SUMMARY:

• Solutions - oriented Security, Systems and Network Engineer and Architect with experience directing a broad range of corporate and government IT initiatives while participating in planning and implementation of information-security solutions in direct support of business objectives, government directives and military tactical missions.
• Fully compliant to operate in cleared environments
• MCP, MCSA, MCSE, MCSE Security, Network+ (2008), Security+ (2009), SonicWall CSSA and Websense WSGA v7.7.
• 12+ Years’ experience in IT and 16+ Years’ experience in the workforce.
• Experience in PCI, SOX, HIPPA, DIACAP, DITSCAP, STIG, Confidential and Confidential regulatory requirements and guidelines.
• Experience in IT Security working at commercial, local, state, and federal government Levels.
• Experienced with secure network design, systems analysis and development, and full life cycle project management.
• Experienced in implementing innovative security programs that drive awareness, decrease exposure and attack surface, and strengthen organizations.
• Outstanding Management/leadership abilities, able to coordinate and direct all phases of project-based efforts while managing, motivating, and leading project teams.
• Experienced in developing effective security policies, procedures, project documentation, and Technical/Business specifications.

TECHNICAL SKILLS:

Core Competencies: Network & Systems Security; National Regulatory Adherence; Data Integrity/Recovery; Disaster Recovery Planning; Contingency Planning; Risk Assessment; Windows Servers, Active Directory, Server/PC Hardware/Software support and problem solving. Intricate knowledge of McAfee Products, Websense, Symantec products, Blue Coat products, SIEMs, Group Policy, Information Assurance, Disaster Recovery, Network and Host-based security and Bare-Metal Systems building.

Platforms: Windows 95/98/2k/XP/2k3/Vista/7/8/10/2k8/2k12 (Server/Home/Professional/Ultimate), RHEL-based Linux, Mac OS X, IOS, Knowledge with MSDE/SQL

Networking/Security: TCP/IP, DNS, DHCP, Ethernet, VPN, ACL, PKI, ATDs, encryption, Cisco, Bluecoat SA, RSA SA, Confidential, QRadar, IronPort, IronMail, TFTP servers, firewalls, switches, unsecured/secured government and international networks, WANs, SANs, NASs, and TEMPEST knowledge. Intricate knowledge of LANs, WLANs, NIDS/NIPS, HIDS/HIPS, NDLP, HDLP, AV, AS, McAfee products, email security gateways, web proxies/gateways

Languages: Knowledge of C, C++, Objective-C, Java, HTML, XML, VBA and Visual Basic, and experience with Regex.

Tools: Wire Shark, MMC, ADUC, Group Policy Manager, Resource/Network Monitor, DC Diagnostic tools, MS Sysinternals, Microsoft Office, Acronis, LDAP, Virtual PC, VMware, Hyper-V, NIDS/NIPS, HIDS/HIPS, LanMAN, and Visio

PROFESSIONAL EXPERIENCE:

Confidential

Principle Cyber Engineer

Responsibilities:

• Also, provides backup support for QRadar, and works with Splunk as needed.
• Creates architectural design documents, Standard Operating Procedures (SOP), training material and presentations, and implementation guides, creates custom parsers, dashboards, views, correlation rules, along with supporting custom content, to enable in-depth threat analysis, and “free-form” hunting of Command & Control (C2) traffic, delivery of malicious payloads, Advanced Persistent Threats (APTs), drive-by attacks, phishing, and other malicious code and attacks.
• Provides architecture design, product and implementation recommendations to customer’s IT Security senior leadership to further their security goals, while enabling them to decrease their overall attack surface, and improving the security stature of their enterprise.
• Performs Vulnerability Assessment (VA) scans, as per customer Rules of Engagement (RoE), to ensure regulatory compliance, assess the organizations external attack surface, and provides mitigation recommendations for detected vulnerabilities.
• Assists Project Managers (PM) with their duties.
• Recognized by Engineering Team Manager and Director of the VSOC for exceptional work and early completion of customer firewall assessment project.
• Recognized by CIO for the Call for Paper submission and participation in presentation of CFP at company conference.
• Recognized by CIO and customers for going above and beyond my duties for my customers.
• Recognized by CIO for the custom content I created for customers.

Confidential, Jacksonville, FL

Sr. Security Engineer

Responsibilities:

• Provides advisement and recommendations to senior leadership to ensure SOX, PCI and government regulatory compliance, security architectural reviews and approval for all submitted designs for each of the split projects ensuring that a security-in-depth stance is maintained, and ensuring that each design reduces the overall enterprise attack surface.
• Manages PMs of all security-related split projects ensuring timely completion of all objectives and directives, and ensures that the Change Control Board ( Confidential ) process is met for all security split projects.
• Manages MSS technical resources enabling effective and efficient utilization to ensure maximum coverage, full visibility, and in-depth threat and risk analysis are achieved. Manages security stack for TycoIS to include McAfee and QRadar SIEMs, McAfee ePolicy Orchestrator (ePO), McAfee Vulnerability Manger (MVM), full disk encryption of desktops and servers, Host DLP, Host IPS, Endpoint security, FireEye, Network DLP and Network IDS.
• Manages the identification and removal of all TycoIS sensitive information from ADT systems, and that all ADT sensitive information is removed from all TycoIS systems.
• Ensures all servers and workstations meet all government and regulatory compliance requirements. Writes SIEM, and other security product, transition plans. Writes proposals, technical documentation, SOP, and implementation and upgrade guides.
• Creates custom SIEM content and optimized dashboards enabling efficient threat analysis and anomaly detection.
• Approves all content, tuning, and upgrades of the security stack, and performs review and implementation of enterprise honeypot deployment.
• Manages 15+ projects, and all split projects were completed on time or early.
• Assists in laying framework for Global Cyber Intelligence Center.

