SUMMARY:

• Professional Systems, Cyber, Network, Enterprise Security Engineer with 14 years of experience with extensive knowledge, excellent instinctive problem solving, and decision making skills.
• Specializing in disaster recovery, SIEM active continues monitoring of HIDS, IDS, security audits, assessment, remediation’s, vulnerability analysis, vulnerability management, exploits, enterprise security, penetrating testing, client/server database management systems, product evaluation (COTS + GOTS), research and procurement.
• Provide security engineering designs and implementation in all aspects of Information Assurance and Information Security (InfoSec) Engineering.
• Guidance on ISCM (Information Security Continuous Monitoring), assess and mitigate system security threats/risks throughout the program life cycle by validating system security requirements definition and analysis.
• Establish system security designs; implement security designs in hardware, software, data, procedures, and security requirements. Perform system certification and accreditation planning and testing and liaison activities, and support secure systems operations and maintenance. Built home lab on Kali Linux with the passion for IT security, penetration testing, and web application security. Learning tools like Qradar, AlienVault, Maltego, Burp suite, and other cyber intelligence, analytical, and data collecting tools.

PROFESSIONAL EXPERIENCE:

Confidential, Fairfax, VA

IAM System Security Engineer

• Utilize Nessus Tenable Security Center to consolidate and analyze all vulnerabilities and data gathered from multiple Nessus scanners, measure and evaluate security program effectiveness. Provide reporting and customizable dashboard. Utilize alerts and notifications to speed up incident response and vulnerability remediation. Perform compliance checks against industry standard and regulatory mandates such as FISMA, DISA, HIPAA, SCAP. Develop POA&M for mitigation as required by Risk Management Framework (RMF)
• Responsible for monitoring, managing performance and availability across complex environments to detect, prioritize and neutralize cyber threats using CA’s APM (Application Performance Management) and UIM (Unified Infrastructure Management) and LogRhythm to remediate risks.
• Implement SDLC concepts and processes of IBM Rational Jazz tools including RTC, DOORS and RQM.
• Test systems for compliance with disaster recovery and contingency plans. Upload Artifacts in GRC RiskVision.
• Utilize OWASP TOP 10. Conduct vulnerability analysis, vulnerability management and incident handling.
• Perform threat management, threat modeling, threat vector identification and develop cases for security monitoring. Perform post mortem analysis, documentation of findings and provide recommendations to teams.
• Setting up Splunk Forwarding for new applications, work with metadata, creating Dashboards. Troubleshoot issues with log sources or systems with vendor, and report system defects as needed.
• Provide technical security services to remain in compliance with VA regulations to maintain the Authority to Operate (ATO) and to provide artifacts required by NIST controls 800 - 53 series rev4, FIPS and STIGs.

Confidential, Chantilly, VA

Senior Cyber Security Engineer

• Support the identification and impact classification for new vulnerabilities identified in the client's environment and remediate findings. Meet with FCIO, CIO and other senior management to work with resolving system security issues, security documentation and related facility security.
• Reviewed and updated system categorization using FIPS 199, Initial Risk Assessment, E-authentication, SSP, ATO’s, POA&M, contingency plans (CP), and contingency plan tests (CPT), privacy impact assessments (PIA) and risk assessment (RA) documents per NIST 800 guidelines.
• Work on Risk Management Framework (RMF) outlined in NIST SP 800-37 and VA Directive 6500 handbook.
• Assist in identification and reduction of vulnerabilities at enterprise level using GRC RiskVision.
• Wrote documentation on Information Security solution (technical writing).
• Execute vulnerability assessment activities such as vulnerability scans, web application security assessments, and application security code reviews.
• Enforcing security policies and recommending revisions to policies to ensure proper IT security.
• Responsible for the technical strategic design, implementation, and management of enterprise security systems to include but not limited to firewalls, intrusion detection systems, application security integration, secure remote access, data encryption, identity management and access provisioning, user and system auditing and reporting, HIPPA, VPN, SSL, smart card/token access systems.
• Review security controls development, compliance readiness (NIST 800-53 Series, FISMA, Fed RAMP, FIPS) and technical security architecture/ design/ development/ implementation.

