SUMMARY:

• A Dedicated Professional with a strong academic background, who seeks to contribute skills, and abilities toward a position with a progressive company
• Dealt with customer service concerns and complaints by phone
• Excellent written and verbal communication skills, with an eye for detail
• Extremely productive in a high volume, high stress environment
• Creative ability to solve unusual or difficult problems when logical methods have failed
• Self - starter with can do attitude. Known for approachability, diplomacy, and a calm demeanor

TECHNICAL SKILLS:

• Local Area Networks
• Wide Area Networks
• Cisco VoIP Configuration
• Network Operating Systems
• Enterprise Networking
• Cisco Routers (TCP/IP)
• Juniper Firewall
• Expert Screen OS
• Cisco ASA Expert
• Checkpoint Firewalls
• Device Access Controls
• Network Access Controls
• Wireless Intrusion Prevention
• Symantec Endpoint encryption
• MacAfee Endpoint Encryption
• MacAfee DLP
• BlueCoat DLP
• EIGRP
• OSPF
• VLAN
• 802.11 a,b,g,n
• CDP
• H.323
• ALG
• Win 95, WinNT, Win 98
• Win server 2003
• Win Server 2008
• Win XP
• Observer
• Opnet Modeler
• HP Open View
• LAN Star
• Active Directory
• BMC Remedy ticketing
• Veracode
• WAF
• Penetration Testing
• Linux OS
• Splunk
• F5 LTM Advanced
• F5 GTM Advanced
• VPN
• Rapid 7 Nexpose, Metasploit

EXPERIENCE:

Confidential

Lead Security Engineer

Responsibilities:

• Primarily responsible for the architecture, implementation and management of security services: QRadar, Splunk, McAfee Web gateway, Palo Alto NGFW
• Led Palo Alto Project for implementation on NGFW throughout GME Global Infrastructure
• Built configuration and design of security profiles and URL filtering for all NGFW's across the enterprise
• Host controls - enterprise A/V, file integrity monitoring, disk encryption.
• Incident response - capable of leading incidents on a technical level and performing forensics.
• Working to process, and mitigate threats
• Architected, designed, and implements Palo Alto NGFW with threat Prevention, URL Content Filtering, and SSL Decryption
• Worked with other business units to collect, configure and monitor security threats related to active directory, and other services
• Designed IPS, and IDS Architecture for implementation across the environment
• Assisted in building Cyber security process for detection, response, and mitigation of risk within Confidential ’s environment
• Worked with several departments to lead projects around Security awareness, and phishing campaigns.
• Built F5 security polices to assist networking team in building secure VIP’s on F5’s
• Created documentation around network security processes, and equipment from management, to operations of all network routers and switches.
• Built BGP network to allow for multiple site connectivity into our corporate infrastructure
• Create F5 deployment plan, and build F5’s for LTM,ASM, and GTM

Confidential

Lead Network Security Engineer

Responsibilities:

• Building Information Security policies to define Global Splunk deployment
• Build Splunk implementation with multiple servers to assist organization with log collection and correlation
• Splunk SME
• Configure Fortinet, Palo Alto, and Cisco ASA firewalls for Global security controls in Northwest Hospitals
• Develop plan to assist Core Networking team in implementation of Cisco Nexus at major datacenters
• Build BGP relationship with upstream routers, and firewalls at main sites
• Worked with cisco ASA to build new configuration for clustering, and also multi context
• Create F5 deployment plan, and build F5’s for LTM,ASM, and GTM
• Build Irules for custom reporting and VIP’s
• Configured Nexpose Rapid7 to scan all internal servers and workstations to ensure patching is complete
• Used Nexpose reporting to build threat list and ensure all servers and pathed appropriately.
• Configure VCMP’s to maintain SDLC for app dev teams
• Working on purchasing equipment from vendors and managing those relationships.
• Built and designed OSPF for all of our internally routing through the enterprise
• Managed, and supported VMWare farms using ESXI and other VMWare software.
• Built, and support multiple VPNs using IPSEC and GRE across the enterprise
• Created cross-functional relationships with multiple BU to create Information security best practices within the organization

Confidential

Senior Security Engineer

Responsibilities:

• Building Information Secuity policies to define Global Splunk deployment
• Build Splunk implementation with deployment server, indexers, and forwarders
• Splunk SME for all searches, alerts, and reports
• Reviewing Client Contractors to ensure they meet information security policies
• Create security SOP for network devices being deployed in our environment
• Creating Information security policies for deploying Azure and cloud services
• Worked with cisco ASA to build new configuration for clustering, and also multi context
• Create F5 deployment plan, and build F5’s for LTM,ASM, and GTM
• Managed, and supported VMWare farms using ESXI and other VMWare software.
• Built multiple VPN’s across the enterprise to support B2B
• Review Security alerts from SIEM and use incident response process to remediate threats
• Built relationships with BU to establish accountability, and security principles
• Deploy Cisco IronPort for email security gateway, and also for web proxy
• Used Symantec DLP to ensure sensitive data did not leave organization
• Build rules to prevent social security numbers, and credit card numbers from leaving the environment unsecured.
• Build Nexpose platform to scan servers within the organization to ensure all phi servers are HIPPA compliant and patched regularly.