Confidential, Manassas, VA

Sr. Network Security Engineer

Responsibilities:

• Manages IntruShield Network IDS.
• Assists with and performs VA scanning utilizing nCircle. Tests, implements, and manages Confidential connectors specific to my tasks.
• Assists Principle Confidential Engineer with architectural redesign ensuring optimization and High Availability (HA) of the Confidential environment, even in the case of complete loss of Primary Computing Facility (PCF) or Alternate Computing Facility (ACF).
• Co-authors systems refresh proposal to completely virtualize all IT Security servers, and provide complete HA, even in case of complete loss of PCF or ACF.
• Provides Disaster Recovery (DR) recommendations and proposals to customer, program manager and SOC chief.
• Assists SOC chief with optimization and design of Confidential channels ensuring effective presentation of events to the analysts allowing them to more efficiently identify threats and anomalies.
• Advises customer on technical and security standards, requirements and regulations.
• Self-taught RHEL-based Linux in support of customer’s initiatives and mission. Tests, designs and implements internal Foswiki server for ticketing and sharing of information.
• Creates and maintains SOP and deliverables for the SOC and customer.
• Recognized by Program Manager and customer for outstanding performance in design and implementation of Websense.
• Recognized by customer for exceptional support of the mission on the SEP 12 task.
• Recognized by Program Manager for work on the internal FosWiki server.
• Recognized by Program manager for work in testing of Websense integration with Confidential .

Confidential, Falls Church, VA

Security Engineer

Responsibilities:

• Designs, tests, implements and manages McAfee Email Security Gateways (ESG). Monitors and manages network and system security utilizing Confidential , SEP, IBM Host IDS, McAfee WebWasher, SourceFire, Microsoft (MS) ISA server, MS Forefront/Antigen and McAfee ESG.
• Monitors the health and status of security systems using SolarWinds.
• Performs threat and anomaly detection in conjunction with the tier 3 SOC utilizing Confidential .
• Performs forensic analysis utilizing NetIQ. Manages Cisco ASA and PIX Firewall (FW).
• Remediates systems/servers to decrease network attack surface.
• Creates, monitors and implements approved RFCs. Resolves security and performance incidents.
• Improves network performance, security stature, and protection of sensitive information through security-in-depth practices.
• Maintains and monitors the email/web whitelists and blacklists.

Confidential, Charleston, SC

Operations Manager/Sr. Systems Engineer

Responsibilities:

• Manages customer and company operations ensuring the highest level of service, that all Service Level Agreements (SLA) are met, and that the company’s performance always exceeds the expectations of the customer.
• Manages personnel enabling career and personal growth through mentoring and training.
• Designs, documents and maintains company datacenter. Implements Confidential and Confidential security standards ensuring that defense-in-depth is practically applied, while minimizing enterprise attack surface.
• Advises customers with recommendations on improving their current enterprise security to in corporate security-in-depth, utilizing both host, and network, security solutions.
• Trains personnel in security best practices, compliance standards, Juniper VPN appliances, SonicWALL FWs, network security, and system security.
• Creates and manages operational flow charts ensuring quality, personalized treatment of the customers.
• Writes Company SOPs, technical manuals and acceptable use policies.
• Performs Cost-Benefit Analysis (CBA) and Return on Investment (ROI) assessments for the company, and provides the results to the Chief Technology Officer (CTO).
• Provides top tier technical support to the customers, and the escalation point for employees.
• Creates Disaster Recovery Plan (DRP) for internal datacenter and customers.

Confidential

Systems Administrator

Responsibilities:

• Manages 45,000+ exchange mailboxes, and 30+ exchange and domain servers under constant growth.
• Assists Confidential with investigations. Assists Information Assurance (IA) team with systems security, patch management, and mitigation of information spillages.
• Assists Tactical Network Operations Security Center ( Confidential ) with McAfee Host-based System Security (HBSS) endpoint troubleshooting.
• Employs TEMPEST standards in network and physical security. Maintains STIG compliance for all systems within Area of Responsibility (AOR).
• Creates DRP for MS Exchange mail environment.
• Creates rack elevation diagrams, and others, to document the Tech Control Facilities ( Confidential ).
• Performs DR procedures on systems with hardware failure bringing the system back to fully functionality with minimal to no data loss.
• Provides assistance to the Helpdesk, Network Operations Center (NOC) and other centers as needed to ensure the success of the mission.
• Creates and updates SOP, technical manuals, and other documentation for customer sites.
• Recognized for exemplary efforts in recovering and restoring an Exchange server from full RAID failure.
• Recognized for outstanding efforts in restoring DNS and email functionality to the site.