SUMMARY

• Over twenty years experience as Application Developer/IT System Engineer/IT Architect/Project Manager/IT Manager/Director/Consultant experience with IT Security Layers of Firewalls, AV, VPN, IDS, IPS, Vulnerability Assessment, harden O.S., Encryption, Web traffic filtering and monitoring, Penetration
• Testing, Secure Application Coding Practices to protect the Enterprise. Use NIST Guidelines for ICS. Also have Hands - On experience with Governance, Risk, Internal Audit and External Audit for SOX, PCI, ISO9001 Compliance for: deploying Global Infrastructure, providing Global Customer Support, managing End User Computing, managing Application development, defining IT Strategies, implementing Business Solutions and introducing new
• Technology planning and identifying those projects implementing new Technologies which can improve business processes/operations while improving IT cost structure. IT Skills include infrastructure, systems, application S/W, networking, disaster recovery, team building/management, security, governance, operations, and the integration of hardware, software and networking.

PROFESSIONAL EXPERIENCE

Confidential

Manage IT Security and Desktop Support

Responsibilities:

• Cloud - Managed Symantec Endpoint Protection(SEP10) IT Securityactivities.+ Working with Manufacturing/ICS to migrate from Legacy ICS Systems.+ Implemented AWS S3 and Amazon Glacier architecture/model for data-at-reststorage/archival.+ Integrated Azure Active Directory with on-premises AD synchronization forCloud/Application/Service IaaS and PaaS deployments.IT Compliance+ Manage PCI DSS-2/3 Compliance with Corporate Internal Audit and ExternalAudit(SecurityMetrics)
• Manage IT Security and Desktop Support for Compliance, Remediation,Mitigation of SOX Controls with Corporate Internal Audit and ExternalAudit(Deloitte)+ Manage SOX Control Framework for: Change Management, InfrastructureChange Management, LAN Security, WAN Security, UNIX & Oracle Security,Physical Security, Backup Recovery, Web-site and Application SecurityProcesses.+ Audit Internally developed Web-sites and Applications for OWASP(Open Web Application Security Project) Compliance, secure coding practices, penetrationthreats, etc.+ Represent IT during Corporate Disaster Recovery/Business Continuity planning.

Confidential

IT Senior Project Manager

Responsibilities:

• Coordinated Remediation/Mitigation of PCI External Audit IT Exceptions. Managed governance of Project Portfolio which documented ongoing IT tasks/projects and facilitated meetings of Project Teams and Technical Teams to review planning, budgeting/financial management, IT Governance(Security,
• Compliance, Resource, Risk, Financial, Asset, Procurement, defining Service Levels, Reporting, project management) tan distributed updated status to Corporate Management and all teams. Documented projects using MS - Project, MS-Sharepoint based shared documents and Shared Services which allowed collaboration, communication of project and task status between all teams and sites. Project Manager responsibility for the following projects:BI/Data Warehouse/Data Mart Implementation

Confidential

Manager, IT Security/Sr. Cyber-Security Engineer

Responsibilities:

• IT responsibility for internal and external SOX audits. Responsible for Resolution of Audit IT Exceptions. Implemented Sarbanes - Oxley compliance guidelines to enhance reliability and integrity of SOX Sections 302, 404, 409 and 103 reporting. Managed the following:Enterprise Risk Analysis/Managemento Performed Internal Risk Audit and Assessment.o Implemented Risk Monitoring activities.o Implemented Reporting mechanisms.o Planned and documented Disaster Recovery and Business Continuity Plans.o Implemented IT Enterprise Security Project to secure internal network,perimeter and establish risk analysis, monitoring, reporting and management.
• Secured Apache Web Server.o Protect internal network by hardening Windows O.S. on desktops, hardenServers' O.S. by using Bastille Linux.o Regularly use(internal and external to network) Port Scanner(Nmap), NetworkVulnerability Assessment(Nessus) on systems to identify security risks.o Implemented a Network Intrusion Detection System(Snort-based) to reportsecurity events.o Established PKI/Kerberos and PGP for encryption.Project Manager/Governance
• Oversaw activities related to IT Governance(Security, Compliance, Resource, Risk, Financial, Asset, Procurement, defining Service Levels, Reporting) of projects/tasks and ensured they were reviewed with Business and Technical teams, Management. Facilitated bi-weekly PMO and IT Resource meetings to review projects/tasks with Business, Technical teams. Program Manager/Technical Lead for the following successful projects:Implement ERP(Compiere/SAP) SystemServer Migration Project

Confidential

Department Manager IT Security, Sr. System Engineer

Responsibilities:

• Project Manager Managed activities related to IT Governance(Security, Compliance, Resource, Risk, Financial, Asset, Procurement, defining Service Levels, Reporting) of projects/tasks and reviewed these with Business and Technical teams, Management.
• Project Manager/Technical Lead responsibility for the following successful projects:S/W Application& Framework Migration ProjectsEthernet Network ProjectFacility Consolidation Project

Confidential

Department Manager IT Security, Sr. System Engineer

Responsibilities:

• Project Manager Managed activities related to IT Governance(Security, Compliance, Resource, Risk, Financial, Asset, Procurement, defining Service Levels, Reporting) of projects/tasks and reviewed these with Business and Technical teams
• Management. Project Manager/Technical Lead responsibility for the following successful projects:S/W Application& Framework Migration ProjectsEthernet Network ProjectFacility Consolidation Project

Confidential

Computer System Engineer

Responsibilities:

• Performed daily service and customer support operations at Houston site. Operations included security, additions, moves, upgrades and problem resolution of S/W Business Solutions and Hardware(PC - 95/98/NT, UNIX-HPUX), LAN network devices.
• Integrated S/W, H/W and network resources to provide business solutions. Configured Hubs, Cisco Routers(TCP, OSPF, Spanning Tree, NAT) network devices.

Confidential

Computer System Engineer

Responsibilities:

• Performed daily service and customer support operations at Houston site. Operations included security, additions, moves, upgrades and problem resolution of S/W Business Solutions and Hardware(PC - 95/98/NT, UNIX-HPUX), LAN network devices.
• Integrated S/W, H/W and network resources to provide business solutions. Configured Hubs, Cisco Routers(TCP, OSPF, Spanning Tree, NAT) network devices.