Sr. Information Security Analyst Resume
Alpharetta, GA
SUMMARY:
- 19 plus years of technical experience supporting servers and workstations in a MS Windows 2003/XP/2000/ NT, Linux Red Hat, Linux Fedora, in a Local and Wide Area Network environments.
- Strong knowledge and configuration of LAN/WAN network protocols and Directory Services such as TCP/IP, DHCP, DNS, WINS, Active Directory, Terminal Services, FTP and Telnet.
- Proficient with MS Exchange 5.5, 2000, 2003 and MS Office; Exceptional analytical, problem solving, organizational, decision making, and customer service skills.
- Ability to work independently or as part of a team with minimal supervision, Excellent installation and administering knowledge in MS Win 2008, 2003, 2000 Server, 7, Vista, XP, NT, 9x and Novel Netware operating systems.
- Installation and managing various anti - virus protection applications such as Sophos, Trend, Norton, And McAfee; Backup Exec, MS Registry, Blackberry, VPN, VMWare, Right fax, Call Pilot, Netkeeper, Remedy Ticketing systems, MS Baseline Security Analyzer, Point Sec, Norton Ghost; Ability to configure networked switches, hubs, printers, modems, network cables, network cards, And different wireless devices.
- Expertise in installation, configuration, and troubleshooting Server, Desktop, laptop and other hardware issues.
- Manage Blue Coat proxy, FireEye, McAfee Network Security Manager (IPS), McAfee ePolicy Orchestrator (McAfee ePO), McAfee Iron Mail, Air Defense, Websense, WhiteHat, Splunk, Tipping point, Nessus, QualysGuard, CheckPoint Firewall, Fidelis Network DLP, Symantec DLP, Secret Server and Endpoint protection.
- Seven years of IT Security Governance, Security Architecture, Security Awareness, Business Continuity and Regulatory Compliance.
PROFESSIONAL EXPERIENCE:
Confidential, Alpharetta, GA
Sr. Information Security Analys t
Responsibilities:
- Administers security controls to prevent hackers from infiltrating company information or jeopardizing E-Commerce programs.
- Maintains security systems for routers and switches. Administers security policies to control access to systems.
- Maintains the company’s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration, or denial of access to information.
- Collaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycle. Works with IT department and members of the information security team to identify, select and implement technical controls. Advises application, database and system administrators on normal and exception-based processing of security authorization requests.
- Assists security administrators and IT staff in the resolution of reported security incidents. Participates in security investigations and compliance reviews, as requested by internal or external auditors. Monitors daily or weekly reports and security logs for unusual events and trends
- Assists with risk assessment activities, analyzing the results of audits (performed by other groups) to produce recommendations of acceptable risk and risk mitigation strategies. Documents and presents the results of vulnerability assessments.
Confidential, Atlanta, GA
Sr. Security Analyst
Responsibilities:
- Researches, evaluates and recommends information-security-related hardware and software. Works with business units and with other risk functions to identify security requirements, using methods that may include risk and business impact assessments. Components of this activity include but are not limited to communication, facilitation and consensus building.
- Assists in the coordination and completion of information security standard, process and procedure documentation. Performs periodic quality assurance to ensure that system, network and application configurations meet security standards.
- Analyze host-based indicators of network traffic through Splunk and Solutionary SEIM.
- Works with information security leadership to develop strategies and plans to enforce security requirements and address identified risks. Reports to management concerning residual risk, vulnerabilities and other security exposures, including misuse of information assets and noncompliance.
- Assists in developing and delivering security awareness training and materials. Plays an advisory role in application development or acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned.
- Assists in developing a common set of security tools. Conducts reviews of tool output using defined operational parameters. Performs control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls, and recommends remedial action.
Confidential, Atlanta, GA
Sr. Security Analyst
Responsibilities:
- Support incident management processes and security monitoring alerts in preventing internal / external hackers from compromising Confidential ’s data and assets.
- Analyze host-based indicators of network traffic through ArcSight Logger and ArcSight SIEM
- Support new and existing security solutions, and partner with the Security Engineering team for the implementation and integration of any new enhancements made to existing security solutions in support of improving overall enterprise security.
- Ensure security tools and solutions hardware/software/devices are operating effectively and updated in a timely manner.
