SUMMARY

• Information Technology specialist with 12+ years of experience, with a record of excellence in leading projects and technical teams, creating information security programs, designing security architecture, and identity and access management.
• Additionally, me have strong inter - personal and communication skills; and with very strong fundamental skills can solve complex issues related to security, networking, and computer systems.
• Security program management: creating, developing and managing a security program for an enterprise
• Infrastructure security architecture
• Support of regulations such as PCI, SOX, HIPAA, and industry-specific requirements
• Active Directory and Windows technology expert: including domain architecture, network protocols such as DNS, DHCP, and LDAP, Group Policy management, and PowerShell scripting
• Federation: Identity and Access Management systems using technologies such as Single Sign-on (SSO) (SAMLv2, WS-Federation), certificate authority, and autantication (Kerberos, NTLM, LDAPS, RADIUS)
• Subject Matter Expert using PingFederate for enterprise environments serving both Identity Providers and Service Providers
• Identity life cycle provisioning including role based access control (RBAC) for teh enterprise using Microsoft ILM and FIM
• Microsoft SQL server and database security
• Firewall architecture and configuration: PIX/ASA, ISA, CheckPoint, Linux IPTABLES
• Endpoint security: PGP, TrueCrypt, BitLocker and other software encryption solutions

PROFESSIONAL EXPERIENCE

Infrastructure Security Engineer

Confidential, California

Responsibilities:

• Develop and maintain single sign-on architecture standards
• Integrate cloud-based, legacy web-based, and custom-developed systems into teh identity federation
• Architect for identity framework including Active Directory (AD), AD-LDS, Oracle (User Repository), PeopleSoft, Workday, application user stores, and partner user identity systems
• Develop PowerShell scripts to support server processes
• Mentorship to other engineers

Information Security Engineer

Confidential

Responsibilities:

• Instituted practices to support regulations such as PCI, SOX, HIPAA, and customer-related requirements
• Developed security policies, standards, procedures and practices
• Developed and delivered information security awareness program
• Built identity management practices and procedures
• Performed vulnerability assessment and penetration testing
• Wrote PowerShell scripts to audit systems
• Designed network security for DMZs and secure zones
• Responded to all customer RFPs and security questionnaires
• Developed SQL server application security procedures
• Assisted software development teams with security practices and audited code in SDLC process

Senior Systems Engineer

Confidential, Glendale, AZ

Responsibilities:

• Subject Matter Expert (SME) in Active Directory, OS security, and DHCP/DNS
• Develop processes and procedures for enterprise server management and security
• Design and implement enterprise-wide solutions for centralized DNS and DHCP
• Advise projects on security practices and secure configurations

Tech Lead/Sr. Windows Administrator IV

Confidential, Scottsdale, AZ

Responsibilities:

• Security Subject Matter Expert (SME) for customers
• Develop technical standards and processes
• Technical escalation
• Lead cross-functional technical teams.
• Coach & assist team members
• Bridge other technical teams
• Built federation services for customers to access internal ticketing system and performance metrics
• Led cross-functional teams to develop an ID provisioning and termination process
• Solved complex technical problems for customer networks with hundreds of servers
• Developed Windows standards encompassing server management and security for customers

Sr. IT Architect

Confidential, Lexington, KY

Responsibilities:

• Single-sign on (SSO) and identity access management across teh enterprise
• IT Security Program management
• Develop IT Security Policies for entire company
• Conduct IT Security employee training and awareness.
• Develop & maintain multi-platform security standards
• Manage intrusion detection & response
• Participate in IT Audit & SOX compliance
• Successfully architected enterprise identity management solution across all major identity databases
• Crafted single-sign on solutions (SSO) for major applications and websites internally and externally
• Developed security architecture for Active Directory including two-factor RSA secure autantication
• Designed solution for single-sign on wireless access autantication with PKI
• Managed all group policies and security rights for Active Directory and file systems
• Reformed incident response process to handle security incidents in a more timely manner
• Developed patch management processes for all nodes throughout teh enterprise

Sr. Consulting Engineer/Trainer

Confidential, Louisville, KY

Responsibilities:

• Active Directory Design & Implementation
• Windows Server subject matter expert
• Information security consulting
• Level III technical support
• Case studies & proposals
• Mentorship for junior consultants
• Training students at Universities & corporations; developing curriculum.
• Customer documentation
• Migrated over 100 servers to Active Directory for Yum Brands
• Secured DMZ for Yum Brands greatly reducing teh number of successful attacks to zero.
• Taught MCSE classes on weekends to students at Sullivan University for 4 years with stellar reviews.
• Developed CCNA & CCNP curriculum and taught Cisco classes for 2 years to various colleges and corporations.
• Stabilized and managed teh largest implementation of Meditech software on Windows NT Servers for Vencor (now Kindred Healthcare).