SUMMARY

• Design and Implementation of Information Systems Compliance, Risk, and Security Programs.
• Cyber Risk Management
• Risk Intelligence Modeling
• Information Security Engineering
• Network Security Systems Engineering
• Web and Database Application Firewalls Engineering
• Federal and European Union Compliance Program Implementation
• Architectural design and deployment of data centers in support of US Department of Defense and Corporate Enterprises.
• Architecture and deployment of performance analysis hardware, software, and supporting technologies.
• Department of Defense Information Assurance implementation of regulations and technologies
• Cloud services stand up, testing, and deployment and implementation Compliance programs.
• Architecture and leadership of security technologies deployments to assist in meeting regulatory compliance goals
• Implementation of cloud services addressing security domain challenges

PROFESSIONAL EXPERIENCE

Confidential

Senior Information Security Engineer

Responsibilities:

• Identity management audit and controls verification
• Integration of PingIdentity with Azure Cloud Services
• Azure B2C and B2B Identity SSO Integration and risk assessment
• Secure transformation of PAM and IAM services to Azure Cloud Systems and Services
• Web Application security testing, integration, verification and audit of SDLC
• Development of OneIdenity IAM solution design, engineering, and deployment
• Web application security monitoring during testing cycles to ensure securit controls are applied and only approved software and code are deployed.
• Provide full specifications for hardware and virtual systems for optimal performance
• Conduct environment Active Directory review to discover hidden accounts, accounts with high level access that were non - disclosed to the organization
• Identify high risk accounts with privileged access

Confidential

Senior Information Security Engineer

Responsibilities:

• Architecture of CyberArk IAM and PAM platforms
• Design of full PAM system architecture for On Premise and Data Center PAM, CPM, PVWA
• Conduct discovery workshops to analyse and integrate solution into current business environment
• Creation of Policy standards for access to privileged safes and vault(s)
• Design of HA and DR PAM systems
• Development of OneIdenity IAM solution design, engineering, and deployment
• Provide full specifications for hardware and virtual systems for optimal performance
• Conduct environment Active Directory review to discover hidden accounts, accounts with high level access that were non-disclosed to the organization
• Identify high risk accounts with privileged access
• Administration of CyberArk Systems
• Planning and design of new installation of CyberArk
• Integration of Symantec Endpoint and DLP systems with CyberArk privileged access management of endpoint systems and authentication.

Confidential

Information Security Engineer

Responsibilities:

• Planning of CyberArk IAM and PAM platforms
• Deployment, administration, and engineering of Carbon Black full suite of products and solutions
• Conduct discovery workshops to analyse and integrate solution into current business environment
• CyberArk Deployment and engineering of PAM and IAM Solutions
• Development of Machine Learning Models for Information Security Systems.
• 0365 Security Engineering and Implementation
• PING Federate O365 Integration and Deployments for SSO deployments in mobile platforms
• Azure Priviliged Information Management Engineering
• Azure Security Center Implementation and Management
• Configuration and deploment of Azure Sentinel Systems
• Upgrade and administration of Symantec Endpoint Protection Servers
• Symantec DLP integration with access management systems to implement access control zones for authentication, validation, and policy compliance prior to granting systems access to endpoints.
• Creation and deployment of secure IoT solutions
• Engineering reviews and recommendations of pre-deployment solution
• Conduct high level architectural and engineering discovery engagements

Confidential

Senior Security Analyst

Responsibilities:

• Analyzed malware behavior and actions: Code analysis, reverse analysis, injection methods, and system behavior by utilizing Canvas Immunity, IDAPro, and FireEye systems.
• Configuration and management of proxy systems that included blocking, analysis, and access operations.
• Administration o of McAfee ePO Orchestrator for endpoints, dlp, and intrusion prevention.
• CISCO Firepower configuration analysis, remediation, and deployment of configurations.
• Deployment of Web Security System based on Cloud Security services provided by Web Filtering, Spam Control, Malware Defense
• O365 Security Architecture for Azure Cloud Services
• DLP
• Email Security
• Forensics
• DKIM Deployment
• Content Filtering
• Advanced Security Control

Confidential

Cyber Risk Advisor

Responsibilities:

• Frameworks Security Template Designs and Deployment
• Anti-Money Laundering Methodology, Fraud Detection
• Risk Intelligence
• Risk assessments of security controls
• Development of Application Shielding Advanced Concepts
• Azure Architectures for Security, IoT, and Identity solution patterns
• Risk Assessments for Azure AIP, RMS, MFA, MCAS, and Security Center
• Conduct FedRamp, CSF, and Risk identification, analysis, and modeling
• Cloud infrastructure risk assessment
• Advanced information protection controls and deployment Azure, GCP, and AWS
• Design of security controls for deployment in DevOps