OBJECTIVE:

Identity and Access Management Analyst/ Cyber Security Analyst

EXPERIENCE SUMMARY:

• 15 years, Data Center Operations / Portfolio Management (software contract management)
• 5 years, Information Security Administration

HARDWARE / SOFTWARE / TECHNICAL / COMPUTER:

• Active Directory/ Enclaves
• Azure
• Centrify Server Suite
• ChangeMan
• Control M (automated batch job scheduling)
• DB2
• Exchange
• Gemalto Smart Cards
• HP Service Manager
• HPSM - Problem Record Management
• IAM Platforms
• IBM IWS (job scheduling and automation)
• IBM MVS/zOS
• Identity IQ
• Intercede MyID
• Isilon
• JCL
• JES2
• Lotus Notes
• MainView
• McAfee
• MFA (Mutli Factor Authentication)
• MS Office: Word, Excel, PowerPoint, Outlook (O365 Suite)
• MS System Center
• Navisphere
• PAM - Privileged Access Management
• PeopleSoft
• PKI Certificates
• Polarian
• Powershell
• PulseSecure (VPN)
• Putty
• QRadar
• RACF
• RDP (Remote Desktop)
• SailPoint
• Salesforce
• SAP R/3 Security SDSF
• SEIM (Security Event and Incident Management)
• SharePoint
• SoX, DFARS, NAVSEA Audit Controls
• Splunk
• SSO Concept
• Success Factors
• TSO/ISPF
• UNIX
• UNNPI - Unclassified Naval Nuclear Propulsion Information
• VM / VMWare vSphere Web Client
• VPN
• WebLogic
• Windows File Share Permissions
• Windows OS
• Windows File System
• Workday
• Yubico YubiKeys

KEY & TRANSFERABLE SKILL WORDS:

Automated Tape Library (ATL), abend reports, accounts payable (AP), Accounts Receivable (AR), Active Directory Access, audit, automated batch job processing, automation, breaches, Business Continuity, Cireson Incident Management, System Center Service Manager (SCSM), code fixes, Computer Operations Administrator, computer systems, cross-training, Cyber Security Engineer / Analyst, cyber-security, Data Center Operations, Database Access, disaster recovery, Enterprise Content Management (ECM), Enterprise security administration, Ethernet cabling, Fixed Asset Request (FAR), Forensic reports, GUI, HP Service Manager, Incident Management, Initial Program Load (IPL), inventory, Job Control Language (JCL), Mainframe batch jobs, Mainframe server, Manager, Microsoft Exchange Access, Middleware, MOBIUS mainframe, MOBIUS / View, Multi-Factor Authentication (MFA), Nexus, parallel Sysplex, Payroll, Portfolio Management, programming, Quality Assurance (QA), Query Management Facility (QMF), Record management, root-cause analysis, scheduling, Security Administration, Server Network, Site Scan, software licensing, systems, ticket management, Tier One / Tier Two, training, troubleshoot, Windows

EXPERIENCE PORTFOLIO:

Data Security Adminstration Analyst / Identity Access Management Analyst

Confidential, Newport News, VA

Responsibilities:

• Administer access and privileged access for 25k+ internal and third party end users which includes granting, revoking, modifying, password reissue, and profile updates
• Provision and maintain user email accounts in Exchange
• Perform user access permission reviews and audits in alignment with NIST, SOX, DFARs, and NAVSEA audit controls
• Maintain and support user accounts and MFA controls in Azure
• Monitor and support ticket and request queues to ensure approved requests are fulfilled in accordance with company SLAs
• Provide Tier 3 support for security related requests in response to telephone calls, emails, IMs, problem/request tickets
• Review daily, weekly, and monthly user, privileged user, and enclave user access reports for applications and level of access
• Assist with internal and external audit requests and provide evidence or documentation as directed
• Manage Active Directory objects like user accounts, privileged accounts, enclave accounts, security groups, distro groups, extended attributes
• Perform User Life Cycle Management for regular, privileged, guest, service, and test accounts
• Maintain knowledge of current IAM audit controls for SoX, NIST, DFARs, and NAVESEA audit controls for UNNPI (Unclassified Naval Nuclear Propulsion Information) network
• Create and maintain documentation for training and best practices and continuous improvement for team and end users
• Assist with special projects, additional responsibiltiies such as software implementation/upgrades/migration, training, and senstivie subject matter
• Create, update, maintain user accounts and roles in SAP
• Adhere to IAM concepts of SSO, identity governance, and privileged access management for users, groups, roles, and policies
• Provision access via Putty and Centrify Server Suite for UNIX
• Use Splunk to perform SEIM duties when needed
• Assisting in migration to SailPoint, including troubleshoot user issues; use Success Factors in SailPoint for provisioning and user identification
• Provide oncall support on rotation
• Provide leadership for current team and will take on the more complex troubleshooting and problems
• Spearheaded health-based acquisition of personal protection equipment for team during pandemic