Confidential, Washington, DC

IT Systems Engineer

• Manage and responsible for environment Citrix XenApp 6.5 and perform migration to Citrix 7.6 with storefront V3. Administer Blackberry Enterprise 10 environment. Administer Microsoft Exchange 2007, Mail and Database servers. Administer NetBackup 7.6 for all Windows, and Linux servers. Administer Checkpoint End point security, administer Solarwinds, troubleshoot security logs in Wireshark, IT auditor, and MBSA.
• Utilize VMware vSphere client, Virtual vCenter Server, Managing Users, Groups, Roles and Access Permissions, Snapshot manager and restoring a snapshot, VMotion, Managing Tasks, Events and Alarms.
• Managed and configured Microsoft servers 2008, 2008R2, 2012 and 2012R2, including windows 8 and windows 10. Use ITIL’s best practices for Incident, Problem and Change management process.
• Perform Net backups for physical and virtual servers, from Symantec OpsCenter Analytics, generate reports for managerial review. Manage Windows Servers, Active Directory, group policy object (GPO), VPN/Firewall, IP routing, SAN, LUN, Citrix Administration, DHCP/DNS.
• Administrator of Microsoft Exchange 2007. Troubleshoot, support, manage account creation, migration and recovery. Redundant environment, setup/configuration, administration.
• Install new and/or rebuild existing servers and configure hardware, peripherals, services, settings, directories, storage, etc. Operate, manage, and maintain the MacAfee Enterprise anti-virus deployment and management system- EPO 8.8. Work on ISACA (Information Systems Audit and Control Associations) risk scores for servers and work stations. Successfully assisted in two-factor authentication PIV implementation across 4000 BLS employees. Work on PKI, NIST, DISA, STIG, Whitelist and Blacklisting, knowledge of IDS/HIDS. Work on Nexpose Rapid7, scans and vulnerability assessment.

Confidential, Herndon, VA

Lead Desktop Support Specialist/Systems Administrator

• Provide lead support and training to the IT helpdesk teams and the Desktop Support teams in IT activities such as, PC imaging using Symantec Ghost server, configuration, installation, end user training, local and network printer installation, desktop/laptop PC peripheral installation, asset disposal, desktop, laptop, printer, multifunctional device hardware break-fix, and etc.
• Administer security on network users for the devices by PGP and Symantec management console. Provide support for all server applications, including BlackBerry Enterprise Services (BES) Server. Perform smartphone / air card security analysis, functionality testing, compatibility testing and write end user documentation. Provide remote support, troubleshoot hardware failures and system incompatibilities.
• Minimal use of Cognos BI software to extract data, analyze it and assemble reports. Minimal use and knowledge of Oracle PeopleSoft administration on installing Webservers and Application Server like WebSphere, Prod migrations, system monitoring.
• Worked with MS Service Center Management, Splunk Server, Computrace Server, VMware virtual server management, Citrix management, Active Directory, Symantec Server, PGP encryption, Netback up, Networking technology, Security/Firewalls, Web servers, and NetScaler load balancing technology, Solar Winds for NOC.
• Lead the project for mass deployment of Windows 7 Enterprise from Windows XP on all 99 campuses, on 20,000 plus HP desktop computers and hundreds of Lenovo laptops using Symantec Ghost Cast server and SCCM 2012.
• Repair and assemble all types of laptops, desktop, Apple Computers. Provide complete technical support.

Confidential, Washington, DC

IT Specialist

• Plan and setup the network for onsite computers, support, and provide complete IT support.
• Monitor application performance to ensure efficient and problem-free operations
• Install and configure recreations of software production environments to allow testing of software performance

Confidential, George Town, MD

IT Field Service Engineer

• Provide staff and users with assistance solving computer related problems, which include hardware and software related issues.
• Analyze information processing or computation needs and plan and design computer systems, using techniques such as structured analysis, data modeling and information engineering. Develop, document and revise system design procedures, test procedures, and quality standards.
• Test, maintain, and monitor computer programs and systems, including coordinating the installation of computer programs and systems. Analyzing and creating solution of business problems such as development of integrated production and inventory control.

Confidential, Manassas, VA

Lead Installation Technician

• Responsible for sustaining state-of-the-art 300mm Wafer Automation Transport and processing equipment.
• Provided technical support and perform preventive and corrective maintenance with the goal of increasing equipment productivity and reliability. Work in clean room, protective environment.
• Work closely with area Engineering and Production to increase equipment efficiency.

Confidential, Rockford, IL

Converged Cable Rep/Customer Service /Technical Support

• Provide support for software applications to end users in a Microsoft and Web-based environment.
• Answer incoming NCO software support phone calls, email and chat communications.
• Work in a strong team environment to provide unparalleled support to customers in a wide variety of industries.

Confidential, Riverside, CA

ATM Field Service Technician

• Responsible for maintaining ATMs, PC peripherals and network connectivity in Banks and Drive thru.
• Perform on-site diagnosis and technical fixes, which include card, bills, and paper jams and etc.
• Perform maintenance on ATMs, which include replacement of card reader belts, light bulbs, air filters, and more
• Close service calls and report service data to customers. Explain the problem and how to resolve without a demonstration.