Information Security Advisor Resume
SUMMARY:
Experience in Cloud computing, Information Assurance, Federated Identity & Access Management, Public Key Infrastructure, Virtualization, systems integration/administration, network installations, user training, supervisory duties, and webmaster. ISC 2 & ISSA member. Fluent in French.
TECHNICAL PROFICIENCIES:
General: AWS, Azure, PKI, SSO, LDAP, SAML, SQL
Databases: MS Access, MS SQL server, Oracle DB, MySQL, PostgreSQL
SAML Federation software: ADFS, CA Siteminder, Entrust GetAccess, IBM Tivoli FIM, Oracle COREid (Oblix), Ping Federate, RSA FIM, Oracle OpenSSO, OpenAM, SimpleSAMLPHPInfrastructure: X509 Certificate, LDAP/Active Directory, Apache/IIS web server, Messaging (SMTP), Proxy (Netscaler)
Programming Languages: C, Java, Pascal, PERL, DAP Fortran, Assembly, PVM, JavaScript, Unix Shell Script, VBscript, Visual Basic, PowerShell
Simulations/Modeling: BONES, COMNET III, SDT, Data Modeling w/ Visio
Operating Systems: Windows 2008/2012R2/2016, Linux (Red Hat, CentOS, Ubuntu, Backtrack/Kali, Ophcrack, Security Onion), Unix
Hardware/Virtual: Oracle (SUN) SPARC servers, CM5, Cisco router, Netscaler VPX, VMware vSphere ESXi, VirtualBox
PROFESSIONAL EXPERIENCE
Confidential
Information Security Advisor
- Assisting with architecting client enterprise Identity & Access Management (IdAM).
- Working with IdAM vendors (Okta, Sailpoint, Radiant Logic, Microsoft & Oracle) technical staff on proposed solution and providing weekly updates to customer.
- Refining IdAM requirements, reviewing vendor responses and helping to select vendor(s).
Confidential
Cloud Engineer
- Implemented PKI/Single Sign On (SSO) IdAM solutions for customer in Amazon Web Service (AWS) using ADFS, SAML, Apache, Docker and MS Certificate Services.
- Solved problems in the cloud (ADFS, SAML, Docker, DC/OS, serverless, IdAM)
- Provisioned & maintained AWS cloud infrastructure components (Windows/Linux compute, storage & networking instances) to support ongoing projects using Cloud Formation and manual processes.
- Documenting infrastructure components and configuration to support A&A (C&A) activities.
- Assisted users with PKI/SSO/AWS issues.
- Researched User Authentication Federation on MS Azure for user community access.
Confidential
Systems Integrator
- Implemented Net - Centric GeoSpatial Discovery System (NGDS) software (using Web Enterprise Suite (WES), Oracle DB, WebLogic, RHEL) onto VMware Vsphere ESXi virtual environments.
- Performed Linux (RHEL6/CentOS 7), MS Windows 7/8/2012R2 and mobile (Android & iOS) Systems Integration /Administration tasks (user support, OS/software patches & upgrades, new system deployment, backup and recovery, create documentation & IT asset/license management).
- Enabled network status and systems security monitoring of internal systems (servers, PCs, etc) using Open Source to lower software licensing and/or monitoring fees.
- Enabled automated discovery and inventory of internal systems for on-demand querying.
- Researched Amazon Web Services (AWS), OpenStack, Identity & Access Management (IAM/IdAM), PKI solutions and advanced endpoint cyber security protection for internal deployment.
Confidential
Subject Matter Expert IdAM
- Performed technical assessment of USMC web applications that were migrating into Marine Corps Enterprise Information Technology Services (MCEITS) and assisted them throughout the Technical Assessment phase.
- Reviewed incoming applications’ DIACAP package in MCCAST (XACTA) for technical requirements.
- Provided liaison support between MCEITS Application Inclusion Process (AIP) Technical Assessment and MCEITS Identity & Access Management (IdAM) teams.
- Lead the technical assessment of the MCEITS Identity and Access Management service into AIP.
IT Auditor
Confidential
- Performed general and application IT controls review and testing in support of the CFO Act audit of Securities and Exchange Commission (SEC) financial statements.
- The audit was performed in accordance with GAO’s Federal Information Systems Controls Audit guidelines (FISCAM) and NIST SP .
- Specific areas reviewed included: Security Management, Access Controls, Configuration Management, Segregation of Duties, Contingency Planning and Business Application Controls.
IT Contractor
Confidential
- Assisted HUD on Disaster Housing Assistance Program (DHAP) via different contracting companies (Ikentek Corp, V-Tech Solutions, Inc. ).
- Reconciled DHAP-Ike funding & DHAP-Katrina Transition Rent Program (over $1.3 million from 4 different public housing agencies).
- Provided technical & operations assistance to HUD for DHAP-Ike contract.
- Clarified program policy to tenant and Public Housing Agencies (PHA) and system of record (Disaster Information System - DIS) issues.
- Researched tenant eligibility and FEMA bridge payment status.
- Processed family to PHA reassignment requests.
- Automated telephone call processing system using IFBYPHONE for 30,000+ DHAP-Ike eligible families to inquire interest in program participation.
