Security Architect Resume

SUMMARY

Proven professional with 5+ years of Security and compliance audit experience in PCI/P2PE/ISO27k and GDPR environments and 20 years of infrastructure, solution design and implementation for the global clients. I am adept at communicating with customers to understand requirements, create designs to build and implement compliant and secure solutions using industry recognized best practices.

TECHNICAL SKILLS

Protocols: TCP/IP, X25, AX25, SNA/SDLC, P1x24, P1024b/c, P3000.

Firewalls: Cisco ASA

Switches: Cisco Catalyst, Nexus

Load balancers: Cisco ACE, GSS and F5 LTM

Network acceleration: Riverbed Steelhead WAN accelerators.

Routers: Cisco routers

Intrusion Detection (IDS): IBM/ISS Proventia

Tools: Wireshark, Tripwire, TSM, Nessus, Netscout, Extrahop, Tanium, Skybox, Algosec, Firemon

Authentication: Ciscosecure ACS

Monitoring: Solarwinds ORION, NPM, NCM, What’s Up Gold (WUG), EMC Smarts

Interests: Family, Racquetball, Mountain biking, Kayaking, Cars

PROFESSIONAL EXPERIENCE

Confidential

Security Architect

Responsibilities:

Design review board member for globally diverse enterprise datacenters and private cloud environments providing secure high availability solutions utilizing many security products and tools to accomplish these challenges.
Provided the load balancing topologies for the future private cloud initiatives which encompass AWS, Azure and Google.
Strategic design provided for resilient, yet consolidated cloud - based management environment for global airport support.
Present and evangelize the migration to and use of a global IPAM solution.
Assisted in audits for VISA, PCI DSS 3.1 re-certification 2016-2020, PA-DSS and with the infrastructure and solution design to achieve our inaugural P2PE certification.
Provide the security review and giving approval for all proposed solution builds.
Attend weekly Cloud initiative meetings as the Network and security SME helping provide requirements and guidance for design, implementation, testing and migration.
Provide updates to security policies and standards through annual reviews.

Confidential

Lead Analyst

Responsibilities:

Designed and deployed the new core infrastructure for messaging services in Atlanta’s QTS datacenter. Including the new core Cisco chassis as well also upgraded all PIX to ASA systems.
Designed and deployed a global X25/XOT solution to aid in reduction and removal of leased X25 connections greatly reducing overall network costs to Messaging.
Aided in the design of the F5 solution and are working on CSS service migrations to the F5 load balancer / proxy.
Designed the implemented a global load balanced DNS solution using the Cisco GSS (Global Site Selector) for messaging services on the internet and Servicenet (GMSnet).
Spearheaded an effort internally to provide quarterly vulnerability assessment scans of production servers/services. Working with CISO and their tools, I was able to secure regularly scheduled scans and proactively provide assessment results to systems administrators and application developers, and the management.
Designed and provided a tested global site DR solution for messaging services. Recovery in event of total site devastation. Designed for minimum/no customer changes required.
Designed and implemented the WAN acceleration solution using Riverbed appliances in Atlanta and Singapore sites.
Provide Visio diagrams and written documentation supporting proposed and deployed infrastructure solutions/deployments.
Research and investigate products and new technologies as potential enhancements to the current infrastructure or to satisfy specific product/solution requirements.
Engaging vendors for evaluations and proof of concept deployments.

We provide IT Staff Augmentation Services!

We'd love your feedback!

Resume Categories

Client Services

Job Seekers

Visa Sponsorship