Himalayas logo
Lee HogueLH
Open to opportunities

Lee Hogue

@leehogue

Senior cybersecurity incident responder specializing in cloud and enterprise threat detection.

United States
Message

What I'm looking for

I seek senior incident response roles where I can lead detection and remediation, build automation/SOAR, mentor teams, and strengthen enterprise cloud and on-prem security.

I am a tech-savvy, solutions-driven senior cybersecurity incident responder with substantial leadership experience managing incidents across on-premises and cloud environments (AWS, Azure). I have designed mitigation requirements, led SOAR development, created automation that saved thousands of analyst-hours, and routinely collaborate with stakeholders to close security gaps.

I excel at host and network forensics, incident management, vulnerability assessment, and building training programs and playbooks. My background includes leading incident response for large enterprises and government customers, implementing detection content, and mentoring analysts to improve team performance and security posture.

Experience

Work history, roles, and key accomplishments

Allstate logoAL
Current

Level 3 Incident Responder

Allstate

Nov 2021 - Present (3 years 11 months)

Execute real-time on-premises and cloud (AWS/Azure) incident response for Allstate's global environment, led SOAR platform development, and implemented detection content that reduced incident impact and improved remediation workflows.

Incident ResponseSOARAWSAzurePythonThreat Detection
DT

Lead Cybersecurity Incident Responder

DTCC

Apr 2018 - Nov 2021 (3 years 7 months)

Led real-time incident handling for global enterprise networks (on-prem and cloud), developed incident handler training and table-top exercises, and automated processes saving ~2,800 analyst-hours.

Incident ResponseAWSAzureTraining DevelopmentSIEMThreat Assessment
Jacobs Engineering logoJE

Senior Cybersecurity Incident Responder

Jacobs Engineering

Aug 2016 - Apr 2018 (1 year 8 months)

Directed computer security investigations for USSOCOM, evaluated IDS alerts for remediation, produced incident analysis reports, and coordinated with external agencies on compromises and mitigations.

Incident ResponseIDSForensicsIncident ReportsVulnerability Assessment
ES

Senior Cybersecurity Engineer

Exeter Government Services

May 2015 - Aug 2016 (1 year 3 months)

Managed IAVM patching, IPS and ArcSight connectors, HBSS/ACAS vulnerability scanning across ~7K workstations, and ensured DISA compliance while supporting DRU stakeholders.

Vulnerability ManagementACASIPSArcSightDISAPatch Management
CC

Cybersecurity Engineer

Computer Sciences Corporation

Apr 2014 - May 2015 (1 year 1 month)

Established backup and disaster recovery procedures, supported FISMA reporting, expanded ACAS/HBSS capabilities, and completed DIACAP packages to support U.S. embassies.

Disaster RecoveryFISMA)ACASDIACAPAsset ManagementFISMA

Education

Degrees, certifications, and relevant coursework

University of South Florida Sarasota-Manatee logoUS

University of South Florida Sarasota-Manatee

Bachelor of Science, Information Technology

Bachelor of Science in Information Technology from the University of South Florida Sarasota-Manatee.

Bellevue University logoBU

Bellevue University

Master of Science, Management of Information Systems (Cybersecurity focus)

Master of Science in Management of Information Systems with a focus on Cybersecurity from Bellevue University.

Tech stack

Software and tools used professionally

Splunk logo

Splunk

Gmail logo

Gmail

JavaScript logo

JavaScript

PowerShell logo

PowerShell

Solarwinds logo

Solarwinds

Wireshark logo

Wireshark

Linux logo

Linux

Windows logo

Windows

Datadog logo

Datadog

Qualys logo

Qualys

CrowdStrike logo

CrowdStrike

ArcSight logo

ArcSight

SQL logo

SQL

Nmap logo

Nmap

Nx logo

Nx

Availability

Open to opportunities

Location

United States

Authorized to work in

United States

Job categories

Incident ResponderIncident ResponderSecurity EngineerThreat Intelligence AnalystDigital Forensics AnalystSecurity Operations Center (SOC) ManagerCloud Security EngineerSenior Security Automation EngineerIncident ManagerSenior Incident Response AnalystIncident Response ManagerIncident Response ExecutiveSecurity Incident Response Team ManagerSenior Incident Response Consultant

Skills

Incident ResponseHost ForensicsCyber ForensicsThreat DetectionSOARMicrosoft ATPWiresharkNmapQualysPythonBASHPowerShellSPLActive DirectoryVulnerability ManagementRisk AssessmentSecurity ComplianceTeam LeadershipTraining And DevelopmentForensics Tools (RedlineNetWitnessFireEye HX NX AX EXSplunkJavaScriptSolarwindsWindowsArcSightSQLLinuxDatadogGmailElasticCrowdstrike

Interested in hiring Lee?

You can contact Lee and 90k+ other talented remote workers on Himalayas.

Message Lee

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Lee Hogue - Level 3 Incident Responder - Allstate | Himalayas