%.
- Increased vulnerability visibility coverage to 98% of assets, reducing unmanaged systems by 30%.
- Improved critical remediation SLA compliance from 82% to 97% using risk-based prioritization (CVSS + EPSS).
- Strengthened cross-team remediation collaboration by 40% through IT/DevOps/Product partnership integration.
- Reduced false-positive validation time by 25% and reporting effort by 35-50% via automation scripting.
- Delivered audit-ready evidence for NIST, ISO 27001, SOC2, GDPR, cutting compliance reporting time by 45%.
Information Security Analyst Intern
City Of Memphis
Memphis
06.2025 - 08.2025
- Under supervision, conducted vulnerability scans using CrowdStrike, Nessus, and Tenable.io across 100+ systems, supporting 85% coverage for on-premises and cloud environments.
- Assisted senior analysts in analyzing 80+ CVEs using CVSS and MITRE ATT&CK, leveraging threat intelligence to prioritize remediation tasks.
- Monitored Splunk logs under guidance, escalating 8+ security anomalies and correlating findings with vulnerability data for mitigation.
- Supported IT teams under direction to patch 60+ vulnerabilities in Windows and Linux systems, contributing to 95% NIST and ISO 27001 compliance.
- Developed Python scripts with senior oversight to automate security report generation, reducing reporting time by 15% for compliance audits.
- Documented 6+ security incidents in ServiceNow under supervision, assisting with root cause analysis and mitigation recommendations.
- Assisted in generating compliance reports in Jira under guidance, achieving 97% adherence to HIPAA and PCI-DSS standards for audits.
- Supported creation of Splunk dashboards under supervision to track security metrics, enhancing visibility for leadership and audit teams.
Technical Assistant
University of Memphis ITS Service Desk
Memphis
03.2024 - 09.2024
- Provided day-to-day IT support for students, faculty, and staff, troubleshooting hardware/software issues.
- Maintained and resolved tickets related to network connectivity, system access, MFA, printing, and email issues.
- Assisted with Windows workstation setup, imaging, configuration, and software installation updates.
- Supported password resets, account provisioning, AD user updates, and access permissions.
- Configured hardware devices and peripherals, reducing device-related downtime.
- Implemented secure configuration practices for workstations and user accounts.
- Documented troubleshooting steps and resolutions to improve ticket handling efficiency.
Cybersecurity Analyst (Generalist)
Emperor Hive Limited
Accra
11.2020 - 08.2023
- Conducted vulnerability scans using Tenable.io and Nessus across 85+ systems, achieving 90% scan coverage for on-premises and cloud environments.
- Assessed 100+ CVEs using CVSS and MITRE ATT&CK frameworks, leveraging vulnerability intelligence to prioritize remediation efforts.
- Integrated threat intelligence from CVE databases to identify exploitable vulnerabilities, reducing high-risk threats by 30%.
- Collaborated with IT teams to coordinate patching of 100+ vulnerabilities in Windows and Linux systems, ensuring 95% compliance with NIST standards.
- Developed Python scripts to automate vulnerability report generation, decreasing reporting time by 25%.
- Performed root cause analysis on container vulnerabilities using Twistlock, supporting remediation for 20+ container images.
- Documented remediation progress in Jira, producing audit-ready reports for ISO 27001 and HIPAA compliance.
- Monitored Splunk logs to identify anomalies, escalating 10+ potential security incidents linked to vulnerabilities.
- Conducted web application testing with Burp Suite, mitigating 15 OWASP Top 10 vulnerabilities through configuration changes.
- Assisted with NIST-aligned documentation preparation during audit readiness tasks.
IT Support / Systems Analyst
Bayport Financial Services
Ghana
08.2015 - 08.2016
- Provided Tier 1-2 technical support to 80-120 users, resolving 90-95% of issues on first contact.
- Reduced average incident resolution time by 25-30% through efficient troubleshooting and proper escalation.
- Installed, configured, and maintained 100+ endpoints (desktops, laptops, printers), ensuring 99% system uptime.
- Managed user onboarding/offboarding for 50+ employees, enforcing role-based access control and least-privilege principles.
- Assisted with Active Directory administration, including account provisioning, group policy updates, and password management, supporting 100+ user accounts.
Education
Master of Science - Information Systems
University of Memphis
Bachelor of Science - Metallurgical Engineering
Kwame Nkrumah University of Science and Technology
Skills
- Vulnerability Identification & Prioritization
- Vulnerability Prioritization
- Vulnerability/Threat Intelligence
- Remediation Coordination & Tracking
- SIEM & Log Analysis
- Risk-Based Patch Management
- AppSec/Secure SDLC
- Cloud Security & Infrastructure
- Multi-platform OS
- Predictive & Prescriptive Analytics
- Compliance/Frameworks
- Security Automation
- Network & webapp security
- Operational Technology (OT) Security
- Project and People Management
Certification
- CompTIA cySA+
- CompTIA Security+
- Cisco Network Security Certificate
- AWS certified security - specialty (in progress)
- PrivacyOps Certification
- Firewall Administration Essential Training Certificate (2019)
- AI Governance Certification
Hands On Home Lab Experience
Cybersecurity Home Lab - Vulnerability Management & Systems Administration, Built and maintained a vulnerability management lab using Nessus Essentials to perform scheduled scans across Windows and Linux systems., Conducted CVE analysis, CVSS-based prioritization, remediation validation, and documentation., Deployed and managed Windows and Linux virtual machines using Oracle VirtualBox, VMware Workstation, and Microsoft Hyper-V to simulate enterprise environments., Performed OS installation, system hardening, patching, and configuration management across virtualized systems., Implemented user access controls and permissions aligned with IT administration best practices., Simulated incident response and log analysis using Splunk-like environments., Executed network and host-based security testing using Nmap, Kali Linux, and Metasploitable2.
Timeline
Information Security Analyst Intern
City Of Memphis
06.2025 - 08.2025
Technical Assistant
University of Memphis ITS Service Desk
03.2024 - 09.2024
Vulnerability Analyst
America CyberSquad ACS
01.2024 - 12.2025
Cybersecurity Analyst (Generalist)
Emperor Hive Limited
11.2020 - 08.2023
IT Support / Systems Analyst
Bayport Financial Services
08.2015 - 08.2016
Master of Science - Information Systems
University of Memphis
Bachelor of Science - Metallurgical Engineering
Kwame Nkrumah University of Science and Technology