PROFESSIONAL SUMMARY:

Self Managed, and Self Driven, Knowledge - Seeking Network Security Engineer with extensive application, troubleshooting, scripting, systems administration, network and application security expertise. Excellent technical trainer with the ability to quickly absorb complicated information and explain it to others in a simple way. History of demonstrated ability in engineering, supporting, troubleshooting and presenting enterprise security solutions. Constantly seeking ways to improve processes and self.

TECHNICAL SKILLS:

• DLP & Disk Pointsec Endpoint Security distributed agent for Enterprise
• Encryption
• Firewalls Palo Alto, ASA, Provider-1/MDM, VSX, PIX, Confidential, Nokia, Juniper,
• F5 WAF, VoIP, VPN, UTM, Clustering, QOS, Proxy, NAT, NSM, CSM, Sofaware, Edge, IPTables
• Load F5 BigIP iRule coding, Bluecoat Proxies, A10 AX VIP and server pool
• Balancers management
• Security IDS/IPS, Disk/Packet Encryption, Awareness Training, Forensics, Pen
• Testing, Auditing, Sourcefire/Snort, Confidential IPS
• Cryptology PKI, PGP, SSL, OpenSSL, SmartCards, RSA, IKE, RSA, htdigest, brute force tools and scripts, rainbow/hash tables, Disk Encryption
• Linux SPLAT, CentOS, RHEL, Fedora, Ubuntu/Debian, FreeBSD
• Microsoft 3.11/XP/7/8/10, SQL, Server 2000/2003/2008, Exchange Server, All Office
• Product
• Networking Cisco Routers and Switches, VLANs, Advanced Routing, Switching, Strong Wireless Theory, SNMP, OSPF, Cabling, Planning
• Scripting Perl, Python, Expect, Bash, VBScript, ASP, MySQL, X/HTML, JavaScript,
• CSS, Ajax/JQuery, Batch, SQL
• Hosting Apache1/2, IIS6/7, DNS, Wordpress/WP-MU, Joomla, Drupal, Plesk,
• Cpanel, Sharepoint, NGINX
• Debugging Algosec,Tufin, Firemon, Wireshark, VMware, Packet Sniffing, Kernel
• Debugging, Log Analysis,Syslog, Orion, Whatsup Gold and various SIEM products/correlation, Berts Testing on Fiber Connections
• Sales & Project Development, Customer Service, Sales Proposals, Reporting,
• Speaking Public Presentations, Toastmaster, Screen Capture Tutorials, Web based
• and SEM
• Hardware Expert Level Server and Desktop Hardware Repair and Installations

PROFESSIONAL EXPERIENCE

Confidential

Sr. Security Engineer

Responsibilities:

• Confidential SME for Virtual System setup in ESX / GAIA 77.30 clusters
• Create rules, troubleshoot routes/configurations in Confidential
• Migrate stand alone systems to Multi Domain Manager/P-1
• Assist with building out network environment
• Lead troubleshooting calls with their client, Marriott
• Rescued project for a friend and was brought on as "as needed" consultant
• 100% remote, nights and weekends

Confidential

Sr. Security Engineer

Responsibilities:

• Confidential SME, Linux SME, Perl/XML Scripting
• Convert Confidential Provider-1 to Palo Alto Panorama VSYS Model
• Implement Palo Alto Configurations from Bare Metal to Production
• Extensive Perl/Bash/Expect Scripting and automation as required on regular basis (weekly)
• Modify and maintain various homegrown scripting and automation tools in Perl/PHP Enterprise Security Architecture Consulting, War Room, Architecture, Implementations Peer Training/Documentation 100% Remote

Confidential

Sr. Security Engineer

Responsibilities:

