SUMMARY:

• Over 10 years in IT and Information Systems Security Engineer.

TECHNICAL SKILLS:

• Windows 2000/XP/Vista windows 7 and
• Linux
• Active Directory
• ISO 9000
• IBM 4690
• Domain Name Systems (DNS)
• Dynamic Host Configuration Protocol (DHCP)
• Simple Mail Transfer Protocol (SMTP)
• HP Fortify and similar static code analyzer tool
• LAN/WAN Administration
• TCP/IP
• NAT
• VLANs
• Cisco switches and routers
• Check Point
• PDA and Blackberry support and troubleshooting. Understanding of the issues surrounding deliverability to major ISPs
• Experience with SIEM
• Symantec
• McAfee EPO
• Palo Alto NextGen firewalls
• Symantec Management Agent
• McAfee Orchestrator and Cisco ASA 5500 Series Adaptive Security Appliances that provides context - aware firewall capabilities and comprehensive real-time threat preventions.

PROFESSIONAL EXPERIENCE:

Confidential, Pleasanton CA

Information Security Consultant

Responsibilities:

• Review existing PCI and DSS security policies and compliances and make appropriate recommendations in line with HIPPA, SOX, ITAR and ISO 27001 and other regulatory bodies.
• Perform penetration testing and carrying out vulnerability assessments.
• Take part in incident response planning to keep ahead of cyber threats and training staff on Information security awareness.
• Identify, contain, and remediate threats across multiple platforms (Windows, Unix / Linux, Apple, Android, etc.).
• Hand-on use of Malware detection and analyzing tools and use of HP fortify and analyzing tools.
• Hands on testing of vulnerabilities and application assessments using OWASP.
• Implementation of Palo Alto NextGen firewalls.
• Escalates unresolved problems to the appropriate personnel to ensure the overall quality of information security service delivery is being maintained at all times.
• Experience with public key Infrastructure systems and certificate authority administration
• Organizes, prioritizes and handles administrative matters and ensures that activities/projects are implemented as required.
• Experience with Public Key Infrastructure systems and certificate authority administration
• Demonstrates skills to complete activities within established timeframes.
• Provide tier III production security support to client support, server administration, and research staffs and resolves operational problems/issues.

Information Security Engineer

Responsibilities:

• Hand-on use of Malware detection and analyzing tools and use of HP fortify and analyzing tools.
• Hands on testing of vulnerabilities and application assessments using OWASP.
• Document network and network security policies and procedures (Identify deficiencies and the gaps in the infrastructure and develop the plans to adhere to industry best practices).
• Partner in information security initiatives such as policy gap analysis, penetration testing, policy compliance and remediation plans for deficiencies.
• Lead the identification of network security vulnerabilities and action plans to address them.
• Develop and recommend solutions to mitigate network security vulnerabilities, and implement in an efficient manner.
• Conduct research to identify and prevent new attacks to our systems and products
• Perform real-time content inspection and filtering, URL filtering, and IPS functionality using NextGen Palo Alto firewall.
• Perform vulnerability management, analysis and assessments.
• Responsible for defending the network against malware, viruses and all threats that negatively impact confidentiality, integrity and availability.
• Implement and support endpoint encryption and enterprise email encryption with PgP.Proactively monitor newly-emerging information security threats, assess the company’s risk exposure to them, implement mitigating measures and communicate this information to Director of Information Security.
• Establish strong working relationships with third party providers for ongoing or ad hoc security initiatives.
• Assist in the evaluation of outsourced/third-party technologies as related to the management, transmittal, protection and storage of corporate data.
• Help deploy and track enterprise-wide security controls to ensure the confidentiality of data across multiple geographically separated data centers.
• Ensure security logs are reviewed on a regular basis (NOC/SOC and/or other Tech resources).
• Assist Director of Information Security to gain hardening compliance of all infrastructure/security appliances and software including firewalls, VPNs

Systems Support Engineer

Responsibilities:

• Works with management in the creation and implementation of security management policies and procedures. Also,
• Hand-on use of Malware detection tools and use of HP fortify and analyzing tools.
• Provided technical input for the design, deployment and operation of security management software and hardware devices including, but not limited to: antivirus defense, intrusion detection, encryption systems, authentication and access control systems, network scanning and vulnerability assessment, etc.
• Provide support for the security incident response team. Applies forensic investigation techniques to document root cause and impact of detected computer security incidents.
• Provide support in information security assessments or audits of internal networks and systems. Document findings with recommendations for remediation.

