SUMMARY:

Experienced Cybersecurity professional with talents in the areas of firewall engineering, architecture, network security, and the ability to quickly absorb and implement new technologies.

SKILL:

• Skills on IPS and IDS, vulnerability scanning, penetration testing in network systems
• AlienVault, SIEM, Snort, Wireshark, WinDump, NMap, TCPDump.
• Expert experience on Palo Alto Next Generation Firewalls, Models PA - 5000, and PA-7000
• Expert experience on Palo Alto Panorama architecture with PAN-OS 7.1 and 8.0
• Experience on Confidential ASA Firewalls, Confidential Identity Services Engine (ISE 2.3), and Confidential switches
• BGP, OSPF, EIGRP. Confidential technologies: IPSec, SSL, GRE, DMVPN
• Advanced skills and knowledge in Layer 2 security: port-security, spanning-tree, spoofing attacks
• Knowledge on RMF, compliance, security policies, and countermeasures in cybersecurity
• Experience with encryption devices such as ViaSat KG-250s and TACLANEs
• Knowledge with High Assurance Internet Protocol Encryptor (HAIPE)

PROFESSIONAL EXPERIENCE:

Senior Network Security Engineer

Confidential

Responsibilities:

• Design and architect Palo Alto Panorama management solution to manage all state’s PA devices.
• Design and architect Palo Alto URL Filtering Private Cloud in Confidential space for all States PA devices.
• Provide support and solution for other security and operation department regarding Palo Alto’s issues.
• Design, architect, and troubleshoot Confidential AnyConnect Confidential with Confidential host checking posture.
• Work with all networking and security teams and the customers during the integration.
• Build and integrate new network security stacks into existing networks with zero down time.
• Follow up with miscellaneous tasks and corrections needed in the post-integration phase.
• Integrate and deploy WAN optimizer Riverbed and PCAP sniffer FireEye devices.
• Responsible for implementation of the STIGs as per the Confidential for networking devices.
• Implement and review the Layer 2 security for networking and security devices.

Network Security Engineer

Confidential

Responsibilities:

• Worked with Confidential Firewalls, core features, and VM Firewalls.
• Worked with Confidential technologies including GlobalProtect SSL Confidential and its complex design.
• Worked with central management Panorama to manage device groups and template stacks.
• Provided technical expertise to sales engineers as a subject matter expert (SME).
• Advance troubleshooting skills on Palo Alto Firewalls such as SSL Decryption, IPS/IDS.
• Experience in migrating from Confidential and Fortigate Firewalls in to Palo Alto Firewalls.
• Experience in identifying security issues and developing mitigation plans.
• Experience in maintaining patches, updates, and upgrades on Firewalls.
• Travelled to various customers’ location as a professional services engineer.

Network Security Engineer

Confidential, Chantilly, Virginia

Responsibilities:

• Engineered site-to-site Confidential, Remote Access, SSL and IPSec Confidential on the Confidential ASA Firewall.
• Experience with Palo Alto Firewalls in VWire, Tap, Layer 2, and Layer 3 deployment mode.
• Responsible for packet capture analysis, syslog, and firewall log analysis for threats.
• Configured, maintained, and monitored Confidential ASA Firewalls at different site’s network.
• Responsible for implementing and configuring Sophos and TrendMicro Anti-virus software.
• Experienced with UTM Sophos Firewall in site to site Confidential, traffic shaping and monitoring.
• Ensured correct configuration and mitigated system and network vulnerabilities.
• Maintained upgrades on the Network Security Devices Firewalls, and switches.
• Troubleshoot SSL AnyConnect Confidential and IPSec Confidential on Confidential ASA 5520 Firewall.
• Responsible for day-to-day Network connectivity issues and Security issues.
• Extensive experience with Malware analysis and troubleshooting.

Systems Administrator

Confidential, McLean, VA

Responsibilities:

• Managed HIPS Symantec Endpoint protection to the domain-joined computers.
• Managed Active Directory ( Confidential ) database, DNS, and DHCP server roles in domain controller.
• Managed File Servers, RAID configs, and maintain users’ access permissions in Network Shares.
• Managed users’ mailboxes and resource mailbox in MS Exchange 2010 server.
• Maintained users and resources mailboxes in MS Exchange 2007 Server.
• Maintained and managed spam filter tool Postini proxy for inbound and outbound email exchange.
• Supported and maintained SSL and IPSec Confidential in Confidential Firewalls.

Confidential

Information System Security Officer

Responsibilities:

• Manually updated Anti-virus software and windows updates for classified computers.
• Managed user accounts and permissions for security cleared employees for classified computers.
• Maintained the logbook for DSS security check and report it to Information System Security Manager.
• Reported on security status and security incidents, performed and maintained system security audits.
• Used DSS (Defense Security Service) tools to mitigate the system vulnerabilities in secured environment.
• Maintained the system's security and accreditation status in compliance with DSS requirement.