• Manage thousands of clients, requests, troubleshooting, research, analysis, implementations
• Convert Confidential Provider-1, Netscreen to Palo Alto Panorama VSYS Model
• Implement Palo Alto Configurations from Bare Metal to Production
• Upgrade Confidential Firewall Clusters and Managers to GAIA 77.20
• A10 Load balancer configuration Assistance and Troubleshooting
• PCI DSS compliance related changes
• Extensive Perl/Bash/Expect Scripting and automation as required on regular basis (weekly)
• Wrote Panorama Query/Parse Tool in Perl/Tk that is used daily by team to research changes Modify and maintain various homegrown scripting and automation tools in Perl/PHP Create password change script in expect scripting to automate local password change on 100+ servers Enterprise Security Architecture Consulting, War Room, Architecture, Implementations Peer Training/Documentation
• Troubleshoot debugs and tools such as Firemon, wireshark, tcpdump, traces 100% Remote

Confidential

Sr Information Security Analyst Level III

Responsibilities:

• Fixup PCI Audit findings from AlgoSec
• Large firewall environment with thousands of clients using different security equipment 100-300+ Daily Changes, Reviews, and Planning per day on the following equipment types:
• Confidential Provider-1 R75, Palo Alto, Cisco ASA, Juniper SRX/SSG/NSM/Pulse, Bluecoat Customized scripting as needed in bash, perl, javascript for team related tools (weekly)
• Analyze reports and create reports from AlgoSec, HPNA, Syslog, and firewall logs
• Assist with overflow troubleshooting routing, packet captures and debugs
• PKI certificate updates as needed. Automated Certificate testing and validation
• Suggest improvements and optimizations on all processes security related as member of SME panel
• Operated under various change control procedures
• Train junior engineers on firewall and proxy equipment
• Confidential, Palo Alto and Juniper upgrades/Conversions
• Enterprise Security Architecture Consulting
• Enterprise logging, consolidation and reporting tools (ArcSight, Archer, InfoMan, Service Now, Evault) Notable accomplishments recently:
• Wrote script to query HPNA repository reducing a monthly analyst task from 16 hours to 5 minutes. Wrote script to compare lists of ip addresses, removing duplicates and informing auditor of differences Wrote script create proxy scripts reducing time required from 30 minutes per change to 2 minutes Wrote script for SRX CLI help reducing standard change time from 25 minutes to about 5 minutes Wrote various minor scripts to improve accuracy and speed of changes/implementations/checks 50% Remote

Confidential

Sr. Network Security Engineer

Responsibilities:

• Nokia and Confidential Provider-1 SME for 300+ Enterprise and Satellite office firewalls Wrote custom Orion Script polling software in Perl to provide consolidated reports Daily PCI Compliance Consultant for firewall change approval process using AlgoSec Manage SSL Certificate deployment for 350+ servers
• Expect scripting for tools creation and automating various security tasks, polling, and investigations Scripted Testing of PKI environment
• ESXi Lab setup and documentation for Confidential Clustering, F5 WAF, and Algosec
• Wrote several task automation scripts in Expect, Perl, Batch and Bash
• Wrote several debugging and trace tools to assist network/security teams
• Updated and created visio diagrams on network flow to assist team with troubleshooting
• Wrote troubleshooting guide for peers including explanations of CLI functions, diagrams, flowcharts
• SME, Plan, Upgrade, Install and Troubleshoot on a variety of equipment:
• Setup and implementation for backup plan for PCI compliance
• Confidential, Provider-1, Ubuntu, RHEL, Sofaware, Encryption, SNMP, Nessus Vulnerability exceptions, Juniper NSM, Configuration, Object Cleanup, Log Rotations, Data backup and recovery plans Bluecoat, Palo Alto, ASA and Pix Rule implementation, migration and cleanup.
• Video training and lab demonstrations for Network and Security teams Troubleshooting tickets and Business as Usual operations 95% Remote work and self directed projects.

Confidential

Tufin Consultant

Responsibilities:

• TCSE functions: setup and install tufin cluster in virtual environment. Train Dell’s client on usage and reporting of T ufin and Confidential . Confidential Optimization Consulting.
• Provided video training of all complicated functions Setup scripting of various aspects of Tufin management
• 100% self directed project as primary consultant - resulted in Dell acquiring additional contracts from client

Confidential

Sr. Network Security Engineer

Responsibilities:

