TECHNICAL SKILLS:

PLATFORMS: Windows OS, Windows Server, Kali Linux

SOFTWARE: I am proficient in Microsoft Exchange Management Console and PowerShell. I also have experience using the HP Arcsight Security Information and Event Management for troubleshooting relevant events for intrusions and compromises. I have used Active Directory to add and edit machine names, admin and user accounts. I have worked with Pointsec and Bitlocker for encrypting local drives. I used Cisco VPN and Microsoft Communicator/Lync to access the network remotely. I have also used Wireshark to analyze network traffic. I have used Nessus to perform vulnerability assessments. I have used NMAP to perform port scanning and audits. I have also configured Windows firewall to block vulnerable services.

HARDWARE: I have used thin clients to access Dell Blade server to troubleshoot Active Directory and Exchange issues. I have installed computer hardware components such as hard drives, memory, optical drives, motherboards, and building special purpose machines.

NETWORKING: I have knowledge of the TCP/IP stack and the functions at each layer; as well as network hardware such as Routers and Switches. I have also configured and implemented simulated LAN's using Cisco Packet Tracer.

PROFESSIONAL EXPERIENCE:

Confidential, Washington, DC

Software Engineer

Responsibilities:

• Experience implementing NIST 800 - 53 security controls for Confidential .
• Experience applying risk management techniques to develop and complete Security Assessment Reports (SAR) based on NIST standards to ensure system design and implementation sufficiently addresses or mitigates IA risk
• Performed authenticated automated assessment scans.
• Manually reviewed documentation against automated scan results and identified discrepancies.
• Create SARs detailing assessment findings.
• Provide a weekly progress report to the customer including accomplishments, activities in progress, planned & upcoming activities, status of deliverables, and issues/resolutions
• Provide weekly status updates to next level manager to include accomplishments, activities in progress, planned & upcoming activities, status of deliverables, upcoming meetings/conferences/presentations, issues/problems/questions.
• Interim Public Trust clearance

Confidential, Herndon, VA

Responsibilities:

• Perform network security monitoring and incident response for a large organization, coordinated with other government agencies to record and report incidents
• Maintain records of security monitoring and incident response activities, utilizing case management and ticketing technologies
• Monitor and analyze IDS and SIEM to identify security issues for remediation
• Recognize potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
• Evaluate/deconstruct malware through open-source and vendor provided tools
• Communicate alerts to agencies regarding intrusions and compromises to their network infrastructure, applications and operating systems. Assisted with implementation of counter-measures or mitigating controls
• Evaluate firewall change requests and assess organizational risk
• Prepare briefings and reports of analysis methodology and results
• Create and maintain Standard Operating Procedures and other similar documentation
• Consolidate and conduct comprehensive analysis of threat data obtained from classified, proprietary, and open source resources to provide indication and warnings of impending attacks against unclassified and classified networks
• Generate end-of-shift reports for documentation and knowledge transfer to subsequent analysts on duty
• Use Cisco VPN for remote access

Confidential

Responsibilities:

• Investigated user account issues using Active Directory, SCOM and BSM
• Examined and moved user and shared mailboxes using Exchange Management Console
• Create administrator accounts using Active Directory
• Create public folders and mail enabled them using Exchange Management Console
• Move user and admin accounts using AD and migrator tool if moved across domains
• Add user accounts and machine names to security groups
• Use Remote Desktop to access remote Exchange, utility, domain controller and file servers
• Perform backups of file shares using snapshot
• Use PowerShell scripts to edit mailbox settings and move user’s profiles
• Contribute technical notes to Standard Operating Procedures
• Look up and add incidents in Remedy ticket management system
• Inactive Secret clearance Acquired

Confidential, Landover, MD

Responsibilities:

• Install images on workstations and laptops
• Encrypt and decrypt hard drives using Pointsec and Bitlocker
• Guide users through the process of unlocking their computers during encrypted hard drive lockouts
• Backup and retrieve data with the MIP server
• Perform data recovery on hard drives using Power Data Recovery
• Wipe hard drives of data using Boot Nuke
• Edit user accounts and machine names in Active Directory
• Edit machines on SharePoint site for account management purposes
• Use Cisco VPN and Microsoft Lync to remotely access machines for troubleshooting purposes
• Troubleshoot desktops and laptops for hardware and software issues
• Look up and add tasks and incidents in Remedy ticket management system and Service Now