SUMMARY

• Over 20 years of experience as a contractor in the IT industry. Experience includes network and system administration, application development, systems analysis and configuration, customer support,
• IT Governance, auditing, vendor evaluation, project management, documentation, migration, monitoring, capacity planning, optimization and certification.

PROFESSIONAL EXPERIENCE

Confidential

Contract Sr. Information Security Analyst

Responsibilities:

• Provided consulting support to lines of business in Confidential primarily for the transition and integration of CountryWide Financial services
• Interfaced with project teams and served as the point of contact and SME for information security policies, procedures and standards
• Provided recommendations concerning deliverables to meet and exceed enterprise security guidelines
• Technical lead in assisting merchants with remediation efforts for PCI compliance
• Interfaced daily with C - Level executives to facilitate the smooth implementation of remediation objectives
• Acted as PCI subject matter expert
• Interfaced with the PCI SSC as necessary to provide clarity for the implementation of compensating controls
• Evaluated PCI Compliance submissions for suitability, completeness and correctness.
• Provided engineering support to clients to achieve
• Provided technical support to merchants concerning their infrastructure and changes necessary to obtain and maintain PCI Compliance
• Provided recommendations on security best practices to optimize operational support for security policies

Confidential

Program Manager PCI Security Consulting

Responsibilities:

• Provided consulting support for organizations transitioning to a formal PCI compliance program
• Interfaced with client management to determine objectives, deliverables and project timelines
• Directed team members concerning resource allocation to produce desired deliverables
• Made high level recommendations for technology implementations to support and enhance PCI environment
• Acted as engineer providing proof of concept on security solutions from IBM, Cisco, Juniper, Open Source ( Snort, Nessus, Nexus, Linux, MySQL, Rsyslog, mysyslog ), Microsoft, Sun, RSA, Checkpoint, SonicWall, BlueCoat, TrendMicro, AVG and Symantec
• Provided recommendations for data loss prevention ( RSA and Symantec), enterprise policy management ( IBM, Symantec and NewBoundary ) and NAC environments from ( Cisco, IBM and Symantec)
• Served as primary engineer in evaluation and migration of operating systems and services from legacy physical environment to a virtualized environment based on VMware and Xen
• Interfaced with IT support at all levels to analyze and coordinate customer procedures to optimize the functionality of IT Security efforts
• Performed troubleshooting performance analysis and provided standard operating procedures to maximize efficiency of the outage resolution process
• Conducted weekly project status meetings
• Handled project closure and verification of final deliverables
• Ensured customer satisfaction

Confidential

PCI Security Analyst Contractor

Responsibilities:

• Technical lead in assisting merchants with remediation efforts for PCI Compliance
• Interfaced daily with C-Level executives to facilitate the smooth implementation of remediation objectives
• Acted as PCI subject matter expert
• Interfaced with the PCI SSC as necessary to provide clarity for the implementation of compensating controls
• I evaluate PCI Compliance submissions for suitability, completeness and correctness.
• Provided engineering support to clients to achieve
• I provided technical support to merchants concerning their infrastructure and changes necessary to obtain and maintain PCI Compliance
• Provided recommendations on security best practices to optimize operational support for security policies

Confidential

Analyst III Siebel Security

Responsibilities:

• Responsible for researching and providing security policy for Siebel in the Confidential enterprise
• Analyzed industry guidelines, policies and best practices to insure balance between security, performance and compliance
• Responsible or resolving all outages on production Siebel 7.x installation
• Provided root cause analysis and estimated time to repair for all of the AS Functional portfolio resources
• Led / Drove all conference bridges concerning Siebel outages
• Acted in the capacity of team lead to facilitate training of other Siebel support associates
• Developed comprehensive security strategy to support day to day operations for the business units using Siebel
• Provided end of life process support and transition to other systems
• Initiated migration to virtualized environments based on VMware Microsoft Virtual Server and to simplify performance and support requirements of systems in the Application Support Functional portfolio
• Supported PCI Compliance efforts for Siebel CRM, SIVR, Sampson, JPayment and SAP
• Drafted and executed test cases for a system that generated responses for Subpoena requests
• Provided project time lines, plans and work breakdown structure for deployment of security efforts
• Provided 24/7 support for all ( 500+ ) systems in the AS Functional Portfolio which was a mixture of Operating Systems from Sun, Microsoft, Various flavors of Linux, HPux and OS/400 along with networking equipment form Cisco, F5 and Juniper
• Drafted and taught internal training on Siebel administration, IT Governance, Information Security Best Practices, Korn Shell Scripting, Perl, SQL, SED, AWK, Unix/Linux, WireShark/Ethereal and Regular Expression Programming
• Designed, implemented and maintained scripts in Perl to support the migration of production systems to a high performance grid
• Provided timelines and scheduling for successful transition of all end of month processing tasks to new grid environment

Confidential

Sr. System Security Analyst / Project Manager

Responsibilities:

