SUMMARY

• As an IT professional wif over 15 years of experience, me possess a broad base of noledge wif a focus on Security in multiple domains (me.e Physical Security, Logical, Administrative, etc).
• Wif my holistic approach to security and as the subject matter expert, me have provide full lifecycle design and support for Enterprise level Security Solutions in Private and Public sectors.
• me have worked for companies small and large (5 - 1000+ users) and me am adept at functioning in a high-visibility, fast-paced, and

TECHNICAL SKILLS

Expert: Cisco Identity Service Engine (ISE)

Advanced: Vulnerability Scanners (Nessus, Rapid7, Qualys)

Advanced: Orion SolarWinds (NPM, NCM, Netflow, Kiwi syslog)

Advanced: Sophos SafeGuard (device encryption) and endpoint security (antivirus)

Intermediate: Cisco AnyConnect modules: Remote Access VPN, Advanced Malware Protection (AMP), Umbrella DNS filtering

Intermediate: BlueCoat Proxy

Intermediate: F5 Load Balancers

Intermediate: Splunk (Syslog)

Intermediate: AlgoSec and Tufin (Firewall ACL mgmt and Orchestration)

Intermediate: PhishMe (Phishing simulation and awareness training tool)

Intermediate: Physical Security - BreezN Visitor Management System, Kantech Entapass)

Intermediate: ElPro Monitoring System

Intermediate Firewalls: Cisco Firepower Firewalls (FMC, FTD, FCM, FDM)

Intermediate: pfSense

Intermediate: Switching and Routing

PROFESSIONAL EXPERIENCE

Confidential

Network System Engineer, Security

Responsibilities:

• As the CyberSecurity subject matter expert, me have improve the security, safety, and health of the organization through security awareness training and technology. In an effort to improve security, me have lead the effort to identified the many risks and vulnerabilities to the organization’s security program and provided recommendations to remediate, mitigate, and or augment to improve its security posture.
• As an experienced network and cybersecurity engineer me am able to provide appropriate recommendations and solutions in multiple areas of expertise (physical, logical, administrative controls).
• Design/Implement Physical Security Systems:
• Deploy/configure multiple physical security systems globally providing network connectivity and system support. Controlling the network traffic between the CCTVs/IP based CAMs, door readers, and visitor sign-in system
• Provide documentation for hand-off to personally security team
• Analyze network infrastructure for risks and vulnerabilities including but not limited to, system firmware/os level, non bugs and patch level, physical health of the equipment (me.e. end-of-support end-of-life) and remediate/mitigate.
• Lead the efforts for bringing in a third party Network auditor to analyze and validate network infrastructure configuration
• Perform site-surveys and network security analysis for company mergers as part of my on-boarding process (based on my own experience and best practice of least privileged).
• Provided mentorship and training for multiple engineers, strengtaning their technical noledge of industry best practices and how its applied to the organization’s infrastructure.
• Under my guidance me assigned projects and oversaw their progress - reviewing design, config, testing, CR, and implementation.
• Lead technical resources for all network and cybersecurity projects
• As a member or the network operations group me manage the day-to-day operations of the network infrastructure, wif focus on cybersecurity. In my role me have configured and managed multiple security appliances and applications; Palo Alto Firewalls, Cisco ASA, BlueCoat Proxies, and PhishMe.
• Lead engineer responsible for identifying compromises and vulnerabilities of end-points using BlueCoat Proxies and Rapid 7 vulnerability scanner; directing halpdesk staff to remove or mitigate.
• Manage SSL Certificates for servers, F5 load balancers, network appliances, websites. Creating Certificate Signing Requests (CSRs) and generating SSL certificates.
• Lead engineer for setting up and configuring Tufin and AlgoSec for Firewall ACL and orchestration and management

Confidential

Network Engineer

Responsibilities:

