SUMMARY:

• Sr. Security Analyst having total work experience of 18 years including Cyber Security, Network and Information Security, iMPERVA Securesphere (WAF), SIEM (Splunk Enterprise), FireEye Threat Analytics Platform, RSA Security Analytics, Cisco Sourcefire.

TECHNICAL SKILLS:

• Counterpath, X - Lite and Zoiper softphones, Wireshark and Network Time Machine
• ATM Switch Fault Isolation and Troubleshooting; WAN Circuit implementation
• Broadsoft soft switch platform, Salesforce Cloud Platform, Tracking tool JIRA
• Sufficient technical understanding of ATM, SONET and Frame Relay
• Microsoft Visio (Document Data Center Layout and Network Changes)
• Telecom Network Support, Solarwinds Network Management tools
• FireEye Threat Analytics Platform, Splunk Enterprise, ForeScout CounterACT,
• McAfee NTR, McAfee ePO, SysAnalyzer, TCPDump, PEiD Tools
• Protocols: TCP/IP; UDP; SIP; DHCP; DNS; RIP; OSPF; ATM; Frame Relay; IGRP

PROFESSIONAL EXPERIENCE:

Confidential, Herndon, VA

Sr. Cyber Security Analyst

Responsibilities:

• Daily monitoring of event collection, security intelligence and emerging threat information sources including SIEM, vendors, researchers, websites, newsfeeds and other sources
• Performs analysis of all threat/vulnerability sources assessing any impacts to Freddie Mac infrastructure and systems and provides an assessment, recommendations and potential actions correlative to the security threat posture and matures the current vulnerability and scanning/assessment capabilities.
• Coordinates response, triage and escalation activities for security events affecting the company’s information assets and activities with the incident response team as part of the security incident response lifecycle.
• Continually reviews process/procedure manuals and documentation for the escalation of threat intelligence, advanced persistent threat detection, vulnerability analysis and incident response handling and looks for ways to improve them.
• Develops communication channels with technology owners and the business to evangelize the evolving threat landscape.
• Must be able to present to different audiences and adjust accordingly (business, technical and management) either structured presentations or ad-hoc. Must be able to establish and maintain business relationships with individual contributors as well as management.
• Maintains a continuous process improvement work environment, for security monitoring, security configuration standards and threat analysis recommending and implementing new/improved process in accordance with existing policy, industry standards and best practices.
• Handling SIEM events and response in critical environments (Email Threat Analysis, Web Threat Analysis, Malware Analysis, etc)
• Knowledge and experience of enterprise detection technologies and processes (Advanced Threat Detection Tools, IDS/IPS, Network Packet Analysis, Endpoint Protection)

Sr. Cyber Security/SOC Analyst

Responsibilities:

• Using SIEM to monitor daily threats and alerts.
• Utilizing Fidelis to prevent unauthorized persons from obtaining PII and other sensitive documents.
• Monitoring FireEye Threat Analytics Platform to prevent intrusions or malicious attack into the network.
• Utilize CounterACT for network monitoring and to block any unauthorized or non-compliant equipment.
• Participate in writing various Method of Procedure Guides for the SBA SOC Analyst and new hires
• Monitored bandwidth usage and traffic alerts related to DoS/DDoS attacks; identified sources of attack and applied Arbor Networks TMS for mitigation.
• Troubleshooting and resolve incidents escalated from users and NOC tickets that are related to SOC within a timely manner.
• Using Lansweeper to monitoring the health of various system devices in the network
• Review Firewall Change Request Form and Create Firewall Change and Back Out Plan with all necessary signatures and for weekly voting by the approval committee.
• Whitelist and Blacklist various website URL in Firewall to minimize external threat and sensitive documents leak out.
• Conduct security review and do investigation to find any vulnerabilities and give recommendation to Federal Management on the proposed software to be install and used in the government network.
• Communicate to customers tactfully and effectively utilizing oral and written communication.
• Prepare and send out SOC Daily Report to Federal Team in preparation for daily meetings and incident escalation.
• Serve as representative of SBA SOC to participate in weekly calls with US-Cert.
• Prepare weekly Network Threat Report with McAfee ePO data results.

Cyber Security Threat Analyst

Responsibilities:

• 24 x 7 operating environment, responsible for monitoring leading edge intrusion detection and prevention technologies. Responsible for ongoing monitoring and reporting of security incidents detected by the world class monitoring solution.
• Deconstruct cyber-attack event sequences.
• Manage Sophos Email Gateway appliance ES1100 for encrypting e-mail, DLP for data protection, Block spam, malware and phishing attacks
• Monitoring devices such as McAfee NTR and Wireshark.
• Malware analysis from shell code exploitation, obfuscation methods, and other exploits as defined in the public domain.
• Using reverse engineering tools and techniques as it pertains to network traffic collection and analysis.
• Uploading data captures to malware scanning sites to detect any suspicious activity such as Trojan malware, password stealers, website redirecting tools and all malware activities.