Information Systems, Advanced Security Administrator

Confidential, Lowell, AR

Responsibilities:

• Create, modify, and delete user account profiles and access, for internal/external systems and applications, in production, testing, development, and Quality Assurance (QA) environments, which includes: quality assuring security roles / verifying security request documentation / granting & deleting access, and auditing / correcting existing user access
• Performed Query Management Facility (QMF Access), process ID creation / maintenance, Microsoft Exchange Access, Lotus Notes Database Access, updating / Maintenance of Active Directory Access RACF mainframe access
• Created documentation for Data Center Operations department including hyperlinked MS Word documents migrated to SharePoint; updated job documentation for jobs; created / updated IT, company, department, systems procedures, and processes documentation; implemented model and documentation for Data Center Operations from previous Data Center Operator position; IAM manager modeled their doc on input and implemented when moved to Security Admin
• Researched, analyzed, and developed improved Incident Management procedures from HP Service Manager for incident (problem ticket) management for Cireson System Center Service Manager (SCSM) Self-Service Portal (SSP) GUI-based Microsoft System Center for Tier One trouble ticket resolution / Cireson Incident Management for first contact resolution resulting in faster root-cause analysis of incidents and access issues
• Provide on-call coverage (24/7/365) Tier One and/or Two support; troubleshoot access issues including Multi-Factor Authentication (MFA) and issues with locked accounts, invalid log-on attempts (sensitive accounts), processing IDs and user IDs; research attempted log-in origin, contact user to confirm or deny based on access permissions
• Manage cyber-security potential breaches via QRadar Windows Event reports to identify who and when Active Directory groups were modified; report potential breaches to Security Engineers for further action(s); pull forensic reports to audit for data mistakes or discrepancies or changes to unauthorized user accounts or changes without mandatory security request; researched, analyzed, developed improved processes for granting access to evaluate / improve via automation for faster turnaround
• Developed training curriculum / trained staff on ‘transfers,’ automation, SOPs, security requests, forms, and protocol for system access to peers (one-on-one); developed standardized and documented processes for shared data for ~200 security access requestors; mentored peers daily on security requests, access, and protocols / procedures; provide training to internal customers (job skills)
• Performed software portfolio management of software licensing, including; MS Office 365, Salesforce, and other third-party vendors, valued up to ~$1,500 per license; investigated / audited use of and licensing of employees allowed to access software, identified ~200 unused licenses, as well as access for software not granted to users, resulting in security role parameter updates, and new user access parameters and SOPs, with the audit team reducing software licensing overhead by ~$300K
• Perform workload (with team) of between 250 (at least) to 500+ weekly ticket requests for mail groups and transfer requests, as well as fielding problems, e.g., records (Cireson), creating new user access accounts; generated from emails to a collective email group for team
• Streamlined process for executing department and inter-department transfers including identifying legacy system and third-party vendor access, removing it, then granting the access for new user; new process reduced time to almost half, resulting 10-15 transfers completed daily via checklist and standardized procedure, including documentation for peers to follow protocol; identified security roles, performed monthly team-member audits on security model roles resulting in consolidation of >400 security models to ~100 reducing manhours to grant security requests and reduced use of licenses

