We provide IT Staff Augmentation Services!

It Security Project Manager Resume

New York, NY

SUMMARY:

  • Senior IT Professional with over 16 years of experience in Microsoft/ LINUX/ UNIX/ systems support and Systems Administration and Project Management. Up to date with the latest technologies. Have experience working in Financial, Insurance, International Consultancy and Internet Service Provider environments. Excellent people and communication skills to top off the technical know - how. CISSP certified.

TECHNICAL SKILLS:

Operating Systems: Windows Servers/Networks/Desktop, Windows Server 2012/ 2008/ 2003/ XP/ 7/8/2000/NT/98/95, Red Hat Enterprise Linux 5+, Ubuntu, Novell Netware 4 +, SunOS x - Sun Solaris 10, NFS/GFS, Citrix Xen, VMWare, VirtualBox

Software and Hardware Experience: Bitlocker, MBAM,Axway/Tumbleweed File Transfer, Qualys, Impervia, SorceFire, Blue Coat, Symantec SEP, PKI, PGP/GPG, Entrust, IBM Point in Time, Blackberry Enterprise Server, Tripwire, VMWare VirtualCenter, Dell OpenManage, HP Systems Insight Manager, HP Proliant Server, Remote Insight Boards, Legato NetWorker, Veritas BackupExec and NetBackup, MS SQL Server 2005/ 2008/ 2012 , Internet Information Server (IIS) 4, 5, 6, and 7, Exchange Server 5.5, 2000, 2003, 2007 and Outlook Web Access, iPlanet Web Server, Samba, Systems Management Server 2003, Visio, Apache, PCAnywhere, Citrix, PC Guardian Encryption, Blackberry, Crystal Reports. Mdaemon, Novell Groupwise, Weblogic. Tanium

Network Skills / Protocols: Checkpoint VPN-1/Firewall-1/ 1 GX, F5, Big IP, SMTP, Windows Active Directory, DHCP, TCP/IP, DNS,SFTP, FTP, FTPS, WINS,UDP, SNMP Telnet and VoIP, IBM Switched Virtual Networking, CRM, Web Hosting. VLAN, NIS, NSF, JCL, SSH

PROFESSIONAL EXPERIENCE:

Confidential, New York, NY

IT Security Project Manager

  • Business analysis, defining needs, recommending and implementing solutions and quality assurance
  • Application Security assessment, risk management, control evaluation, access recertification
  • Pre encryption data backup, archiving and preservation with Veritas Netbackup / Symantec DLP
  • PKI management, installation, documentation and recertification for MBAM servers
  • PKI management, installation, documentation and recertification on Linux keyring
  • Linux system administration, server maintenance
  • Splunk operational intelligence, logs and performance configurations
  • Regulatory bodies stipulation compliance planning and enforcement
  • Set up of Windows Servers in preparation for BitLocker encryption
  • Planning, setting, testing and executing Tanium solutions for encryption preparation, deployment and reporting for over 100,000 clients.
  • Troubleshooting Tanium client/ server issues, relevancy question logic, sensors scope, security automation issues and deployment strategy enhancement.
  • Created UAT and Production MBAM/ BitLocker encryption deployment plans and procedure documentation
  • Installed, configured, tested and deployed MBAM
  • Automation of encryption servers processes using Powershell
  • Automation of encryption software packages deployment using IBM Bigfix and Tanium
  • Created and tested successfully MBAM Disaster Recovery plan and used successfully in real life scenarios
  • Set up of IBAC SDoD 2.0 Firewall Rule readiness
  • Document procedures and knowledge base articles onto ServiceNow and train support staff
  • Upgrade Windows 7 Build for BitLocker/MBAM support
  • BitLocker testing, proof of concept and presentation to management for production deployment approval.
  • Deployment of the updated Bitlocker Management Tool and MBAM 2.5 client to all DB W7 computers
  • Reporting on encryption status to senior management and stakeholders on a regular standing call and in written form
  • Created health checks and housekeeping tools for MBAM servers

