IT Security - Web Application Vulnerability Assessments Resume - Hire IT People

SUMMARY

Solutions - oriented Information Security Professional wif notable success directing a broad range of initiatives while participating in the planning and implementation of information-security solutions in direct support of business objectives.
me has held positions of increasing responsibility in secure network design, systems analysis and development, and full lifecycle project management.
Hands-on experience leading all stages of system development efforts, including requirements definition, design, architecture, testing, and support.
Outstanding leadership abilities; able to coordinate and direct all phases of project-based efforts while managing, motivating, and leading project teams.
me am adept at developing TEMPeffective security policies and procedures, project documentation and milestones, and technical/business specifications.

PROFESSIONAL EXPERIENCE

Confidential

IT Security - Web Application Vulnerability Assessments

Responsibilities:

Perform web application vulnerability assessments assuring compliance to Verizon policies and standards.
Review vulnerabilities to evaluate risk level and exploitability.
Support Security Focal Points and Application Development teams wif use and understanding of
Security processes
Self-service assessment environment (access & use)
Security assessment (submitting requests, reviewing results)
Security policies
Understanding of security policies
Assessment period (frequency)
Remediation requirements
Extensive noledge of web technologies and mobile applications used in identifying and evaluating risk
Understanding of a variety of risk assessment security tools.
Understanding of web development practices and methodologies to support applications in identifying root issue and resolution approach.

Computer Sciences Corporation

Information Security Engineer

Responsibilities:

Information Security Engineer responsible for Security Certification and Accreditation of an Internal Revenue Service Audit Automation Application
Utilized government regulations and guidelines to ensure the application successfully passed its required Security Certification

Confidential

VP, Tech Manager

Responsibilities:

Digital Certificate Services Technology Manager assigned the responsibility of developing digital certificate and encryption technologies for Enterprise Development Infrastructure Services.
Responsible for the day-to-day management of a team of engineers architecting, engineering and implementing security solutions.
TEMPPrincipal architect for all digital certificate/PKI related projects and implementations;
Designed and implemented four digital certificate issuance systems using various technologies and products which has issued over 1 million certificates to users and systems;
Implemented strong autantication and access controls to enable tighter security for building and network access. Utilized smart cards/access cards, USB tokens and SecurID tokens for various implementations;

Confidential

Information Security Engineer

Responsibilities:

Information Security Engineer responsible for Security Certification and Accreditation of a major Confidential Reserve Component Automation System.
Utilized government regulations and guidelines such as DITSCAP to evaluate ARCAS systems.

Confidential

74C Telecommunications Center Operator

Responsibilities:

Shift Supervisor - National Security Agency - Cryptologic Telecommunications Center Operations (CTOC)
Network Management - Cisco, IDNX, Proteon, HP Openview, Remedy
Communications Security (COMSEC) Custodian
Defense Messaging System, Automated Message Handling System
Shift Supervisor - 1st Signal Brigade Telecommunications Operation Center (Korea)
Defense Messaging System, Automated Message Handling System
Communications Security (COMSEC) Custodian
Software and Network Administrator