SUMMARY: Certified CISSP, CISM, CISA Information Assurance Professional with 20 years of combined experience securing, managing, engineering, implementing, and supporting large scale distributed networks. A varied background provides real world expertise in information security, internetworking disciplines, operating systems, and protocols used to develop, deliver, and support secure integrated infrastructure solutions. A self-motivated results oriented leader that is business aware and bottom line focused with a successful track record of delivering projects on time and within budget. Excellent analytical skills enable effective communications at all levels within an organization.

CORE COMPETENCIES:

Cyber Security Program Development, Administration and Oversight Security Policy Process Development Security Incident Response Risk Assessments Compliance Audit eDiscovery / Litigation Holds Network Architecture, Implementation, Management Support Disaster Recovery Project Management Staff Supervision

PROFESSIONAL EXPERIENCE:

Confidential

Senior Information Assurance Specialist / Senior Cyber Security Specialist

• Responsible for protecting the confidentiality, integrity and availability of PPL information and information systems proportionate to their value by providing information assurance guidance and direction to business line personnel.
• Lead cyber security team for PPL EU Smart Grid technology distribution automation initiative including:
• Developed Smart Grid cyber security plan and operational concept
• Developed cyber security hardware / software and application requirements
• Perform cyber security assessments, design and testing activities
• Validated hardware, software and application security configuration
• Supervised 2- 3 contracted cyber security SMEs assisting
• Ensured the contractor budget did not exceed the 1.5 million allocation
• Liaise with PPL business lines to ensure that system and application security align with business goals
• Assess internal and cloud SaaS / CaaS for alignment with PPL security policies and procedures
• Respond to and troubleshoot MSSP security alerts incidents
• Provided oversight of network, system, and database access via PPL's Security Request System
• Evaluate end user requests for unauthorized software on PPL provided workstation
• Ensure network perimeter security via oversight of firewall rules and perimeter security architecture

Confidential

IT Lead Security

• The IT Lead Security created the organization's Information Security Management System ISMS based on ISO/IEC 27002, 27001. The program encompassed security policies, governance, risk assessment / management, and audit oversight to ensure compliance with federal HIPPA and state regulations and ensure the organization's IT department meets the Joint Commission on the Accreditation of Healthcare Organizations JCAHO standards. Secondary tasks include:
• the evaluation and selection of IT related security applications, tools, and systems
• technical security and the protection of PHI PII and other sensitive organization information
• development oversight of information security processes and procedures
• investigation of information security breaches and related incidents

Confidential

Senior Security Analyst

• Established and managed a corporate wide IT security program in collaboration with the Legal, Human Resources, IT Shared Service Center departments and line of business managers.
• Provided hands on oversight of network and application security including routers, switches, VPN concentrators, firewalls, IPS/IDS, workstations, and infrastructure servers.
• Performed server and network vulnerability scans and risk assessments.
• Developed governing policies and processes to safeguard information technology assets, availability, confidentiality, and integrity based on industry best practice and ISO/IEC 17799/27001.
• Coordinated and managed disaster recovery, business continuity planning and e-discovery litigation.
• Developed Corporate Security Organizational Model
• Developed and Implemented Corporate Information Security Policies and Standards
• Developed and Implemented Network and Application Security Oversight Processes
• Developed and implemented IT Disaster Recovery Activation and Response Plan

Supervisor Network Infrastructure Service Management

• Managed the day-to-day activities of level two infrastructure technical analysts supporting over 450 Microsoft Windows 2000/2003 F P, Exchange, SQL and application servers in an Active Directory Domain frame over ATM Wide Area Network of 250 locations, and local and remote switched Ethernet LANs. Coordinate system builds, installs, uninstalls, and schedule preventative maintenance.
• Ensured timely completion of level two support activities in order to meet or exceed Service Level Agreements.
• Implemented elements of ITIL Service Delivery resulting in reduced service delivery and problem resolution times
• Performed employee performance evaluation and career development mentoring
• Managed data center operation including ensuring optimum application availability, response times and reliability via preventative maintenance and viable system backups
• Maintained data center facilities including, UPS, backup generator, fire suppression, access security, and environmental control.
• Upgraded Data Center cable plant and power to increase server density, network access capacity and provide redundant power feeds to critical infrastructure components
• Upgraded the corporate headquarters' LAN infrastructure from 10/100 to 10/100/1000 switched gigabit to improve network performance for end user workstations