- Develop and maintain operating guidelines and procedures in support of Confidential ’s policies, standards and guidelines.
- Use appropriate and effective measures to respond to network security alerts.
- Understand the latest hacker techniques and propose appropriate countermeasures, configurations and awareness.
- Work with members of all BU and ETG staff to support the enterprise approach to security.
- Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise networks.
- Perform ticket queue monitoring, resolution and prioritization, maintain diagrams and documentation as appropriate and support firewall rule set reviews, auditing and maintenance activities
Confidential, Atlanta, GA
Sr. Security Analyst / Infrastructure Security Engineer
Responsibilities:
- Day to day management and maintenance of CND-IS devices by rotating logs, troubleshooting connection problems, offering guidance to geographically interspersed teams, assisting with deployment of hardware, assisting with various software upgrades, etc.
- Maintaining CND-IS device compliance with USCYBERCOM requirements (e.g. IAVA, STIG, etc.) and actively responding to suspected and verified cyber attacks.
- Analyze host-based indicators of network traffic through Log-Rhythm SIEM.
- Completing regular situational awareness reports and daily reports.
- Performing regular management and maintenance of network vulnerability scanning tools and other NOSC IA tools and performing vulnerability assessment scans as necessary.
- Analyzing situations and suggesting information assurance (IA) solutions and process improvements to help minimize the risks the client faces to computer network defense threats.
- Exercising independent judgment when appropriate and within the defined (NOSC) Network Operations and Security Center processes and procedures when pursuing, recommending, or executing actions to obtain results.
- Communicating and interacting with the customer, vendor service providers, other government entities, and functional peer groups verbally and through electronic correspondence to gain cooperation of others, seek or distribute or coordinate information, and to report.
- Ensuring project schedules and performance requirements are met.
- Creating and maintaining working relationships with internal and external customers, stakeholders and management.
Confidential, Atlanta GA
Sr. Information Security Analyst
Responsibilities:
- Provide Threat Management / Incident Response leadership, triage, discovery, technical resolution, and inter-team communication during security events
- Develop internal security processes and procedures that complement existing National and International corporate policy
- Analyze host-based indicators of network traffic through ArcSight SIEM
- Validate the scoping of vulnerability and web application scanning engagements
- Deliver data configurations and support for Anti-virus, Web access and Remote Access solutions
- Provide guidance to customers and their third-party technology providers (e.g., web hosts) on the remediation of threats that fail their scan
- Assist in operational projects and tasks such as Audit and enforce security policies both internally and with vendors & customers
- Participate in the ongoing improvement of the scanning and vulnerability remediation processes
- Coordination of Patch Management and Penetration Testing. Proactive determination of trends related to predictive pathways, threat agents and attack vectors
- Ability to provide effective metrics in support of Information Security strategies while evaluating technology solutions and provide recommendations for the most secure way to implement these solutions and working with other engineering teams to design and build a secure network
- Provide Information Security training to new employees and administer semi-annual Security Policy awareness training.
Confidential, Tucker, GA
Security Analyst
Responsibilities:
- Daily responsibilities include supporting our network infrastructure, troubleshooting software and hardware problems, training technicians in the PC/LAN/WAN environment, and performing basic Security administration. Serve as a point of escalation throughout the environment for Technical Support Services (TSS) and the Operations Center
- Reviewed system applications, proposed network security measures on our Intrusion Detection and Prevention Systems
- Manage security of servers and Monitor Security server for virus detection on our network and update the client PC with up to date definition files.
- Enforcing compliance with company security standards ranging from logon management, network resources management and virus management while protecting data integrity
- Administrated access on various platforms and applications, analyzed security processes and procedures for process improvement and implemented security software tools.
- Assist in developing, defining, and directing the information security awareness program. Definition and implementation of technology and policy architecture.
- Assisted awareness training, influencing compliance with security policies, providing solutions security issues, developing, coordinating, and managing information security systems.
Confidential, Houston TX
Network Security Engineer
Responsibilities:
- Using Mixomo / ticketing software to input request / incident information, tracking the status of incidents, and extracting reports on support activities. Supporting asset tracking and asset management activities.
- Enforcing compliance with company security standards ranging from logon management, network resources management and virus management.
