We provide IT Staff Augmentation Services!

Industrial Control System Security (ics) Engineer Resume

CAREER PROFILE:

A well - presented and adaptable professional, with a distinguished IT\OT track record underpinned by work experience in environments demanding self-motivation and focused approach. I can work with and without supervision and willing to assume additional responsibilities. A committed team player with leadership ability, who uses high standards of communication to establish positive interpersonal relationships. I am seeking a secure, challenging, and rewarding position to apply my practical knowledge and experiences to contribute to an organization's success.

TECHNICAL SKILLS:

Cisco Routers / Switches: Configuration / Troubleshooting / Management, Knowledge of multiple security standards (ISA 62433, NIST, ISO 27002, CPwe, etc.), Knowledge of Security Incident Handling and Response

SIEM Management: Azure Sentinel / IBM Qradar / Splunk, Firewall / Intrusion Detection / Intrusion Prevention / Malware Analysis

Cisco ASA Firewalls: Configuration / Firewall Policy / Troubleshooting

Check Point Firewalls: Configuration / Firewall Policies / VPN / Tshoot / Upgrades / Management

Check Point Firewalls: Multi-Domain Management/ Provider-1 / EPS / NXT Gen Firewalls

FortiGate Firewalls: Configuration / Firewall Policies / VPN / Troubleshooting / Upgrades

Palo Alto NGFWs: Configuration / Firewall Policy / Troubleshooting / Management

Administrating Authentication Controls: Radius / RSA / Secure ID / TACACS+ / Port Security

Network Monitoring Tools: Indegy / IBM Qradar / Websense / Tenable SC / SolarWinds

TCP/IP Packet Analysis: IBM Qradar/ TCP Dump / Wireshark / ZScaler

Networking Concepts / Technologies: Network Design / Encryption / Network Security Technologies

PROFESSIONAL EXPERIENCE:

Confidential

Industrial Control System Security (ICS) Engineer

Responsibilities:

  • Leads the development and management of ICS Network Firewall Rules to standardize deployment and minimize security risks to Operational Technology (OT) environments.
  • Participate in security requirements, network design reviews, and security testing for network, systems, and applications.
  • Coordinate with systems, network, and development teams to ensure network security standards are being followed and implemented correctly.
  • Evaluate new security technology & emerging threats and provide recommendations to strengthen the OT security environment.
  • Utilize existing and newly deployed OT Security Solutions to perform threat assessments, substantiate security incidents, and effectively respond.
  • Provide extensive coordination with Confidential IT Security to ensure overall business alignment and communication of OT security risks.
  • Evaluate available vendor security solutions to determine if and how they should be deployed in the OT environment.
  • Lead the development, deployment, management, and enforcement of Confidential OT Security Policies. This will include leading the effort in Confidential adopting applicable components of IEC 62443 & NIST Cyber Framework that provide increased OT Security while minimizing increased production risk.
  • Provide firewall support to concurrent and complex projects while working collaboratively across multiple business units to implement new technology and support existing environment
  • Lead maintenance and administration efforts of internal ICS infrastructure (Level 0-2) utilizing a strong understanding of ICS environments.
  • Consult on ICS security matters as needed and act as a liaison between operations and corporate IT security teams.
  • Respond and Participate in ICS security incident response through all phases including investigating computer and network intrusions and remediation support.
  • Perform comprehensive computer surveillance/monitoring, identifying vulnerabilities; developing secure network designs and protection strategies, and audits of OT our infrastructure
  • Report and communicate with the relevant E&I techs & superintendent in the organization about critical ICS Industry Vulnerability events.
  • Perform proactive research to identify, categorize and produce reports on new and existing threats
  • Arrange and Plans security awareness programs etc. needed for the Confidential OT employees and all Confidential contractors.

Confidential

Information Security Engineer

Responsibilities:

  • Fully versed in the syntax of security platforms, and rule verification
  • Engineering experience configuring and deploying large scale LAN/WAN networks
  • Understanding how business application requirements drive Firewall policy and rule sets
  • Support the day-to-day firewall engineering and operational tasks and in the process, advancing knowledge of Checkpoint firewalls, routing protocols, and VPNs
  • Provide firewall support to concurrent and complex projects while working collaboratively across multiple business units to implement new technology and support existing environment
  • Configure, deploy, administer, and document firewall infrastructure, working with Check Point and Cisco
  • Manage the firewall deployment, rules migrations, and firewall administration
  • Responsible for converting existing rule base onto new platforms
  • Good understanding of ACL’s and when they would be deployed to complement or in place of firewalls
  • Maintaining the design and integrity of the internal network, including customer-facing hosted and cloud environments
  • Providing expert technical assistance to team members with high-level system and networking knowledge
  • Working independently and as part of the IT team to respond to Level 2 and Level 3 escalations
  • Securing and managing network infrastructure to protect productivity, mitigate threats, and reduce costs
  • Thoroughly familiar with Check Point models, capabilities, and architectures including firewall virtualization