IT Team Lead Network Planning and Support

• Team leader of WAN/LAN group responsible for network planning, architecture, Cisco router and switch configuration, router and switch installations, monitoring, network analysis, trouble shooting, capacity planning, project management, network systems requirements, systems evaluations, IPSec and SSL VPN, IP address allocation, management of RSA Strong Authentication environment, management of external DNS name space, vendor contract negotiations, vendor invoice reconciliation and budgetary estimates
• Designed and implemented an international frame over ATM WAN of more than 250 locations supporting 2600 users and over 6000 network nodes in a distributed computing environment.
• Managed project to integrate newly acquired company into the corporate Windows NT, MS Exchange, IP address space, and WAN infrastructure
• Provided IP routing specifications for the parent company's global backbone network connecting the North American, European, African, and Asian continents
• Managed project to installed SSL VPN remote access systems for 3rd party application specific access
• Designed and managed project to install a 10/100/1000 Ethernet LAN in the Corporate Headquarters facility to support access to application systems, file servers, mail servers, Internet access
• Managed project to install branch-to-branch IPSec VPN connections between the company and external partners
• Renegotiated telecommunications services contract resulting in 205K yearly cost savings

Corporate Data Communication Analyst

• Designed, implemented, installed, and managed the Corporate Data Communications Network.
• Negotiated contracts with telecommunications carriers, reconcile carrier invoices, provision frame relay and Internet access circuits configure routers and CSU/DSUs, capacity planning, performance measurement, and LAN/WAN monitoring.
• Provided consulting services, second and third level problem determination and troubleshooting.
• Oversaw project to install the company's first Internet gateway, including circuit, routers, switches and firewall
• Replaced Windows NT RAS with VPN resulting in approximately 192K yearly cost reduction
• Installed and managed RSA two-factor authentication for external access into the corporate network

Confidential

Senior Operations Analyst/Communications Engineer

• Supported complex token ring, Ethernet and wide area networks.
• Installed, configured and troubleshot category 5 and fiber optic cabling IBM CAUs and MAUs, ODS Intelligent Wiring Hubs, Cisco routers, IBM Token Ring and Vitalink Bridges.
• Provided support for T3/T1 communications system using D3 / D4 Channel Banks and fiber MUX. IBM and Paradyne T1.5 TDMs.
• Performed network diagnostics using protocol analyzers, data scopes, BERTs, and analog meters.
• Installed Cisco routers to interconnect the company's remote sites
• Managed project to install an interstate video conferencing system between the company's major plant facilities
• Managed the installation of a six node T1.5 interstate network on a TDM platform with its component management station
• Published an article in Communications News regarding use of intelligent CSUs on a T1.5 network
• Evaluated and installed Kentrox T-Smart Network Management System for CSUs
• Installed General Datacomm's Modem Network Management System

TECHNICAL SUMMARY:

• Networking: Frame Relay, ATM, MPLS, ISDN, T1.5 Private Line, DS1, DS3, FDDI, Ethernet, Token Ring, VPN, RSA, TCP/IP, DNS, WINS, SNA, MS Active Directory, MS Windows NT, IPX/SPX, Appletalk, DECnet, IGRP, EIGRP, OSPF, and RIP
• Hardware: Cisco Routers 17XX, 26XX, 36XX, 37XX, 75XX , Cisco Catalyst Switches 29XX, 35XX, 40XX, 45XX , Cisco PIX Firewall, Nortel IPSec VPN Switches 1000, 1500, 1600, 1700 , 3Com Switches and Hubs, Juniper SSL VPN Appliance, Paradyne and Adtran CSU/DSUs
• Tools: Qualys Vulnerability Scanner, Symantec Endpoint Protection, Nixon, LogLogic, ClearPass Policy Manager, CiscoWorks for Windows, CastleRock SNMPc, Nessus Vulnerability Scanner, ADManager Plus, DAD, SNORT, What's up Gold, and HP OpenView, Microsoft Office Suite Word, Visio, PowerPoint, Excel, Access, Project, Outlook
• Platforms: WinNT, W2K W2K3 Server, WinXP, Windows 7, Windows 8