SUMMARY:

• ASM * Data Encryption * Log Management * Technical Security Leadership * PCI Compliance
• Highly adaptable and flexible Senior Security Analyst with a strong software development background.
• Known for optimizing system benefits by effective problem solving and collaborative mentoring with colleagues.
• A consummate professional with unquestioned integrity, possessing a strong work ethic and initiative to learn.
• Proven verbal and technical skills from System Security to Vendor Management and Software Development.

TECHNICAL EXPERIENCE:

ASM / Application Security Manager / Web Application Firewall

RadWare / AppWall / Web application Firewall

Vormetric Data Security solutions for file and database encryption of sensitive data

Active Directory user provisioning in a hosted datacenter and Amazon EC2 environment

HP ArcSight SIEM

Log Logic real time log analysis and reporting

HP WebInspect application scanning and remediation

Microsoft Active Directory

Oracle PL SQL

SQL Navigator

DB2

Ingrian / SafeNet data encryption appliance

Reactivity XML Gateway Single Sign on and web service security

XML

SAML

PROFESSIONAL EXPERIENCE:

Confidential

Senior Security Engineer Consultant

Responsibilities:

• Acted as the primary Web Application Firewall architect; designing the Conceptual, Logical, and Physical design of the RadWare AppWall WAF that client had previously chosen to purchase and implement.
• Project work included preparing client team for the final installation of the web application firewall and ongoing maintenance.
• Additional responsibilities included assessment of the existing Microsoft PKI Infrastructure in conjunction with the SafeNet Luna Hardware Security Modules, for suitability of design and effectiveness.

Confidential

Security Engineer

Responsibilities:

• Contribute to IT infrastructure activities ensuring architectural and operational requirements are met for the business.
• Utilize standard enterprise tools in Information Security, Network Access Controls, Database Audit and Encryption to develop and implement infrastructure, software or other technical solutions.
• Resolve operational, infrastructure and application incidents impacting operations at Confidential .com and over 1500 retail locations. Provide preventative maintenance for security infrastructure, troubleshooting global events to quickly resolve problems and ensure operational and application stability across a variety of platforms supporting operations across the enterprise.
• Collaborate with teams across the enterprise to promote and develop consistent technical build, implementation and support processes.
• Participate in the design, lifecycle management, and total cost of ownership evaluations for security platforms, applications and infrastructure services.

Confidential

Responsibilities:

• Assess, Configure and Deploy Web Application Firewall (WAF) configurations in front of Confidential web applications.
• Oversaw the maturing and refinement of the Confidential ASM platform and policies over the course of the last twenty - eight months.
• Mentored two individuals on the platform to perform administrative tasks in support of increased demand from the business for WAF services.
• Partnered with the Splunk infrastructure team to centralize ASM log data and derive meaningful alerting and reporting for the environment including development dashboards and reports in order to better manage, monitor, and refine the ASM policies.
• Worked with the network team to drive adoption of the Confidential ASM’s across the entire internet facing Confidential load balancers, while working on prioritization and implementation of the platform on the internally facing core Confidential load balancers to meet the increased demand and focus on security by the business.
• Participated in a project to upgrade DMZ Confidential appliances. 35 Confidential devices were upgraded over a two night period while successfully eliminating scheduled and unscheduled downtime for Internet facing sites.

Confidential, Plymouth, MN

Senior Security Analyst

Responsibilities:

• Worked with both application and business teams to ensure critical data was properly identified, encrypted and monitored for access in order to maintain PCI certification.
• Primary support person for Encryption and Key Management across the entire corporate enterprise.
• Managed a preexisting installation of ArcSight SIEM for a subset of clients
• Identified all in scope devices (80+) for PCI compliance and ensured logging and encryption requirements for PCI were being met.
• Led the effort to leverage existing PCI tools of encryption and logging and deploy them to the Amazon EC2 cloud environment.
• Performed user administration utilizing Microsoft Active Directory within the Amazon EC2 cloud environment for a subset of clients.
• Utilized HP WebInspect for vulnerability scanning to ensure all web applications built using secure coding practices, and sustained compliance over the lifecycle of the application. Worked with development teams to remediate vulnerabilities and to better understand secure coding practices.
• Optimized the Vendor Risk Assessment process for on boarding new vendors and conducted semi-annual vendor assessments on key business partners.
• Developed and implemented a process to ensure credit card numbers were not sent outside the company via email, and worked with the IT and business teams to change email practices and better protect clients’ sensitive data.
• Supported and assisted yearly internal and external IT, CA 52-109 (Canadian equivalent of Sarbanes-Oxley), and PCI audits.
• Participated in defining policies and procedures that aligned with business objectives, compliance and best practices.

Senior Systems Analyst

Confidential

Responsibilities:

• Designed and developed the second implementation of the Oracle native encryption utilizing the 3DES algorithm that affected Web, Database, and Powerbuilder applications.
• Appointed as the SME for support of the Reactivity XML Gateway. This Reactivity product was used to secure web services as well as Single Sign On, (SSO) between Carlson Marketing and clients.
• Acted as an internal consultant for business and IT for SSO and web service security.

Lead Systems Analyst

Confidential

Responsibilities:

• Co-designed and developed the first implementation of the Oracle native encryption, utilizing the DES algorithm that affected both the Web and Database layers.
• Selected as the Powerbuilder SME for a significant portion of Carlson Companies and led the effort to migrate older Powerbuilder applications to Powerbuilder 9.0.