We provide IT Staff Augmentation Services!

Enterprise Security Architect Resume

5.00/5 (Submit Your Rating)

Houston, TX

SUMMARY

  • Insightful, results driven IT professional with notable success in directing and managing a broad range of IT security initiatives while participating in planning, analysis, and implementation of solutions in support of business objectives.
  • Excels at providing comprehensive cyber security governance/risk/compliance, cyber security architecture, network architecture, systems analysis, and full life cycle project management.
  • Possess over 20 years of combined experience in the areas of information cyber security governance/risk/compliance, cyber security architecture, cyber security threat intelligence, cyber security monitoring, network architecture and network operations.

TECHNICAL SKILLS

  • Security Applications/Tools: ArcSight, Splunk, SourceFire, Proventia Site Protector, Qualys, Internet Security Scanner, Harris, STAT, Tenable Nessus Security Center, Retina, Threat Guard, Big Fix, Websense, McAfee Orchestrator, McAfee Foundstone, McAfee Endpoint and Symantec Endpoint Protection
  • Networking: TCP/IP, SNMP, IP Sec 3DES MD5, NetBois/Netbeui, IPX/SPX.LAN/WAN IEEE 802.3z (Gigabit Ethernet), 802.3/802.3 u (Fast Ethernet Half/Full Duplex), 10/100 BASE - T (Category 3 and 5 RJ45 wiring standards), Spanning Tree and Multilink Trunking, Muti-mode and Single Mode fiber (ST/SC connection types), Cisco (6500 s, 5500 s, 3945, 3750, 3500 Layer 2&3 devices), Cisco (ASA 5550), Cisco ACS, Juniper (Layer 2&3 devices), 3COM SuperStack II Netbuilder Routers, 3COM 3900/3300/1100 Ethernet Switches, Nortel Networks Passport 2430, Nortel Networks 5000BH Concentrators, Nortel Networks Centillion100s, Synoptics 3000/3030 Concentrators, Synoptics 2810 Workgroup Hubs, Nortel Networks 28115 Ethernet 10/100 Switch, Nortel Networks Optivity ver. 7.0, HP Openview 7.2, 3COM 3900/3300/1100, SNMP APC Powerchute Software, 3COM Ethernet 10-BASET, EISA & PCI Adapters, Intel EtherExpress Pro 10/100 EISA & PCI Adapters, IP Subnetting, Advanced IP Routing, TCP/IP, NetBEUI/NetBOIS, DHCP/BOOTP, WINS, SNMP, RMON and Fluke Ethernet 683 Enterprise 10/100Mbps Protocol Analyzer, Fluke NetTool, Optiview and DoS Baseline Tool Kit
  • Hardware: Desktop/Laptop Dell and Compaq Computers, HP Printers, Cisco, Nortel Baynetworks and 3Com\ Switches,Compaq and Dell Network Servers
  • Operating Systems: Microsoft Windows Win2K, Win2K3, XP, Windows 7, Red Hat Linux

PROFESSIONAL EXPERIENCE

Confidential, Houston, TX

Enterprise Security Architect

Responsibilities:

  • Performed cyber risk assessments for critical business initiatives for hospital which included Microsoft Azure, 3 rd Party cloud based and on premise enterprise software based solutions.
  • Responsible for the architecting the forensics architecture, policies and procedures using Encase for Confidential ’s hospital
  • Served as lead forensics investigator at Confidential ’s hospital
  • Provide security assessments and compliance assessments with HIPAA, HITRUST, NIST, PCI DSS, ISO 27001/27002 , SOC2 and other security control networks.
  • Evaluate management, operational, and technical security policies, procedures and security controls
  • Reviewing security policy and procedural documentation
  • Reviewing network architecture diagrams and evaluating network access controls
  • Reviewing system configuration data to identify security weaknesses

Confidential, Washington, DC

Team Lead, Principal Information Security Engineer

Responsibilities:

  • Conducting interview with key US Courts stakeholders to evaluate current information security practices
  • Evaluate management, operational, and technical security policies, procedures and security controls
  • Reviewing security policy and procedural documentation
  • Reviewing network architecture diagrams and evaluating network access controls
  • Reviewing system configuration data to identify security weaknesses
  • Developing recommendations for security issues and vulnerabilities identified during on site security assessments
  • Communicating results to clients ranging from technical staff to executive management
  • Developing tools to increase the level of automation for security assessment and reporting methodologies
  • Provide security assessments and compliance assessments with NIST, PCI DSS, ISO 27001/27002 and other security control networks.
  • Conducted interviews with clients teams ranging from technical IT staff to senior executives

Confidential , Washington, DC

Information Systems Security Officer

Responsibilities:

  • Information Systems Security Officer for the US Treasury VoIP network. Provides project management and security related technical guidance to both Security and Server Administrators. Provides monitoring, analysis of both user and system network traffic, network and system using the Proventia Site Protector application console to view IDS alerts.
  • Reviews firewall/proxy logs, anti-virus and performs correlation of NIDS and HIDS logs. Responsible for executing ThreatGuard (S-CAP) and Nessus scans to ensure security configuration and vulnerability/patch management. Uploads security artifacts into Trust Agent FISMA to ensure the Treasury Time Division Multiplexing and VoIP network adhere to NIST Risk Management Framework and NIST 800-53 and local Treasury security controls.
  • Designed network defense architecture with an in-depth strategy to protect the Treasury VoIP infrastructure. Developed and maintains all NIST and Treasury security related documentation for the Digital Telecommunications Network for the US Treasury.

Confidential, Falls Church, VA

IDS Analyst

Responsibilities:

  • Served as a IDS Analyst 3 rd shift for the Mantech SOC/CSIRC team.
  • Responsible for providing the security services in support of the Mantech corporate mission: Security monitoring using ArcSight to analyze enterprise correlated security events for the following security and network devices: SourceFire, IronPort, McAfee HIDS, Cisco Routers/Switches and Enterprise servers.
  • Created daily reports which included open and closed ArcSight cases and ArcSight cases currently under research.
  • Utilized SourceFire Defense Center for reviewing IDS based logs. HBGary Defense Center tool for detecting anomalies on the corporate network and NetWitness for network current and historical network payload research.

Confidential, Washington, DC

Information Systems Security Officer

Responsibilities:

  • Information Systems Security Officer for the US Treasury VoIP network. Provides project management and security related technical guidance to both Security and Server Administrators.
  • Provides monitoring, analysis of both user and system network traffic, network and system using the Proventia Site Protector application console to view IDS alerts. Reviews firewall/proxy logs, anti-virus and performs correlation of NIDS and HIDS logs.
  • Responsible for executing ThreatGuard (S-CAP) and Nessus scans to ensure security configuration and vulnerability/patch management.
  • Uploads security artifacts into Trust Agent FISMA to ensure the Treasury Time Division Multiplexing and VoIP network adhere to NIST Risk Management Framework and NIST 800-53 and local Treasury security controls.
  • Designed network defense architecture with an in-depth strategy to protect the Treasury VoIP infrastructure. Developed and maintains all NIST and Treasury security related documentation for the Digital Telecommunications Network for the US Treasury.

We'd love your feedback!