Confidential

Information Security Engineer

Responsibilities:

  • Collaborates on IT projects to ensure that security issues are addressed throughout the project life cycle
  • Reports unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation process
  • Supports data encryption deployments, including key management
  • Reviews data requests for information access and determines appropriate security actions
  • Works with Information security leadership to implement strategies and plans to enforce security requirement and address identified risks
  • Knowledge of Security concepts and ability to apply them to business processes (the concept of least privilege, handling if contractor access, the concept of locking down, integration/production environments), etc.
  • Completed, Configured and Deployed over 100 Checkpoint firewalls in our southern region branches
  • Assisting in the development of security architecture, policies, principles, and standards
  • Responding to security incidents and escalating security incidents as appropriate
  • Performing installation and configuration management of security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.
  • Monitoring daily or weekly reports and security logs for unusual events
  • Researching, evaluating, designing, testing, recommending and planning the implementation of new or updated information security technologies
  • Provides support to our information security team and works closely with other members of the team to develop and implement a comprehensive information security program (includes defining security policies, processes, and standards)

Confidential

Network and Security Engineer

Responsibilities:

  • Ensure prompt and accurate Network and Security support for Clayton’s WAN/LAN/VOIP/Security infrastructure
  • Cisco ASA firewall maintenance and configuration - responsible for all firewall rules implementation, upgrades, troubleshooting, and maintenance.
  • Completed a Cisco ASA upgrade on our devices ranging from 5505 to 5520’s (all running as HA) for all our 5 individual sites following Cisco Security Advisories Bulleting’s.
  • Worked heavily with Palo Alto in support of the Intrusion Prevention System (IPS), - responsible for the day-to-day maintenance, upgrades, and configurations.
  • Configured Checkpoint Firewalls - responsible for all firewall rules implementation, upgrades, troubleshooting, and maintenance.
  • Completed a FortiGate Firewall upgrade, configuration, and optimization of devices ranging from 80 - 800C (mostly in HA) for all sites using best practices.
  • Provide 2nd level support and resolution for end-user problems/issues and request including proper documentation using a corporate incident management tool.
  • Support the development and implementation of the strategic direction of the WAN and LAN design
  • Install, maintain, and optimize several networks containing Cisco 2800, 2900, 3800, 3700 series routers, 3560, 3750, 3750 Metro, 4500, 6500 series catalyst switches, and Cisco Nexus 2000 and 5000.
  • Accountable for the day to day operational worthiness of Clayton’s network and security environment and/or Clayton’s backup and recovery environment including maintenance and the installation of any upgrades, patches, security fixes, etc.
  • Accountable for monthly and quarterly collection and support of Clayton IT Security Controls (SOX, PCI, Hi-Trust & HIPPA)
  • Adhere to established Services Level Objectives (SLO) for the associated services
  • Work in conjunction with, and support of, other technology area support staff for issue resolution and project management
  • Assist with reviews of departmental documentation regularly and assures it is complete, acceptable and accordance with standard
  • Provide 2nd level support for hardware break/fix issues associated with the corporate WAN/LAN/VOIP/security infrastructure, 24x7x365 remote support and on- call for all troubleshooting issues

Confidential

Network Engineer

Responsibilities:

  • Proven experience and success with LAN, WAN, and WLAN implementations and upgrades
  • Configured, maintained and upgraded Cisco ASA firewalls
  • Provide tier I and II technical support for all users at the assigned site(s). Troubleshoot problems encountered by staff and provide a timely resolution via email, telephone, and/or in-person
  • Ability to Install and configure IDF switches and routers
  • Assist with reports and provide solutions for timely reporting of information Proactively observe equipment performance, detect errors of operation, and correct those errors
  • Knowledge and experience in the deployment and maintenance of enterprise network routing architectures using protocols such as OSPF, BGP, EIGRP, and RIP
  • Assisted in day-to-day network administration and desktop support operations as needed

Confidential

Network Engineer

Responsibilities:

  • Securing application servers and nodes from any security threats by installing firewalls and other security suites
  • Work independently and in collaboration with others to evaluate, manage, research, repair, and maintain the computer network
  • Troubleshooting Network connectivity issues, Monitoring Network activity, Configuring Routers, Switches, and Firewalls
  • Configured, maintained and upgraded Cisco ASA firewall appliance
  • Proven experience with network capacity planning, network security principles, and general network management best practices
  • Assists with deployment and strategy of tools and related Network Management Systems

Hire Now