SUMMARY:

• A senior - level IS professional with operations experience across various system platforms and operating systems; possessing excellent communication, analytical, managerial and customer service skills. Expertise in LAN/WAN Architecture, Engineering, Administration, and Information Assurance. Effective team-building, skill development, goal setting and goal fulfillment of direct reports.
• Planning, installation, maintenance and security of Local and Wide Area Active Directory/NDS Networks
• Network (TCP/IP, IPX/SPX, DNS, WINS, DHCP, Firewall, VPN, 802.11) configuration and administration
• Security auditing and intrusion detection monitoring
• Research, evaluate and integrate networking solutions to optimize network security and performance.
• Disaster Recovery, Business Continuity Planning, Capacity Planning, Project Management, IT SOP development
• PCI, SOX, NIST, ISO27001 and HIPAA compliance reviews
• Financial, Legal, Healthcare, Retail and Software Development industry experience
• Sales background with heavy customer service
• Project management tasks include Data Center and trading floor relocations, and negotiation of vendor contracts
• Documentation of Standards and Procedures to facilitate upgrades, support and new employee
• Experienced in end-user and technical writing
• Quality Assurance/User Acceptance testing

TECHNICAL SKILLS:

Operating Systems: Microsoft Windows NT - 2016; Novell NetWare 3.x - 6.x; Red Hat Enterprise Linux (RHEL), CentOS, KNOPPIX, Ubuntu Server/Desktop, Lightweight Portable Security (LPS) Linux.

Virtualization Technologies: Microsoft - Virtual PC, Hyper-V; Sun/Oracle - VM Virtual Box; VMware - Server 1.x, 2.x, ESX/ESXi 3 - 6 (TXT) Server; Workstation 8 - 12, Linux - Xen, KVM, QEMU.

Systems/Network Management/Collaboration Tools: Microsoft - Active Directory/GPMC, SMS 2003/SCCM 2007R2/2012, SCVMM, IIS 6 - 8.5, SQL, Exchange, SharePoint, Team Foundation Server 2005/2008, Visual Studio Team System, Visual Source Safe; Borland Caliber RM 2008, Danube ScrumWorks Project Management server, MS Project Server, ServiceNow platform.

Systems/Network/Auditing/Monitoring/Security/Optimization Tools: SolarWinds, enVision, qRadar, McAfee ESM, McAfee ePO - Policy Auditor/FIM, DLP, Splunk, Nagios, Nessus, Snort, TripWire/AIDE, Wireshark, EnCase, MetaSploit, Caine, Kali, SELinux, AppArmor, up.time, MS - (MBSA, BPA, SSCM, EMET, Sysinternals). RSA Archer GRC, RSA Security Analytics, Cisco IronPort, Cisco Sourcefire, Imperva WAF, Bromium EndPoint, FireEye Endpoint, IBM Guardium, Cyveillance, CyberSponse, HP and Eracent ITAM, Tanium, Bit9/Black endpoint security products, CyberARK PASS, Tenable Security Center.

Hardware: IBM/HP/Dell rack-mount and blade servers; iSCSI SAN IP data storage; Cisco PIX/ASA-IPS routers and switches; SonicWall VPN routers and firewalls; Barracuda Networks Spam & Virus Firewalls.

Software: Microsoft Office, Office365, Project, Visio, OneNote; Sun/Oracle - OpenOffice (Writer, Calc, Impress, Draw, Base); Linux - GNOME/KDE/LXDE environments, Evolution, WINE; Mercury/HP QTP; Symantec/Veritas Backup Exec, Ghost, SAV Enterprise, Endpoint Security, Enterprise Security Manager.

PROFESSIONAL EXPERIENCE:

Confidential, Tampa, FL

IT Consultant/Manager

Responsibilities:

• Security monitoring engagement for US Federal Government entity.
• New 24/7/365 Security Intelligence Operations Center design and deployment.
• Data Center and leased office space evaluations for SIOC build-out feasibility and for proper security controls and design, compliance, and vulnerability management (ISO 27001, SSAE 16 Type I & II, AICPA SOC-1, SOC-2 Type II, and SOC-3).
• Responsible for employee/contractor recruitment, candidate selection, interviews,, work assignments and scheduling, performance assessment, personnel issues, and recognition/corrective actions.
• Managed 10 Cyber Analysts and 2 Team Leaders on two shifts covering a 24-hour, weekend and holiday work schedule.
• Attended various management courses covering organizational behavior, human resources management, and customer engagement.
• Aligned customer security objectives with monitoring program and processes. Reduced Operating Expenses greater than 75%.
• Security Incident analysis, triage and notification for Splunk notable events. IDS monitoring and analysis, network traffic and log analysis, prioritization and differentiation between potential intrusion attempts, determination of false alarms, insider threat and APT detection, and malware analysis/forensics. Leverage threat intelligence for incident validation. Created and tracked investigations to resolution. Enhanced the Critical Incident Response process along with customer security stakeholders.

