LEAD SECURITY SPECIALIST Resume

SUMMARY

IT Professional with 21 years of experience with primary focus on Web Infrastructure and a passion for security.
Looking forward to a challenging job in reputable organization to utilize my security and cloud skills for the growth of organization and myself.

PROFESSIONAL EXPERIENCE

LEAD SECURITY SPECIALIST

Confidential

Responsibilities:

Lead PKI Engineer administrating and redesigning the Venafi platform to suit the technical needs of Voya.
Automating certificate deployments on F5, IIS, Apache, GeneSys VMwareView and other vendor system platforms.
Manage and train outsourced Level 1 resources.
Instilled a SecDevOps team mentality to engaged with customers to ensure their certificate deployments and needs are successful.

SR IT SECURITY SPECIALIST

Confidential

Responsibilities:

Shared administration of the IBM ISAM and DataPower security platforms as well as providing system / security architect duties.
Provide direct customer facing implementation support & design considerations for TLS mutual authentication RESTful & SOAP webservices connections with external vendors for their various platforms.
Implemented & administer Ping Federation for Azure Office 365 / Exchange Online Protection SSO SAML solution.

Confidential, Boston, MA

SR SYSTEM ENGINEER

Responsibilities:

Distinguished member of the Web Operations group.
Responsible for maintaining the web infrastructure across IBM & Voya Data Centers as well as support for vendor hosted applications.
PKI and Load balancer SME on the OpenSSL and Brocade platforms.
Maintain utmost discretion when dealing with sensitive topics
Provided documentation and training to the offshore Web L1 team.

SYSTEM ENGINEER

Confidential

Responsibilities:

Member of ING’s (now Confidential ) Web Engineer team responsible for building the web infrastructure for designated projects with a main focus on migrating from the IBM Data Centers.
Developed Brocade ServerIron Load balancer scripts for WebLogic, JBoss and Apache servers. Built the required SSL profiles, create and upload load balancer session scripts and create the required VIPs.

MIS MANAGER

Confidential, Valparaiso, FL

Responsibilities:

Built out the Cisco UCS VMware / XenServer Citrix VDI solution with IGEL thin clients.
Discovered security breaches on the WDZTool website and configured the web application correct the security hole. Implemented a NGINX SSL proxy server to further security and created a “honeypot” server. Worked closely with the FBI and DSS on counter - intelligence efforts.

SYSTEM ADMINISTRATOR

Confidential

Responsibilities:

Linux System Administrator for their main client, Hosanna ministries managing Amazon EC2 VMs and Rackspace servers supporting the Audio Bible Ambassador peer-to-peer application and the main website.
Upgraded the Amazon EC2 instances to a custom CentOS build to enhance performance & security.
Created the Subversion post-commit scripts to create the CI / CD pipeline.
Built, bundled and managed the Amazon EC2 Certificate Authority to internally signed PKI SSL server and client certificates.
Worked closely with each team to successfully implement SSL client certificate authentication with the Audio Bible Ambassador client and the NGINX proxy. Configured the NGINX proxy to pass on the SSL authentication information to the backend API server for further ACL control and installed mod rpaf on the API Apache to preserve the client’s IP address.