Confidential

Senior Network Security Engineer

Responsibilities:

• Designing, and building the network for a new generation DMZ which included implementation of Fireeye, Sourcefire Cisco ASA and F5 Load balancer
• Configure Fireeye and F5 devices for fireeye inline blocking for all internet traffic
• Build cisco Nexus 7k and 5k for new DMZ next gen environment
• Manage five employees with regards to technical documentation and builds
• Worked with cisco ASA to build new configuration for clustering, and also multi context
• Built new DMZ in major datacenters for traffic flow along with F5 GTM
• Working on purchasing equipment from vendors and managing those relationships.
• Worked on Windows 2008 to deploy an active directory to link all site to one domain
• Built and designed OSPF for all our internally routing through the enterprise
• Supported what’s up gold on our enterprise which monitor the state of our server environment, and network
• Managed, and supported VMWare farms using ESXI and other VMWare software.
• Built DMVPN, IPSEC VPN, and GRE tunnels to support B2B connections and remote access across the enterprise
• Building Information Secuity policies to define Global Splunk deployment
• Build Splunk implementation with deployment server, indexers, and forwarders
• Splunk SME for all searches, alerts, and reports
• F5 SME for Vipirions’s LTM, GTM, and iRules.

Confidential

Manager of Network Operations

Responsibilities:

• Designing, and building the network for the Motorola division of Confidential
• Managed 25 direct reports with responbilities for building and implementing the network and security infrastructure
• Building network infrastructure including Juniper SRX’s, MX’s and Cisco switches and routers
• Worked with VP’s to build and implement new strategies and procedures for managing network and employees.
• Worked with architecture to configure Cisco switches and routers to prepare for DAC implementation
• Managed full budget for the network and security operations of the Motorola environment
• Working on purchasing equipment from vendors and managing those relationships.
• Worked on Windows 2008 to deploy an active directory to link all site to one domain
• Configured WAN’s for all data centers with BGP communication with the ISP’s
• Built and designed OSPF for all of our internally routing through the enterprise
• Supported what’s up gold on our enterprise which monitor the state of our server environment, and network
• Built, and support multiple VPNs using IPSEC and GRE across the enterprise
• Cisco Ironport support, and operations. Manage rules base and proxy setting to approve or deny web filtering

Confidential

Security Consultant

Responsibilities:

• Designing and implementing security products such as WIPS, and DAC to support the enterprise business
• Managed a portfolio of Business Units within Zurich to support security initiatives across the business
• Managed consultants who conducted periodic Penetration test across Zurich’s network
• Assisted VP’s and AE’s on issues with technology, and security products and initiatives
• Worked with architecture to configure Cisco switches and routers to prepare for DAC implementation
• Performed risk assessments and Cloud Governance approvals for vendors and products needing approval from local business units
• Configured multiple VLAN’s on Cisco Switches and ip routing to route between VLAN’s
• POC for business units for all security needs and initiatives.
• Managed Business Units on a request by request basis.

Confidential

Network Engineer

Responsibilities:

• Creating documentation surrounding Cisco Configurations, and troubleshooting on Cisco IOS products
• Designed New wireless Architecture for clients with multiple AP’s and Wireless LAN controllers
• Configured Cisco 3510 switches and 6500 routers for IP routing and BGP EIGRP routing protocols
• Assisted customer on the phone, and onsite with connectivity issues, and Network functionality
• Worked with Cisco TAC to troubleshoot Routing issues and load balancing using Cisco 6500 series routers
• Worked with Cisco IOS to troubleshoot network connectivity issues, and Network latency issues
• Configured multiple VLAN’s on Cisco Switches and ip routing to route between VLAN’s
• Worked on Active Directory to reset privileges and configure GPO for application downloads to all host on the Domain
• Worked with Microsoft exchange with clients to ensure email flow, and provision new users emails
• Supported network using OSPF, and BGP as WAN routing Protocols.
• Worked with WAN links to test and monitor BGP

Confidential

Network security Engineer

Responsibilities:

• Responsible for document creation, system design and end-user troubleshooting.
• Designs, implements, and documents new information security architectures, technical control standards and risk analysis methodologies
• Performed network commands, and troubleshot Cisco switches, routers, and Juniper firewalls
• Assisted customer on the phone with network connectivity issues, as well as firewall policies, and implementations
• Provisioned, Configured, and Support Juniper SSG deployment for 90 locations
• Worked with Screen OS to troubleshoot network connectivity issues, and Network latency issues
• Setup VLAN configurations, and segmentation on core switches to support a dynamic network with multiple ISP’s
• Worked with end users on GPO deployments, Active Directory synchronization, and resetting privileges on AD servers
• Worked with clients on Desktop Support and implementation of Microsoft exchange upgrades and Lotus Notes deployments and migrations
• Configure Firewall for VOIP traffic to allow for VOIP system to traverse the network
• Work with Linux OS to configure firewalls, and troubleshoot servers.
• Used Linux command to trouble network issues
• Build IPSEC VPN tunnels to route traffic from vendors
• Built GRE tunnels to work with windows servers to communicate with outside networks.
• Configured OSPF on Cisco Routers to route internal traffic for clients.

Help Desk Coordinator

Confidential

Responsibilities:

• Assisted store with all desktop support including hardware, and software issues
• Managed tickets using BMC Remedy ticketing system, as well and Interaction Client 3
• Performed network commands, and troubleshot Cisco switches, routers, and Juniper firewalls
• Assisted pharmacies with LAN and WAN connectivity.
• Configured switches, routers, and firewalls setting necessary to operate on the network
• Assited our network facility in configuring Juniper Firewalls with ACL’s for network security