Senior Security Engineer Resume

SOFTWARE:

Vulnerability Assessment: Nessus, Retina, Nexspose, Nmap

Debuggers: OllyDbg, ImmunityDbg

Penetration Testing: Metasploit, Kali Linux, Backtrack Linux, Maltego, FOCA

Network Analysis: Wireshark, tshark, tcpdump

Web Application Testing: Burp Suite Pro, OWASP ZAP, SQLMap

Wireless Analysis: Aircrack - ng Suite, Kismet, pyrit, cowpatty

Other: Python, VBScript, Bash, HP Quality Center, Remedy, Git, Microsoft Forefront Threat Gateway

PROFESSIONAL EXPERIENCE:

Confidential

Senior Security Engineer

Responsibilities:

Performs penetration tests including attack simulation, physical assessment, social engineering campaigns, infrastructure tests, wireless penetration tests, client application, and embedded system testing.
Developed toolsets and scripts for use in both red team and penetration tests.
Performed full scope red team assessment including PCI environments with card holder data ( Confidential ).
In addition, performed automated security scans using tools such as Nessus and Qualys.
Briefed executive leadership on vulnerabilities found and how to remediate the vulnerabilities that were found.

Confidential

Information Assurance Engineer

Responsibilities:

Identify, validate, and remediate vulnerabilities.
Conducts penetration testing against various technologies.
Performs in-depth, manual analysis to identify complex vulnerabilities and understand their impact on the operational environment.
Provides subject matter expert support on topics that include vulnerability assessment, remediation activities, secure OS level configuration, network security, wireless protocols, and penetration testing.
Designs and implements secure solutions that provide defense in depth, and support compliance with Confidential 8500.2 and JAFAN specifications.
Assistant trainer and course developer for the Confidential - Penetration Testing Core Development Course.
Develops security tools using various scripting languages to solve redundant problems, and create efficiency in repetitive tasks.

Confidential

System Engineer / System Integration

Responsibilities:

Performed all phases of testing for the Assured Identity program.
Designed, developed, reviewed, updated, and executed test cases for System Acceptance Testing.
Evaluated and Validated assigned system requirements for clarity. Supported integration team by troubleshooting and assisting the resolution of complex Issues.
Documented success criteria for assigned requirements. Developed test cases for assigned requirements.
Supported all testing phases, including Unit Testing, Integration Testing, Regression Testing, System Acceptance, and User Acceptance Testing.
Direct participation with Group Policy and software distribution (SMS/SCCM) team when designing and packaging solutions to deploy software and system settings.
Provide daily status reports to the team lead of any problems, issues or situations to guarantee efficiency on the team operations. Integrated Public Key Infrastructure with smart badge.
Created process to enable Outlook integration with encryption using smart card.

Confidential

Computer Support \ Tier 2 support

Responsibilities:

Analyzed computer issues and determined whether or not the issue could have been resolved remotely.
Provided computer support for Microsoft Windows issues including Microsoft Windows 2000 and XP, Microsoft Office products, engineer tools, and other desktop applications.
Delegated Active Directory access for various tasks including resetting passwords, granting shares, verifying exchange settings and accesses, and other Active Directory tasks.
Created knowledge articles to share efficient solutions for known issues.