SUMMARY:

• Over the years I’ve had diverse, hands on experience that required enterprise solutions. I’m a self - motivated well rounded team player with excellent interpersonal skills. My main objective is to utilize my skills, knowledge, and experience in Network Infrastructure and Information Security Technology to obtain a position with a great company for a mutual benefit.
• Instinctive Troubleshooting Skills 20 years of experience
• 7 yrs - Penetration testing in Enterprise Environment, Network Audits
• 10 Yrs - Cyber Security Information Assurance in Energy, Oil,Gas, Nuclear, Energy
• 10 yrs - Network Security Engineering, Audit compliance, PCI Compliance, Intrusion Detection, Prevention, Risk analysis, Enterprise Security Posture and Sarbanes Oxley SOX, PCI DSS, NERC CIP
• 15 yrs - Extensive knowledge of Active Directory Administration, DOS, Windows 95/98/2000/N.T/ Server 2003, Exchange 5.5/2000/2003/2007/2010/2013 Administration and support, OWA
• 16 yrs - Preventive Maintenance, Backup and recovery, EPO, Anti Virus detection and removal
• 14 yrs Configure, manage settings, permissions, and services on Win2K, 2003, 2008, 2012 servers to include DNS, DHCP, FTP, TCP/IP, Group Policy, Load Balancing, File/Print service, SAN, Clustering, LDAP
• 12 yrs Proven ability in support of CISCO remote access VPN, Direct Access, UUNET, Checkpoint, RAS, MPLS, and all connectivity issues.
• 12 yrs in detection and resolution of hardware/software server problems, Migrations, and Networking Technology in a Multi-Platform Enterprise Environment
• 18 yrs Software/Hardware Upgrades, Roll Outs, Terminal Services, all Windows OS, and Patch management
• 15 yrs Experienced in ticket tracking software Tivoli, Remedy, SNOW Service now
• 10yrs Network Performance and monitoring
• 8 yrs Network Intrusion, Nessus, Snort, Metasploit, Wire Shark, HIPS, DLP
• Lifelong ability to prioritize multiple task, meet deadlines with minimal supervision and keep customer service a priority
• 10 yrs Perform tech watch for new cyber security techniques, methodologies and new technology threats

EXPERIENCE:

Confidential

Sr. Information Security Engineer

Responsibilities:

• Advanced Monitoring Senior Engineer working in Critical Infrastructure Protection CIP OT/IT/ICS Environment to protect the US power grid and Bulk Electrical System BES of the United States Of America
• Provided advanced monitoring and tooling of Electrical Substations systems, hardware devices SCADA and ICS enterprise applications.
• Tripwire Administrator using FIM and compliance rule metrics for NMAP devices and all Network gear from consisting of Cisco 3850 Routers and Cisco CGS-2520 Switches, SEL 3355, SEL 3555, DFR, and all Electrical reliability equipment.
• Communicated issues with Upper Management and system interdependencies with a wide range knowledge of communications and impacted hardware and device fabric interconnects.
• Setup Tripwire Policies, documented policies and procedures, corporate standards and change management procedure workflow
• Perform periodic vulnerability scans on all IT systems to ensure continued compliance along with scorecard evidence for change control procedure execution
• Symantec Enterprise Security for endpoint security, install, troubleshoot and maintenance definition upgrades, MDM, BYOD
• PAM support for privileged account management troubleshooting Active directory in 2012 and 2016 windows server environments with some Linux Redhat using Beyond Trust
• CMDB Administrator OT Operational Technology assets, inventories in and its relation to Splunk logging for SEIM reporting and logging 4000+ devices.
• Modbus, Schweitzer Electronics, Honeywell, GE
• Solarwinds Orion Administrator for alerting UP/DOWN and connectivity along with traffic metrics, performance monitoring for device interfaces for 4000+ node environment
• Engineered CIPv6 - CIP14 Electronic access control and Physical Perimeter Security compliance evidence for NERC/CIP Audit and corporate compliance in fast paced highly volatile ever changing Electric provider with hundreds of change controls and Substation configuration changes at any given time.
• Provided support in trusted Multi Domain environment and used network troubleshooting techniques to pivot from Servers across domains for detailed connectivity cause issues. Physical connections, Server, Router Switch, LAN/Wan
• Worked closely with Firewall team troubleshooting network traffic, protocol access in Checkpoint Firewall network.
• Support Business Continuity and Disaster Recovery processes and remediation
• Worked closely with the Nessus Threat and Detection groups to mitigate vulnerabilities and provided structured data to minimize compliance risk.
• Documented daily event status reports in addition to supporting and training new Engineers coming into the Environment with no prior CIP experience.
• Holder of Unescorted Nuclear Red badge Access

