Isheanesu Mandaba

Performed threat hunting, vulnerability assessment, and penetration testing across servers, supporting incident handling and SIEM-based security monitoring. Managed firewalls, PAM, Duo, and mobile device management to reduce risk and maintain compliance with security policies.

Monitored security logs and managed SIEM and antivirus tooling to support SOC reporting and timely incident handling. Conducted vulnerability assessment and maintained controls including firewall policy reviews, Active Directory, PAM, and Duo administration.

Managed Active Directory and supported network/server administration, including account and workstation setup. Administered Azure, SolarWinds, and Sophos firewall controls, maintained backups, and delivered user support while documenting IT policies in an internal wiki.

Delivered penetration testing and ethical hacking activities while supporting IT systems auditing. Conducted cybersecurity research and provided cybersecurity awareness and training to improve security practices.

Supported network and database administration, along with system development and software installation/configuration. Assisted with cybersecurity and auditing tasks and provided helpdesk/user support.

Activities and societies: Vulnerability management; web application scanning (Qualys referenced); related cybersecurity assessment training.

In progress cybersecurity certification covering vulnerability management and web application scanning using industry tools.

Activities and societies: CEH Practical; preparation for CEH-V12 certification.

In progress CEH-V12 certification with focus on ethical hacking practices and CEH practical training.

Master of Science studies in cyber-security and forensic auditing from the University of Zimbabwe (2021–2022).

Bachelor of Technology in Information Security from Harare Institute of Technology (2015–2019).

Completed a certificate in teaching and learning in higher education at Harare Institute of Technology (2017–2019).