• Over saw 14 IT related projects ranging from 2 month SNMP Trap Gather to 4 year long Single Sign-ON application at its 9th release that is ghost managed for bug tracking, defect management and maintenance
• Performed requirements gathering, feasibility studies, project timeline and deliverable determination and negotiation
• Researched and drafted security policy for small (< 500 employee) companies
• Responsible for all vendor product testing to ensure smooth project implementation
• Analyzed current IT policies and made recommendations to enhance security
• Provided project management for companies in transition to a formalized information security process
• Provided training for organization on various IT topics ranging from network engineering to application development
• Preformed code reviews on Java, Perl, C++, SQL, VB, XML, HTML, TCL and COBOL applications to determine their security threats and vulnerabilities
• Preformed network protocol analysis and did problem determination from RFCs
• Performed Business Impact / Continuity Analysis to determine baselines for major outages / time to repair
• Performed integration and administration for products from SUN, IBM, HP, Veritas, EMC, Novell, Microsoft and RedHat
• Provided rollout and support for directory service applications in clustered server environments from Sun, IBM, Veritas and EMC
• Implemented virtualization products to support disaster recovery from HP, SUN, VMware and EMC
• Served as principle engineer for integration of IDS and element management systems
• Designed, implemented and migrated security infrastructures to provide added security and cost effectiveness
• Supervised migration from legacy mainframe systems to distributed client server environment while implementing hot standby site for business continuity
• SME for messaging and collaboration platforms consisting of Lotus Notes, GroupWise, SharePoint, e-mail, PSTN, Instant Messaging, VoIP, VoFR, VoATM and cellular
• Security SME for security test lab environment consisting of products from Microsoft, Cisco, Nortel, Checkpoint, CA, McAfee, Solaris, Linux, NetBSD, FreeBSD, Network Associates, Symantec, Lucent, Norton, Open Source tools, Spirent and Juniper
• Authored and taught HIPAA compliance related training for financial institutions
• Provided full procurement, implementation, IT Governance and support services for all vendor hardware and software
• Acted as liaison and negotiator between recommended vendors and customers
• Provided and performed vendor compliance and site surveys in support of SLAs
• Reviewed Service Level Agreements, Laws, Standard Operating Procedures and Corporate Policies to ensure business goals could be and would be met
• Prevented scope creep and generated project entry and exit criteria

Confidential

Siebel Team Lead / Project Manager II

Responsibilities:

• Responsible for Siebel RTM deployment in 550 person call center
• Created timeline for Siebel deployment and implemented bug tracking database
• Single point of escalation for resolution of all Siebel issues
• Directly supervised training and support staff of 30+
• Oversaw Siebel training of the entire agent staff of 550+
• Trained level 2 and level 3 analysts to troubleshoot router, switch and firewall configurations
• Acted as interim General Operations Manager for the call center
• Tested and monitored Siebel in the call center to detect, report and assist in the resolution of Siebel related defects
• Monitored call center performance in the use of Siebel to detect negative trends and made recommendations for their correction
• Interfaced with vendor managers, call center general managers and floor supervisors to ensure all Siebel related issues were addressed
• Developed queries to verify and simplify proper Siebel usage
• Acted as Siebel RTM Administrator to facilitate and ensure the proper implementation of agents accounts for several call centers

Confidential

Network Manager Network Resource Center

Responsibilities:

• SME for DSL, Information Security, VoIP, UNIX and all new product offerings in Confidential
• Analyzed current IT policies and developed over 50 process improvements to increase competency and efficiency
• Provided project management for testing and new product roll out
• Tested VoIP equipment from Cisco, Lucent, Polycom, Grandstream, Sipura, WellTech, Patton, Audiocodes and D-Link
• Evaluated services provided by other VoIP service providers to determine baselines for new product offerings
• Served as principle engineer for development of tools to support network management for DSL and VoDSL
• Implemented standard operating procedures to simplify training and troubleshooting network resources
• Conducted feasibility studies and vendor product testing to ensure smooth project implementation
• Implemented training and support environment using VMware products to provide hands-on experience for most x86 based operating systems on the market at that time
• Provided product testing and top tier support for any hardware/software products attempting to connect to the Confidential network
• Resolve technical issues surrounding Appeals Cases, Officer Calls, and escalated customer complaints from PREZ and FAST Groups
• Implemented survey system using LAMP to collect, store and process customer satisfaction surveys
• Trained internal and external resources in the proper use of the Confidential implemented Siebel environment
• Provided on call technical support for all major DSL outages
• Researched and drafted organization preparedness training
• Acted as group lead as needed

Confidential

Contract Information Systems Security Officer / Business Systems Analyst

Responsibilities:

• Provided consultation and support for Postal Service security policy based on best practices form HIPAA and GLB
• Acted as project lead for the Information Systems Assurance process
• Interfaced with internal and external organizations to facilitate project completion
• Drafted SLA, disaster recovery and risk assessment templates to simplify project startup and reduce overall project cost
• Evaluated, recommended and implemented solutions to enhance IS security through out the Postal Service
• SME for the Postal Services network environment consisting of products from Checkpoint, Network Associates, HP, EMC, Microsoft, Sun, Tiny Software, Cisco, Red Hat, Compaq, 3COM, Digital Link and Osicom
• SME for security on all messaging and communications platforms in preparation for a move to an integrated messaging environment that included Blackberry e-mail access and VoIP as a replacement to the current e-mail and POTS services
• Evaluated element management, firewall and intrusion detection systems for security risks
• Conducted project reviews, site reviews and risk assessments to identify security threats
• Analyzed and made recommendations concerning the security of all Postal Service IT assets
• Preformed code reviews on Java, Perl, C++, SQL, VB, XML, HTML, TCL, SQL, HTML and COBOL applications to determine their security threats and vulnerabilities

Confidential

Contract Sr. Network Software Test Engineer

Responsibilities:

• Designed and implemented test solutions involving IP, Perl, Java, SNMP, ADSL, ATM, VoIP, GSM, IPSec, IMA, MPLS/tag switching, SONET, SDH, DWDM and Frame Relay
• Designed test system for SNMP management applications using MIMIC, Scotty, TCL, Perl, C and Expect
• Enhanced test environment through automation resulting in an increase in test accuracy and productivity
• Designed regression testing environment for hardware and software products
• Configured and supported products from RSA, Cisco, ECI Telecom, Sun, 3COM, Netcom, Dlink, Alcatel, Sonoma, Nortel, Luxcom, Lucent, Cabletron, Gambit Communications, Microsoft, Symantec, Hummingbird, Oracle, Adobe, Redhat, HP, MG-SOFT, Network Associates, Check Point and GNU
• Implemented and deployed cluster environment using Sun and Microsoft products to provide high availability as proof of concept for distributed element management system
• Used VMware workstation to evaluate operating system ease of install ability, management and performance
• Defined goals and guidelines for integration testing
• Trained customers and employees in the configuration and use of various equipment and applications
• Provided third level technical support for network implementation and administration
• Provided technical briefings on several topics ranging from IP routing to Test Case design
• Provided technical design support for network test solutions using TCL/TK, Perl, Scotty, WinRunner, SNMP, Visual Basic, Crystal Reports, NSÜ, Oracle and Expect
• Examined departmental business practices to determine and eliminate bottlenecks
• Wrote and executed project plans, tested PulseCommander and produced bug reports

Confidential .

Sr. Database Design Engineer

Responsibilities:

• Designed, implemented and maintained tools used to support a Web based information distribution system using Microsoft Front Page, VB 6.0, SQL Server 7.0, Oracle and IIS 4.0
• Provide ongoing support and maintenance for this site including software/hardware upgrades and customer training
• Designed, tested and implemented solutions to test IPSec, GSM, VoIP, tag switching and IBM networking features in TCL and Perl
• Wrote test plans designed to test the functionality of new IOS images
• Configured PC’s, servers, routers and terminals in test bed configurations to simulate network scenarios
• Implemented database to track equipment usage and project status in Oracle, VB and MySQL
• Recommended changes to procedures to increase performance and eliminate confusion
• Assisted in the configuration and troubleshooting of dial-up accounts
• Installed and tested the AUTOTEST System on various hardware/software platforms
• Troubleshoot problems implementing a multi-user AUTOTEST System
• Designed WEB based interface to track the status of various projects
• Wrote TCL script to simplify the construction of the configuration files necessary to run AUTOTEST
• Designed AUTOTEST monitor application for WinNT
• Edited numerous (100+) scripts designed to test various router security and VoIP gateway functions
• Researched the conversion of the AUTOTEST System from TCL to Perl
• Wrote scripts to allow AUTOTEST output to be ported to PC operating systems for analysis
• Designed, implemented and maintained solutions to enhance the Postal infrastructure
• Engineered and maintained applications in VB, Java, Oracle, MS-SQL, Crystal Reports and VC++ to simplify the day-to-day operations of AOI support groups in the United States Postal Service
• Performed the role of project manager on many projects ranging from simple installation scripts for applications to multi-tier client server database access systems to enterprise wide migrations and upgrades
• Evaluated and implemented cluster products from Microsoft and DEC
• Conducted technical briefings for various new technologies
• Provided technical feedback relating to the implementation of the MNS (Managed Network System)
• Designed and implemented tools to aid in the monitoring of various systems used by the Postal Service
• Engineered solutions to various migration/upgrade scenarios
• Implemented time and work flow management systems in MS-Project, Visual Basic, MS-SQL 6.5 and Oracle 7.x/8.x
• Recommended changes to enhance the testing of VSAT (Virtual Small Aperture Terminal) network connections
• Walked network engineers through the day-to-day maintenance of the 85 domains in the Postal NT network