SKILL:

• Check Point 4.1, Provider - 1, NG, NGX, R55, R60, R65, R75, R77, R80, R80.10
• Quick learner able to implement new ideas into practice.
• Strong communication and team work skills with ability to work with diverse populations.
• Sourcefire 4.10.
• Juniper ScreenOS, NSM.
• Basic Splunk skills
• Basic Forensic skills using TCPdump, WireShark, SuperScan (pre-Foundstone/MacAfee).
• LAN networking, switches, routers, firewalls, security procedures and tools.
• Cisco ASA, ASDM, CatOS, IOS, Wireless Access Points (AP1200), CiscoWorks, WLSE (Wireless LAN Solution Engine).
• Windows 2000/XP/Vista/7, Unix (including HPUX and Solaris), Linux (Red Hat, Mandrake, Ubuntu), and OS X.
• DNS management; dBind, InfoBlox, QIP.

EMPLOYMENT EXPERIENCE:

Confidential, Broomfield, Colorado

Sr. Security Analyst

Responsibilities:

• Primary for Check Point firewalls, Palo Alto firewalls and Remote Access (Cisco ASA).
• Provide team leadership in absence of manager and team lead.
• Technical lead on projects with Remote Access, network redesign and Check Point firewalls.
• Determine and perform required security and OS updates on security hardware.
• Work with Security Architect and Lead Security Engineer to ensure adherence to corporate information security policies.
• Work with Network Architect and Network team to ensure connectivity and strengthen team relationships.
• Use Splunk to investigate possible security breaches and troubleshoot connection issues.
• Create and maintain SOPs for Security and Risk team.
• Develop and communicate methods of attributing FireEye alerts to user accounts.
• Provide support for infrastructure updates and changes, coordinating with Network team as appropriate.
• Perform intrusion analysis as required.
• Evaluate ProofPoint alerts to determine actions required.
• Evaluate PhishMe reports to determine appropriate response.
• Lead troubleshooting efforts, using appropriate tools and engaging vendor support when required.
• Balance business and security requirements to maintain security and meet business needs.
• Mentor new team members, provide guidance to assist junior members with problem solving.

Confidential, Denver, Colorado

Sr. Information Assurance Engineer

Responsibilities:

• Configure and deploy; Sourcefire Intrusion Detection Systems (IDS), NetOptics and Gigamon aggregation and network taps.
• Evaluate remote sensor criticality to prioritize replacement of Sourcefire sensors with Custom Converged Sensors.
• Evaluate remotely deployed aggregation solutions to recommend replacement.
• Manage aggregation network, port allocation, data flow and filters.
• Recommend alternative or new hardware to save space, cost or complexity of design.
• Worked with management to determine possible areas of cost reduction.
• Revised and updated Sourcfire IDS and aggregator inventory.
• Work with Information Security personnel to ensure adherence to corporate information security policies.
• Led replacement of Partner Firewalls, including first production installation of Gaia.
• Developed CLI template for Gaia installation.
• Configure and deploy Check Point and Juniper firewalls.
• Ensure network design and architecture meet security requirements.
• Coordinate hardware installations with Hardware team to ensure timely installation and configuration of hardware.
• Provide support for infrastructure updates and changes, coordinating with Network team as appropriate.
• Team with Intrusion Detection personnel to enhance overall understanding of security processes and procedures.
• Team with Proxy personnel to expand technical knowledge and understanding of proxy servers.
• Assist in troubleshooting, including the occasional use of TCPdump and Wireshark.
• Hosting Services DNS Lead.

Confidential, Boulder, Colorado

Systems Management Specialist­

Responsibilities:

• Wireless Network Focal, responsible for installing, maintaining, documenting, securing and upgrading wireless network devices.
• Server Distribution Network Focal, responsible for installing, maintaining, documenting and upgrading network devices supporting key applications. Applications supported include internal email and messaging systems.
• Boulder Focal for the Server Token Ring clean-up project. Facilitated the migration of servers, remaining on the campus token ring network to Ethernet.
• Cross teamed with other IGS Confidential teams as necessary to meet customer needs.

Confidential, Boulder, Colorado

Network Integrator­

Responsibilities:

• Installed, configured and maintained network equipment. Including Cisco switches, routers, PIX firewalls and CSS load balancers running different levels of Cat OS and IOS code. Other systems include Nokia/Check Point firewalls, Alteon load balancers and Blade Center Ethernet Switching Modules.
• Led project to migrate a large customer from a single pair of Check Point firewalls to two pairs of Pix firewalls. This required extensive work migrating a large rule set to ensure the new firewalls behaved exactly as the old firewalls had. Some complex NAT rules were also migrated during this project.
• Led several large wireless installations across the Boulder Campus. Coordinated the upgrade from VxWorks to IOS of the campus wireless network. Responsible for installation of approximately 80% of the Boulder Campus wireless network, and upgraded 100% of the wireless network as required by architecture team.
• Led the installation of new network equipment, using a Confidential approved architecture at a Denver site..
• Team DNS Focal, provided internal customers with static IP addresses, using VitalQIP, when required and provided second level support for DNS issues. Worked closely with members of the National DNS team.
• Boulder Focal for the Server Ethernet Migration from Token Ring.
• Team Security Focal. Ensured compliance with IBM security guidelines and worked closely with the Team Audit Focal.
• Team Facility Work Requests Focal. Developed a team level process for submitting and tracking work requests. Also participated in the development of a fast track submission process. Reducing customer downtime an average of 50%.