VoIP support Specialist

Responsibilities:

• Troubleshoot and isolate customer problems with hosted VoIP service
• Determine root causes of problems across customer network, ISP, carrier and internal systems
• Manage queue of trouble tickets, handling intake, escalation, resolution and closure
• Communicate with customers via phone and email
• Communicate with carrier partners via phone, email and web portal
• Assist customers with configuring routers, firewalls and other network devices to optimum hosted VoIP performance.
• Work with customers registering phones on the Aptela VoIP system, configuring phone profiles in the web gui.
• Perform network diagnostics and analyze results using tools such as Wireshark, Network Time Machine, Ping, Traceroute.
• Work a full time regular shift, rotational on-call schedule for weekends and after hours
• Working and supporting other groups in the organization for testing and ticket escalation.
• Capture and analyze PCAP files to identify root cause of network issues
• Remote support of Linksys, Netgear and SonicWALL small business routers.
• Configuring and troubleshooting mobile phones apps such as x-Lite, Zoiper, Fring and acrobits

Lead AnyWare Support Engineer

Responsibilities:

• Communicate any resource/technical assistance requirements to the appropriate Learning Tree staff.
• Communicate technical requirements to prospective and current clients using the AnyWare virtual solution.
• Coordinate with Corporate Sales Managers on AnyWare opportunities to ensure customers Network meet all requirements to run Onsite hybrid or virtual events.
• Communicate, as required, with onsite client representatives prior to the class to identify any specific client needs, making suggestions for technical modifications where required.
• Oversee the testing of customer networks and assist to resolve any issues associated with running AnyWare events. Interface with Product Development, Operations and other Learning Tree departments, as needed, to ensure smooth execution of AnyWare events.
• Involvment in the corrections and upgrades of the Anyware Software app which is built on the Adobe Connect Pro conferencing app. Work and communicate with the Anyware support tool software vendor correcting and upgrading any issues that may occur with the tool.
• Coordinate with Corporate Sales Managers to ensure that any customer wishing to use their own equipment meets all requirements to do so.
• Work with Tier 2 technicians to monitor AnyWare events, particularly onsite events.

Product Development Hardware Test Engineer

Responsibilities:

• Perform simulating home network testing of Verizon FiOS and DSL network equipment utilizing DHCP, PPPoE and Static configurations using Window 2000, XP, Vista and MAC OS operating systems.
• Perform latency test, and functionally testing of the Actiontec router, DSL modems, Motorola settop boxes (STB), Westell and DSL modems. Tests includes Video on Demand (VOD) utilizing MoCA, gaming, streaming video, e-mail, port scanning, bit torrent, routing, stability tests, port to port LAN switching.
• Troubleshoot field related data and video issue as it relates to the customer routers and modems.
• Develop and implement requirement analysis, test plans, test cases for new products utilizing Excel and Word.

Network Installation Consultant

Responsibilities:

• Install, configure, and test access points (Cisco 1100 and 1200), switches, DSL modems, gateway servers, ISP routers, integrate customer equipment, 3 rd party vendor equipment, etc.
• Pull, terminate, test and label Cat5e and LMR cabling throughout the customer site, as depicted in the project statement of work.
• Voip phone installation and Configuring phone profiles on the broadsoft GUI
• Interfaced with customers to resolve installation problems relative to space and wire management, also performed de-installations of switches and routers.
• Responsible for working stand-by as it relates to after-hours maintenance or repair issues.
• After installations, maintenance calls and signal testing a completion report was created for field supervisor with resolution details and any follow up status, if needed. Work with network operations center (NOC) during post installation checks and proof of performance acceptance upon completion of each statement of work.

Technician Tier II

Responsibilities:

• Monitoring, Maintenance, test, and troubleshoot the ATM backbone and SONET network.
• Duties include repair of ATM services including Lucent CBX500, Lucent GX550, Cisco Sentient switches, Edgelink muxes, Tellabs 5500 dacs, Alcatel 1630/1631 dacs, and provide Tier II Data support for other departments as requested.
• Recognize network alarms and react accordingly. Responsibilities include knowing Layer 1 and Layer 2 network topology and how network elements and services interconnect, as well as having a strong understanding of WAN protocols: ATM, Frame Relay, PPP, DSL.
• Troubleshoot reported problems and resolve within departmental guidelines.
• Provide training and assistance to lower level technicians, assist new and existing employees in departmental policies and procedures. Continually strive to improve network availability, MTTR times and customer service measurements.
• Testing and troubleshooting end to end DS3, OC3, and OC12 circuits.
• ATM knowledge includes but not limited to building PVC and SPVC connections.