Confidential

Sr. Cyber Security Administrator

Responsibilities:

• Governmental RED Badge Nuclear Security Clearance
• Passed the first NRC Cyber Security audit of its kind in the Nuclear industry
• McAfee Enterprise on the Plant ICS side, HIPS, DLP
• Cyber Security Administration and IT risk management in computing operations Business LAN, and ICS for plant operations
• Network Administrator supporting Server Infrastructure in a virtual/physical Server environment. Server Hardening and Patching
• ESET Enterprise Antivirus Console Administrator implementing new anti-virus definition files, and monitoring of heuristics and malware signatures via console threat detection on Corporate business LAN
• IBM QRadar SIEM Administration with monitoring configuration changes and health with custom alerting.
• Install, configure, operate and maintain cyber security equipment. Plant ICS, Routers, Switches, Firewalls, Cameras, Plant access firewall configuration, web content filtering, portable media programs, anti-virus solutions, etc.
• MS Active Directory - Group Policy. DHCP, DNS, ADFS
• Microsoft Hyper-V for Virtual server administration and for troubleshooting issues with HYPER-V Cluster manager.
• Solar Winds ORION - IPAM, network management
• Review, recommend, implement and maintained all security technology products within the Information Support Services organization.
• Monitor and evaluate vulnerability information from various sources, security trends, and best practices and effectively articulate mitigation guidance.
• Review hardware and software audits for compliance with established regulations, standards, policies and procedures.
• Provide cyber security technical and operational guidance for the station to assure new business functionalities have the proper security controls and objectives identified, implemented, verified and tested.
• Incident Response, Kill Chain mitigation
• Provide analysis and/or reverse engineering of suspect source code including Trojans, viruses, back doors, and other known and previously unknown Malware
• Working knowledge and understanding of NRC cyber security regulations, event auditing, incident management
• Rapid 7 Nexpose vulnerability, Metasploit, and Rootkit Detectors, TripWire Enterprise, Centrify container security solution
• Knowledge and understanding of security principles such as hardened/bastioned system builds, network separation, secure coding standards and wireless security.
• Created conceptual, logical and physical security diagrams, identifying technology-based security tools, and inserting information security controls and checkpoints into the application design process.
• Knowledge and understanding of cyber security vulnerability assessments, penetration tests, forensics and the tools/techniques involved in both.

Confidential

Sr. - Cyber Security Operations Controls

Responsibilities:

• Administer and maintain end user accounts, permissions, and access rights including physical access requirements.
• Manage physical access to BES Cyber Systems by specifying a physical security plan in support of protecting BES Cyber Systems against compromise that could lead to mis-operation or instability in the BES.
• Assess need for any security reconfigurations (minor or significant) and execute them if required.
• Penetration testing for baseline audit to ensure governmental NERC CIP Compliance into the future,
• Foot printing and Reconnaissance, Scanning, Exploitation, Privileged Escalation and Lateral movement monitoring and resolution.
• Keep current with emerging security alerts and issues. CIP V3 - CIP V5
• Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts.
• Participate in the planning and design of enterprise security architecture.
• Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines and procedures).
• Identify new trends in systems security and data protection, and build business cases for adoption of best practices.
• Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security.
• Participate in activities in Access Management to provide access management business requirements and insure compliance with industry and company security standards.

