SUMMARY:

• I have been working in IT and security in very high pressure businesses that manage the security resources for many Fortune 500 companies to include the complete SDLC for many multi - million dollar contracts with these customers.
• I have designed and implemented security environments for banks, healthcare organizations and large retailers which has allowed me to advise and meet with CISO’s, CTO’s and many executives meeting the goals of the security programs within the company.

TECHNICAL SKILLS:

Business Skills: Self Starter, Good Communications Skills

Communications: Oral and Written

WORK EXPERIENCE:

Confidential, Tampa, FL

Information Security Consultant

Responsibilities:

• Leading efforts across sixteen agencies throughout the State Government including IRS, State Police and many other agencies to help provide security awareness throughout the global environment
• Building the roadmap for information security incident response development to the Deputy CISO and executive team for the Security Operations Center Incident Response Team
• Building out and modernizing the policies and procedures for the states Security Operations Center and training/mentoring the staff on best practices for information security
• Managing the installation and integration of security tools throughout the environment including working directly with engineering teams throughout the State (firewall, IPS, SEP teams etc.)
• Roadmap development for the Security Operations Center to modernize the security programs throughout the global environment
• Training of Security Operation Center staff on the best practices around investigations and procedures to reduce time to discovery of security threats
• Developing the policies and procedures for the Security Operations Center
• Building the Security Analytics process and presenting it to senior management to get executive sponsorship
• Built the business case for the program to get executive sponsorship
• Developed the business needs of the environment
• Managed vendors and vendor requirements/proof of concepts
• Assisted in vendor selection and provided all recommendations for the executives to make a vendor selection

Solutions Architect

Responsibilities:

• Training, mentoring and leading the Field Engineering and Security Operations Center (SOC) engineering teams
• Creating internal training and mentoring for Professional Services security personnel to help drive internal success and culture
• Field Engineering engagements to install, redeploy, upgrade, develop content and architect SIEM solutions including QRadar, McAfee ESM and ArcSight
• Design, planning, leading and architecture development of cyber security environments (firewalls, IPS/IDS, SIEM, Advanced Threat Detection, etc.) for fortune 500 companies
• Developing and planning Proof of Concepts for both products and services of our entire Managed Security Professional Services (Co-Managed SOC, Onsite engineering etc.)
• Vendor management and coordinating Proof of Concepts, scoping and all sales engineering efforts with all Channel Partners (BlueCoat, IBM, HP, McAfee, LogRhythm, Resolution1, Carbon Black/Bit9 etc.)
• Onsite Use Case Workshops to work with customers to determine future content roadmaps within all products in a customer’s environment
• Working with customers and assessment teams to perform gap analysis within a customer’s Information Security environment and determining the best products to fill the gaps in their security posture
• Fully developing and deploying custom content roadmaps including building custom correlation rules, parsing, dashboards etc. within QRadar, McAfee ESM and many other SIEMS
• Development of custom integrations with many different types of environments to include custom in house developed applications to advanced integrations such as the Azure Management Console

Senior Security Engineer

Responsibilities:

• Working onsite and off providing professional services and content for QRadar, ArcSight and McAfee Nitro
• Building custom parsers, reports, rules and other use cases to assist companies with utilizing and viewing data from their SIEM
• Working with training SOC personnel and assisting with building the SOC run book for various companies
• Working directly with customers to answer questions or provide direct feedback on their security infrastructure to improve Incident Response/Security Operations programs.
• Engineering of multiple security platforms as needed along with their integration into a SIEM
• Designing the architecture of the security environment for various corporate environments to include File Integrity Monitoring, Database Monitoring, SIEM, IPS/IDS and Enterprise Forensics
• Full deployment of new QRadar and McAfee ESM environments to include server setup, log source deployment, content creation/tuning, custom development etc.
• Development of use case roadmaps for the Use Case Development Team and tracking the project status of use case development for up to 30 customers
• Presentation of the use case development to the executive level teams (CISO, Sr VP etc.) from ReliaQuest (internal) and/or customers (to include many fortune 500 as well as fortune 50 companies)

Security Analyst

Responsibilities:

• Mentoring and training of people within the Security Operations Center
• Taking lead roles in security investigations to help validate and mentor Security Operations Center personnel
• Providing training when there were issues that were brought up and following up to make sure that any issues were properly addressed
• Working in a 24/7 Security Operations Center that has multiple clients across the United States and worldwide providing Incident Response and root cause investigations expertise to all clients across many security platforms
• Monitoring and investigation of security events that happen in multiple customer environments using ArcSight, Nitro, QRadar and FireEye
• Work on the file systems and in command line (Bash) on various security appliances to assist with bringing systems back online after they have gone down
• Incident response and deep dive investigations for client high priority issues to include DDoS investigations, malware analysis, active intruder in the network, brute force attacks etc.
• Working with the clients in order to white list unwanted traffic and better setup the rules and systems in the environments to serve the needs of the clients
• Assisted with many different types of network security compliance to include PCI, HIPPA etc.

Associate Software Developer

Responsibilities:

• Working with a Federal Contract to develop, maintain or modify a client financial software system and to assist with the work flow generation and expansion to meet any new requirements
• Coding in C# using DevExpress to produce native software applications for inclusion into the client financial software
• Establishment of debugging tools for off-site and on-site to test on and across multiple production environments to ensure proper functionality and the integrity of the overall system
• Working with Microsoft Server 2008 R2 and using Microsoft SQL
• Assisting in the upgrading of the development environments from Visual Studio 2008 to Visual Studio 2012
• Upgrading the source code to match the newly developed client requirements