Confidential
Consultant
- Supported Identity Management for U.S. Treasury - Financial Management Service (FMS).
- Administered RSA Federated Identity Manager (FIM) Identity Management infrastructure while transitioning to the SiteMinder Federated Web Services solution.
- Supported the implementation of Single-Sign-On via SiteMinder Federated Security Services using SAML via SSL.
- Implemented application monitoring system using OneView via SSL and process monitoring with CA Unicenter via SNMP.
- Tested ITIM functionalities and coordinated ITIM system monitoring with CA Unicenter.
Confidential
Systems Analyst
- Provided technical support to U.S. Government agencies in the field of Information Security & Cryptography.
- Installed, configured and debugged product encryption technologies.
- Helped Federal Agencies and Identity Service Providers setup and properly configure SAML services and worked with product vendors to solve interoperability issues.
Confidential
I.T. Project Manager
- Managed software implementation projects from requirements analysis to software integration.
- Requirements analysis, systems integration and user training of Intellectual Property portfolio management system running on Oracle database 9i and Active Server Pages (ASP).
- Interfaced with French counterparts on client requirements and solutions.
Confidential
InfoSec Patent Examiner
- Reviewed patent applications and determined patentability of claimed inventions in the field of Information Security and Cryptography.
- Documented findings under Patent Law and Procedures in Office Action correspondence.
IT Contractor
Confidential
- Oversaw the design and implementation of technical projects (BigIP, 3DNS, SMTP, SNMP, Proxy)
- Directory Services - provided consulting services for LDAP-based user authentication.
- SNMP monitoring of production services - implemented a monitoring work plan to monitor the services pro-actively using HP-OpenView, Concord eHealth, Mercury Interactive Topaz.
- Intranet upgrade - implemented high availability architecture using F5 BigIP and 3DNS for network upgrade.
- Email infrastructure re-architecture - consolidated and simplify previously complex design.
- Internet high availability access - provided highly accessible, fully redundant path and upgrade proxy servers. Coordinated with vendors and internal functional teams to complete projects by target date.
Confidential
Technical Manager
- Managed the technical infrastructure of website and team of 3 members.
- Developed additional features using Active Server Pages (ASP).
- Provided technical support to non-technical team members.
- Administered local area network and user accounts.
- Created PERL scripts for data manipulation and import into SQL 7 databases.
- Coordinated the customer ordering process with a third-party payment processor.
- Implemented new technical systems to accommodate evolving business needs.
- Improved business processes as new technical solutions were created.
- Greatly reduced time to generate weekly mass-marketing emails from 4 hours to 30 minutes.
Confidential
Sr. Systems Engineer 9
- Supported U.S. Naval Systems Command intranet website.
- Integrated division homepages with the corporate site. Created database model in Visio from MS-SQL data. Analyzed statistics of website using Webtrends application.
- Supported the U.S. Securities and Exchange Commission (S.E.C) in deploying a web-based infrastructure. (Contracted ended 04/1999.)
- Designed and implemented secure intranet servers and certification services using Netscape SuiteSpot products on both Windows NT and Unix (Solaris 2.6).
- Enabled Netscape Certificate Server (X.509) for use as authentication and identification mechanism commission-wide.
- Configured Directory Server for internal “phonebook lookup” and access control database for an increasing number of intranet web applications. Improved business and system administration tasks by automating previously manual tasks via scripts (PERL).
- Tested new Netscape and other web-related technologies.
- Installed various applications such as ProcessMax and Citrix WinFrame for user access.
- Supervised one employee with daily operation tasks relating to intranet site.
Confidential
Systems Engineer 8
- Implemented personnel and service locator using Lightweight Directory Access Protocol (LDAP) based directory server with integrating X.509 digital certificates for user identification, authentication and application access control.
- Created project and task plan for LDAP work to budget time and available resources.
- Tested security features of Netscape SuiteSpot products for project sponsor.
- Wrote Java applet to help test new JDK 1.1 features.
Electronic Data Systems
Systems Engineer 7
- Joined EDS in the Systems Engineer Development (SED) program.
- Completed 10 weeks of intensive SED Technical Training in C-Unix, Visual Basic-SQL programming and high level technical design phases.
- Installed network for NAS Sigonella, Sicily and Roosevelt Roads, Puerto Rico,
- Configured personal computers and Cisco router for TCP/IP network.
- Acted as Unix Network Administrator / Webmaster for Kelly Air Force Base.
- Configured Cisco 2501 router for T1 CSU/DSU connection.
- Compiled NCSA HTTP Daemon for multi-host access on Solaris 2.4 platform. Configured Apache HTTP Daemon on Pentium 100 running Linux 1.3.36.
- Compiled, configured and tested other Internet tools such as POP3 client/server mail programs, HTML editors, Java enabled browsers, audio/video utilities to enhance web pages.
- Participated in site survey for the AEGIS Training Center network upgrade in NSWC Dahlgreen, VA.
- UNIX System Administrator for Single Agency Manager (SAM) - The Pentagon.
- Promoted to EDS Systems Engineer.