Confidential

Regional Solution Security Engineer Consultant

Responsibilities:

• Cisco Routers, Switches, Firewalls and Wireless technologies
• L3 Routing, including EIGRP, BGP, IKEv2,
• Implement industry standard security practices across all network infrastructures. Password policies, Security system logging, antivirus, threat detection and resolution
• Provide recommendations to mitigate risks through the appropriate use of technical, procedural, and administrative controls in accordance with legal and regulatory compliance standards and established industry best practices
• Normalized and comprehensive views of the network, including: routing rules, access rules, NAT, VPN, etc.; hosts, including all products (and versions), services, vulnerabilities, and patches; and assets, including asset groupings and classifications.
• Perform periodic vulnerability scans on all IT systems to ensure continued compliance PCI DSS; evaluate security posture of the company
• Design and build of network, storage devices, virtualization hypervisors, and physical servers, VMWare ESXi
• Design, plan and remotely deploy infrastructure solutions based on established standards for site locations in the Americas Region.
• Create and maintain Infrastructure solution documentation, including diagrams, high-level designs and run books along with future maintenance of document revisions all within ITIL framework

Confidential

Network Engineer

Responsibilities:

• Cisco Enterprise backbone Engineer, 2960 -4500 Catalyst Switches, 2900-4000 ISR Routers
• Tripwire Enterprise 8.1 administrator, SIEM - Tripwire Log Center
• Palo Alto Policy Control, Web Filtering, Proxy
• Splunk Enterprise deployment engineer for all corporate standard production infrastructure, security and business application security posture.
• Penetration testing, Packet filtering, Signature Detection, Port Scanning, Malicious Payloads and False Positives
• IPS/IDS Defense in depth strategy for a secure enterprise environment. Utilizing Cisco Source Fire
• Collect, analyze and act upon big data security systems and business application malicious activity, with regards to detection, remediation and resolution.
• SOX - Established, implemented, and enforced IT standards and policies, Application/Hardware/Security between each with emphasis on 100% compliancy. Documentation of policies and procedures, corporate standards and change management
• Perform periodic vulnerability scans on all IT systems to ensure continued compliance with industry standards including SOX; evaluate security posture of the company
• Planned, implemented and managed a companywide security infrastructure using next gen firewalls, IDS/IPS, end-point security, vulnerability scanners, web application firewalls
• Utilized VMware technology to provide a ratio of 89% virtual to 11% physical across the enterprise. Virtualization platform (including VDI) provided Confidential the scalable and elastic infrastructure for a fast pace acquisition and aggressive business model while providing a 99.999% uptime.
• Integrated, implemented a PKI infrastructure for improved security and Microsoft UAG (Direct Access).
• MS Exchange 2013 - Windows Server 2012 Expert level Active Directory security and management ADFS
• Integrated and Managed multiple network based firewalls, Cisco VPNs, IP load balancing systems and migration of legacy tape based data backup systems to high capacity disk based systems
• AlienVault, Riverbed Steelhead, Solarwinds Orion, Nagios, Cacti, IPAM
• Collocated Datacenter in OKC and Houston - performed DC moves and upgrades
• SCADA Network support engineer during acquisition integration and cutovers.
• Re-engineered and executed new Infrastructure services - consolidated and constructed new Microsoft foundation stack, which removed all third-party vendor applications (Citrix, XenAPP, etc.) and replaced with Microsoft products (i.e. Direct Access, RemoteAPP, ADFS, etc.).
• NetAPP 6250 SAN environment which allows for an 86% virtualization
• Monitoring and troubleshooting server, network, operating system and proprietary software issues.

Confidential

Sr. Network Administrator

Responsibilities:

• ASA 5510, Cisco Scan Safe Proxy Admin creating policies, performed all reporting, web filtering, maintained all documentation for IT Security Audit policy and procedures in PCI DSS Security Compliance standard environment
• MPLS Cloud Frame Relay network engineer support with 27 locations throughout USA, Mexico, Canada
• Maintained all Internet branch Network communication as well as new turn-ups, cutovers and site moves. ATT managed routers, Cisco firewalls and DNS administration
• Active Directory Windows environment, along with UNIX ERP system, NetApp SAN Storage
• Exchange Administrator 2003 350 Mailbox’s 2010 migration, Microsoft Forefront Firewall/Antivirus
• Sole support for VMI Motorola Symbol Inventory scanner running on SQL database with Cisco VPN connectivity between branches on windows Mobil platform.
• Performed all Server upgrades Antivirus, patches and migrations HP ProLiant G6 DL-BL Series servers
• VM Ware ESXi, Citrix Presentation Server/Xen App, Propalms, SCOM 2007R2, SCCM 2007R2, Cisco Call Manager/Unity 350 phones
• Designed and implemented Document Management system MaxRecall
• Responsibilities included maintain all Network Equipment Cisco Routers, Switches, Patch panels for all network closets at all locations
• 95% uptime, downtime was only for scheduled maintenance weekends
• On call 24/7 365 days 50% Travel

Confidential

IT Network Administrator Consultant

Responsibilities:

• Service-now Configuration Management Database (CMDB) provides a single point of visibility for IT to track the relationships of services to underpinning IT assets and configuration items.
• ITIL V3 + Web 2.0 + SaaS, VB Scripting, IBM Tivoli
• SNMP, SSH, WMI, Ping discovery agent with SQL 2005 backend
• Service- Now has the ability to automatically discover network attached assets and build relationships between applications and infrastructure components while compiling data for review.
• Secure connections via Microsoft Active Directory, Novell, Domino Lotus Notes, and OpenLDAP. We connect to LDAP from a single machine using a fixed IP address through a specific port on your firewall and authenticate with a read-only LDAP account.
• Discovery of all IT infrastructure, hardware, software within LAN or across WAN.
• AD infrastructure, MS Exchange, VM Ware, Oracle, IBM, Unix, SCCM, SCOM, Citrix XenApp

Confidential

Sr. Network Administrator Consultant

Responsibilities:

• Responsible for all Active Directory Administration, domains and trust relationship,
• Domain Administrator for all user accounts, MS Exchange Mail 2003-2007 migration, Blackberry Enterprise server, Wireless Devices and Mobile Handheld
• GPO Administrator implementing permissions, testing and developing new policies, Windows Server 2003 - 2008
• Maintained all IT audit documentation for SOX compliance, ERP
• Constant research in scalability, growth and ease of maintenance,
• Implemented SCCM 2007 from SMS, Administered SCOM - MOM, Upgraded RIS-WDS, Group Policy,
• Citrix Admin for 1500 Employees accessing Citrix farm from 15 remote locations, Xen-App, Presentation Server, VDI Xen Desktop
• 6 Citrix Server Farm along with VM Ware ESX server’s running in Virtual environment in offsite redundant underground bunker. (Conroe, Tx)
• EMC Clarion SAN Administrator and Tiered storage support for over 700TB of archive data. Knowledgeable in de-duplication and Storage Array maintenance, implementation and Net Backup.

Confidential

Network Engineer

Responsibilities:

• Server Administrator for more than 50 servers in all Windows Platforms and AD environments, Exchange Administrator to 300 mailbox’s, VM Ware, Windows Server 2003 - 2008, Exchange migration 2003-2007
• VPN, Checkpoint Cisco Firewall, NAT, RPD, and Cisco IAD implementation along with some configuration and troubleshooting
• T1 internet installer Cisco 2400 IAD, Voice/Data cutover specialist performing phone cross connects and bridge lines
• Systems Analyst for all client applications, database, software infrastructure along with security, Wireless systems
• Maintained and designed Topology diagrams for record keeping and auditing
• Implemented backup policies through tape devices for offsite storage and also through web-based hosted redundancy applications.
• Proficient in HP blade servers ML and DL series, Raid Controllers, SATA, MSA

Confidential

Sr. Network Administrator Consultant

Responsibilities:

