SUMMARY:

• Seasoned, skilled & trustworthy security professional with 6+ years of direct security experience and 17+ years of combined IT experience in the Education, Hospitality, Insurance and Medical industries. Skill set covers intrusion detection & analysis, perimeter & internal protection, incident handling and management. Professional, flexible, creative, and service - oriented. Assigned projects have been met with a combination of creativity and analytical skill with an eye on cost-effectiveness and efficiency. Repeatedly recognized by management for growth and excellence.

PROFESSIONAL EXPERIENCE:

Confidential, Scottsdale, AZ

Senior Information Security Engineer

• Currently researching and preparing for the upgrade to Security Analytics.
• Recovered a failed Netwitness-to-Security Analytics upgrade after tech responsible was suddenly moved to different unit and left appliances in un-usable state.
• Recovered and reprogrammed 4 ailing Cisco IPS after bug rendered them useless.
• Works with management to evaluate the best place to positions IDS/IPS sensors, log collectors and specialized IS hardware.
• Worked with local vendor to redesign the layout of the SOC to increase desk space and efficiency.
• Evaluates in-house and 3rd party sources for threat intelligence that can be a checked against daily events and used in reports.
• Designed, purchased and installed 4 high traffic SNORT IDS systems.

Confidential, Phoenix, AZ

Information Security Engineer

• Managed Sentinel SIEM infrastructure and offshore SOC team for over 8 months, unsupervised, while company searched for a new Director and direct manager.
• Assisted in the cutover to a Symantec hosted level I SOC and creation of an internal company hosted SOC.
• Took over management of the Guardium application after team member suddenly left and brought self quickly up-to-speed in order to provide seamless customer support.
• Worked with upper level management to maintain PCI and SOX logging requirements as well as create and adjust correlation rules as needed.
• Assisted with the installation and maintenance of Guardium, TripWire and AirMagnet software and appliances.
• Worked on ArcSight project to provide log analysis for products that could not be monitored by the Symantec SIEM.

Confidential, Phoenix, AZ

Information Security Specialist

• Managed Rapid7 NeXpose vulnerability scanner.
• Was responsible for installing security related tools and appliances stand-alone speeder/red-light ticketing installations.
• Managed an RSA enVision SIEM.
• Managed various security appliances, to include Cisco IPS (AIP-SSM), Symantec SEP, McAfee ePolicy, Cisco IronPort, Cisco WCS, and Websense.
• Assisted the Director of Internal Audits in quarterly and yearly SAS70 audits.
• Employed various security tools to include: Nmap, Nessus, Metasploit, WireShark, Nikto, Backtrac, etc.

Confidential, Mountain View, CA

Senior Security Consultant

• Worked within a four person, afterhours, SOC team to establish and document collaboration and reporting standards for the Information Systems Threat Response Team.
• Assisted in the discovery of compromised SFTP customers and a zero-day malware attack.
• Validated Security Incident Monitoring adherence to security best practices and industry compliancy mandates (SOX, HIPAA, and ISO 17799).
• Provided threat monitoring and analysis using ArcSight, Sentinel, SNORT, SourceFire Defense Center, and SAV Reporter.
• Assisted Command Center managers and staff in analyzing and resolving enterprise application and network connectivity issues on numerous occasions.
• Participated in weekly departmental Dynamic Tuning Process meetings where emerging threats, IDS rule set changes, and policies are reviewed and implemented.

Confidential, Rockford, Illinois

Information Systems Manager

• Managed the design and installation of a Citrix Secure Gateway for secure remote access.
• Migrated MS Exchange on a ailing NT4 server to MS Exchange 2003 on an HP DL380 server
• Managed project to upgrade a slow, 145+ node, Cisco Catalyst 3508/3548 switched network to Cisco Catalyst 3750E series switches and HP ProCurve 2510 switches.
• Managed project and direct reports to replace entire workplace workstations.
• Managed project to install a dedicated tape backup system using an HP server and HP 1/8 StorageWorks Tape Autoloader with Symantec (Veritas) BackupExec.
• Used Snort IDS, firewall logs, and antivirus reports to monitor for threats.
• Maintained and helped evolve HIPAA compliance and policies.

Confidential, Rockford, Illinois

Manager of Information Systems

• Managed three HP Win2k servers (SBS, Citrix, and ISA) and one SCO UNIX box.
• Upgraded Windows and SCO servers to more resilient server hardware.
• Oversaw the design and implementation of an ISDN WAN replacing an ailing wireless WAN.
• Worked on HIPAA committee and created IT portion of company HIPAA policy.

Confidential, Beloit, Wisconsin

Win2000/NT Server Manager

• Managed six NT4/2000 servers, an Apple Share IP6 file server, and assisted in the maintenance and management of other campus 2000/NT servers a required.
• Managed a computer lab of 50 computers running secured NT Workstations.
• Managed 2 student personal assistants and 15 student lab assistants.