SUMMARY

• Background includes 7+ years of professional experience in Information Security.
• In - depth knowledge and experience in encryption technology.
• Hands-on technical experience utilizing a multitude of IT security tools to ensure compliance with federal regulations and internal policies and standards
• Demonstrated capacity to manage and prioritize multiple projects while simultaneously performing daily security operations tasks.
• Effective leadership abilities, able to coordinate and conduct several phases of project-based efforts while working with multiple project teams.
• Measurable effectiveness in increasing security through network design, system analysis, and process improvement.
• Ability to quickly adapt and understand complex global environments to provide effective risk based recommendations
• Broad knowledge of hardware, software, and networking technologies to provide a powerful combination of analysis, implementation, and support.
• Experience in system and network administration and engineering, hardware evaluation, project management, systems and network security, incident analysis and Forensic research.
• Worked closely with the customers, prepare Implementation and Integration of large scale installation of EMS products, support testing and deployment activities.
• Strong knowledge of Network/Application Protocols & Technologies.

TECHNICAL SKILLS

Security Tools: McAfee ePO, Symantec EndPoint Encryption, Safenet, Symantec VIP, Bitlocker,Vormetric

Operating Systems: Microsoft Windows 7, Server 4.0, Workstation, Windows 2000 Server, Windows 2000 Professional, Windows 2003, Windows 7, IIS Server, Unix, Linux.

Network Services: Active Directory, Bit 9, Terminal Services, Wireshark, NMS, VOIP, Server 4.0, Workstation, Windows 2000 Server, Windows 2000 Professional, Windows 2003, Windows 7, IIS Server, Unix, Linux.

Mainframe System: RACF, TSO, FASTDATA Legacy, FDR RPL US

Antivirus: Symantec AV, McAfee AV

PROFESSIONAL EXPERIENCE

Confidential, GA

Information Security Consultant

Responsibilities:

• Responsible for administration of Symantec Endpoint Encryption
• Experience handling Credant and file and folder based encryption.
• Experience working in an environment using Six Sigma and project management methodologies.
• Evaluated various encryption product like McAfee Safeboot, Microsoft Bitlocker, Dell data Protection and Symantec PGP.
• Provided first level incident response for incidents reported by the monitored systems.
• Proactively identify compliance control gaps and risk areas in advance of audits and provide recommendations to improve processes and procedures.
• Have experience in implementing Vormetric
• Setup the servers and design the policy to encrypt confidential data
• Involved with discussions of audit findings and review of audit reports. Track outstanding IT audit issues to resolution
• Experience of usage of WRDT token, WDE Administration and Whole disk recovery
• Involved in PGP Reporting and Health monitoring and ensuring PGP Universal services remain fully operational by performing regular automated checks.
• Served as a hands-on technical expert working directly with delivery teams to provide guidance and ensure the solutions they deliver adhere to security standards and policies.
• Configured setting on application to transfer logs on Arcsight.
• Ensure ongoing security of existing systems by monitoring security bulletins, determining applicability, and coordinating action plans for remediation.
• Ability to document business and technical requirements and reports.

Confidential, Cincinnati, OH

Information Security Analyst

Responsibilities:

• Evaluating data to identify high risk targets and developing process and procedures to protect and secure the data.
• Enterprise management for Data Loss Prevention (DLP) environment throughout the Enterprise including data at rest and data in motion monitoring using McAfee DLP.
• Determining data discovery scanning scope based on compliance requirements, scanning schedules and adhoc request.
• Assessing, managing and recommending business wide data protection programs within Data Loss Prevention framework.
• Deployment, upgrades, operation stability, coverage expansion focused on highest risk.
• Configure data discovery scans including target IPs.
• Monitoring the scans and making adjustments for poorly executing scans or failed scans
• Configuration of polices, including research to refine policies to prevent false positives.
• Worked with internal and external groups to identify data ownership.
• Have experience working on Security and event log monitoring (SIEM) through RSA Envision.
• Analyzing data discovery reports and prioritizing remediation efforts based on the quantity and type of data element found.
• Investigated and forensic searched for data in motion incidents as a part of Information security policy.
• Managed McAfee ePO for device management.
• Conducted Disaster Recovery for all DLP appliances.
• Evaluated Symantec and McAfee DLP product to satisfy business needs for Data at Rest and Data in Motion.
• Effectively communicated with members of management and technology support teams.
• Additional duties include IT Risk assessments and oversight for issues remediation discovered through security assessments and audits.

Confidential, Sioux Falls, SD

Information Security Analyst

Responsibilities:

• Experience working in operations environment with commitment to procedurals ways of working, security disciplines, strict change control process and emphasis on availability of service.
• Involved in the daily administration tasks for North America Location.
• Acted as subject matter expert on Information Security topics during Audit meetings.
• Experience working as a Mainframe Security Administrator and performed Add/Change/Delete ID's, and Access to Mainframe systems.
• Experience handling different mainframe system which includes FDR, RACF, NAPS, CIPS, BEST, TOP Secret System, CICS.
• Experience creating and deleting datasets on RACF system.
• Assigning access permissions (share/security) for user.
• Preparing and maintaining technical documentation for information security products and preparing standards and procedures for their administration and use.
• Performed 60/90 days data report to validate and remove access from different system.
• Managed Active Directory of Entire North America.
• Provided user support and participated actively in issues resolution.
• Have worked on RFC (Request for Change) on Priority bases.
• Perform root cause analysis and trending on common or severe security vulnerabilities.
• Experience working with ISW ticketing system, tracking work done in hours and completing work according to set schedules
• Experience in working with Remediation team on Confidential application.
• Identified and documented potential risk on Confidential based application during remediation process.
• Performed vulnerable assessment on Confidential based application.
• Participated in application technical and functional testing to ensure adherence to business requirements.
• Participated and contributed to information security-related audits.
• Experience working on Password auto repository (PAR) password management tool.
• Execute RCSA tests and participate in audit reviews related activities.
• Have experience working with development team in large diverse environment...
• Thirst for knowledge and willingness to learn and implement new concepts.
• Performed additional related duties as required.

Confidential

Security Engineer

Responsibilities:

• Responsible for installing, configuring, and maintaining NMS, in support of business processing requirement.
• Architect, install, configure, and maintain production solutions for the Network Management System.
• Perform periodic risk assessments to identify current and future security vulnerabilities.
• Determine the level of risk and identify the best work around to reduce information security risks
• Experience on Network Monitoring using Network Management System tool.
• Network Administrator in IT department with responsibility for managing internal network infrastructure.
• Trouble shoot and resolve highly complex operational or implementation issues that cannot be handled by the front line support, working with vendors.
• Write procedural documentation for operations, deployment and troubleshooting activity..
• Conducted functional and regression testing for each build of application
• Evaluating new security technology and trends, and then making recommendations to strengthen the cyberoam application
• Interacted with Client and Development Team
• Troubleshoot and resolved highly complex operational or implementation issues that cannot be handled by the front line support, working with vendors.
• Validate and prioritize the results produced by various security tools.
• Ensuring application and network compliance to documented IT security policies, procedures, processes and standard requirements
• Experience working on Oracle 8i and MS SQL in an enterprise network, for functioning of EMS.
• Proficient with Software Development Life Cycle.
• Preparing, Executing and reviewing Test Plans and Test cases
• Supplying technical guidance and direction to users and performing miscellaneous tasks in support of the PC environment.