SUMMARY:

Self - motivated, analytical, meticulous and customer services oriented to ensure SLA’s (Service Level Agreement) are met and change management, is implemented while maintaining systems security. To provide network, systems and security experience, knowledge solutions in a system and network-diverse environment. Protect integrity, confidentiality and availability of information and information systems, with a focus on the application of Information Technology (IT)/Information Security ( Confidential ).

TECHNICAL SKILLS:

• IT/Systems Security Management
• Problem Resolution
• Change Management
• Testing/Implementation/Integration
• Secure Authentication & Implementations
• Automated Data Management
• Incident Reports
• Risk Assessment
• Vulnerabilities Scan
• Systems Analysis
• Data Security Administration
• Firewall configuration
• Splunk, Arcsight SIEM, ArcSight Logger
• Nessus, Einstein
• Intrusion Detection System-Snort, NITRO, Source Fire
• TCP/IP/DHCP/FTP/Telnet/SSH
• Firewall Administration-Check Point, Cisco ASA, Fortigate
• DNS, (Bind, NSD, ZEN)
• Intrusion Prevention System-Palo Alto, Tripwire,
• Cisco routers/Switches
• Unix-Linux Systems, ForeScout, Blue Cat(IPAM)
• MTIPS Implementation
• Websense, proxy, Blue Coat
• FireEye, Isight, Cites
• MacAfee Nitro SIEM, McAfee EPO
• Wireshark, FAS(Flexible analysis System, Netwitness

WORK EXPERIENCE:

Senior Security Analyst

Confidential, Leesburg, VA

Responsibilities:

• Monitor and analyze ArcSight channels looking for unusual activity, virus/Trojan or anomalies.
• ArcSight SIEM gets events from multiple IDs/IPs devices. Upon finding, it is reported and escalated via ticketing process for proper actions.
• Provide solutions to mitigate any security vulnerabilities.
• Conduct network monitoring and incident response operations, supporting the client to identify all intrusions and attempted intrusions in 24/7 environment.
• Identify anomalous and malicious activity, prioritize and escalate via ticketing process
• Provide support in detection, response, mitigation and reporting of security threats affecting networks
• Perform incident response functions when appropriate and coordinate activities with filed site personnel
• Research pertaining to the latest viruses, worms etc. and latest technological advances in combating unauthorized access to information.
• Support Information Assurance asset deployments, upgrade, maintenance; including sensors, data collection servers, network assets and firewall administration
• Produce status reports, provide analysis for correlated information sources and recommend based on best practice and experience to develop processes that enhance efficiencies & improve security
• Support Network investigations, reporting procedures and event escalation

Security Analyst/Engineer

Confidential, Washington, DC

Responsibilities:

• Installed and maintained security infrastructure, including IPS, IDS, log management and security assessment systems
• Monitored and analyzed Intrusion Prevention Systems & Intrusion Detection Systems to identify security threats for remediation that feed into SIEM tool.
• Assessed threats, risks, and vulnerabilities from emerging security issues.
• Arcsight received events that were analyzed, identified & escalated for mitigation process
• Participated in security risk assessments of IT systems to identify areas of potential threat and document findings.
• Planned and conducted security accreditation reviews for installed systems or networks.
• Implemented the application of standard operating procedures and systems security in support of the organization’s IT architecture and business needs. Managed projects as required and endpoint security platform
• Planned, coordinated and implemented various network security measures.
• Performed security system updates & evaluate intranet and firewalls on regular basis
• Configured, upgraded, migrated and maintained all type of Firewalls i.e. Check Point, Cisco ASA, and PIX etc.
• Identified critical issues by analyzing data & took appropriate actions to mitigate any threats.
• Analyzed technologies, recommended vendors to address specific threat vectors such as; Disk and Data encryption against physical theft and improper access, Anti-malware to protect against malicious software and providing deep network control.

Network Security Engineer

Confidential, Washington, DC

Responsibilities:

• IDS & IPS devices filtered events which were logged into Arcsight SIEM
• Configured, upgraded and maintained IDS devices such as (Nitro, Source Fire)
• Evaluated and recommended the implementation of and dissemination of IT security tools, procedures and practices to protect information assets.
• Installed, configured, evaluated and supported software intended to ensure that automated systems are secure from unauthorized use, viral infections or other problems that could compromise sensitive information in terms of confidentiality, integrity and availability.
• Provided VIP users, (Presidential Inaugural Team & Presidential Transition Team) network, hardware, software & application support.
• Monitored and maintained physical and logical security and access to the systems. Responsible for support of existing security policies and procedures, as well as creation and implementation of new security procedures.
• Ensured that physical security measures are implemented on LAN/WAN and communication rooms. Made certain that protocols were being followed when allowing external technicians entry. Ensured all policies and procedures were followed as defined in Confidential Information Systems Security Policies and Procedures.
• Provided support for network security and related projects, including migrations and deployments.
• Drafted enterprise security standards and guidelines for system configuration. Performed and created procedures for system security audits, penetration-tests, and vulnerability assessments.
• Maintained internal and external DNS & troubleshoot any issues.
• Analyzed various security incidents and took corrective actions to mitigate vulnerabilities. Communicated with personnel about potential threats to the work environments.

Network Engineer

Confidential, Washington, DC

Responsibilities:

• Provided administrative support across LAN and WAN protocols for Confidential end-users and implement corrective actions. Performed post-implementation Network management, maintenance and support services, specifically on Cisco Switches and Routers.
• Recommended preventive, mitigating, and compensating controls to ensure the appropriate level of protection and adherence to the goals of the overall information security strategy.
• Improved security through strong authentication and system standards. Devised password, role and data management policies for improved security and privacy.
• Conducted technical risk evaluation of hardware, software, and installed systems and networks. Assisted with testing of systems to ensure protection strategies are properly implemented and working as intended.
• Deployed security patches to clients desktop and servers in a timely and efficient manner.
• Performed regular backups of SANS and Exchange servers & ensured proper disks sanitization upon end of life cycle.
• Trained users and promoted security awareness to improve systems and networks efficiency.
• Advised users of security policies and procedures to preserve system and data integrity.

Network Administrator

Confidential, Washington, DC

Responsibilities:

• Drafted policies for secure handling of sensitive customer data.
• Determine strategies and managed projects to achieve security goals within budgets. Handled security incident exploration, containment and mitigation.
• Performed risk assessment surveys to identify security requirements.
• Installed and configured encryption software to ensure data confidentiality and integrity.
• Directed all aspects of PC maintenance and troubleshooting. Directed, installed, operated and maintained computers in LAN/WAN environments.
• Provided Network support across LAN and WAN protocols for Confidential Federal Supply Services and implement corrective actions
• Handled server and network support - Windows 2000 and 2003. Windows 2003 Enterprise server network configuration and deployment.
• Maintained user accounts and Access Control Lists. Configured VPN connections for remote users. Maintain, configure and support Cisco VOIP.
• Ensure Information system security principles are applied as roll out to all systems prior to deployment.
• Analyzed, managed and monitored projects to ensure operational procedures, staffing requirements and completion times are met. Successfully planned and coordinated team projects. Provide backup support for team members to accommodate scheduled leave, areas projects and emergency COOP response.