Senior Security Engineer/soc Coordinator Resume
5.00/5 (Submit Your Rating)
PROFESSIONAL SUMMARY
- Designer of cost - effective solutions to prevent, detect and respond to threats in enterprise database, network and multi-platform environments in the cloud and on-premise environments. 15+ years expertise in planning, implementing and deploying large scale software technology projects and securing the enterprise. Expertise in infrastructure security. Highly skilled in Architecture Reviews, Security Operations and Engineering.
- Information Security, Cybersecurity, Network Security, Platform Architecture Reviews & Application Security. Enterprise and Security Architecture, Engineering and Operations. Encryption of data at rest at the SAN, file and database levels. Encryption of data in motion and in use.
- Encryption key management with HSM, Incident Response, Logical access control and segmentation in networks including CISCO, switches, routers, Azure Security Center, AWS VPCs, S3, EC2, Lambda and IAM. Identity and Access Management, OKTA SSO, Static Application Security Testing & Dynamic Application Security Testing (Veracode, Checkmarx), SDLC, Penetration testing, Anti-Malware, CASB, Palo Alto, CISCO ISE, ZScaler web filtering, Crowdstrike & Splunk
PROFESSIONAL EXPERIENCE
Confidential
Senior Security Engineer/SOC Coordinator
Responsibilities:
- Scrum Master to a three person SOC team in Infrastructure Operations.
- Led team in embracing revised Agile way of work that enabled security monitoring in a complex environment.
- Authored and gained alignment for processes such as Use Case Development Process
- Managed a Managed Security Services Provider and managed SIEM operations.
Confidential
AVP Business Compliance/ Security Architect
Responsibilities:
- Fulfilled 1000+ complex compliance questionnaires, on-site assessments and other requests, managing teams in joint responses to Customer Due Diligence external audits and requests.
- Managed portfolio of 100 projects in the enterprise, securing all layers of applications and technology.
- Deployed an enterprise modernization effort in AWS (IaaS, PaaS and SaaS) and PaaS in SalesForce.
- Communicated security requirements in AWS including network security through VPCs/security groups, filtering and routing, HA/DR, VPNs and fiber optic access (DirectConnect), encryption of data at rest and in motion, authentication, authorization, hardening, patching, vulnerability scanning, logging, security monitoring, DLP, endpoint security/anti-malware, identity and access management, encryption key management, privileged access management, dynamic and static application security testing. Designed and socialized Microsoft Office 365 and Azure AD security requirements for infrastructure.
- Expert on information security standards including NIST CSF, CSA CCM, ISO 27001/27002 & SIG/AUP.
- Created security architecture using TOGAF and Zachman Frameworks.
- Defined and managed security requirements, risk registers, validation and assurance for infrastructure and applications including Encryption, Key Management, Incident Management, Logging and 23 other categories.
- Delivered cloud security assurance, SAST/DAST, SIEM, network and identity management projects.
- Managed projects including third party risk assessments, identity management, pen tests, incident response, security awareness, SSO, SIEM, DLP, NGFW and enterprise security remediation projects
- Successfully proved that encryption of data at rest had almost no performance impact (3%) and no cost.
- Developed IT Security policies, standards and procedures on access controls, encryption, network security, mobile devices, vulnerability assessment management, incident response plans, SIEM & DLP.
Independent Consultant
Confidential, Philadelphia, PA
Responsibilities:
- Consultant to small business: Performed formal risk assessments and consulted on network, database and server internal controls working in PCI environments.
- Implemented and set up operations for an onsite SIEM and Wireless IPS system, helping to achieve PCI tier 2 compliance in a major clothing manufacturer compliance into Payment Card Industry. Charming Shoppes International, Bensalem PA July - September 2007
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
