SUMMARY:

Confidential has over 20 years’ experience of managing major multi national security projects including the design and implementation of security policies, standards, controls and tools around the globe.

PROFESSIONAL EXPERIENCE:

Confidential - New York City

Lead Information Security Architect

Responsibilities:

• Worked with IT teams to validate and align the security roadmaps, proof of concepts & technology roadmaps to meet the business objectives.
• Developed an enterprise security framework that covers Governance, People, Process, and Technology.
• Performed a gap analysis against the framework.
• Created a roadmap and list of projects for each identified gap. Prioritized projects and created a project plan to guide the implementations.
• Technologies implemented include:
• On premise SIEM and managed SIEM for log collection and alerting,
• Symantec Endpoint Protection architecture with versions 12 and 14,
• Implemented policy-based desktop encryption,
• Implemented Cylance ATP with Script Control,
• POC with CrowdStrike, Carbon Black Bit9 and Cylance,
• Advanced Persistent Threat appliance for detection and containment of advanced cyber threats,
• Sandboxing POC with FireEye, Cyphort, DarkTrace, CheckPoint, and Symantec ATP appliances,
• Proofpoint for sandboxing, antispam and antimalware for email,
• Proofpoint for email encryption,
• Thycotic privileged account management tool,
• Whitelisting tool for unsupported operating systems,
• Symantec Web gateway for outbound web access,
• NetScaler Application firewall for inbound web access,
• Anti-phishing software for enterprise training,
• Symantec DLP v14.5. Integrated DLP and data crawler to catalog and alert on data movement,
• CASB POC with Symantec Elastica and Netskope,
• Nessus vulnerability management tool for periodic scans and remediation,
• CIS Standards on network, Windows servers, and Unix servers,
• Symantec VIP Two factor authentication for remote access,
• Implementation of Palo Alto firewalls for malware and general protection.
• Designed and implemented a security operations center using a current SIEM.
• Created design and test plan, on boarded data sources, created event correlation and alarms.
• Created numerous use cases based on threats. Sources included Windows Servers, Unix Servers, Palo Alto Firewalls, Cisco ASA firewalls, Nessus Vulnerability Manager, AV, File Integrity Monitoring, Cisco and Juniper network components, and custom applications.

Confidential - Houston, Texas

Responsibilities:

• Designed, tested, and implemented a one way diode security solution for NEI 08 09 compliance.
• Designed and implemented a security operations center using IBM QRadar. Created design and test plan, on boarded data sources, created alarms, and event correlation.
• Sources included Windows Servers, Unix Servers, Palo Alto Firewalls., SourceFire IPS, Nexpose Vulnerability Manager, AV, Tripwire, Cisco network components, and custom applications.

Confidential, Dallas, Texas

Cyber Security Consultant

Responsibilities:

• Performing numerous security assessments following the requirements of NEI 08 09 for security systems and networks within a Texas nuclear power plant.
• Performed audit of security operation center against the controls of NEI 08 09.
• Presented mitigation recommendations for gaps identified.
• Executed scanning assessments and manual testing against critical control systems.
• Created procedures for Incident Response, Vulnerability Management, Vulnerability Scans, and Self Assessments.
• Designed and tested a security solution for NEI 08 09 compliance. Solution implemented a one data flow for reactor data.
• Created a functional specification design document.
• The solution included Waterfall Diodes, IPS, SIEM, AV, Integrity software, NAC, and whitelisting.

Confidential, Houston, Texas

Risk Consultant

Responsibilities:

• Designed and implemented a global federation solution of SharePoint 2010.
• Solution presented SharePoint 2010 with authentication performed by an external identity provider.
• Created a solution design document defining the extranet environment.
• The document defined the configurations for the external identity provider, firewall, IPS, reverse proxy, database servers, and SharePoint.
• Negotiated with Global vendors to implement and test design. Solution included processes for enterprise production support.
• Created a comprehensive global security framework that covers Governance, People, Process, and Technology.
• Obtained internal and external input on leading Security Models through Workshops and Conference Calls.
• Created strategy roadmaps for each process and technology domain.
• Created reference technical architectures for critical security areas.

Confidential, Long Island, New York

Responsibilities:

• Managed a security refresh project for a global company covering 380 sites in over 70 countries around the world.
• Within this project, defined and implemented security processes and tools to enable the transition of roles and responsibilities to a new security operations center situated in North America.
• The project deliverables were aligned to ISO/IEC 27001/2 and significant elements of the infrastructure were in scope for PCI DSS compliance.

Confidential - Hartford, CT

Risk Consultant

Responsibilities:

• Performed an analysis of a large insurance company's existing business processes supporting technology compared to the Defense Information Assurance Certification Accreditation Process (DIACAP).
• Compared Clients Enterprise computing environment to DIACAP standard and thoroughly documented 3000 controls.
• Helped identify compensating controls for vulnerabilities that could not be appropriately mitigated.
• Prepared remediation plans with timelines to meet DIACAP compliance.