SUMMARY

• I am an accomplished, senior level Information Technology professional with 18+ years experience in the field of network/computer security and overall information technology.
• My true calling is anything IT security related.
• I have top - notch communication skills, including fluency in Spanish. I can easily interact with senior and executive level management.
• I am a well versed team player with excellent customer service skills.
• I have meticulous attention to detail, very well organized, and highly analytical.
• I am a results driven individual and like to see the job get done the right way, the first time, every time.

PROFESSIONAL EXPERIENCE

Confidentia - Englewood, CO

Senior Information Technology Security Engineer

Responsibilities:

• Implementation and administration of FireEye NX and HX for network and host-based scanning for any potential security vulnerabilities and on the wire security compromises
• Administration of TripWire CCM - regulatory and audit scanning and evidence for SOX, GLBA, and PII
• Implementation and administration of NDLP filtering with Websense technology
• Implementation and administration of URL filtering with Websense technology
• Administration of Cloud filtering with SkyHigh MSSP for any sensitive information leaving the wire
• Splunk searches, filtering, and dashboards for incidence response, metrics, and KPI
• HDLD filtering with McAfee and Websense technology
• Experience with Palo Alto firewalls and URL and application filtering and blocking Confidential the edge
• Experience with Rapid 7 vulnerability scanning and providing results to compliance and audit
• Audit, compliance, and risk evaluations of enterprise, perimeter firewalls - all major firewalls vendors
• Proven leader and instructor when doing team transitioning for M&A’s
• Created, curated, and instructed legacy teams on firewall posture, change submission, and pertinent rules to ensure success Confidential the customer level, thus reducing the amount of time and complexity for firewall rule implementation
• Key firewall metrics curated monthly for presentation to C level leadership showcasing the work of the team.
• Metrics curated, monitored, and tracked for extended risk evaluation for high risk, highly visible implementations.
• Key member of the Extended Risk Evaluation team. Vetted high risk, highly visible firewall implementations.
• Significant understanding in the implementation and functioning of Algosec - firewall management suite:
• VPN and B2B connections
• Project coordination with various business units and the security teams
• In depth understanding of rules, rulesets, objects, rule clean up, policy optimization, and the like
• Effective allocation of time in order to support other needs of the business unit
• In-depth work with project managers and teams to ensure the execution of new technologies in the environment.
• Support of security operations teams from 4-30+
• 24/7 - on call rotation support
• Team leader and supportive staff for leadership and staff members
• Extensive training on the above technologies and other security technologies and regulatory measures to ensure a level of current and relevant training and knowledge base in the industry.

Confidential - Englewood, CO

Principal Information Technology Security Systems Administrator

Responsibilities:

• Developed and administered corporate-wide information security awareness program
• Developed and maintained information security policies, standards, guidelines and procedures for all computer system environments Managed and maintained information security systems auditing tools, performed system forensics, and security incident investigation as required
• Developed and administered corporate-wide information security policy
• Provide operational support for firewalls, IPS devices, and URL/ email/spam filtering systems
• Supporting a large and complex Enterprise environment including day-to-day changes, troubleshooting issues, monitoring, and responding to incidents
• Conducted security audits, penetration testing and manage the scanning systems
• Implement security hardware and software solutions
• Administration of Check Point firewalls and VPN; Including Provider 1, Connectra, Eventia, and End Point security, TuFin
• Vulnerability management and remediation across various platforms including Window,
• Linux, VM environments, and end user workstations
• Use of various security tools for daily security operations such as FireEye, Mandiant, Tenable Security Center, Websense URL Filter and Email Security Gateway
• Assisting end users on a daily basis via HP ticketing system

Confidential - Lakewood, CO

Senior Security Lead

Responsibilities:

• Security Clearance has been obtained for this position
• Senior security lead contractor of the Operations and Support team for agency within
• DOI.
• Working closely with my team to ensure that all client facing hardware and software is secure within the environment.
• Strong collaboration skills with the Federal client in order to determine their security needs and executing to meet those needs. Often times, providing more guidance and helping the client understand what they actually need versus what they think they want.
• Working intimately with current managed service provider (MSP) to ensure all hardware and software and secure for this engagement on the MSP side of the house.
• Extensive collaboration with other team members who work in code development and testing, along with new applications for the client. I guide all the developers and have had them employ best practices for secure coding and encrypting for all applications (existing and new).
• In-depth knowledge of the software development lifecycle - development, test, UAT, and production envrionments.
• Extensive knowledge base in the compliance and regulation realm:
• Leading of yearly and off-cycle audit for Internal Control Review per NIST requirements and any other audit or external penetration testing/white hat testing from 3rd party auditors or outside security consultants. If vulnerabilities are found, they are discussed and remediated according to the business needs, but security requirements are always kept Confidential the forefront.
• Remediation of Plan of Action and Milestone (POAMs) per NIST requirements.
• Monthly vulnerability scans via McAfee Foundstone. These monthly scans allow for better visibility into the client’s current infrastructure to help determine points of weakness and vulnerabilities. Once the overall vulnerability landscape has been assessed, I then work closely with my team members and the members of the MSP to ensure the appropriate level of patching has taken place to ensure compliance.
• Overall risk assessment for the DOI agency by providing my knowledge and expertise to guide the client as to various levels of risk within the agency.
• Extensive work on DOI policy and procedure creation and maintenance.
• Beginning new efforts and initiatives on Security Authorization and Continuous
• Monitoring per NIST guidelines.
• Working with DOI CERT and other notifying bodies that alert on potential security breaches.
• Finding balance between overall business needs (so as not to impact the bottom line) and security best practices.

Confidential

Senior Elevated User Support and Senior Trainer

Responsibilities:

• Strike Team member - on the ground training and support services to each region throughout the United States severing the entire US Forest Service.
• Active Directory security best practices
• Oracle security best practices
• Desktop security best practices
• Server security best practices
• End-user training in security best practices
• Server migration education and assistance
• End user migration education and assistance
• Provide basic and advanced training for end user support.
• Training to groups of large groups – 50+.
• Documentation development and implementation.
• Provide additional resources to team members and to those “out on the field”.
• Excellent communication skills - verbal and written
• Great level of patience to guide each individual to learn and understand the material being presented.
• Ability to think “outside the box” when an unusual situation arises.
• Ability to collaborate with my team members and my end users to reach our goals
• Mentor to others on my team.
• Ability to think quickly on my feet.
• Must be able to function with limited resources to accomplish any and all tasks.
• Extreme flexibility and must go with the flow attitude

Confidential, Denver, CO

Corporate Information Security Analyst

Responsibilities:

• Two man operation that supported 500+ users, including high profile employees
• Desktop deployment, implementation, and maintenance
• Laptop deployment, implementation, and maintenance
• Application creation and support
• Extensive knowledge and use of Active Directory
• Extensive knowledge and use of Norton/Symantec Ghost and it’s components
• Extensive knowledge and use of various Compaq/HP hardware
• Extensive knowledge and use of in-house ticketing system
• Extremely successful in time, people, and support management
• Excelled Confidential working in small teams, under pressure, with time and mission critical situations
• Good knowledge and use Backup and recovery of data
• High level of customer service with great customer satisfaction