Career Objective:

To obtain a position as a Network Security Technologist utilizing my professional experience and my various industry recognized certifications to integrate network security solutions which will improve the overall information security posture of an organization.

Skills:

• Network System Security Vulnerability Assessments
• Penetration Testing Network Security Auditing
• Security Event Monitoring Computer /Internet Forensics

Professional Experience:

Confidential

Senior Network Security Analyst

Major Project Milestones:

• Increased overall network security monitoring and awareness capabilities by installing, configuring and managing the following security infrastructure .
• Arcsight Security Information Event Management system SEIM which collects security events from various network security devices and correlates the most important events to be investigated.
• Deployed McAfee Intrusion Prevention /Intrusion Detection System NSP on multiple network segments to passively monitor network traffic for issues and malicious traffic for analysis.
• Redesigned and configured McAfee ePO to improve malware mitigation for all 3000 nodes. ePO 4.6
• Instituted an in-depth Vulnerability Management program utilizing CORE Impact penetration testing tool and Mcafee Vulnerability Manager.

Duties and Responsibilities :

• Reviews and investigates IPS, firewall logs and antivirus infections for possible intrusion and breach attempts. Events are collected in the Arcsight SEIM for better correlation.
• Analyze cyber events, intelligence feeds and implement proper controls to ensure the computing environment is protected from the current cyber risks.
• Correlates various threat intelligence data to the data received through our security event management system for matches and trends.
• Perform network security audits of all information systems as required by statue or policy.
• Perform risk analysis/assessments of all new applications, hardware introduced into the network.
• Conduct computer and network investigations when requested from HR and management. Well versed in computer forensic tools including Paraben Cell Phone Forensics ,and internet history forensic tools.

Confidential

Data/Network Security Analyst

Duties and Responsibilities

• Manage and support legal ediscovery requests for Corporate Legal and HR Legal departments. Requests include the collection of email, network content and forensic imaging for legal holds and preservation.
• Fulfill various types of requests for the IIU Internal Investigations Unit including employee email and Internet activity review.
• Support and manage the following devices and supporting infrastructure including Websense Internet filtering, TumbleWeed Mailgates, TumbleWeed Email Firewalls, Voltage Encryption , Orchestria and Safeword Secure Token Servers.
• Provides liaison and consulting services from a security prospective for requests that can include and not limited to: Internet access and acceptable use, email security spam, email encryption and Two factor authentication methods.
• Performs forensic examinations using Guidance Encase Forensic Pro when requested on the Computer/server hard drives, user Internet history and user network content home directories
• Performs security audits when requested on supported technology to ensure security gaps do not exist.

Confidential

Network Security Administrator

Major Project Accomplishments

• Increased internet security by deploying a Barracuda Web Filter 310 , allowing for better monitoring, and reporting of user internet activity.
• Successfully implemented a SecurityMetrics IPS to increase over network security by preventing malicious traffic from traversing the network.
• Eliminated approximately 75 of spam by installing a barracuda 300 spam firewall and educated user community on email security.
• Increased network security by redesigning physical network configuration. This design incorporates a back to back perimeter network as well as a DMZ.
• Deployed and configured version Symantec Endpoint Protection11.0 to all workstations and servers.
• Redesigned Active directly structure as well Group Policy objects locking down workstations and servers improving security at the workstation and server level.
• Utilized Microsoft resource kit tools to create an open source auditing system to track changes to server configurations.
• Implemented an open source security information management system called OSSIM to monitor network events.
• Consolidated all server window security event logs into a virtual appliance called CACTI utilizing a mysql database allowing for easier analysis.
• Consolidated and migrated 25 servers to a VMWare GSX high availability server cluster in conjunction with an Equallogic PS300 SAN.

Duties and Responsibilities

• Monitor all aspects of security related events within network including Cisco PIX firewall logs, SourceFire Snort IDS events, Windows security event logs , Antivirus reports and Juniper SSL VPN access logs and RSA Secure ID tokens.
• Maintain backups jobs and disaster recovery plans using various imaging technologies.
• Conduct various types of audits on a regular basis and prepare reports for ISO.
• Performs various ISO tasks and functions including Risk Management and Risk Analysis
• Respond to various types of incidents and prepare incident reports for ISO.
• Manages a highly effect patch management program for all workstations and servers as well as all network devices.
• Periodically conduct vulnerability assessments and security audits on workstations and severs using Nessus , eEye Retina , NMAP
• Monitors all user NTFS permission and access to file servers and as well as protected health information.
• Consistently review various security bulletins from various vendors for known software exploits and vulnerabilities.
• Monitor and troubleshoot VMWare servers and virtual machines. Create new virtual machines when needed for testing or production.
• Knowledge of various network security tools such as nessus, nmap, tcpview, tcpdump, wireshark , sysinternals tools , metasploit.
• Reads various industry magazines in order to stay current with current technologies and best practices and attend various webcasts and webinars from various vendors in order to keep skill set current.

Confidential Desktop Support Engineer

• Respond to all incoming support calls and create work-order tickets for a mixed mode Windows domain. Maintain all work-orders in Track-It Call management application.
• Maintain all aspects of the Windows Active Directory Database including user accounts, OU structure and Group policy maintenance.
• Conducts troubleshooting on network connectivity DNS,DHCP printers connectivity, and network access issues regarding permissions when necessary.
• Restructured and improved the support desk by restructuring the work-flow, promoting a mission statement and creating an SLA.
• Provide user training on various software applications and hardware when requested as well as training tutorials, policies and procedures.
• Oversee daily operations of checking Event logs for all servers checking for errors and warnings and researching errors for solutions.
• Purchase hardware for agency , maintaining effective asset management control.
• Maintain and update the Websense Internet filtering application database. Prepare reports on user internet use when requested.