Tier I Engineer

Responsibilities:

• Receive trouble reports from end user retail customers
• Perform proper Trouble Ticket Entry and Administration (Siebel Ticketing system)
• Adhere to escalation procedures and Customer Care processes
• Interact with the Cbeyond Customer Care Agents to resolve customer affecting issues
• Monitor and maintain the Cbeyond voice and data networks
• Troubleshoot Voice QOS issues
• Escalate troubles to vendors/service providers when appropriate
• Resolve routine trouble tickets
• Provide feedback to Customers concerning service issues
• Cisco router troubleshooting
• Add and changes to customers’ accounts and permissions

Network Technician

Responsibilities:

• Implement networking system moves, adds and changes, assists with primary diagnostics and testing, document installation and maintains networking systems for the Data Center's network services.
• Perform all patching and cross connecting in support of routine moves, adds and changes for network terminal equipment.
• Update all cable plant documentation to reflect the changes, Document Data Center layout using Microsoft Visio.
• Install and configure Cisco hardware and software associated with the company's extended data communication network and peripheral devices.
• Perform testing and troubleshooting activities to isolate and diagnose common network issues.
• Devices installed: Cisco 6500 & 3550 Catalyst switches, Cisco PIX firewalls, Dell PowerEdge Servers, Single and multi-mode fiber cables, Ethernet cables, APC Racks and Rack PDUs.

Network Ops Engineer

Responsibilities:

• Held accountable for NCHP network services
• Manages and provides network technical direction for NCHP
• Performs design and analysis of LAN networks involving routing, bridging, network OS's, VPN, Internet connectivity, and other networking aspects
• Monitors network event log for all routers and switches
• Provided desktop support and upgrades in a Windows XP environment, Microsoft Office installation and configuring Outlook accounts.
• Performed day to day management and performance evaluation of Cisco Routers and Switches. Configure and support Checkpoint Firewall for remote access.
• HP server installation, maintenance, and backups. Server and network updates, daily tape backups with weekly offsite storage.
• Prepares weekly and monthly status reports.
• Perform network maintenance using software tools, hardware devices, and cable analyzers. Monitors and controls performance of network resources Tier 2 network support of Cisco Routers and switches

WAN Support Engineer

Responsibilities:

• Maintenance and Tier-II operational support for high-availability production IP, Frame Relay and ATM WAN, consisting mainly of Cisco (IGX ATM Switch), Juniper, Lucent (PSAX Multiservice Gateway Switch), and other vendor equipment.
• The major focus is on support of Nextel’s core production network, utilized to carry internal and external customer traffic.
• End to end problem management, reporting and notification according to departmental procedures. Responsible for managing relationships with customers, vendors, and interfacing organizations.
• Played a major part in building and configuring Nextel’s Mobile 2 Mobile Network.
• Assist the NNOC, NNTSG, and Nextel Markets in the interpretation of real-time system alarming and system fault isolation.
• VoIP implementation and support across the WAN (Cisco 8400 IGX and Lucent 4500 Packet-star Switch.) Worked in tandem with VoIP deployment team to design and test network components prior to deployment.
• Developed, implemented, and enforced written procedures for network operations, and monitoring. Served as a liaison to the VoIP deployment team for defining and planning WAN & voice services requirements.
• Provided technical and customer support for Nextel Online 2-Way Messaging Services, Blackberry, Tethered mode packet data, circuit data, and micro-browser service.
• Extensive use with NETCOOL, Cisco WAN Manager, Cisco Works, Cisco View, HP Open-view, ATM Director, Traffic Director, Sniffer, and Test Director tools, Proficient in the use of Clarify trouble-ticket platforms.
• Had the opportunity to work with the VoIP team installing and configuring the Cisco IP phones in the NOC. Kept management informed of service-affecting issues.
• Provided technical assistance in network planning, engineering, and deployment during expanding of the WAN.
• Responsible for Managing all projects from ground up, writing Method Of Procedure (MOP) docs as well as Business Requirements documentation, Served as backup support for the ATM groups VPN access router.
• On-call duty, estimated on-call hours were 12-15 additional nighttime hours and weekends approx. every third week.