Confidential, San Rafael, CA

Encryption Project Manager

  • Business analysis, defining needs, recommending and implementing solutions and quality assurance
  • Streamlining risk management and regulatory compliance
  • Pre encryption data backup, archiving and preservation with Veritas Backup Exec/ Symantec DLP
  • PKI Management installation, documentation and recertification for MBAM servers
  • Set up of Windows Servers in preparation for BitLocker encryption
  • Created UAT and Production MBAM/ BitLocker encryption deployment plans and procedure documentation
  • Installed, configured, tested and deployed MBAM
  • Active Directory schema extension and set up of security policy for BitLocker along with SMS, MSCCM setup in a UAT prototype for proof of concept
  • Set up of network based image (PXE, WinPE). Configuration for optimized network based deployment
  • Test of hardware and software compatibility
  • Upgrade from Windows 7 Professional to Enterprise for BitLocker support
  • BitLocker testing, proof of concept and presentation to management for production deployment approval.
  • Data backup, archiving and restore
  • Reporting on encryption status
  • Production deployment, documentation and training.

Confidential, Melville NY

Information Security Administrator

  • Business analysis, defining needs, recommending and implementing solutions and quality assurance
  • Streamlining risk management and regulatory compliance
  • Data backups, archiving and preservation with Veritas Backup Exec
  • PKI management, installation, documentation and recertification for Citi file transfer PKI system
  • Splunk configuration and monitoring
  • Linux system administration, server maintenance, keyring management
  • Planning, testing, deploying and supporting security tools and technologies for Confidential ’s file transfer environment (CitiSFT) based on Tumbleweed/ Axway
  • Planning, testing, deploying and supporting CitiSFT Application Security Management on F5 load balanced global Big IP network and PGP Key Management Server
  • Migration of users from non-secure FTP protocol based servers to more secured SFTP, FTPS, HTTPS SCP based servers. Support to clients connection using these protocols plus NDM / Mainframes.
  • Working closely with vendors, SME and client support teams to resolve connectivity and distributed networking issues
  • Planning, testing, implementation and support for Intrusion detection and prevention with Checkpoint FireWall-1/ Firewall 1-GX.
  • Layered Intrusion Detection/ Prevention systems management/,packet filtering and heuristic application intelligence
  • Deployment and support for IBAC firewalls
  • Logging capture and traffic data analysis for increased elasticity and compliance
  • File and configuration integrity preservation with Tripwire Enterprise. Database setup and monitoring of correlation between change activity and policies.
  • Linux/ UNIX system administration, security, user maintenance, network performance monitoring and change management on UAT and Production for a global file transfer / high availability Confidential network.
  • Change management
  • Distributed Denial of Service mitigation by heuristic identification of IP address, MAC Adress, DHCP fingerprint, host name and employing appropriate load forwarding
  • Vulnerability testing and patching
  • Compliance reports generation, maintenance, distribution and training
  • Performance metrics with WebLogic Diagnostic Framework (SLA violations, CPU Load)
  • Full verification of Change Management procedure (Development, UAT and Production) to ensure production rollouts are bug free
  • Vetting system design during development/ acquisition for potential security vulnerabilities
  • Communication of security issues, concerns and plans to higher management and employees in an accessible manner to non-technical savvy staff.
  • Active Directory security policy enforcement and testing.
  • Development, maintenance and testing of SLAs, Continuity of Business plans, Contingency plans to ensure confidentiality, integrity and availability
  • Public Key Infrastructure management with RSA/ PGP/ Verisign/ Entrust/ SSH keys
  • Securing a web facing file transfer portal (SFTP/FTPS/HTTPS), DMZ/ Firewall configuration, load balancing and redundancy for availability
  • Provided support for ID Administration on file transfer servers with 20,000 clients distributed globally
  • Provided support for PGP/ encryption/ decryption issues
  • Provided contingency planning
  • Review and administration of change management
  • Provided rotating on call support
  • Decru Datafort administration
  • SMB support for Windows/ Linux/ Unix interoperability
  • Support to clients with connectivity issues escalated by Level 1 support

