OBJECTIVE

• To obtain a position in a corporation that will allow me to blend my business, analytical and technical expertise.

TECHNICAL SKILLS

Operating Systems: Windows (Server 2003, 98, XP, Vista, Windows 7), Linux (Fedora, Ubuntu)

Software: Microsoft Visual Studio

Environment: s: Windows, Unix/Linux

Programming: C++

Network Security: McAfee Foundstone Enterprise Scanner, Hercules Patch Server, Host Intrusion Prevention System (ePO), Network Virus Scan, Intrusion Prevention System (Intrushield). Symantec Enterprise Security Manager (ESM) Sarbanes - Oxley (SOX), Qualys Guard, Archer. SAS70

PROFESSIONAL EXPERIENCE

Confidential

Owner/Consultant

Responsibilities:

• Support Windows based environments that have between 5 and 40 users which include between 1 and 4 Windows or Linux servers within a LAN environment
• Help to ensure their information is secured and backed up
• Setup basic networks for small businesses
• Configure RBAC according to individual customer needs
• Install security tools such as Virus Protection and firewalls
• Work with small business to ensure security and availability of their network work and information.
• Repair systems and networks as well as provide preventative maintenance.
• Provide basic computer training involving best security practices and what to check before calling a technician.

Environment: Windows XP, Windows Vista, Windows 7, Linux

Confidential

Applications Engineer

Responsibilities:

• Supported Windows base environment with approximately. 100 users which included 6 Windows servers within a LAN environment
• Assisted engineers around the US with technical problems with networking product.
• Worked with Network admin to establish a form of network security through RBAC and getting up Active director correctly
• Designed projects to be used to install product.
• Help setup a baseline security system with virus scan, Firewalls, and intrusion prevention systems
• Assisted networking security concerns of product and gave recommendations.
• Assisted with configuring networked project at Confidential University School of Forestry.

Environment: Windows

Confidential

Consultant/Security Analyst

Responsibilities:

• Supported Windows environment with approximately 1,000 users which included between 25 and 30 Windows and Linux physical and virtual servers over a LAN and WAN environment
• Worked with a team to asses and recommend new tools to help secure company infrastructure
• Developed security incident response tools and procedures.
• Developed and managed Archer tool to track security incidents and other security related tasks
• Helped to developed Privileged access control system which was tied into RBAC.
• Prepared reports twice/weekly for management on status of ongoing projects and initiatives.
• Developed, implemented, administered, and monitored preventive and detective security controls.
• Redeveloped process for tracking and remediation of threats and vulnerabilities released by different vendors.
• Worked along side with BCP team to test and ensure the Disaster Recovery plan was current and had the ability to be executed with ease
• Reconfigured Anti-Virus tool to work with Active Directory for easier configuration.
• Worked to clean-up the signature based database as well as the anomaly based baseline for the Intrusion detection system to help fit the company’s needs.
• Streamlined the reporting process for incidents that were alarmed by the system.
• Worked with network vulnerability scanning tool to assess the network security.
• On Call to handle 24/7 to handle any security incidents that may be reported.
• Worked with a team to configure enVision tool to log different application and operation systems log files.
• Assisted in the assessment of Application Vulnerability results.

Environment: Windows, Unix/Linux, Database

Confidential

Consultant/Security Risk Analyst

Responsibilities:

• Supported Windows environment with approximately 25,000 users which included over 100 physical and virtual Windows and Linux servers over a LAN and WAN environment that covered all of the USA and Canada.
• Administrator for two security tools that managed security policies for the company’s servers.
• Manage security policies within security managing software for server in the United States, Canada, and Latin America.
• Maintained current documentation of security practices and security system maintenance procedures and configurations.
• Assessed current security controls using open source and commercial scanning, password cracking, and other security audit tools.
• Developed security incident response tools and procedures.
• Managed several projects that included decommissioning unpatchable vulnerable systems, and ensuring that all systems were not vulnerable before placing them into production.
• Held weekly meetings with administrators and engineers within the US and Canada to discuss current vulnerabilities and find out whether they can be remediated or if they need to have an exception written
• Streamlined the reporting process for incidents that were alarmed by the system.
• Work with different teams to remediate any security incidents that arise.
• Adhering to the Sarbanes-Oxley(SOX) standards and preparing information for audits
• Handled Special access to different access and systems (RBAC)

Environment: Windows, Unix/Linux, Database

Confidential

Jr. Security Analyst

Responsibilities:

• Started as a Summer internship and hired on as a contractor after internship
• Worked Directly with CISO in developing a streamline security response tool.
• Liaison between different teams to remediate security incidents and risks.
• Worked on a team to implement and configure 3rd party tools.
• Worked to configure and fine tune Host based and Network based Intrusion prevention system by identifying false positives as well as items that needed to have an exception.
• Project coordinator for many projects including a corporate policy gap analysis.