SUMMARY:

A seasoned Information Security Professional with over 15 years of IT experience in the areas of LAN/WAN, IT Management, Training and Support, Telephony, E - mail and Information Technology Security. Security leader with a proven track record with the ability to drive corporate strategic roadmap into future horizon and translate the business needs of an organization into technology and security requirements that support the organizations business objective and successfully manage all phases of IT Projects Management, Risk Management, Security Policies, IT Governance, Network Security, Systems Security, Application Security, Infrastructure Security, Penetration Testing and Logical Security, from a needs analysis and requirements definition perspective to vendor selections, implementation and System/Software/Product Full-Lifecycle Development. With direct knowledge of Server Security, Security Controls, Anti-Virus Protection, Juniper Firewall, and Intrusion Detection in addition to Application Security Project Management and Processes.

TECHNICAL SKILLS:

Hardware: Juniper Firewall, Qualys Guard, Cisco 3500 switches, WatchGuard Firewall, Checkpoint Firewall (ACL), Dell, HP, Linksys, Barracuda Firewall, Barracuda, Spam Filter, Barracuda IM, Black Berry Enterprise Server, Juniper Firewall SRX/ISG, Junos Space (Security Director), Palo-Altos Firewall, Panorama Interface, Space, QualysGuard for Penetration Testing, Vulnerability Assessment and Web Application Security (WAS), VMWare, XEN, ESX, ESXi, vSphere4/5, BigIP F5

PROFESSIONAL EXPERIENCE:

Confidential,Atlanta,Georgia

Senior Security Architect

• Contributed to the design of emerging technologies to insure the secure deployment of applications and services.
• Contributed to the change management process by assembling change requests for tested configurations and evaluating the feasibility and appropriateness of other change requests as submitted.
• Conducted engineering economic, alternative, and feasibility security evaluations
• Enforced security assessment for regulatory compliance of industry frameworks, security policies, procedures, standards, and guidelines.
• Subject matter expert for application architecture for the MDM application, defining the modeling of the application from conceptualization of what exactly the application will do, to Logical layer of how the application will function interconnected with other applications at the Physical layer of the applications deployment.
• Directed uses privilege level access to the application, leveraging already existing company security policies for application operations e.g. Change management, vulnerability controls and requirement for imposing separation of duties within the application.
• Solid technical understanding of Application SDLC security utilizing security controls to close any gaps in the software development lifecycle
• Security architect liaison for rule verification of Juniper SRX/ISG

