SUMMARY:

• Highly qualified and well Experienced IT Professional with overall 15 years of Experience in Information Technology.
• Have 9 years of Experience in Information Assurance including Network Intrusion Detection Analysis, incident response, Vulnerability assessment and security investigation.
• I am a CISSP certified professional with DOD 8570 Certification.
• Have Top secret security Clearance and have DHS EOD Access.
• Have Provided Intrusion Detection Analyst support on a 24 x 7 basis. Extensive experience utilizing multiple Intrusion detection and forensics tools i.e. HP Open View, Cisco Intrusion Detection products and Net Detector (NIKSUN) forensic tool.
• Assists in troubleshooting and remediation of network or system events/deficiencies that are directly related to IA vulnerabilities.
• Provided network monitoring and analysis support of systems/firewalls. Researched and tracked vulnerabilities while providing client reports of suspicious/malicious activity
• Perform daily Intrusion Detection Sensor (IDS) monitoring to ensure that all sensors are active. Use of Ethereal, NIKSUN Net detectors, and Real secure to monitor and capture real time network traffic
• Trained users and staff based on the needs of the organization on the many different networking technologies. Ensured the confidentiality, integrity, and availability of systems, networks, and data through the planning, analysis, development, implementation, and enhancement of Information Systems Security programs, policies, procedures, and network security tools.
• Conducted data system studies and prepare documentation and specifications for proposals and projects

KEY STRENGTH:

• Networking Intrusion Detection Analyst
• Incident Response
• Security investigations
• Vulnerability Assessments
• Troubleshooting
• Confidential Analyst technical network system scans business security
• Intrusion Detection Analyst

TECHNICAL SKILLS:

Windows NT, Windows 95/98/2000/XP, UNIX, Cisco IOS, Sun Solaris, Real Secure, Snort, NIKSUN Net detector, Ethereal, Remedy, ISS Site protector, Retina, Nessus, BIGFIX, Sourcefire, Nitro Security - Nitro Guard, Cisco MARS IDS, Centaur, US-CERT, McAfee ePO, Encase, RSA Envision, SANS, HBGary

PROFESSIONAL EXPERIENCE:

Confidential

Net Defense Engineer

Responsibilities:

• Produce slides and brief government and military about the security incidents and steps used to migitate the risks and vulnerabilities
• Produce tasking order and coordinate with regional Confidential to ensure that they are complied
• Assist in producing TTP and recommendation to US Confidential official in order to improve the security posture.

Confidential, Washington, DC

Tier 3/4 Engineer

Responsibilities:

• Daily activities include: develop and maintain knowledge and expertise concerning accreditation standards and requirements, collaborate with system development personnel, provide guidance, ensure in corporation of information assurance within the system architecture at all stages of program development, provide technical review and analysis support during the accreditation process, provide technical IS support, document each system accreditation, coordinate all reviews with appropriate stakeholders, and maintain current accreditation status of each IT asset.
• Support to investigations on IDS events, alerts, and security notifications. Assist with remediation and mitigation of potential malicious/suspicious activity on DHS networks using Encase, HBGary and other investigative tools.
• Analyze and recommend approval/disapproval to government leadership for SIG requests from users requesting access to applications and network services
• Attend daily DHS conference calls and on the job training that is required by the customer
• Assist with writing of SOPS and CONOPS of security measures for the DHS environment.
• Review Bigfix alerts and analysis to determine unauthorized programs and folders on hosts on the network.

Confidential, AFB, DC

Senior Information Assurance Engineer

Responsibilities:

• Shift Supervisor for 6 staff, responsible for staff on the job training and technical development of Confidential ’s Information Assurance Protection Center (IAPC) 24/7 network security monitoring mission in support of Confidential, SIPRNET, and NIPRNET enclaves
• Provides Intrusion Detection Analyst support on a 24 x 7 basis. Extensive experience utilizing multiple Intrusion detection and forensics tools i.e. HP Open View, Cisco Intrusion Detection products and Net Detector (NIKSUN) forensic tool. Has utilized several Vulnerability Assessment tools such as ISS scanner, Retina scanner and NMAP tools.
• Provide day to day operational cognizance of the IC Spills application to include:
• Provide liaison with IC, DoD, and Federal Computer Network Defense ( Confidential ) and Incident.
• Response Centers in maintaining and understanding threats, vulnerabilities, and exploits that could impact IC networks and assets

Confidential

Senior Information Assurance Engineer and Intrusion Detection Analyst

Responsibilities:

• Shift Supervisor for 6 staff, responsible for staff on the job training and technical development of Confidential ’s Information Assurance Protection Center (IAPC) 24/7 network security monitoring mission in support of Confidential, SIPRNET, and NIPRNET enclaves Provides Intrusion Detection Analyst support on a 24 x 7 basis. Extensive experience utilizing multiple Intrusion detection and forensics tools i.e. HP OpenView, Cisco Intrusion Detection products and Net Detector (NIKSUN) forensic tool.
• Has utilized several Vulnerability Assessment tools such as ISS scanner, Retina scanner and NMAP tools.
• Assists in troubleshooting and remediation of network or system events/deficiencies that are directly related to IA vulnerabilities.
• Assists in troubleshooting and remediation of network or system events/deficiencies that are directly related to IA vulnerabilities.

Confidential

Information Assurance Analyst

Responsibilities:

• Security Engineer in support of CIFA’s Computer Incident Response Center ( Confidential ) responsible for reviewing security incidents, managing security technologies (such as IDS), documenting processes and escalation procedures, and working with systems administrators and network engineers to manage and resolve security incidents
• Provided network monitoring and analysis support of systems/firewalls.
• Researched and tracked vulnerabilities while providing client reports of suspicious/malicious activity

Confidential

Information Systems Analyst/Security Analyst

Responsibilities:

• Confidential Analyst responsible for detecting, responding to, and neutralizing unauthorized computer intrusions of Department of the Confidential Information Systems throughout the United States Southern Command ( Confidential ). Conduct aggressive computer intrusion investigations in coordination with the Confidential CERT and Confidential Counterintelligence and CID investigators
• Create and apply RealSecure intrusion detection templates and policies to identify, minimize, and deny host and network attacks at multiple Confidential installations and activities. Performed vulnerability analysis and risk assessments on UNIX, DOS-based and Windows systems, to include Windows NT platform Conducted technical network system scans and vulnerability assessments to identify systems susceptible to unauthorized access attempts and denial of service attacks. Produced information security reports on vulnerabilities and fixes; developed standard operating procedures for Confidential operations, to include incident handling. Maintained system security to include intrusion detection system (Real Secure). Researched security needs for in-house developed systems; applies security rules to adequately protect corporate developed systems
• Produced and maintained business security requirement procedures and Standard Operating Procedures (SOP); provided assistance in development of corporate security policies and solutions.
• Analyzed and consolidated Intrusion Detection System reports daily and submitted a daily report to ACERT, chief, CDIA, and Intel Cell Perform daily Intrusion Detection Sensor (IDS) monitoring to ensure that all sensors are active. Use of Ethereal, NIKSUN Netdetectors, and Realsecure to monitor and capture real time network traffic IASO (Information Assurance Security Officer Course) Level 1 Certified SA/NMS (Systems Administrator/Network Manager) Level 2 Certified DITYVAP Certified Retina, Incident Handling Certificate