• PCI Compliance updates on Confidential Network, Consultant and Implementer Design and Administered Scripted SSL certification deployments and PKI infrastructure Design a Managed SSL Certificate deployment for 300+ servers Confidential SME for interconnectivity 150 firewalls ( Confidential, Juniper, ASA, PIX)
• Assist CCSIE team with Cisco/ Confidential Interoperability as SME
• BAU Juniper, SSL VPN, TACACS, Juniper, Bluecoat, F5, DNS and network troubleshooting
• F5 Irule Coding and service/service pool load balancing
• Plan, Upgrade, Install, Confidential / Sofaware and edge UTM deployment
• Firewall rule base changes, business as usual tickets and troubleshooting
• Merge/swap existing Juniper firewalls to Checkpoint firewall and Provider-1 management
• Physical data center move in London of 100 VPN tunnels each requiring physical hands on
• Sourcefire Management and Updates
• 25% Remote work and self directed projects

Confidential, Tempe AZ

Network Security Analyst

Responsibilities:

• NERC CIP (based on ISO 270002) Regulations training and implementation consultant Firewall Cluster Consulting and Confidential SME
• Confidential R65/R70 ClusterXL Firewall Admin, Upgrade and maintain Management HA Provide security incident response and forensic analysis of security events Periodic network pen testing using nmap and custom Perl scripts Vulnerability management for Confidential, Windows, and Cisco Servers and Equipment Cisco Configuration of Switches and Routers (ME3400, 3750, 4507, IE3000)
• Implement Sourcefire Monitoring and testing of Enterprise WAN
• Lead Q1 Labs Logging and Accountability objectives
• Network Monitoring using Q1 Labs, Sourcefire, IPSwitch/Whatsup,
• SYSLOG tools, and SNMP monitoring
• Jungle Mux/Demux, and Fiber Equipment Troubleshooting for Enterprise WAN Repair Various RF Comm Equipment such Zetron Paging Systems and HAM HSRP and EIGRP troubleshooting and monitoring
• Develop ESXi Lab to clone production environment and train/present to peers/management Responsible for developing upgrade plan of various end of life HP servers
• Create standard security procedures for Communication Engineering Network Create and Lead Draft baseline security and performance procedures Assist with engineering, planning and maintenance of Enterprise WAN Engineer Sections of the WAN for substation connectivity and NERC CIP compliance Create training documentation for junior engineers about various technologies

Confidential, Frisco TX

Systems Engineer

Responsibilities:

• Primary Security Consultant for Confidential, Inc.
• On Call for various networking, Microsoft, Linux, firewall, security and web development related issues
• SSL, SSH Keys, HTTP Basic Authentication and PGP email setups/troubleshooting
• Penetration Testing and Security Recommendations for 300+ nodes wireless and wired network.
• Troubleshoot and Setup MS Exchange 2007, Active Directory, Outlook, Microsoft VPN
• SQL /MySQL and IIS/Apache Website development on Debian and Windows Servers
• Perl, JavaScript, VBScript, Ajax, XHTML, XML troubleshooting and development
• Cisco VOIP, VPN Client, PIX firewall, switch and router configuration and troubleshooting
• Cisco & Polycom VoIP and Video conferencing setup, security and installation
• Data warehouse setup, troubleshooting and sales for multiple customers
• Level 3 technical support for all small business (up to 5000 employees) hardware
• SNMP monitoring via Solarwinds (Orion) products.
• VMWARE Workstation/ESX bench testing.
• Investigate customer needs and present proposals, follow up with sales Prepare presentations and reports for various clients on a regular basis Troubleshoot and implement hosted and on site exchange servers Windows and Linux based Server Administration, Setup and Deployment Networking and Business Computer Support Remote and on Site
• Systems Installation of rack mounted servers and Small Business data center Engineering 50% Remote work

Confidential, Dallas TAC

Level 2/3 Product Engineer

Responsibilities:

