SUMMARY:

• 18+ years of proven engineering, implementing and monitoring security measures for the protection of IT Assets and information of high security Government and enterprise IT security initiativesProviding practical viewpoints culminating into highly - secure and functional design, development, testing, deployment, and ongoing system maintenance organization wide
• Guided IT security teams to identify, analyze and mitigate application security vulnerabilities and weaknesses, including impact assessment, and relevant industry standards PCI, HIPAA, SOX OWASP, and SAN Top 20
• Ability to drive security awareness across multiple business units using simple methods to articulate complex security concepts in a training environment.
• 12+ years of IT architectural experience: implementation, maintenance, and integration of the server architecture.
• As a subject matter expert, Identifying and defining system security requirements
• Solid Understanding of Industry Requirements, guidance and best practices including hardening Linux/Windows server before deployment based on different STIGs/ NIST SP 800-53 or best practices
• Ability to drive security training programs across multiple organizations.
• Planned and coordinated hundreds of penetration testings, vulnerability management, and security forensics, log management, and incident response
• 8+ years of expert use and coordinating use of Nessus, Retina, Qualys, Appscan, and Tenable Security Scanners
• 7+ years led use of breach detection systems tripwire, Trend micro, Cisco, and working knowledge of FireEye
• 8+ years of expert Deployment of security scanning tools: Nessus, Retina, Qualys, Appscan, and Tenable Security Scanners
• Lead a team in configuring and deploying 800+ firewalls and VPNs for a City Government and its Agencies.
• Notable for establishing proactive system monitoring, reviewing architecture, tuning, implementation, configuration, and administration while collaborating with senior management insuring the reviews are consistent with architectural policies.
• 8+ yrs of proven hands-on experience with application security assessment tools throughout SDLC
• As a lead oversaw thousands VPN networking involving windows 2000 servers and firewalls
• Working knowledge of Python scripting
• Given a chance, I am confident I will instantly proof to be of great value to your organization as a Senior Cyber Security Specialist .

AREAS OF IT SECURITY EXPERTISE AND SKILLS:

• 12+ years IT Security experience with emphasis on Defense-in-Deep end to system security
• Understands and applies the SANS Top 20, CWE, OWASP Top 10 vulnerabilities to address security risks and compliance.
• Being consulted across the organization offering a functionally practical viewpoint on the project teams.
• Ability to perform authoritative risk assurance and security testing across multiple technologies.
• Strong understanding of securing enterprise resources using architectural best practices
• Understanding and extensive deployment of endpoint security tools AV, Firewall, Encryption, DLP, Digital Certificates
• Mitigating Business Loss Prevention (BLP) by enforcing entitlements and identity management
• Working with Major technology vendors to develop enterprise architectural solutions focusing on a careful balance between security and system usability.
• 15 +yrs - Implemented and supported legacy and new technologies from Mainframe to virtualization and cloud
• Ability to Identify, analyze, manage vulnerability guided by DOD, NIST, CIRT, CIS, OWASP to ensure compliance
• Integral member of Incident Response Team and Change Management Control and escalation team.
• Project Management Processes Agile, SharePoint, Python Scripting, Visio, Ms Project, MS Office

TECHNICAL PROFICIENCIES:

IT Security Tools: Security Monitors and Scanners Nessus, IDS/IPS, Qualys, Retina, Appscan, Mazu, Websense, Ethereal, Ncat, Symantec Endpoint Protection, Active Directory, Syslogs

Networking: LAN / WAN Design and Administration, VPN, TCP/IP, Giga Ethernet, SecureID, Cisco Routers & Switches

Protocols: OSPF, BGP, EIGRP, TCP/IP, VLANs, Multicasting, DNS, DHCP

Platforms/OS: Microsoft, UNIX, Linux Distros.

Virtualization and Cloud computing: VMware vSphere, Citrix - XenServer, MS Hyper-v

PROFESSIONAL EXPERIENCE:

Confidential, TX

Information Security Analyst

Responsibilities:

• Hired to provide subject matter expertise, counsel, and input for organization’s information security initiatives and policies
• Coordinating the company’s effort to audit all its critical Information systems.
• Design and deploy security process and perform cost/benefit analysis on all recommended strategies.
• Lead in setup application vulnerabilities scanning tools i.e. Nessus, Tripwire, and IBM Appscan
• Guide system teams to identify, analyze and mitigate application security vulnerabilities and weaknesses, including impact assessment, and relevant industry standards OWASP, SAN Top 20, PCI, and SOX
• Develop and implement the infrastructure hardware and software required to manage the organization’s Cyber security services effectively. Provide leadership and mentoring to employees on IT Security matters.
• Collaborate with security auditors to conduct pen-testing and audits, presenting results to management.
• Implementing Security Information and Event Management ( Confidential )
• Working the leaders to ensure the ROI of the organization systems is as stipulated

