SUMMARY:

• Detail - oriented, motivated, and innovative information security enthusiast with over 25 years federal, state, and commercial information security experience.
• Highly skilled in Security and Risk Management, Security Engineering, Communications and Network Security, Security Assessment and Testing, and Security Operations service disciplines.
• Strong analytical and problem-solving skills.
• Excellent oral and written-communication skills;
• Able to explain highly-complex technical and process-related subjects in easy-to-understand terms.

EXPERIENCE:

Sr. Network Security Advisor

Confidential

Responsibilities:

• Providing 24x7 systems administration and compliance management services for over 1500 Checkpoint, Juniper, and Fortinet firewalls Confidential the second - largest bank in the US.
• Mentoring and providing leadership and technical guidance for less-experienced managers and engineers.
• Technical Team Lead for multi-year Firewall Rule Remediation program.
• During the program, 80K+ rules were added/modified/disabled/deleted across all managed firewalls and weekly program status updates and projections were collaborated on with customer management and technical teams.
• Designing and coding MS Windows WorkFlow Assistant desktop software to further automate firewall change management process resulting in 50% time decrease in execution of changes while increasing accuracy of reporting tools/metrics.

Sr Security Compliance Professional

Confidential

Responsibilities:

• Provided security risk auditing and analysis services in accordance with NIST 800 series Special Pubs, OMB Circulars, FISMA, FIPS, EPA information security standards and guidelines services for EPA and all EPA National Computing Center customer projects.
• Provided advanced technical analysis and solution recommendations for security incidents and for newly implemented and planned National Computing Center infrastructure including F5 FirePass and CheckPoint technologies.
• Provided analysis and remediation of substandard processes and goals while achieving ISO 27001 compliance.

Security Engineer

Confidential

Responsibilities:

• Provided 24x7 administration and event response services of domestic and international Confidential & Confidential commercial and government customer firewalls, VPN appliances, routers, web proxies, remote power systems, CSU/DSUs, and other LAN and WAN security hardware and software technologies.
• Collaborated with internal Confidential & Confidential MSS Global Customer Support Center Sr. technical support and security management teams as well as with external customer security management, IDS, and Security Management teams in incident response and remediation.
• 24x7 collaboration with domestic and international vendor and customer crisis and technical management teams to identify, analyze, and remediate firewall hardware, software, and configuration issues.

Security compliance Engineer

Confidential

Responsibilities:

• Provided NIST 800 aligned security compliance review, gap analysis, risk and vulnerability assessment services for the EPA National Computing Center in RTP, North Carolina.
• Provided technical review and recommendations for all changes to EPA computing infrastructure.
• Provided detailed NIST 800 - mapped findings of technical and process-related risks as well as risk management and mitigation strategies.

Security auditing Architect & engineer

Confidential

Responsibilities:

• Identified and analyzed Blue Cross Blue Shield of NC technology and business process gaps which contributed to negative findings in a previous audit.
• Analyzed, reviewed, RFP’d, and evaluated 40+ infrastructure logging and monitoring solutions for 9 BCBSNC business disciplines covering over 265 different criteria to enhance and manage a compliant, sustainable security logging and monitoring program.
• Enhanced existing auditing frameworks used to address operational risk management, remediation, and avoidance activities.
• Implemented interim log monitoring and compliance solutions to address immediate and near-term security audit findings.

Sr Security Architect, Engineer & Analyst

Confidential

Responsibilities:

• Provided security education for NC Dept of Health and Human Services agency managers, service providers, and end - users having direct or indirect access to HIPPA PHI and HIPPA non-PHI data
• Enhanced existing information security investigation and prosecution methods in the Office of Privacy and Security following NC government statues, HIPAA, CMS, HCFA, and NIST guidelines.
• Architected, installed, and managed DHHS open source and commercial IDS frameworks and vulnerability assessment services utilized by DHHS remote workers.
• Created and managed enterprise-wide change management procedures for all DHHS computing resources.
• Architected and implemented vulnerability assessment and penetration testing processes and SoWs for agency-level departments Confidential multiple, state-wide DHHS facilities.
• Analyzed, designed, and refined recommended security infrastructure to secure all data moving into, out from, and within the first completely electronic Central Regional Psychiatric hospital.
• Architected and implemented Snort/ACID/BASE intrusion detection, Nessus vulnerability assessment, and content filtering and management architectures.
• Analyzed Confidential IDS reporting data and provided risk and vulnerability assessment guidance.
• Investigated violations of Confidential security policies and criminal activities occurring within the Confidential computing infrastructure.
• Architected networked vulnerability assessment framework to provide for on - demand testing of high-risk Confidential computing resources.

Firewall Security Architect & Admin

Confidential

Responsibilities:

• Installed, configured, and managed IBM SecureWay & Linux firewall/VPNs Confidential 60+ Eastman - Kodak/Qualex customer sites as well as all Qualex intranet/extranet firewalls.
• Architected, installed, configured, and managed Nessus vulnerability scanning, IBM AIX VPN, and Snort/ACID/BASE IDS infrastructure for Qualex intranet/extranet.
• Authored Open-Source security evaluation, deployment, and integration standards guide.
• Revised and implemented aggressive project plans for migration of all security-related infrastructures to a more cost-effective platform.

Security Architect, Analyst, and nms Engineer

Confidential

Responsibilities:

• Provided 24x7 senior technical support to Managed Services Network Operations Center (MSNOC) technical support teams and all associated infrastructure
• Senior technical advisor for MSNOC NMS and data center infrastructure re-design
• Enhanced NMS platform capabilities while re-designing and re-implementing enterprise-wide change management programs, processes, and procedures
• Audited, remediated, and re-coded network (Cisco, 3Com, and Wellfleet routers) and UNIX (HPUX and Solaris) infrastructure configuration management programs and processes
• Performed security policy review, implementation, and response, as well as vendor impact assessment and emergency action coordination.