• As a member of the Network Operations team, is responsible for maintaining the operation of network infrastructure and availability of services for all of OPM staff.
• Monitor and troubleshoot LAN/WAN for errors, bandwidth usage, bottle necks, and work wif ISP to quickly escalate and resolve outages.
• In charge of maintaining Cisco Call Manager VoIP servers and halping troubleshoot end-point device connectivity (VoIP phones and softphone client).
• Mr. Paek works wif other Network Operations team members to maintain 100+ Cisco routers, switches, and firewalls located all across the U.S. - performing hardware and software upgrades, troubleshooting site outages, and configuration changes to provide high availability, network integrity and security.
• Works wif Security team to identify threats and halp mitigate vulnerabilities found.
• Provide reporting to upper management as needed and on a monthly basis, providing network statistics on LAN/WAN resource utilization over time.
• Provide support to Help Desk staff identify network related problems on end-points connecting to network resources.
• Supports ongoing documentation of network infrastructure.
• As part of a team provide support for SOURCEfire IPS/IDS/Firewall/Switch/Router appliances. Troubleshooting configurations, hardware failures, and system errors.
• Part of my responsibilities are to manage multiple cases for fortune 500 accounts and correctly prioritizing cases as they come in via phone, ticketing system, or by team leads.
• Provide over the phone support and remote sessions to resolve complex cases
• Troubleshoot SOURCEfire's Red Hat based OS and MySQL using tools such as TCPdump, Wireshark, SSH, Telnet, MySQL queries, and snort.
• Perform tuning of SOURCEfire appliances - configuring rules, modifying system settings, and resource performance tuning
• Work wif developers to identify bugs in products
• Work wif Vulnerability Research Team to halp research False/Positives, False/Negatives, and rule coverage for zero-day vulnerabilities.
• Develop Knowledge Based articles to be use by SOURCEfire employees and customers.

Confidential

Computer Support Specialist

Responsibilities:

• Provide Tier me & II support for onsite and offsite users in multi-platform environment (MAC and PC)
• Manage and monitor HP switches using VLANs, port security, and MAC addressing to prevent unauthorized connections of rogue devices.
• In charge of evaluating and implementing Network Access Control appliance. Wifin the scope of work provide access control over managed and unmanaged devices connecting to HJF’s network, plan and implement policies to control remediation tasks, and profile and monitor devices connected identifying baselines and abnormal network activity.
• In charge of implement and managing environmental monitoring appliances/devices for datacenters located in multiply onsite and offsite locations. Manages APC NetBotz and InfraStruXure Central Servers to send reports on thresholds, trending, and alerts.
• In charge of evaluating and providing an enterprise level Wi-Fi solution for the organization and deployment from start to finish.
• In charge of managing the entire organizations Wi-Fi solution.
• Provide support for data center and facility moves. In charge of cable management in LAN closets and documenting pertinent information.
• Support VoIP account creations and end-user support for ShoreTel phones
• Restored failed building security access card controls by replacing failed hardware used for transmitting autantication information to key-server (ReadyKey)
• As a consultant me provided network and halpdesk support services, updating network infrastructure and deploying Active Directory server, exchange email server, and file/print server.
• Supporting day-to-day IT operations, me supported all things IT for Busy Bee Environmental Services.

Confidential

Desktop Engineer

Responsibilities:

• Responsible as the sole point of contact to respond to end-user inquiries and interruption of service calls.
• Troubleshooting LAN connectivity as well as offsite/onsite user connectivity to VPN, Webmail, and all Internet services.
• Responsible for managing Help Desk ticket queue supporting 300+ onsite/offsite employees.
• Creates and maintains FAQs and SOPs to provide easily accessible responses to common issues and inquires.
• Manage Active Directory user account permissions and file/print server access. Troubleshooting any AD account permission issues.
• Managed the creations and support of Exchange email accounts and Outlook clients. Troubleshooting user’s access to emails
• Responsible for configuring/imaging of all enterprise desktops and laptops (in a Window/MAC environment), maintaining images, assessing hardware/software requirements, migrating data, scheduling for maintenance. Keeping all systems up to date wif latest security patches, firmware updates, bug fixes, etc.
• Responsible for configuring, deploying, and troubleshooting VoIP phones connected to IQs VoIP network. Setting up VLAN id when needed and troubleshooting connectivity (e.g. VLAN switch configuration and DHCP).
• Worked wif Engineers to support and configure Firewalls, routers, IDS/IPS, and Exchange.
• Mentorship and Lead for halpdesk and responsible for training and managing Help Desk staff.