Senior Information Security Engineer Resume Santa Ana, CA - Hire IT People

SUMMARY:

Possess 7+ years of experience in Information Security with specialization in SIEM, content filtering and Vulnerability Assessment of Servers and Web Applications, Intrusion Detection/Prevention Systems and Wireless Security.
Experience in working on several SIEM tools such as RSA Envision, Symantec SIM and HP Arcsight
Thorough knowledge on Vulnerability assessment using Foundstone, Nessus, Qualysguard tools.
Knowledge of Web Application Security Assessment using HP WebInspect.
Experience in working on wireless security tools such as Motorola AirDefense and Cisco WCS.
Experience in working on firewall rule reviews
Experience in working in Security Operations Center environment.

PROFESSIONAL EXPERIENCE:

Confidential (Santa Ana, CA)

Senior Information Security Engineer

Responsibilities:

Configuring, troubleshooting, monitoring of security events using Arcsight ESM and Logger.
Deployed Arcsight logger (software version).
Investigating security incidents by correlating events from various sources such as Firewall, IPS, and Windows/Linux server.
Create new active channels and tested rules as and when necessary.
Worked on launching various types of scans (normal, macro based, workflow driven etc.) and identifying vulnerabilities in Web Applications.
Generated reports and written recommendations on remediating the vulnerabilities.
Actively worked with HP support to resolve several issues.
Configuring, maintaining and troubleshooting of Websense V10K devices.
Subject Matter Expert for Websense WebGateway
Extensive troubleshooting done to ensure filtering is always active and correct.
Successfully resolved several critical and complex issues without any assistance from the support teams.
Actively worked on upgrading the appliances to Version 7.7
Working on identifying risks and virus issues.
Correlated the information in SEP with events from Arcsight, Fire Eye and Websense to investigate security threats.

Confidential (Saint Louis, Missouri)

Senior Security Analyst

Responsibilities:

This project involves Integration of new log sources, configuration and troubleshooting of RSA Envision.
Handling of P1/P2/P3 incidents in Envision pertaining to UNIX, Windows, Applications, DHCP, Routers, Switches, and IDS etc.
Work closely with RSA TS to resolve any issues and ensure service availability at all times.
Deploy new rules as and when requested by customer.
Preparing SOP (Standard Operating Procedure) for new rules.
Maintaining PCI Compliance for log monitoring and Incident Handling and ensuring section 10 of PCI DSS is always met (Track and Monitor network resources)
Monitor for IDS/ Firewall /Netscaler traffic for potential threats. Write new security rules for various attacks (Eg.DDOS, DOS, SQL Injection etc...)

Confidential (ATLANTA,GA)

Information Security Engineer

Responsibilities:

Analysis of wireless security threats or incidents using Motorola AirDefense.
Alerting the appropriate teams in case of incident.
Deployment, configuration and shipment of AirDefense sensors.
Testing and research on new methods to constantly upgrade the AirDefense infrastructure. knowledge of deployment using AirDefense Architect/Motorola LAN Planner Software.

Confidential

Information Security Engineer

Responsibilities:

Implementation of RSA Envision ES 7560 series appliance.
Monitoring of alerts and events, alerting the appropriate teams for incidents observed, generating and analyzing reports.
Knowledge on integration of Checkpoint Firewall, Windows Servers and ODBC Data Sources.
Worked on RFP for implementing Envision to various customers.

Confidential

Information Security Engineer

Responsibilities:

Downloading firewall rule reports and analyzing every rule.
Identifying unsecure/obsolete rules and advising client to remove/modify the rule
Participate in the change management process of the client to review changes to the rules