Resume

Zane Prall

Salem, Oregon · zane@prall.dev · GitHub · LinkedIn

Education & certifications

  • Associate’s Degree in Applied Sciences, Cybersecurity — College of Western Idaho
  • ISC2 CISSP — Credential ID 3714796
  • CompTIA Security+ — Credential ID COMP001021832361
  • CompTIA A+ — Credential ID COMP001021832361
  • Boy Scouts of America — Eagle Scout

Core strengths

  • Penetration testing and attack-path reporting
  • SOC visibility, SIEM alerting, and incident triage
  • Cloud, endpoint, and vulnerability management
  • Linux/Windows administration and automation

Penetration Tester

Black Hills Information Security · 11/2024 – 2/2026

  • Assessed SOC visibility and alert accuracy throughout active campaigns.
  • Chained misconfigurations and control gaps into complete attack paths.
  • Correlated red team activity to MITRE ATT&CK for SOC analysis.
  • Performed in-depth web application penetration testing and exploitation analysis.
  • Translated technical attack paths into business-impact-focused reporting.

Information Security Engineer II

Clearwater Analytics · 1/2023 – 11/2024

  • Automated detection and response workflows for recurring security incidents.
  • Built custom queries and alerts for emerging attack vectors.
  • Investigated incidents across Chronicle, LogScale, Meraki, ReliaQuest, CrowdStrike RTR, Prisma Cloud, and Palo Alto platforms.
  • Audited Intune baselines, endpoint compliance, cloud controls, and infrastructure changes.
  • Held an additional role in Application Security as a Web Application Security Tester.

Information Security Analyst

Clearwater Analytics · 9/2022 – 1/2023

  • Applied DISA STIG policies through Intune and Active Directory Group Policy.
  • Performed threat hunting and endpoint investigation using CrowdStrike RTR.
  • Managed Rapid7 vulnerability assessments and remediation tracking.
  • Aligned internal policies and configurations to NIST, ISO 27001, and SOC2 standards.

Threat, Asset, and Vulnerability Engineer

CRI Advantage · 1/2022 – 9/2022

  • Implemented vulnerability scanning capabilities.
  • Installed and configured IDS and antivirus solutions.
  • Performed wireless audits and content filtering assessments.

Systems Administrator

D&B Supply · 7/2019 – 9/2022

  • Administered Linux systems, Windows systems, Exchange, AS/400, VMware, and Sophos firewalls.
  • Managed patching, remote management, antivirus, vulnerability scanning, and IDS rollouts.
  • Used Python and PowerShell scripting to interact with legacy systems and automate workflows.

References available on request.