Sr. Security Engineer Resume
TECHNICAL SKILLS
Operating Systems: CentOS, Ubuntu, Redhat, Linux 9.0, FreeBSD, Server 2008/12, Active Directory, Windows 7/8/10, MacOS X
Networking: Cisco Catalyst Switches, Cisco routers, Cisco CSS content switches, Foundry switches, Sniffer Network Analyzer, Wireshark, Backtrack 5R3, ISS Internet Scanner, Big IP (F5) LTM/GTM, BlueCoat Proxy Server (8200), Checkpoint R75 (Splat) Nokia appliance, Sonicwall NSA 4600 Firewalls, Sonicwall SRA 4600 VPN, Metasploit Pro, Core Impact, Nessus Pro, Kali Linux, AWS Virtual Private Networks; other security assessment applications
Security/Engineering: Cisco Secure PIX, Cisco ASA, Cisco VPN Concentrator 3000 series, Cisco Secure IDS, CiscoWorks VMS, Cisco Secure Policy Manager, Cisco Secure ACS, Cisco ISE, Cisco Security Agent, Checkpoint NG (FW - 1 and VPN-1), Checkpoint InterSpect, Nokia IP Security appliances, ISS Proventia security appliances, NAI IntruShield, NAI Entercept, SonicWall firewalls/VPN, Nortel Contivity VPN devices, RSA SecurID, Snort (Sourcefire 3D)/Firepower/FTD, Dragon Enterprise, McAfee Enterprise, GFI LanGuard, Sonicwall Deep Packet Inspection, Cisco 4210 IDS/IPS Applications and ASA SSM-10 IDS/IPS Modules. TACACS+, and Radius, AlienVault, Nexus1K/7K switches, Cisco routers. SSL Certificate renewals and troubleshooting on all network devices such as Firewalls.
Wireless: Cisco Aironet access points, CiscoWorks
VoIP: Cisco CallManager
Protocols: TCP/IP, OSPF, BGP, RIPv1, RIPv2, EIGRP, IPSec, DNS, NFS, SMTP, SNMP
Languages: Visual Basic 6.0, Visual C++, Perl, Python, VBA Scripting, Powershell, Shell Scripting
Servers: Sun Enterprise, Compaq Reliant, Dell Proliant, VMWare ESX, ESXi
PROFESSIONAL EXPERIENCE
Confidential
Sr. Security Engineer
Responsibilities:
- Network Security and Compliance Engineer responsible for Infrastructure Administration and FedRAMP compliance. Drafted original policies and procedures for 395 controls.
- Recently aided in obtaining FedRAMP ATO status as of 7-29-16
- Current security tools include Alien Vault SIEM, Cisco ISE 2.0, Symantec Endpoint Manager, Cisco ASA 5585-X firewalls, Cisco Firepower.
- Install, maintain, configure, and upgrade all Equinix datacenter (LA/CH) network devices including edge and internal firewalls, internal switches and routers, all security devices such as Alienvault, Solarwinds NMS, Firepower, Cisco ISE, Vulnerability scanning tools such as Nessus and Acunetix Web App Scanner.
- Install VPN tunnels as needed to existing and new customers. Troubleshooting of existing VPN tunnels and SSL Anyconnect clients.
- Maintain continuous monitoring posture for all in boundary devices (FedRAMP) and determine items needed for remediation and work with the appropriate personnel to resolve in a timely manner.
- Monitor network capacity, CPU levels, storage remaining, and other metrics with Solarwinds NMS. All implementations were tested prior to deployment in the production.
- Production environment is completely virtualized with ESXi servers in hardened datacenters.
- Scripting with Powershell and Python(Ansible) for automation of network device configuration.
- Member of the Incident Response Team and experienced in investigation, forensics, and chain of custody to preserve incident information and data.
- Supported/troubleshot Cisco Anyconnect SSL VPN for clients and company employees.
- Configured/maintained/operated Alienvault SIEM, ISS Proventia Perimeter, Core, and Remote IPS devices.
- Continuous Monitoring for FedRAMP including continuous Nessus Manager scans and resulting remediation of vulnerability findings.
Confidential
Network Security Engineer
Responsibilities:
- Network Engineer responsible for Infrastructure Administration, PCI and SSAE16 compliance
- Equinix Datacenter maintenance for ISP and infrastructure
- IDS/IPS monitoring, tuning, remediation on Cisco IDS/IPS and ISS Proventia perimeter and remote devices
- Data Loss Prevention Programs, Policies, and Procedures
- Installation and maintenance of all infrastructure maintenance for HQ, remote sites and Equinix
- Firewall migrations from Pix to ASA, ASA to Checkpoint, ASA and Checkpoint to Sonicwall DPI
- Migrating and merging Confidential to Confidential, Confidential to Confidential, and Confidential to Datapipe
- Configuration of Web Filtering using Bluecoat Proxy Servers and Sonicwall WAF.
- Customer configuration and maintenance on ISS Proventia devices (GX 4000/5000 series devices)
Confidential
Network Security Manager
Responsibilities:
- Tier 2/3 Firewall Support for Dept. of Public Welfare, Commonwealth of PA.
- Configure, maintain High Availability Checkpoint Firewalls in a Provider-1 environment
- Provide core hours and on call firewall support
- Data Loss Prevention Programs, Policies, and Procedures
- Provide Blue Coat proxy server maintenance and troubleshooting
- Provide ISS Proventia and SiteMinder tuning and maintenance.
- Provide ACE 6509 Load Balancer support and maintenance (front end and back end) for web zone server applications
- Manage Remedy ticketing system for firewall support and change requests
- Provide support for VPN tunnel implementation to business partners and state agencies
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