Confidential

Information Security Administrator

  • Business analysis, defining needs, recommending and implementing solutions and quality assurance
  • Provide level III Support for Public Key Infrastructure (PKI). Add/Remove/Change public keys, troubleshoot key issues
  • Splunk configuration and log monitoring
  • Linux system administration, server maintenance log and and keyring administration
  • Provide level III Support for Intrusion detection and prevention with Checkpoint FireWall-1/ Firewall 1-GX.CheckPoint Firewall Rules updates.
  • Designed, deployed and level III Support for CitiSFT file transfer
  • Provide level III Support for portal integration/ file transfer system with RSA/ PGP encryption .
  • Provide level III Support for Solaris/ Unix/ Linux security patching and system upgrades.
  • Provide level III Support for NFS, DFS Samba, security and user account directory issues (permission/ quota/ cron jobs etc).
  • Provide level III Support for customized periodic system cleanups/ housekeeping by automated system cronjobs .
  • Provide level III Support for scripting solutions with Shell/ Bash/ Perl .
  • Provide level III Support for Windows 2003/ 2008 Servers and Active Directory .
  • Provided level III Support for Web technologies Java, XML, HTTP, HTTPS, FTPS, FTP, SSH, SFTP
  • Provided level III Support for file transfer formatting issues ( e.g for MS Office formatting / presentation )
  • Provide VMware server and client deployment and support.
  • Network analysis and Ethical hacking checks with SNMP, Ethereal and WireShark
  • Writing CitiSFT documentation and scripts for Level I and II Support teams
  • Monitoring trouble ticket system and resolve issues promptly.
  • Built Standardized Operating Environment images for Bitlocker / MBAM encryption
  • Supported CitiSFT’s SAN hardware and software environments, including testing pre-releases.
  • Enforcing existing Confidential Corporate Information Security policies, and proper systems usage.
  • RDBMS design and maintenance with MS SQL 9.
  • SMTP encryption migration and support (Exchange 2007, Outlook client 2003/ 2007) with Entrust
  • Providing extensive and customized scripting solutions with Perl and Windows PowerShell.
  • Troubleshooting mainframe file transfer/ JCL issues.
  • Supporting the Intergration Management and automation of Citrix Xen environment.
  • Support user migration from FTP servers to CitiSFT (SFTP / FTPS/ HTTPS)
  • Troubleshooting CitiSFT client related firewall issues
  • Monitor and troubleshoot security and F5 BIG IP load balancing issues on CitiSFT servers .
  • Supporting other internal support teams, including CitiSFT Support Level I and II, as well as external clients with a proactive problem solving attitude.
  • Employing adaptive inventiveness in incorporating knowledge of various technologies in problem solving.
  • Employing strong communication skills, including ability to relay unambiguous information to the technical and non-technical clients in both the verbal and written form.
  • Work with CitiSFT Engineering Team to forecast system usage and design future architectural enhancement.
  • Linux / Sun Solaris file transfer administration including RSA Key based authentication support.

Confidential

Information Security Administrator

  • Business analysis, defining needs, recommending and implementing solutions and quality assurance
  • Public Key Infrastructure (PKI) Support and maintenance for the Confidential file transfer environment
  • IS Admin and change management on globally distributed Sun Solaris / Linux FTP / SFTP System
  • CheckPoint Firewall Rules design, implementation, updates, lowering false posivites
  • Cisco routers maintenance and updates .
  • PGP/ Entrust key administration (import and deletion) for over 5000 users.
  • SMTP encryption (Exchange 2003) with Entrust
  • Administering key ring synchronization.
  • Troubleshooting, advising and resolving technical file transfer and file passon issues.
  • Assisting first level monitoring escalated issues for file transfer servers.
  • Planning, documenting and supporting migration from SecureFTP (FTP) to CitiSFT (SFTP).
  • Globally distributed SFTP and file level encryption support on CitiSFT.
  • Entrust Secure Email support, certificate generation, recovery and revocation
  • Maintaining online routing table and offline account information database.
  • Training new staff members support tasks and procedures.

Hire Now