Confidential,Atlanta,Georgia

Senior Security Architect Lead

• Provided technical and/or project leadership function for assigned engineering analysis and computing projects.
• Security leader for the Acquisition and Integrations team responsible for all the secure acquisition of Joint Ventures by General Electric
• Successfully employed Splunk with Symantec SIME as a DLP/IDS/IPS to monitor, investigate and mitigate all intrusions into the organizations network.
• Defined, analysis and ensure proper implementation of cyber security in software architecture
• Guided and reviewed all Cloud offerings for AWS and Microsoft Azure for Security and Compliance
• Lead the development of Security and Compliance policies for SaaS, PaaS, and IaaS utilizing NIST, ISO, PCI-DSS and other regulatory standards
• Secure Cloud architecture of VMware ESX, ESXi, Xen within vSphere 4 and vSphere 5 environments with Virtual Center management and iSCSI network protocol
• Strong SME and advocate of the NIST Industry Framework in the development of vulnerability assessment and IDM, Penetration Testing on all acquired networks and applications utilizing Qualys Scan, Nessus and VeraCode (DAST and SAST) while partnering with Incident Management Team to mitigate all risks to the network and applications.
• Established and enforced cyber security standard for software architecture, including ensuring that security standard and properly address and developed risk mitigation plans.
• Directed and perform application security scans using VeraCode in development and production for web applications, mobile applications, COTS and outsourced applications via a centralized cloud interface to help mitigate data leaks.
• Work within the framework of established GAP analysis for different business unit’s compliance with ISO 27001 Security Policy Standards.
• Developed and reviewed secure designs for the company’s infrastructure and applications to solidify security control and reduce all risks to a level acceptable by Senior Management.
• Developed and successfully implemented an acquisition test plan for newly acquired networks that deployed security tools for discovery, asset identity and management, replacement or reimaging of all network devices in accordance with already existing device standards.
• Solid understand of database management security controls for MySQL and Oracle
• Security leader for all application Agile project introduced into the organization, as well as known and emerging attack vectors and exploits focusing on Top 10 OWASP vulnerabilities.
• Seasoned Nessus pen-tester and port scanner in preparation for compliance review primarily PCI-DSS for in-depth ports scan 1-65538
• Evaluated, tested, designed and audited security of applications and risk levels of all businesses e.g. GE Energy Management, Aviation, Nuclear, Oil & Gas and Transportation businesses against recommended and best security practices.
• Directly aligned industry specific compliance and framework requirements with the appropriate business. (U.S. export control, SSAE-16, HIPPA, ISO 27001, NIST, SOC, PCI-DSS, SOX, FISMA, OWASP, TOGAF)
• Experience security leader for mobile end-point and application security
• Directly focused on the physical protection of information systems assets and intellectual property to prevent the intentional or unintentional access, modification, disclosure, or destruction of those assets.
• Collaborated with management in developing technical directions, setting objectives, and setting realistic and challenging goals for Application Security Reviews.
• Security lead in the evaluation of new applications and infrastructure agile project requirements against standard security practices and GE Security Requirements (examples: use of encryption, password access, input controls, validity check, authentications, forensic, etc.)

Confidential,Atlanta,Georgia

Network Security Engineer

• Responsible for staying abreast of all known security threats and violations then making technical recommendations to the Director of IT on how best to protect the network.
• Network lead for all security related issues ranging from outside “phishing”, DNS Denial of Service attacks, viruses and computer usage compliance.
• Successfully implemented and completed ongoing multiple IT projects ranging from $20K to $100K, provide the technical knowledge and vision to support the company’s business objectives, and evaluate and recommend hardware/software for business processes.
• Deployed and administered WatchGuard Firewall in multiple locations to for dynamic packet filtering to examine and filter packets based on information in header and content.
• Project Manager for the upgrade of multiple remote offices of 3mb DSL connection to 10mb T1 connections and coordinated with all outside vendors to provide and implement VoIP technology.
• Project Manager for the testing, implementation and successful install of WiFi 802.11 (Wireless Technology) in the firm’s largest remote offices.
• Successfully maintained of the firms application load balance of 10 Windows 2003 servers to enhance reliability and scalability for clients making requests internally and externally.
• Directly involved in the successful transforming the firms into an IP based company in which every phone, computer, printer and copier had an IP address attached to it, giving the IT department access to any system remotely using a web-base interface and streamlining workflow.
• Maintained the health and integrity of all servers and workstation within the organization. Monitoring the log files for any intrusion attempts and remedying any that are found.
• Installed and Maintained Windows 2003 Active Directory

Confidential,Marietta,Georgia

IT LAN Consultant

• Identified client needs, managed network systems, and provided overall technical leadership in the upgrade of the internal LAN to replace out-dated patch panels, cables and switches and documented the company’s infrastructure.
• Administration of Checkpoint Firewall to stay in compliance with company’s access control list.
• Project Manager for all internal connectivity and network issues and regularly performed backups on all NT and Windows 2000 servers.
• Reduced network downtime by 25% and giving an overall system uptime to include maintenance and scheduled outages of 95%.

Confidential,Atlanta,Georgia

IT Engineer

• Successfully administered all online Internet Banking Servers for Millions of dollars in online wire transactions in a 24/7 Network Operating Center (NOC).
• Deployed SMS 2.0 to for hardware and software inventory and the remote deployment of packages to client/user desktop computers.
• The administration of the company’s Exchange e-mail server that also support BlackBerry devices.