Confidential, NJ

IT Infrastructure & Security Architect

Responsibilities:

• Charged with putting in place an organization-wide information security program
• Upgrading Data Center-Routers, Switches, Servers and Access Appliances
• Audit Data Center Security and implementing recommendations
• Remote secure access - built local and inter-continental VPNs
• Setup Active Directory and managing users and computers
• Performing penetration tests from internal and external
• Monitoring Security Intrusions and Mitigating vulnerabilities
• Coordinate IT Security compliance with vendors

Confidential, NY

IT Security Architect & Infrastructure

Responsibilities:

• Provided expert knowledge on creating policies for Confidential Controls City-wide
• Integral part in designing and building Confidential Security Infrastructure for 500k+ users;
• Participated in and trained with security equipment vendors, valuation, equipment purchases, and service contracts
• Hands-on trained by major Gartner IT Security Vendors: IBM Appscan, RSA, QUALYS, Retina, Barracuda, Mazu, Imperva, Nessus
• 6 +yrs - coordinated scheduled pen-tests and vulnerability testings guided by DOD, NIST, CIRT, CIS, OWASP to ensure compliance throughout the (SDLC): Dev, Systest, UAT, and Prod.
• Lead a team of 50 IT Professionals responsible of securing the IT system from Cyber attacks;
• Deployed and worked with end point security teams to track and mitigate external security incidents.
• Coordinated deployment of Cisco Firewalls/ASA, IDS/IPS, and Syslogs
• Deployed tens of Routers & Switches Configuration and a Biometric IT system revolutionizing the Time and Attendance tracking; saving the Confidential large sums of money.
• Oversaw field development teams and supported hundreds of Secure VPN networks to 200 city agencies locations.
• Led in thousands of penetration testings, mitigation of vulnerabilities and hardening the systems in compliance with PCI, SOX and HIPPA regulations.
• Setup, collected and analyzed logs for any security anomalies.
• Provided all levels operation support to include security, data networks
• Conducted dairy Security briefings for the Top Management and awareness training of users
• Project Management Processes: Worked Ms. Project, Ms. Office, Visio, Remedy, Rational Tools

Confidential, NY

Senior Engineer & IT Architect

Responsibilities:

• Designed and deployed a new IT System including routers, switches, complete Windows environment
• Moved Macinni and Duffy Architecture Company from ruins of World Trade Center
• Setup the company’s operations support center and created SOP documents

Confidential, NJ, NY

Senior R&D Engineer & IT Architect

Responsibilities:

• Designed and Implemented a Brokerage Platform Network for Confidential now JP Morgan
• Integrated IT Security for the online traders and market feeds accesses
• Performed extensive vendor and equipment evaluation, validation and selection.
• Tested QOS, Throughput, High Availability, Data Integrity, Multicast traffic, Video Streaming
• Integrated Market Data Feed, subscriber’s feeds, Service Level Agreement compliance
• Moved the trading business unit from New Jersey to current Confidential 383 Park Ave.

Confidential, McLennan, NY

Senior IT Architect Engineer

Responsibilities:

• Improved communication between Tuxedo, Documentum and Oracle databases
• Integrated IT systems for the company's locally and abroad acquisitions and secured IT communication.
• Built and moved part of critical IT System from World Trade Center to 1633 Avenue of Americas ( Confidential ).
• Modernized inefficient SNA token ring to TCP/IP routing environment
• Helped in disaster recovery setup and testing

Confidential, TX

IT Deployment Engineer

Responsibilities:

• Coordinated eight IT engineers to build Confidential IT Networks Operation Centers across seven states versaw remote testing for the new NOC
• Created hand-over document at the end of each deployment
• Facilitated the success of current Confidential wireless infrastructure at inception

Confidential, Cranbury, NJ

IT Deployment Engineer

Responsibilities:

• Implemented Confidential National Data Center Infrastructure
• Built an IP infrastructure and Integrated the Legacy SNA IBM environment to the TCP/IP environment
• Worked to roll-out Windows Environment
• Built a Network Operations Center and created documents for the system
• Team manager for the IT infrastructure; trained the Operations Support Team on the new Infrastructure