OBJECTIVE

Obtain a position as an information security professional.

SUMMARY

• Over eleven years of technical and leadership experience working in fast paced tier - 1 and tier -2 customer support environments.
• Includes serving as a computer technician for Confidential, Confidential, and Confidential, Quantico, Virginia.
• Worked as a computer technician supporting Confidential students, faculty and satellite campuses.
• Worked as a field service engineer for the Federal Air Marshal Service and currently working for Confidential as a lead security engineer.

PROFESSIONAL EXPERIENCE

Lead Security Engineer

Confidential, Rockville, MD

• Leading incident response efforts as I monitored over 5000 workstations and servers for possible malware infections using McAfee ePO 4.5 through ePO 5.3 and Carbon Black Enterprise Response.
• Coordinated threat hunting engagements with 3 rd parties using Carbon Black, NetWitness and Splunk.
• Lead efforts to PoC new products based on coverage gaps or new initiatives.
• Performed software audits of workstations and can identify potentially unwanted programs.
• Monitors for new malware and makes recommendations for additional controls. Created and edited custom dashboards within McAfee ePO console in addition to custom Access Protection and HIPS signatures in attempts to catch malware based on their behaviors.
• Created and edited custom dashboards within McAfee ePO console in addition to custom Access Protection and HIPS signatures in attempts to catch malware based on their behaviors.
• Installed or upgraded McAfee packages such as the McAfee agent, virus scan, host intrusion prevention and device control.
• Responded to McAfee alerts generated by workstations or servers including virus alerts, host intrusion alerts 24 hours a day 7 days a week.
• Submit malware samples to McAfee Labs for further analysis and inclusion in their DATs.
• Deployed McAfee Device Control agent to 5000 workstations and monitored the events.
• Monitored McAfee's rogue system detection and remediated discovered devices.
• Leveraged Splunk and RSA NetWitness for threat actor hunting and correlation.
• Setup Qualys vulnerability scans and deploying AWS virtual scanners; including changing their schedules, added or removed workstations and servers from asset groups, created asset groups and performed one-off scans of new servers added to the domain, deployed their cloud scanning appliances and configured the scan schedules.
• Analyzed network topology and approved changes to existing firewall rules.
• Monitored anti-spam solution for malspam campaigns. Collected samples to analyze and improve upon detection or prevention capabilities.

LAN/Deskside Support Technician

Confidential, Reston, VA

• Resolve technical issues that may arise from the Federal Air Marshal user community including but not limited to: Monitoring McAfee ePO dashboard; verifying DATs are up to date, respond to virus alerts, verified McAfee software was running the latest versions as well as maintaining a user-base of desktops and laptops in a Microsoft networking environment using Server 2003 and 2008.
• Workstation/server hardware/software, network hardware, WAN/LAN outages, synchronization software & cradle hardware for wireless devices, peripheral devices, tape backup and storage systems, uninterruptible power systems (UPS), providing assistance with COTS and customized desktop applications, web applications, databases, user account administration issues, and technical/functional support by providing advanced computer assistance for individual user problems in a fast paced environment supporting the director’s staff at Federal Air Marshal headquarters.
• Log all trouble calls/requests for assistance into an automated trouble ticketing system.
• Track the life cycle of a technical issue from inception to closure, including the time taken between tier levels for handoff.
• Support VPN technologies, including establishing and maintaining VPN accounts, distributing tokens and resolving remote connectivity problems.
• Determine the extent of the problem, respond to and prioritize trouble calls, and take timely and appropriate action necessary to correct or escalate the problem.
• Provide one-on-one assistance to Federal Air Marshal personnel to resolve technical problems with desktop hardware/software applications, and peripheral equipment; and to provide functional support in assisting end-users with day-to-day use of common COTS applications and electronic messaging tools.

Computer Technician, Information Technology Unit

Confidential, Fairfax, VA

• Performed installations of Pc, Mac and their components; including installing systemboards, cards, hard drives, peripheral components and a diverse number of third party software products; ability to analyze hardware and software problems, and interface with manufacturer's technical support staff to affect a solution.
• Experienced working in data wiring closets to provide and troubleshoot ethernet connectivity, punch down jacks and resolve subnet issues; possesses a working knowledge of most commonly used software and operating system products such as Windows 2000, Windows XP, Windows 7, MS Office suite, Mac OSX and instructed clients’ in the basic use of these products; troubleshot and repaired HP printers and scanners; ability to setup Oracle Calendar, active sync and activate e-mail capabilities on a Blackberry and iPhone; knowledge of Remedy incident reporting system.

Computer Technician, Managed Information Systems

Confidential, Quantico, VA

• Directly supported over 300 personnel by installing/trouble-shooting computer hardware/software and communication devices.
• Resolved users’ work orders, to include reinstalling software and/or exchanging hardware components (e.g. the hard drive, mouse, keyboard, and/or speakers); trained end-users on newly installed software programs and supported outlying activities during the “go-live” process of the new Child & Youth Management System (CYMS) program; assisted with defining network related requirements and specifications, and implementing upgrades to include basic network installation, set-up, operations and troubleshooting.
• Downloaded and installed Microsoft Windows and Microsoft Office updates.
• Migrated to and maintained user systems for the latest version of Norton Anti-Virus Corporate Edition.
• Installed/maintained the latest spyware definitions for Lavasoft’s Ad-Aware and SaferNetworking’s Spybot-Search & Destroy for all workstations; regularly removed spyware threats by editing/deleting system registry keys. Installed/setup local and network printers/scanners, and performed minor printer repairs.