• Confidential and Firewall Support Ticket Troubleshooting Pointsec DLP and disk encryption administration call in support lvl 1-3
• IPS/IDS FreeBSD/CentOS product support team lead, including JBOSS Debugging and Troubleshooting Managing customer accounts as a Subject Matter Expert for Confidential Security Products SmartDefense ( Confidential firewall A/V) and kernel level debugging.
• Provide level 2 technical support for Confidential firewall and networking issues.
• Level 2 VPN, Cluster, and Provider-1 Support Engineer for Confidential related products Level 3 Team lead for I PS-1, lead trainer for 10 peers on IPS-1
• Pre Shared Secret & IKE Troubleshooting on SmartCenter Servers & other Confidential Products Troubleshoot CA for digital certificate verification of SmartCenter Servers Smartcard and RSA troubleshooting for DoD Clients using Pointsec/Integrity Provide training and resources on a constant basis to new hires and peers.
• Windows Server 2003/2008 debugging, troubleshooting and setup
• RHEL Kernel debugging, and Confidential 's variant (SPLAT, embedded RHEL)
• Routing and troubleshooting, involving BGP, OSPF, RIP, Cisco routers, VLANs.
• Wrote/compiled over 705 technical articles for the TAC.
• Extensive VMware Workstation and ESX simulations and setup to replicate customer issues.
• Wrote Access/Perl/MySQL db application For Pointsec team to search historical cases.
• Wrote flashcards for several Confidential certifications (850+ questions total).
• Average customer survey score of 4.78/5.00.

Confidential

Technical Sales Consultant

Responsibilities:

• Technical author on several security focused blogs as ghostwriter and/or recognized expert Debian Hosting Security management for 205 websites (CMS and eCommerce Solutions)
• SSL Self Signed/Purchased certificates for eCommerce Servers and Secure CGI Scripts
• SSH, SFTP and HTTP Auth (digest/basic) Setup and Script management for Apache
• HTTP debugging for client applications, packet level and header inspection
• RHEL cpanel and plesk support and Debian CLI server farm maintenance
• Setup AWS, Rackspace and Various Cloud VPS for customers
• Security Scans on Apache2/Debian Systems at Rackspace Hosting Servers
• Wordpress, Joomla, Xcart, Drupal - Setup and Optimization, Managed Hosting
• Linux + Server 2000/2003/2008 troubleshooting, support, installs, setup for small businesses
• Virtualization projects and cloud hosting for many clients
• Lead software development/data entry team for a custom CMS
• Linux/Perl/PHP/MySQL Database Programming focused on Content Management Systems.
• Cold calling and walk-in business sales, with face-to-face consulting.
• Home and business networking, spyware removal, security, VPN setup, Networking and Server Repairs Designed Announcer software in Perl that tracks and assists 80+ Radio DJ’s.
• Automated text message alerts and emails for various time sensitive projects using Perl/MySQL Programming Retainer Contracts with Various Local Businesses in Phoenix Area and overseas Security Consultant Retainer for international clients (Bolivia, Canada, Nigeria, Various US states) Programming and Security Consulting for True Web Presence, 4X Consulting, Poynter Scifres, Boka Powell, Zerorez, MapTAB, L7 Tech
• Various jobs: Elance/odesk/guru/rent-a-coder/forums for web dev and linux hosting setup/configurations Wordpress Installations and custom plugin coding in PHP, Perl, MySQL and JavaScript Web development and hosting for MAPTAB, LLC in Mesa, AZ
• Manage and train 4 employees for security, search engine optimization and web development
• Primary focus on small businesses up to 50 employees
• E-Commerce setup, management, for tangible and digital products
• Reverse engineering competitors and search engine results
• Wireless Security Penetration testing

Confidential

SATCOM Operate/Maintain (E5, Airborne)

Responsibilities:

• Computer security officer responsible for 800+ User Windows NT network.
• Manual PKI physical key management for SATCOM traffic
• Lead Technician/Trainer for groups of up to 20 soldiers on SATCOM methods/theory Team Lead for 4 technicians to troubleshoot fixed station SATCOM facility 24/7 Crypto Key Management, Disposal and Implementation for Voice and Data Communications Circuit level maintenance and adjustments for RF and Fiber Equipment.
• Troubleshooting DS1/DS3, multiplexers, voice and data channels, HV RF amps,
• CSU/DSU, modems, generators, battery backups
• Passed Top Secret background check, held active Secret clearance for 16 years Responsible for 80% of the outbound SATCOM traffic for Confidential in Korea.