• Citrix Presentation Server Advanced, Citrix Secure Gateway & SSL, and Licensing Management, IIS, published applications
• 4 server environment migrated to 7 server hosted remote site and implemented web interface
• Day to Day operation of all Server hardware, OS, and networking technology, trouble shoot any and all computer hardware
• GPO, Symantec Antivirus 9, Oracle 8i database, MS Access with VB Scripting, ODBC
• Performed all backup, supported proprietary applications and ROSS ERP System.
• Responsible for troubleshooting all connectivity, MITEL IP phone - switch, Confidential 5012 and Netgear switches,
• Schedule vendor meetings with Bell South and Supply Circuit ID and Info for Turn-up of offsite plant into frame relay.
• The go-to guy for all request and sole IT employee reporting to CFO

Confidential

Consultant

Responsibilities:

• Complete Build of Disaster Recovery Project that was shipped to Phoenix, Az 10 HP racks/cabinets configured with Exchange 2003, setup of PDC and Windows File servers shared drive redundancy for Confidential Project
• 600 Terrabyte SAN HP Storage Works Array that was racked and built from the ground up mounted, brocade switch and all hardware which was also shipped and covered in Confidential ’s Technology section
• Mounted PDU’s, Managed all cabling also worked on Call Manager Project rollout setup and configuring IP phones 7960 for 10 site IP phone Rollout, Unity Voice Messaging, MOM, SMS
• Also performed desktop support and moves of equipment when desktop manager called for additional staff.
• Project completed for Confidential build covered an array of duties always multi-tasking and applying more efficient ways of completing before deadline.

Confidential

Systems Administrator

Responsibilities:

• Project based on SOX compliancy for company being publicly traded and IT point of contact for all SOX Controls
• Systems Admin Performing all Active Directory, MS Exchange Administrator Corporate and Remote Mail, GPO, EPO Anti Virus, Windows Updates - Patches Hot-fixes, WSUS, MOM
• RDP Remote Desktop, Net-meeting, SMS, Terminal Services, Web-sense Internet Filter Admin, Mapics R6, Tivoli Backup
• Administrator for Global Shop MRP account creation and Access Privileges, VB Script front end, Pervasive SQL backend
• Cisco Call Manager 3.3, Cisco Unity Messaging 230 Voice Mailboxes and phones 7940, 7960 w/ Expansion Modules
• Managed 2 Domains, 1 Corporate -1 Internet while resolving tickets in timely fashion with SLA as primary focus using Peregrine Asset Manager tracking
• SAN Connectivity and Migration using NET IQ, Santricity on LSI Array

Confidential

Systems Project Consultant

Responsibilities:

• Windows NT/2000/2003 Environment Server Administration 1800 Node Network
• Citrix ICA, NT RDP, Remote Desktop, Netmeeting, SMS, Sever Manager, User Manager, Terminal Services, ERP
• Veritas Backup Exec, Net-Backup, VPO, MOM - SCOM
• Active Directory, Domain Account Admin, Server Administration, OU,Group Policy, Scheduled Task, Scheduled Maintenance
• Lan/Wan Ethernet, VPN, Secure Remote
• Server Hardware replacement Server Build, SCSI, Raid 4, Raid 5 technology
• Fault Tolerance, Scripting, Overlap Parity, Hot fix - Security Updates
• Lotus Notes server email Admin granting email rights and adding SMTP, Disabling Email accounts, Migration to Exchange 2003, Quest Migration/Binary Tree
• Printer Queue Creation and Driver Updates

Confidential

Network System Administrator

Responsibilities:

• Windows NT/2000/2003/AD services Network Administrator granting all permissions to network shares, file and print services, group policy
• Designing Active Directory tree container structure for optimal scalability and future growth
• Backup Administrator performing all backup and data migrations on backbone servers being upgraded to new OS using Robocopy.
• Virus Scan Console Operator scheduling virus updates network wide and maintaining patches on desktop pc’s ensuring dat. files are current
• Exchange 5.5/2000/2003 Administrator Performing migration to 2003 creating, disabling, granting outbound SMTP addresses into BGC network, also email filtering and spam monitoring and blocking
• Configuring and performing scheduled backup of pst files and maintaining calendar for BGC and all email network file folders
• MS Frontpage 2002 web developer maintaining and updating company website, with new events, newsletters and image graphics.
• Raisers Edge database administrator performing all application updated and SQL server queries for company donation log