Senior Data Center Operator / Advanced Computer Operations Administrator

Confidential, Lowell, AR

Responsibilities:

• Performed shift-work as Senior Data Center Operator by providing monitoring / support to data-center operations, computer systems, and environmental conditions utilizing monitoring tools and applications; performed, verified, and troubleshot server application code including application and program updates on Windows servers / mainframe) on a parallel Sysplex (two mainframes in separate locations; z/OS), hundreds of servers and VMS, for hundreds of server applications, and ~12,000 mainframe batch jobs server platforms; identified, resolved, and/or escalated hardware/software resolutions on issues impacting system-user availability; performed system shutdown/start up (Initial Program Load IPL ) functions on mainframe; performed mainframe / distributed batch job scheduling, processing, and troubleshooting
• Opened, managed, and resolved problem records Tier One and Tier Two (department issue), including batch job scheduling, change controls, automated batch-job software, mainframe batch job abends within 24/7/365 Help Desk environment responsibilities including fixing abended batch jobs to PC support, to training end users how to use software and programs; resolved system availability / issues, internal / external customer issues resulting in 99.99% system availability
• Trained / mentored new employees, cross-training personnel daily; developed training documentation for department 24/7 peer access to share with end users with training available to ~125k employees
• Created / maintained hundreds of documentation for department procedures, standards, protocol, and procedures in Word documented/stored on SharePoint; monitor internal / remote networks; facilitate service calls to remote sites
• Generate monthly batch abend analysis and job execution (abend) reports for Senior Data Center Operator to identify top 20 mainframe batch jobs (of ~10k-12k); identify repeat failures / job executions costing million instructions per second (MIPS) if license exceeded for retirement or code fixes
• Notify facilities personnel for environmental alarms for air units, fire alarms, uninterruptable power supply (UPS), alarms for fire, power, water detection, and air handler temperatures, on campus/facility monitoring system (Site Scan); communicated with Server, Network, Telecom, business unit users
• Identify and resolve vital system internal issues (e.g., payroll processing, overseas software / programming) and determine escalation, time-impact to final resolution; quality assure batch jobs (abends), monitoring software; perform printing, bursting, and distribution of batch jobs (e.g., payroll processing checks), and reports for Accounts Receivable and Payroll department; including driver settlements (6,000 weekly; four-page documentation) using InfoPrint 3000 and VPSX
• Managed / supported physical-tape management on 3494/3590 Automated Tape Library (ATL) reports on a spool queue on mainframe for release; change / troubleshoot issues with the giant InfoPrint 3000
• Review Pro-Change database for predicted changes, anticipate impact, team communications
• Physically worked with System Programmers on MVS (mainframe) team to replace ethernet cabling
• Ordered department inventory; maintain purchase orders in Fixed Asset Request (FAR) database; responsible for physical inventory and DR procedures in off-site facility
• Liaised / led Business Continuity Team for disaster recovery planning and implementation including monthly inventory of physical equipment, mainframe consoles, hardware management console, back-up pcs, seating, and physical disaster recovery plans for each I.T. department
• Managed project for migration of >10,000 reports on MOBIUS mainframe to FileNet Enterprise Content Management (ECM); moved from PeopleSoft to Workday, liaising with Payroll, HR, Accounts Receivable, to ensure conversions of files up to 10 years old, ensured mainframe programmers, server engineers, and management were updated regularly, accomplishing two years of work in three months
• Troubleshoot/recommend corrections to mainframe jobs with Job Control Language (JCL) errors coding including space issues, duplicate datasets, ‘dataset not found’ on a daily basis
• Pre-audit and quality assure accounts payable (AP) and Payroll (HR) check log; auditor standards are met and assist with queries during third-party (Ernst & Young) audits
• Liaised with third-party automated batch job processing software and consultants to run automated processes to convert CA7/CA11 jobs over to new job definitions on new software, BMC Control-M Suite project, including creating job definitions and scheduling job streams including 24/7 availability to quality assure the dependencies required, successors running after, resources needed (DB2, started tasks), and if external files processed for six months