Systems Security Analyst

Responsibilities:

• Manage network security, including network intrusion detection and prevention systems.
• Maintain Active Directory and Exchange servers at local and remote sites.
• Oversee Local Area Network (LAN) and Wide Area Network (WAN) connectivity.
• Troubleshoot issues and access usage to ensure optimal performance. Established and maintain Voice over Internet Protocol (VoIP) system, including evaluating services and recommending new vendors to ensure savings.
• Select and test software and hardware solutions.
• Other responsibilities include:
• Supporting the enterprise security program including policy development, implementation, and monitoring with emphasis on information security.
• Carrying out risk assessments and auditing to ensure compliance requirements.
• Reviewing and responding to our customers’ request for proposals.
• Reviewing, identify and providing timely resolutions to for other security requirements.
• Provide database administration and supportive services to clients on risk assessments, audits, and reporting requirements as required.
• Developing and updating clients’ security policies, standards and procedures including the performance and interpretation of vulnerability assessments.
• Providing support for the implementation of security controls and recommends areas for risk reduction, and creating and maintaining security metrics;
• Preparing plans and responding to security incidents, and maintaining records of all incidents and actions.

Confidential, San Francisco, CA

Systems Security Support/Helpdesk Analyst

Responsibilities:

• Managing and implementation of Cisco Routers, Switches, Wireless controllers, WAN / LAN administration, Cisco ACS and Nortel VPN.
• Planned and designed the organization's LAN network expansion. Upgraded and configured Microsoft Window server and installed network routers, cabling, and firewall. Responsible for network management including network performance tuning, security monitoring, file server backup, and email server administration. Worked with the management team to develop security policies and conducted network systems security auditing.
• Provide technical support for application systems integration with database server and application.
• Also responsible for Sale point and Retail point of sales conversion from Frame, ADSL and Dial-up to DSL of Gymboree retail stores (across the United States, Canada and Hawaii.) namely Janie and Jack, Crazy 5).
• Collect, analyze and evaluate existing security systems. Research, plan, install, configure, troubleshoot, maintain and interface with operating systems security. Analyze and evaluate present or proposed security procedures or problems to define security needs. Troubleshoot and resolve hardware, software and connectivity problems including user access and component configurations with vendors. Using ACM and Dameware remote tools/and implementing VPN tunneling protocols over frames and point - to - point topology.

Systems Analyst/Deskside Support

Responsibilities:

• Manage and troubleshoot Firewalls, Tripwire, RSA ACE server, SSL VPN, Pointsec, Proxy servers and IDP setups.
• POS-SWIP (Store wireless infrastructure Project): Responsible for the POS-SWIP conversion of GAP retail stores (across the United States, Canada and Brazil.) namely Banana Republic, Old Navy from ISDN and T1 network to MPLS. (Multi Protocol Label Switching).
• Provide systems level support for operating systems hardware and software tools, including installation, configuration and support of the systems. Identify alternatives for optimizing hardware and software resources. Using Tivoli remote access./and implementing VPN tunneling protocols over point to point topology.
• Collect, analyze and evaluate existing or proposed systems.
• Working knowledge and used IBM 4690 and ISO 9000.
• Research, plan, install, configure, troubleshoot, maintain and interface with operating systems. Analyze and evaluate present or proposed business procedures or problems to define data processing. Troubleshoot and resolve hardware, software and connectivity problems including user access and component configurations.
• Record and maintain hardware and software inventories, user access and security.
• Install and configure hardware and peripherals to include LRT Guns, reticketers, angelicas, cash register, hand held devices, LAN printers, IBM Servers and Hubs plus and Cisco routers.