We provide IT Staff Augmentation Services!

Security Engineer Resume

Atlanta, GA

SUMMARY

  • Resourceful, results - driven, and self-directed IT professional with validated success troubleshooting and resolving issues in deadline-driven environments. Demonstrated skills in employing technological solutions with emphasis on delivering productivity improvements. Collaborative and versatile team player with strong communication and interpersonal skills. Recognized for being dependable and detailed oriented, effective with applying technical troubleshooting knowledge and performing well with minimal supervision.

TECHNICAL SKILLS

Multi-Function: Checkpoint Software (NGX, R77, R80), Palo Alto(PA200, PA500, PA4020), Palo PAN 9.0, ADTRAN

Checkpoint UTM Firewalls: Checkpoint Smartview Monitor, Cisco Systems (ASA 5500, PIX), Cisco 2900/3500/6509 Switches, Cisco 2600/1841/3600/7200 Routers, Dell SonicWall IPS, Attivo- Threatdirect,Threatpath, ThreatStrike,ADSecure),Nessus Security Scanner

SIEM: Security information and event management (Splunk, Qradar),Putty, SecureCRT, RSAM/Archer, ITSM - BMC Remedy; Symantec Endpoint Protection version 14, Keepass, Wireshark, WinSCP, Visio 2016, Microsoft Teams,Tuffin, RSA SecurID Server, McAfee EPO 5.0, Splunk, Symantec Blue Coat, Jira, Servicenow, Sharepoint, NISTCyber Security Framework, PCI-DSS, HIPPA, PCI and SOX compliance, Office365, Microsoft Teams..

PROFESSIONAL EXPERIENCE

Confidential, Atlanta, GA

Security Engineer

Responsibilities:

  • Managed the monitoring of inside the network threat detection for malicious actors who might have penetrated our cloud and perimeter defenses.
  • Analyze threat intelligence (e.g. actors, tools, exploits, etc.) and determine techniques, tactics, and procedures (TTPs) of Threat Actors, including detailed technical analysis of the TTPs.
  • Analyze insider events/ data feeds for event detection,IOCS, correlation from monitoring solutions, triage and classify the output using automated systems for further investigation.
  • Collaborate with SOC Analysts, Security Engineering, and Security Architecture, Threat and Provide documentation to maintain, develop and create runbooks and SOPs for CSIRT and SOC.
  • Worked with F5 WAF to protect Web Applications against attacks such as cross-site forgery, cross-site-scripting (XSS), file inclusion, and SQL injection by filtering and monitoring HTTP traffic between web applications and the Internet.
  • Ensures all pertinent information is obtained to allow for the identification, containment, eradication, and recovery actions to occur in a time sensitive environment.
  • Provided engineering support, troubleshooting, and evaluation of preventative and detective security technologies such as malware detection, intrusion detection, and vulnerability management.
  • Conducted system security with Nessus scanner for vulnerability analyses, and risk assessment of the security environment.
  • Establish and maintain excellent working relationships/partnerships with the cyber security and infrastructure support teams throughout the Information Technology organization, as well as business units.Setup honeypot decoys to entice malicious actors and monitor in real time potential lateral movements.
  • Monitored Checkpoint and Palo Alto Firewall appliances for malware, IDS/ IPS network intrusion detection.
  • Configured, setup Splunk dashboards to monitor alerts and automate repeatable tasks.
  • Worked with the network team in assigning and deploying decoy sensors in different vlans in the global enterprise.

Confidential, Alpharetta, GA

Network Administrator

Responsibilities:

  • Configured site-site IPsec VPN tunnels for remote branches creating IP network designs including updating and maintaining the network topology.
  • Hardening the network by implementing Palo Alto IDS and IPS. Configured rule sets for incoming and outgoing traffic and segmented traffic with zones. Monitored logs daily for malicious activity and took appropriate actions accordingly to allow or block activities based on the rulesets.
  • Administered multiple ASA firewalls throughout the WAN ensuring LAN integrity from external threats.
  • Used the Palo Alto firewall for filtering internet traffic and for Intrusion Prevention and detection.
  • Oversaw network and equipment upgrades to include IOS image upgrade and configuration changes.
  • Ensured thorough network documentation, including maintaining network diagrams and backup configurations.
  • Provided level 3 technical support for LAN/ WAN/ VOIP issues in an environment consisting of Windows 2k3/2k8/2k12 servers.
  • Created and managed new user, Server and Service accounts in Active Directory; Troubleshoot DHCP, DNS, GPO issues in AD; created exchange accounts and granted access rights and permissions to users according to their group memberships and organizational units.
  • Configured and deployed new 2008, 2012 R2 Servers as needed by developers and for Production in the Enterprise.

Confidential

Network Administrator

Responsibilities:

  • Created IP network designs and was responsible for updating and maintaining the network topology diagrams.
  • Configured rule sets on Checkpoint Firewall R77.10 for incoming and outgoing traffic and for blocked traffic.
  • Hardening the network by implementing checkpoint firewall R77.10 IDS and IPS.
  • Provided level 3 technical support for LAN/ WAN/ VOIP issues in an environment consisting of Windows 2k3/2k8/2k12 servers and over 1000 end users.
  • Implemented the redundancy/ backup solution using VRRP for our new stores using AT&T's Netgate appliance as a failover to AT&T’s MPLS Cloud when the primary connection goes down.
  • Created and managed new user, Server and Service accounts in Active Directory; Troubleshoot DHCP, DNS, GPO issues in AD; created exchange accounts and granted access rights and permissions to users according to their group memberships and organizational units.
  • Used Zscaler as a proxy server for emails and Barracuda as an email spam filter.
  • Assigned drive mappings to users on SAN storage (Netapp) and created distribution lists in exchange for users and departments as needed.
  • Configured,monitored and troubleshot the different security zones in the Palo Alto Network.
  • Monitored network for IDS/IPS network intrusion detection.

Network Administrator

Confidential

Responsibilities:

  • Monitored and resolved wireless internet connectivity issues.
  • Created VPN accounts for internal clients and external vendors using Checkpoint certs and juniper accounts. Troubleshoot vpn connectivity issues.
  • Ordered T1 Circuits, broadband, cable or DSL circuits for new stores and for Guest Wi-Fi in stores.
  • Created and reviewed change requests and documentation according to defined processes.
  • Used Dell Kace for scheduled patches and firmware updates.
  • Participated in new network/security and server product evaluations for the enterprise.
  • Managed the vendor relationship with AT&T by having weekly meetings to go over SLA's and status of new store constructions.

Hire Now