Confidential, Tampa, FL

Sr. Security Engineer

Responsibilities:

• Responsible for the protection of the firm’s physical and non-physical Information Technology assets.
• Created and updated security baselines for various platforms based on industry best practices documents (NIST, NSA, DOD, CIS).
• PCI/HIPAA/NIST/COBIT/ISO 270001 compliance reviews. Performed vulnerability assessments to identify both architectural and platform-specific vulnerabilities.
• Ensured effectiveness of security controls for assigned Subject Matter Expert platforms. Created Key Performance Indicators (KPI) for appropriate processes.
• Configured and maintained Reflex Systems virtualization security monitoring application, EMC/RSA SecurID security console appliances, Mandiant MIR sweeper/sniper console appliances.
• Technical liaison/resource to Security Operations Center and Incident Response teams for active investigations.
• Reviewed IT Security Governance and Compliance with weekly reporting to C-level management.
• Coordinated with systems administrators to ensure security and patch management issues are brought to closure.
• Reviewed new threats and vulnerabilities (Zero-day) to determine risk to infrastructure. Reviewed emerging security technologies and made appropriate recommendations regarding their implementation.
• Security review of Mutli-Forest Active Directory redesign and upgrade.
• Security Policy and Control Standard creation and review. Security Policy exception request reviews.
• Created processes to meet audit finding requests. Aligned various Infrastructure teams to comply with internal and external audit findings.
• Architectural reviews of COTS and FOSS software requests for strategic security suitability, vulnerabilities and mitigation requirements.
• Project management duties on several parallel security-centric projects such as implementation of a Desktop Compliance program and MS EMET rollout enterprise-wide.
• Utilized RSA enVision and Q1 Labs/IBM QRadar SIEM and Dell SecureWorks platforms for investigations.
• Security review of various Lotus Notes/IBM Domino and ServiceNow-hosted requests for network access/system permissions/system configuration.

IT Consultant/Manager

Responsibilities:

• On - site field engineer and remote support/maintenance systems/network engineer for various commercial and residential clients. Program/Project Management responsibilities include IT infrastructure architecture, design and implementation, upgrades, conversions and migrations, VMware ESX and Microsoft Hyper-V virtualization rollouts, NOS/Topology upgrades and conversions, Cyber Security assessments, PCI/HIPAA/NIST/COBIT/ISO 270001compliance, Business Impact
• Analysis, development of Business Continuity and Disaster recovery plans, hardware/software/connectivity troubleshooting, remote access/site-to-site VPN installations, Cisco router/switch configuration and maintenance, MS Exchange/Outlook eMail troubleshooting, Blackberry/PDA email connectivity, virus/malware removal, vulnerability scanning/penetration testing, network/host-based and IDS/IPS installation and monitoring, MS Active Directory user account and Group Policy administration, data backup scheduling/auditing/restores, facility relocations, QA/UA testing, technical writing, and end-user . Management of several hosting/co-location/cold co-location/Disaster Recovery infrastructure migrations with access to multiple Tier-1 Internet carriers. Negotiation of vendor contracts and management of vendor relationships. Management and skill coaching of several subcontractors on various IT projects. Manager of 12 full-time/consultant personnel.

Confidential, St. Petersburg, FL

Systems/Network/Infrastructure/Release/QA/Security - Engineer, Software BuildMaster

Responsibilities:

• Ensured the high availability, security and integrity of Microsoft Windows 2003/2008 Active Directory network comprised of 60+ physical/virtual (VMware/MS Hyper-V) servers, routers, switches and SAN for the R&D, Design, QA, Documentation and Technical Support departments.
• Responsibilities included capacity planning, performance monitoring and tuning, data assurance and disaster recovery on assigned systems. Implemented Active Directory and Domain Controller redundancy to existing network infrastructure.
• Upgraded/rebuilt and standardized server/switch/router configurations and implemented security measures.
• Provided user access to the network and resources, including permissions, access rights and privileges with periodic user activity log review.
• Performed PCI DSS and network security compliance reviews and remediation.
• Converted several critical legacy physical systems to virtual models (P2V) to facilitate backup and disaster recovery. Designed and maintained Virtual Server sandbox environment with re-imaging functionality for R&D engineers. Installed and maintained Borland Caliber RM 2008 andDanube ScrumWorks/PRO Project Management servers. Maintained and upgraded MS Team Foundation Server 2008 server.
• Monitored various applications, including setting alerts to maintain the stability of the environment and applications, with periodic system log review.
• Performed periodic security audits and vulnerability scanning of all systems involved. Provided technical support for MS IIS 6/7, website maintenance and SQL server 2005/2008.Scheduled and verified data backup/restore procedures.
• Researched and evaluated new hardware and software to optimize network security and performance.
• Responsible for the InstallShield-based software build process and manual/automated (Mercury/HP QTP) QA testing of various Sage HRMS software products in an Agile (Scrum) framework.