SUMMARY:

• Risk Management
• Policy & procedure development in information security.
• Define the architecture, design, management & controls that assure the security of business environments
• Compliance: PCI DSS, HIPAA/ HITECH Act, ISO27001, Safe Harbor, SOX, OWASP, GLBA
• Incident Response, Cybercrime Investigation, Forensic Analysis, Log Analysis & Correlation
• Vulnerability scanning, testing, hacking, assessment, interpreting, reporting, auditing & advising on security controls for systems
• Implementing inter - networking protocols & AAA using IOS & the Cisco Access Control Server (ACS)
• Unix/Linux
• Leveraging over sixteen years of proven professional experience of increasing responsibility, & character as exemplified by many accolades, in positions of trust consulting, engineering, managing & securing LAN/WAN environments working with Network Engineering, Administration, Security & Information Assurance..

PROFESSIONAL EXPERIENCE:

Confidential, DENVER, CO

Security Services Primary

• Consulting customers around improving overall security posture
• Collaborate with customers & internal teams, driving the value of security solutions.
• Participate in internal projects, product improvement, training, best practices, improving methodology & quality of service.

Confidential, DENVER, CO

Principal Consultant

• Architecture reviews and recommendations for viability, security and compliance
• Evaluated risks & threats adopting adaptive security controls, processes, & technologies.
• Created information security documentation & implemented best practices
• Recommend improved procedures for incident response and logical security
• Handle security escalations & conduct internal and external security monitoring e.g. IDS, File Integrity monitors, logs, forensic analysis, incident response, & cyber-crime investigations
• Open Source Intelligence collection & analysis

Confidential, DENVER, CO

Senior Security Engineer

• Manage, maintain, & grow corporate & a customer-facing cloud infosec practice.
• Conduct vulnerability audits & penetration testing against internal & hosted systems.
• Handle security escalations & conduct forensic investigations as needed.
• Design & implement physical & logical access controls & security products.
• Performed risk management & risk assessment reports based on NIST SP 800-30.
• Develop frameworks, policies & procedures for physical & logical security

Confidential, DENVER, CO

Network Security Engineer

• Maintained a rapidly changing internal & international platform as a service enterprise environment while still providing solutions that preserve compliance, access & security.
• Researched IT & security issues & solutions & presented ideas in a business-friendly &/or user-friendly language. Evaluated risks & threats while adopting adaptive security policies, security controls, processes, & technologies.
• Conducted internal & external security & compliance control reviews, security monitoring via IDS, File Integrity monitor, logs, forensic analysis, IR, & cyber-crime investigations
• Created information security documentation & implemented best practices, many based on NIST guidelines e.g. NIST SP 800-53 & others. Key member on the Team that spearheaded PCI DSS v2.0 Level 1 certification 3yrs in a row, certification as ISO27001 compliant, compliance with HIPAA/HITECH Act & Safe Harbor data security requirements, & SOX compliance initiatives.

Confidential, DENVER, CO

Network Engineer, Systems Administrator

• International consulting, to Partner Bank sites IT Staff on networking & security issues, AD on Windows Domains, incident response, investigation, breach & malware remediation
• Configure, manage/maintain, & troubleshoot, LAN /WAN, VPN’s, switches, & firewalls.
• Managed local NOC, troubleshot international VSAT satellite network for overseas sites.
• R&D on security & bandwidth optimization solutions e.g. proxies, WAN optimization, content filters, managed services, remote & mobile device monitoring & management.
• Created technical writing, documentation & training course-ware & materials.

Confidential, BROOMFIELD, CO

Experienced Security, Network, Systems Engineering Consultant & Owner Operator

• Consulted on small to enterprise environments on security, networks, systems, backup solutions, design, implementation, administration/maintenance, troubleshooting, incident response, malware attacks, damage control, disaster recovery, systems hardening, data recovery, server/ desktop support, end user training, & compliance with PCI DSS, ISO27001, HIPAA/HITECH Act, Safe Harbor, GLBA & related data security requirements.
• Network & systems security engineering design & implementation. Delivered class room & web training sessions for ISC’s CISSP, EC Council’s Certified Ethical Hacker (CEH), & CompTIA’s Security + & A+ certifications serving as a Consulting Security Engineer & Technical Instructor for IQ-Share, Castle Rock, CO.
• Designed, Configured, maintained Cisco & Microsoft LAN Environments. Delivered class room instruction on Microsoft 2003 MCSE certification, CompTIA’s A +, Network + & Security + certifications serving as a Consulting Systems Administrator & Technical Instructor for LEADER QUEST, Englewood, CO.

Confidential, DENVER, CO

Tier II support Rep & LAN Specialist/Subject Matter Expert

• Consult Customers on LAN network troubleshooting, design & security. Served as the LAN specialist & Subject Matter Expert for my department.