OBJECTIVE

• Skilled engineer with hands - on experience in Information Security, Identity and Access Management, Blockchain, Web Development, Networking, and Social Media.
• High level of enthusiasm and commitment towards my career.
• Ability to workwell in both individual and group settings.

TECHNICAL SKILLS

Languages: Java, HTML, CSS, Python, PHP, and JavaScript

Applications: CyberArk, Thycotic, ForgeRock, Splunk, Nessus, GFI LanGuard, Microsoft Word, PowerPoint, Excel, Dreamweaver, Photoshop, Premier Pro, Visio, Mathematica, Power BI, Windows Active Directory

Databases: SQL, Microsoft Access

Operating Systems: Windows, Macintosh, Linux

PROFESSIONAL EXPERIENCE

Confidential, Arlington, VA

Identity Engineer - Team Lead

Responsibilities:

• Supporting the Federal Identity Practice
• Lead the development and instantiation of new information security architecture and ensure technology initiatives and implementations make our customer's cloud environment more secure
• Accountable for securing multiple enterprise information systems by identifying network and application security requirements, planning, implementing, and testing security controls and procedures
• Work closely with other enterprise architects and engineers to identify and mitigate risks, perform security reviews, design top-tier security practices, and deliver strategic, innovative cloud-based security offerings.
• Propose, design, plan and execute strategic and tactical operational security objectives.
• Identify appropriate technology/data sources and drive the collection of data necessary to effectively monitor the cybersecurity of cloud-based systems and evaluate any potential threats.
• Collection and preparation of evidence and artifacts to satisfy all necessary security controls based on, but not limited to NIST, FedRAMP, and FISMA guidance

Confidential, Rosslyn, VA

Solution Senior Engineer

Responsibilities:

• Supporting the Cyber Identity Practice under GPS
• Developed CyberArk Roadmap for federal agencies
• Lead architectural redesign efforts for the client based on current needs and factoring in future growth
• Lead, managed, and assisted in the support of the overall design, strategy, and delivery of CyberArk capabilities
• Engaged stakeholders to build consensus around overall PAM program success metrics, business benefit and support for organizational change
• Developed and implemented PAM best practices and mitigation procedures for the client
• Assessed existing security technologies to engineer creative success-driven solutions that align to client business goals and provide the desired outcomes.
• Performed regular documentation on troubleshooting processes while seeking ways to improve the deployment processes for CyberArk
• Acts as the driver for Cybersecurity innovation as it relates to CyberArk and broader security domains by staying up-to-date with new tools & techniques
• Demonstrated advanced understanding of business processes, internal control risk management, IT controls and related standards
• Identified and evaluated complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
• Understand complex business and information technology management processes
• Executed advanced services and supervised staff in delivering basic services
• Responsible to install, integrate, and deploy CyberArk and ForgeRock in client environments
• Communicated to clients and partners aspects of both the product and the implementation at the technical and functional level appropriate for the situation
• Managed project scope, schedule, status and documentation
• Built and nurtured positive working relationships with the clients with the intention to exceed client expectations
• Identified opportunities to improve engagement profitability

Confidential, McLean, VA

Identity and Access Management Engineer

Responsibilities:

• Identity and Access Management (IAM) Engineer supporting the Department of Homeland Security (DHS) - Continuous Diagnostic Mitigation (CDM) Program
• CyberArk Certified Delivery Engineer (CDE)
• Deployed CyberArk’s Privileged Account Security solution to establish and enhance privileged access management capabilities
• Integrated CyberArk into SailPoint through System for Cross-domain Identity Management (SCIM) Integration using version 1.1.4, 1.1.5, 1.1.6, 1.2.1 and 1.2.2
• Resolved integration issues related to the implementation of new tools with the existing infrastructure
• Lead technical client facing meetings to provide assistance with any issues going on in their environment, gather their requirements, and provide solutions to help resolve them
• Developed and communicated meaningful insights and recommendations to address complex client issues and produce high quality deliverables that meet client expectations
• Lead discovery and as-is assessment activities for agencies with a current CyberArk and Thycotic implementation in place
• Conducted evaluation of client’s business needs to ensure that PAM infrastructure plans are aligned with those needs
• Conducted regular reviews on user access authorization
• Monitored the operation of organization access management applications to ensure compliance with organizational access control strategies
• Performed user provisioning, authentication, and access governance adhering to established guidelines
• Designed, defined, and developed standard processes for organizational Identity and Access Management solutions
• Supported configuration and implementation of IAM systems and applications
• Troubleshoot technical and operational problems about IAM system and access control processes
• Integrated CyberArk into Tenable
• Integrated CyberArk into Splunk
• Implementing the CyberArk PAS solution by installing the CyberArk components including the Vault, PVWA, CPM, PSM, PSMP
• Onboarding of privileged users in CyberArk from Unix, Windows and Networking devices
• Installed the latest version of CyberArk
• Worked on creating and scheduling CyberArk daily backup
• Worked on the restore and recovery of passwords in the situation of Vault failure
• Worked on password upload utility
• Upgraded CyberArk from version 9.10 to version 11.1
• Upgraded CyberArk from version 11.1 to version 11.4
• Installed CyberArk from version 11.4 in a fresh environment
• Developed technical guides and documentation for federal agencies
• Assessed the current state of each agency’s PAM tool implementation and documented findings indicating gaps
• Provided recommendations to agencies for solidifying their PAM infrastructure

Confidential, McLean, VA

Information Security Analyst

Responsibilities:

• Conducted IT security standards/ compliance assessments
• Responsible for evaluating Information Security Standards
• Assisting with ongoing projects examining functional security issues
• Research new Cybersecurity challenges
• Working on restructuring and redesigning the company’s website along with revamping social media to improve the company’s online presence
• Security Assessment and Authorization (SA&A) professional knowledgeable in Risk Management Framework (RMF)
• Knowledge of Systems Development Life Cycle (SDLC), security life cycle and vulnerability management using FISMA, and applicable NIST standards.
• Developed System Security Plans based on the National Institute of Standards and Technology (NIST) Special Publications
• Reviewed, analyzed and updated security plans (SSP) using NIST SP and guidelines
• Established an AWS Blockchain environment
• Created various cryptocurrency tokens
• Created Smart Contracts using Solidity
• Experience with Blockchain frameworks
• Deep understanding of Ethereum, Bitcoin, other Blockchain technologies and various consensus protocols.
• Component level understanding of security protocol stacks and crypto libraries and functions.
• Experience working with contract-oriented scripting language like Solidity.
• Strong understanding of the cryptographic principles underpinning Of Blockchain technologies.
• Understanding of cryptography, symmetric/asymmetric (public/private key), hash functions, encryption/signatures.
• Built out custom unit testing framework and patterns using mocha to ensure the protection of production/staging environmental databases.
• Research, Design, Develop, and test Blockchain technologies
• Setup and configured pfSense firewalls, Access Control Lists