OBJECTIVE:

• Seeking a position with a company that rewards initiative and hard work and offers strong opportunities for further and advancement.

SUMMARY:

• Over 10 years of combined information technology experience and . Extensive coursework on new and innovative security technologies and a history of proven team leadership.
• Work includes development of the State Department s Opennet Plus network, nationwide network upgrades by the FAA, and extensive Information Assurance work for DISA, as well as extensive experience working in a 24x7 Network Operations and Security Center. I have provided network and security monitoring using a wide range of trouble ticket systems and network monitoring tools.
• I have frequently been designated as the shift lead responsible for ensuring continuous coverage, preparing the shift and status reports for the customer and senior level management, and ensuring customer and employee issues were addressed and resolved. I have excellent time management and organizational skills, and can quickly prioritize multiple issues to ensure the most customer impacting events are addressed in a quick and timely fashion.

WORK EXPERIENCE:

Security Operations Analyst

Confidential, Sterling, VA

Responsibilities:

• Work in a Security Operations Center identifying and mitigating Distributed Denial of Service (DDoS) attacks.
• Worked alone on shift for 2.5 years
• Managed a large scale international network in multiple locations.
• Had full administrative access on the network and all devices to mitigate attack traffic, troubleshoot and resolve issues, and ensure customer satisfaction.
• Analyzed traffic at the packet level on UNIX based packet capturing servers, utilizing tcpdump, dnstop and a number of other traffic analysis tools.
• Utilized multiple countermeasures in order to mitigate network attack traffic and prevent this traffic from reaching the customer network.
• Performed troubleshooting steps with customers to resolve network issues such as legitimate traffic being blocked by countermeasures, intended traffic not reaching the destination, as well as internal issues pertaining to the Threat Management System itself.
• Performed troubleshooting steps to identify non - compliant, legitimate traffic (customer proprietary application, for example), that may be being discarded as invalid.
• Assisted with the monitoring and maintenance of third party Threat Management Systems for other clients, activating mitigations and providing notification of TMS related issues as Service Level Agreements direct.
• Follow company notification and escalation procedures when handling incidents.
• Ability to multitask and quickly prioritize multiple problems to ensure the most impacting issues are addressed in a quick and timely manner and SLAs are met.
• Worked daily with the following products: Arbor Threat Management System, Juniper network equipment, Citrix Netscalers, Remedy Trouble Ticket System.

Network Operations Analyst

Confidential, Sterling, VA

Responsibilities:

• Work in a Network Operations Center providing monitoring and incident response for large scale Storage Area Network (SAN) equipment.
• Monitored a large scale network in multiple datacenters, provided troubleshooting of servers and JBODs, and worked to isolate the cause of network issues (routers, switches, firewalls) before escalating the issues to appropriate groups.
• Ensure service level agreements are met, the operations center has continuous coverage, daily shift and status reports are prepared and sent to senior level management, and customer issues were addressed and resolved.
• Diagnose, troubleshoot and work to resolve server issues such as unresponsiveness, services not running, communication issues between servers and JBODs, and redundancy issues between multiple datacenters.
• Installed and configured Storage Area Network (SAN) equipment: Set up RAID arrays on JBODs and file servers, Configured operating systems (Windows Server ), Symantec Antivirus, Veritas Enterprise Administrator, and Veritas Cluster Services on dual servers handling dual PODs to ensure redundancy in the case of one POD becoming inoperational.
• Follow company notification and escalation procedures when handling incidents.
• Ability to multitask and quickly prioritize multiple problems to ensure the most impacting issues are addressed in a quick and timely manner and SLAs are met.
• Worked daily with the following products: Promise Technology, Veritas Enterprise Administrator and Cluster Services, Windows Server ( ), and JIRA Trouble Ticketing System.

Network Operations and Security Analyst

Confidential, Reston, VA

Responsibilities:

• Work in a Network Operations and Security Center (NOSC) providing monitoring and incident response for the following: IDS (NIDS and HIDS), IBM Proventia and BlackIce, UNIX and Windows based servers, routers, switches and firewalls.
• Monitored and managed, both locally and remotely, large scale networks for Health and Human Services and TSA to include network equipment as well as Windows Servers, Active Directory, tape backup processes. Worked with McAfee epo, as well as Symantec Endpoint Protection.
• Ability to recognize security related issues through the Arcsight console, and experience working with HBSS products (IBM Proventia and Blackice)
• Monitored a large scale network, analyzed router logs and configs, and worked with service providers (Sprint, Verizon, Qwest, etc.) to isolate and resolve network problems.
• Ensure service level agreements are met, the NOSC has continuous coverage, daily shift and status reports are prepared and sent to senior level management, and customer and employee issues were addressed and resolved.
• Diagnose, troubleshoot and work to resolve server issues such as unresponsiveness, services not running, DHCP and DNS issues, and other connectivity and functionality issues.
• Follow both company and customer notification and escalation procedures when handling incidents.
• Ability to multitask and quickly prioritize multiple problems to ensure the most impacting issues are addressed in a quick and timely manner and SLAs are met.
• Worked daily with the following tools: Peregrine Servicecenter Trouble Ticket System, ArcSight Console, Sourcefire Defense Center, ISS Siteprotector, Sciencelogic EM7, SMARTS, and CiscoWorks.

Information Assurance Officer and Network Engineer

Confidential

Responsibilities:

• Helped develop an effective “proactive” Internet security approach to identify and implement risk assessment based strategies to increase information security and IA posture
• Implemented and demonstrated the feasibility, functionality and effectiveness of a high level Information Assurance program
• Developed, configured and maintained properly secured baselines on seventeen workstations in a software testing environment including imaging, backups, patch testing and implementation, and updating VMS, writing Plan of Actions and Milestones for approval
• Advised and assisted the Defense Information Systems Agency on IT purchases, distribution, and implementation
• As Senior Administrator on Windows 2000 and XP migration/testing (OS and Office upgrades), used imaging software to implement new desktops (with appropriate hardware, software and peripherals).
• Test and deploy Security Technical Implementation Guides (STIGS)
• Received and escalated tickets through Remedy Action Request System, ensuring customer SLA’s were met and tickets were resolved in a timely and expedient manner
• Consistently high marks and excellent performance reviews from management

Network Engineer

Confidential

Responsibilities:

• Configured and implemented properly secured routers, switches, Windows 2000 servers and workstations for the State Department’s upgrade to Opennet Plus, bringing internet access to all desktops
• Oversee quality assurance and testing in a testing and simulation lab before new equipment was deployed onsite in a live environment. Performed testing and configuration of routers, switches to include IOS testing and upgrading, startup config implementation and backup, and RMA and troubleshooting of faulty equipment
• Day to day, Windows System Administration and troubleshooting consisting of Exchange Server, Systems Management Server, and tape backup library system.
• Consistently high marks and excellent performance reviews from management

Internet Systems Engineer

Confidential

Responsibilities:

• Sole responsibility for the datacenter, including managing customer problems, working with service providers to manage and resolve network and power outages, and working with security to control physical access to the facility
• Improved production procedures documentation and process
• Managed and monitored business-critical Solaris, Red Hat Linux, and Windows systems and applications
• Resolved client issues by providing over the phone support and remote hands at client equipment
• Followed customer and internal escalation procedures, ensuring SLA agreements were met and issues were resolved in a timely and quick manner
• Utilized Remedy Action Request System and Seibel Callcenter for the creation and handling of trouble tickets
• Trained new systems engineers
• Consistently high marks and excellent performance reviews from management