- Implements and administers Security Information & Event Management (SIEM) systems
- Monitor our platforms to ensure expected availability and performance levels are achieved. Perform maintenance and support of hardware and infrastructure on small to mid-sized projects. Perform root cause analysis for service interruption recovery; create preventative measures and present to management.
- Worked with clients to assess and develop information and physical security policies.
- Developed Statement of Work agreements for consulting engagements.
- Managed projects and process improvement efforts.
- Developed and established security polices, self-assessment logical access program, security internal workflow, procedures, and documentation adopted Confidential the corporate level.
- Initiated and facilitated Security Awareness Program.
- Participated in internal monitoring and auditing; cooperating with external auditors for successful audit completion.
- Participated in establishing Intranet throughout the company. Administrated logical access on various platforms and applications. Administers security tools, security event monitoring, alerting, and reporting
- Analyzed security processes and procedures for process improvement. Evaluated and implemented security software tools. Administrated and supported logical access on various platforms and applications.
- Developed procedures, maintained and generated reports. Troubleshoot hardware and software issues and review system applications and proposed network security measures. Administrated and supported the company network security system
Confidential, Atlanta, GA
System Administrator
Responsibilities:
- Using Remedy / ticketing software to input request / incident information, tracking the status of incidents, and extracting reports on support activities. Supporting asset tracking and asset management activities.
- Developing and delivering timely and accurate reporting on activity status. Conducting research into specific technology topics as requested.
- Add, modify and remove users’ access to network resources and domains. Determining problems assessment and escalated technical issue for resolution and Updates, maintains and documents security controls.
- Installing, configuring, upgrading and repairing Server hardware and software in accordance with business requirements and standards.
- Administered Active Directory and Exchange 2000/2003 and serve as point of contact for Global System Analyst and Desktop Engineer.
- Manage and Monitor Sophos server for virus detection on our network and update the client PC with up to date definition files.
Confidential, Atlanta, GA
Desktop Engineer
Responsibilities:
- Using Remedy / ticketing software to input request / incident information, tracking the status of incidents, and extracting reports on support activities. Supporting asset tracking and asset management activities.
- Reviewed system applications and proposed network security measures.
- Developing and delivering timely and accurate reporting on activity status. Conducting research into specific technology topics as requested.
- Daily responsibilities include supporting end-users, troubleshooting software and hardware problems, training technicians in the PC/LAN/WAN environment, and performing network administration.
- Provide level II and III assistance to local and remote users connecting to the LAN.
- Add, modify and remove users’ access to network resources and domains. Determining problems assessment and escalated technical issue for resolution.
- Setup Blackberry, VPN, Shiva dialup, Rightfax, and Call Pilot for end-user.
Confidential, Little Rock, AR
Junior Network Administrator
Responsibilities:
- Provided help line solutions to inquiries, problems and complaints relating to computer applications, equipment, and network for internal and external users.
- Responsible for technical maintenance, Operational supports on personal computers LAN/WAN hardware and software.
- Associated duties include the troubleshooting of software and hardware related problems, educating and assisting end-users on a personal level and analyzing the need of end-users relating to productivity.
- Additional tasks include installing NT/2000 workstations on the network, including corporate E-MAIL and printers.
- Daily responsibilities include supporting end-users, troubleshooting software and hardware problems, training technicians in the PC/LAN/WAN environment, and performing basic network administration.
- Reviewed system applications and proposed network security measures.
- Setup, new computing labs and coordinated upgrades and patches installation for software and hardware.
Confidential, Little Rock, AR
Network Support Tech
Responsibilities:
- Performed advanced trouble-shooting for network hardware and software problems.
- Performing installations, upgrades and maintain LAN server hardware and software Monitor and responding to complex technical control facility hardware and software testing tools and techniques.
- Technical documentation and participate in the establishment of LAN policies, procedures and standards to ensure conformance with information systems and client objectives and strategy.
- Participate in large projects of moderate complexity involving installation.
- Examined, researched several financial applications and developed standard operating procedure reports.
- Worked with vendors for new product implementation, technical support, and performance improvement.
- Performed LAN/WAN configuration, systems backups and managed users to access network resources.
- Assisted in development of test cases and test plans and executed scripted test cases and backend software configurations. Performed manual tests all newly developed and modified software.