SUMMARY

A highly trained IT Security Specialist with experience exceeding 10 years including system operations, firewall technologies, routing/switching, SIEM, data analytics, training, technical advisory, customer service support and management.

TECHNICAL SKILLS

• Palo Alto Next Gen Firewalls, Sidewinders, Cisco FWSM
• Cisco Routing/Switching
• Bluecoat Web Proxies, Nortel Alteon Load Balancers, Solera DeepSee Full PCAP
• ArcSight Console, Niksun, Wireshark
• McAfee Email Gateway Application
• DNS BIND, Nominum, Whitelisting/Blacklisting
• VMware, VirtualBox
• Windows 7, Windows Server, Windows XP, Red Hat, CentOS and Ubuntu

PROFESSIONAL EXPERIENCE

Confidential, Montgomery, Al

Network Security Engineer/Boundary Protection

Responsibilities:

• Oversee intrusion detection, boundary protection and vulnerability assessment operations to defend the Air Force Network (AFNET).
• Identify unknown or unauthorized sources which attempt to access the AFNET and when such attempts occur, the team notifies the appropriate AF agencies.
• Monitors, operates and maintains intrusion detection systems, firewalls, load balancers, and web proxy servers to protect AFNET resources from both internal and external threats while conforming to DISA Security Technical Implementation Guide (STIG).
• Configures Access Control Lists (ACLs) to grant and restrict network access to authorized users and processes.
• Several other tasks such as monitoring firewall management software and configuration of firewalls occur on a regular basis in order to stay ahead of any possible intrusion activities.
• Provide management and configuration of the security devices in the Gateways, the IMS, and local LAN boundary (both SIPR and NIPR)
• Subject matter expertise level support for an operations environment on Blue Coat Director, Blue Coat Reporter, SSL Appliances SV3800 version 3.11 and Proxy SGOS 900 - 45s version 6.5. These activities including loading configuration and patches, configuring devices, ensuring that the device was secure upon deployment on network, patching, updating/upgrading, monitoring performance, analyzing performance data, network traffic and utilization, providing reports for performance, utilization and traffic for security related purposes, troubleshooting and resolving network performance issues that are associated with or impacting devices and providing leadership with recommendation on the course of action based on the findings and also ensure that the devices managed are in compliance with the Department of Defense regulations.

Confidential, Montgomery, Al

Network Security Engineer/JRSS/Telework

Responsibilities:

• Assist orchestrate the projects end-to-end
• Analyze discovery information and determines requirements for migration; Provides gap analysis at the start of the project
• Directs team members and reviews results
• De-conflict inconsistencies between engineering implementation plans (EIPs ) and directs changes to EIP authors
• Maintain current network diagram for COI/Base (end-to-end)
• Controls all variables and allocations e.g. IP Addresses, VLANs, VRFs, shims, process IDs, etc.
• Define migration requirements to Tools and CND teams, this includes acceptable deadlines tracked by Project Manager (PM)
• Tracks task status against ASI schedule and adjusts implementations
• Transport security team migrates customer’s security stance to the JMN and JRSS.

Confidential, Montgomery, Al

Network Security Engineer

Responsibilities:

• Functioned as the Palo Alto Networks products Subject Matter Expert (SME) and interacted directly with the customer’s personnel.
• Provided expert support, analysis and research into complex problems and processes relating to deployed Palo Alto Networks equipment.
• Served as the technical expert on executive-level project teams within the customer providing technical direction, interpretation, and alternatives.
• Contributed to the development of new principles and concepts, worked on unusually complex technical problems and provided solutions which are highly innovative and ingenious.
• Developed and maintained an expertise on the products and solutions deployed within the Customer’s network.
• Administered on-site support with installation and configuration of Next Generation Firewall (NGFW) technologies.
• Supported in migration of Security Policies, Network Address Translation, IPS signatures, and URL filtration policies.
• Assisted in designing and installing Enterprise Management Platform (Panorama), User ID, Dynamic Objects, High Availability, and Reporting.
• Designed and configured custom application signatures.
• Configured Palo NGFWs or Panorama for initial deployment
• Configured templates, security zones, virtual routers, VWires and application and/or service based policies.
• Configured various management functions, such as, PKI certificates, RADIUS, SYSLOG, Authentication Profiles, Service Routes and SNMP.
• Performed PanOS upgrades from Panorama or the NGFW and performed Device License Management
• Analyzed traffic pattern and provides threat analysis
• Implemented custom reporting for threat intelligence and profiling
• Interacted with the Palo Alto Networks Government TAC to troubleshoot and diagnose cases
• Mitigated web-based threats in a timely manner

Confidential, Atlanta, Ga

Bluecoat QA&M Engineer

Responsibilities:

• Reviewed and recommend security safeguards and configurations in a highly complex system infrastructure with demonstrated ability to recognize and appropriately incorporate layered security safeguards within the network perimeter, internal network, application, and data layers.
• Provided hands-on knowledge for a wide range of security technologies with an ideal focus on Bluecoat Web Content Filter Proxies, Bluecoat Reporter, and Active Directory (and related authentication / authorization controls).
• Represented IT Security organization in a wide array of IT application and infrastructure projects requiring broad knowledge of IT Risk & Security.
• Assisted in defining security strategies and direction for infrastructure system design, optimization, research analysis, and solution delivery
• Worked with product vendors and other technical service areas to ensure timely resolution of incidents and escalation when needed.
• Performed recurrent system maintenance activities, develop and maintain procedure documentation for on-going support of Web Content Filtering solutions.