We provide IT Staff Augmentation Services!

Information Security Engineer Resume

EXPERIENCE:

Information Security Engineer

Confidential

Responsibilities:

  • Investigate and respond to security alerts to prevent data loss and maintain the integrity of corporate information; identify potential security control gaps in an enterprise environment and provide solutions to mitigate compromise; partner with engineering and product teams to implement and tune security monitoring, tooling and reporting; assist with regularly scheduled gap assessments, internal audits, and external audits; participate in secure architecture reviews covering legacy and new technologies; conduct analysis of the enterprise network to discover indicators of a network breach or system compromise; review threat intelligence to ensure enterprise is prepared to defend attacks; reduce cloud and infrastructure vulnerabilities across end - user and infrastructure assets; configure and tune SIEM (Rapid7); lead SOAR implementation, automating numerous security processes across multiple disparate systems; configure and maintain all aspects of Office 365 security, including threat management, anti-phishing, data loss prevention, and anti-spam.

Cybersecurity Consultant

Confidential

Responsibilities:

  • Migrated on-premises Active Directory environment into Microsoft Azure and Intune; deployed Advanced Threat Protection for endpoint security; created security baselines; converted Group Policy settings to Azure/Intune configuration policies; performed open-source intelligence gathering on organizational assets, employees, and credentials.

Digital Security Senior Consultant

Confidential

Responsibilities:

  • Performed onsite and remote security assessments as a technical lead in the areas of penetration testing, social engineering, network/infrastructure security, IAM, and compliance; evaluated information security policies to identify gaps in alignment to security frameworks and provided recommendations on content, completeness, and adherence to best practice; conducted walkthroughs with client contacts and control owners to gain an understanding of IT processes; provided executive insight to key cybersecurity risks and vulnerabilities; scripted automation of pen testing tools with Python; performed web application security assessments with Burp, Netsparker, Confidential, and nmap; leveraged SIEM solutions (Splunk and Siemplify) for log analysis and threat detection; performed vulnerability scans using Confidential in large enterprise infrastructures, audited security architecture and network device configurations for weaknesses.

Information Security Analyst

Confidential

Responsibilities:

  • Implemented numerous information security initiatives, including deployments of Public Key Infrastructure, enterprise-grade 802.1x authentication, network monitoring system, and SIEM (Splunk and ELK) system; performed vulnerability scans (OpenVAS) of all assets, documented vulnerabilities found, tracked all vulnerabilities through remediation; configured and managed a variety of security appliances, including firewalls, IDS/IPS, SIEM, and network monitoring systems; monitored network traffic as well as server, firewall, and intrusion detection logs for unusual activity; developed and tested backup solutions and disaster recovery plans; conducted deep-packet analysis using Wireshark; configured IDS/IPS; drafted and updated information security policies, including Acceptable Use and Vulnerability Management; configured endpoint security software (Microsoft ATP and Kaspersky); performed security awareness training with staff.

Systems Engineer

Confidential

Responsibilities:

  • Architected, engineered, and managed a virtualized hybrid (on-premises + cloud) Active Directory environment of Windows and Linux servers by extending the local network and AD infrastructure to Microsoft Azure; configured and maintained networking hardware, including routers, switches, VoIP phones, and wireless access points; automated routine management and reporting tasks with PowerShell; created network diagrams and training manuals; selected, configured, and managed endpoint security solutions; deployed and managed Cisco ASA, Dell SonicWall, and pfSense next-generation firewalls; configured and administered Office365 environment; deployed Single Sign-on (SSO) utilizing Azure AD.

Lead Helpdesk Technician

Confidential

Responsibilities:

  • Trained and supervised newly hired employees on procedure, conduct, and policy; lead and supervised 5-8 person teams on a variety of IT projects, including mass deployment (>500) of hardware and software; acted as escalation point for urgent, complex, and sensitive support issues; instructed staff on proper equipment usage; provided on-site technical support and troubleshooting to 38 campuses.

Hire Now