PROFESSIONAL EXPERIENCE

Confidential, Kansas City, MO

Security Engineer

Responsibilities:

• Performing ongoing performance tuning on hardware and software upgrades in Red Hat environment, using resources efficiently, as well as verifying integrity and availability to all systems responsible for.
• Using Splunk to detect and resolve issues regarding misconfigurations.
• Identifying other unknown vulnerabilities using Splunk, that are not detected by the normal means.
• Responsible for managing projects in a rapidly evolving environment for the planning, engineering, deployment, and support of IT systems.
• Creating systems in VMWare vSphere environment.
• Continuously monitoring environment for new threats, as well as managing and improving tools used in the environment for other engineers and analysts.
• Using NIST as the framework for the Confidential to follow as part of our directives to identify vulnerabilities and misconfigurations, detect and protect the assets from intrusion and exploitation, respond to it with timely fixes, and recover from failures with our backup systems.
• Utilizing Ansible to maintain configurations across the Confidential systems maintained.

Tools: Used: CentOS / Red Hat, Ansible, ELK Stack, Nessus, Splunk, VMWare

Confidential, Kansas City, MO

Systems Engineer

Responsibilities:

• Implementing new health records scheme for the given end client by creating, maintaining, and administering health records systems.
• Using typical CI/CD / DevOps tools to implement said systems and working on a team to better gather requirements for end clients.
• Continuously monitoring environment for improvements and helping to stave away vulnerabilities, whilst implementing new remediations.
• Creating systems in VMWare vSphere environment.

Tools: Used: Chef, Redhat (Oracle), Jira, Vagrant, Jenkins, Openstack, Python, Kubernetes, Terraform, Zabbix, Remedy, Splunk, Github (Enterprise), NewRelic, Bluecat, VMWare vSphere

Confidential, Overland Park, KS

SOC Architect

Responsibilities:

• Implementing a snap - in SOC solution using Red Hat linux as a base for most tools.
• Integrating new technology using Amazon AWS VPC along with Palo Alto virtual firewall matching existing infrastructure requirements.
• Creating a second fully functioning cloud SOC solution allowing for expansion, redundancy and flexibility as needed.
• Investigated SIEM events created tickets and documented incidents for Fortune 500 customers in Las Vegas.

Tools: Used: QRadar, Rapid7 Nexpose, SolarWinds Kiwi Syslog, Thycotic Secret Server, Symantec SEP, Amazon AWS VPC, Palo Alto Next-Gen Firewall

Confidential, Overland Park, KS

Internet Security Specialist

Responsibilities:

• Responsible for protecting Confidential 's information assets, data, and other information through enforcement of Sprints Information Security Policy.
• Responsible for research, design, development, implementation, and operation of complex security solutions.
• Responsible for identifying potential information and network security risks and vulnerabilities.
• Provides consultation on possible solutions to mitigate risks and enhance Confidential s security posture.

Tools: Used: QRadar, Archer, Aruba, FireEye Okta/MAS/CMS, SysInternals, AD, Solaris, Proofpoint, IRC, TippingPoint SMS

Confidential, Overland Park, KS

Network Security Analyst

Responsibilities:

• As part of the Security Operations Center, I report to the Senior Security Analyst providing routine security monitoring, actively reviewing alerts, and investigating events, alerts, and other data elements as possible threat.
• I work directly with clients in an incident response lead or incident-supporting role.
• I make a determination of threat potential for network and host events, building an understanding of risk and helping clients and customers understand those risk and mitigation strategies.
• Researching unstructured events and correlated event actions, determining impact, documenting the situation, and discovering root causes.
• I have a deep understanding of various commercial and open source network sensors, intrusion detection systems and event log correlation engines.
• I am expected to deliver enhanced threat awareness and knowledge through research and continuous improvement of uses cases, signatures, and document metric value.
• Also utilizing Python/Bash for automation techniques as necessary to help speed up workflow processes.
• Utilizing Salt Stack to maintain configurations across a wide variety of systems.
• Using NIST framework as a part of our framework for cybersecurity incidents to identify vulnerabilities and misconfigurations, detect and protect the assets from intrusion and exploitation, respond to it with timely reports for fixes, and assist in recovery where possible.

Tools: Used: ArcSight, Snort, Bro, CentOS / Red Hat, Splunk, Salt Stack, Securonix, CarbonBlack, Staxx, Polarity, Slack, Argus, BPF, Wireshark, NetworkMiner, SSH, LANCope, Barnyard, among others that are not listed.

Confidential, Olathe, KS

Web Developer / Systems Administrator

Responsibilities:

• I supported and maintained the CMS for the Dealer Sales Manual across 23 locales.
• I helped in the transition from the old version of the CMS to the most current version (Version 6).
• I added documentation to currently existing processes in the CMS, including using a new queued work-flow process and an error page document.

Confidential, Liberty, MO

Web Developer

Responsibilities:

• Worked on a product called ShipSource to add in functionality to ship products via DHL, Lonestar, and OnTrac Shipping services.
• I worked with clients directly to provide support to ShipSource or ProShip Software.
• Using version tracking software, kept project files synced to ensure products were kept up-to-date with the latest feature additions.