Senior Security Consultant/architect Resume
Houston, TX
SUMMARY:
Over 23 years of IT experience performing Cyber/ Information Security, Application Analyst, Supervision Analysis, Level 5 helpdesk, and proficient in SQL, PeopleSoft, McKesson HBOC, Report Writing, Active Directory Management, Symantec Endpoint Protection, IT Auditing, Jupiter, Solaris, Windows 7 & XP, and Crystal Reports, Citrix, LDAP, & SSO, Archer support. McAfee ePO and supporting Endpoint features such as VSE, HIPS, EEPC. Knowledge in MS BitLocker and McAfee HIPS and Nessus vulnerability scanner.
WORK EXPERIENCE:
Senior Security Consultant/Architect
Confidential, Houston, TX
Responsibilities:
- Performed Security Incident Response related to malware alerts, suspected data breaches and system failures and assisted Forensic team in the Security investigations
- Designed security best practices in relation to IDS, firewall security, proxy, etc.
- Determined Confidential and application security defects.
- Performed secure coding techniques, black box and white box code testing, regression testing and remediation, static and dynamic code analysis, and vulnerability assessment of standalone and mobile applications.
- Analyzed malware, collection operations and counter - intelligence investigative found via Confidential .
- Performed onsite and remote security consulting including penetration testing, application testing, web application security assessment, onsite internet security assessment, and social media using WebSense, Digital Guardian (DLP), Confidential, Encase, and Image FDK.
- Engineered wireless assessment, and IDS/IPS hardware deployment and support of Sourcefire
- Performed near real-time visibility for threat detection and prioritization, delivering surveillance throughout the entire IT infrastructure via QRadar.
- Support McAfee endpoint security to protect and safeguard against security threats, exploits, and attacks.
- Lead support for Websense email and web applications content filtering, security issues, upgrades, and maintenance.
- Assigned IT Project Manager of WebSense e-maiil and filtering tools to ensure that the appliances within the tools were effectively satisfying the system and business requirements of protecting the company assets from hackers.
- Assisted with maintenance of IT policies and procedures related to siem, dlp, and, IT security assurance, and compliance to ensure that security controls were met.
- Advised application and project owners on designs on IT controls pertaining to security risk and company objectives.
Lead Cyber Security Advisor
Confidential, Houston, TX
Responsibilities:
- Performed Security Incident Response related to malware alerts, suspected data breaches and system failures and assisted Forensic team in the Security investigations
- Designed security best practices in relation to IDS, firewall security, proxy, etc.
- Determined Confidential and application security defects.
- Performed secure coding techniques, black box and white box code testing, regression testing and remediation, static and dynamic code analysis, and vulnerability assessment of standalone and mobile applications.
- Analyzed collection operations and counter-intelligence investigative alerts via Confidential .
- Conducted full and existing IT Security Risk Assessment for application teams throughout Confidential Co.
- Attended several Cyber Security conferences to seek new trends on how to protect Confidential from new cyber-attacks.
- Performed OWASP top 10-vulnerability knowledge and remediation experience.
- Supported standalone and mobile applications with Confidential to ensure Confidential and Confidential strategies follow company guidelines and standards.
- Containerized and virtualized applications on mobile devices, including but not limited to per-App VPN, and application tunneling.
- Developed a new SDLC methodology used by Security Architecture to ensure Application projects are following the Confidential SDLC process. This includes SCRUM, AGILE, and Waterfall methodologies.
- Managed several IT risk related project/milestones that were completed within the timeframe given and satisfied the stakeholders requirements.
- Maintained and managed SalesForce legacy and new applications repositories to completion.
Confidential
Lead Assurance Analyst, Houston, TX
Responsibilities:
- Assurance Analyst for IT Americas is responsible for working with North Americas IT region by interfacing with the project teams, corporate security, middleware/infrastructure teams etc. on setup, review in addition, approval for: Confidential - Security Request used to implement a Network Change involving opening ports on firewalls.
- Worked on enhancing processes and procedures pertaining to submitting Confidential, EAS, SSA, Appscan, and EXREQ request.
- Overviewed summary reports of vulnerability findings and communicate results to Confidential Business Units.
- Performed OWASP top 10-vulnerability knowledge and remediation experience.
- Designed global Confidential security solutions for multi-site, global organizations, with an emphasis and focus on global security and risk management.
Confidential, Houston, TX
IT Security Manager, Change Management Manager
Responsibilities:
- Hands on experience installing, deploying, managing and troubleshooting network perimeter security technologies such as Firewalls (using Tipping Pont), Cisco Router Configuration, Proxy servers, Cisco VLANS, Confidential 's VPN, SSL, Data Communication, Intrusion Prevention/Detection (IDS/IPS), antivirus and antimalware. Performed near real-time visibility for threat detection and prioritization, delivering surveillance throughout the entire IT infrastructure via QRadar.
- Conducted gap analysis to determine the levels of variations between the planned efforts and current state of Disaster Recovery activities.
- Utilized security compliance policy, programs, processes, and metrics
- Utilized federal regulations (SOX, HIPAA, HITECH)
- Utilized web technologies (.net, html5), database (sql) and mobile platforms (iOS).
- Familiarized with a standard testing methodology (OWASP) and experience with SDLC strongly desired, but not required.
- Assisted in the development, maintenance, and enforcement of policies, standards and practices that define requirements for information security, specifically identifying critical security measures and control.
- Epic Security: maintaining the security posture on our EPIC clinical and business modules. Additional scope of focus includes working with team members and stakeholders to establish an automated role based access solution for the enterprise.
- Techniques necessary to protect against error and omissions, fraudulent access, sabotage, disruption and related situations where information is used.
- Applied a structured change management approach and methodology for the people side change caused by projects and change efforts.
- Supported the execution of plans by employee-facing managers and business leaders.
- Identified resistance and performance gaps, and work to develop and implement corrective actions
- Created and enable reinforcement mechanisms and celebrations of success.
- Worked with project teams to integrate change management activities into the overall project plan. Work with communication, training, HR and OD specialists in the formulation of particular plans and activities to support project implementation.
Confidential, Houston, TX
Sr. Application Analyst
Responsibilities:
- Integrated short and long-term project management in consultation with Financial System Manager that is consistent with company business plans.
- Wrote KB SQL scripts to run reports for Accounting, Business, and Finance Department in McKesson HBOC.
- Performed Report Writing for Accounting Dept. new GL & Subaccounts for new managed hospitals in McKesson HBOC system.
- Designed checks in E-Form format for all departments
- Maintained an extensive working knowledge of the financial applications supported and communicates how to use the software and its interfaces effectively.
- Managed several computer and printer upgrades & deployments in Emergency room, Clinical in & Outpatient, Sports Medicine, Cafeteria, Labs facilities.
- Coordinated and communicated financial application changes involving software modifications or updates required by federal, state, or local governments in a timely manner. Tested and documented testing activity prior to implementing any changes in procedures, processes, software, or data file manipulation recommended by an external resource.
- Completed 12-Week Confidential mentorship Project Management program.
- While in Confidential mentorship Project Management program attended CEO, Director, and other Senior Management confidential meetings, which also required interactive feedback on how to improve the organization, vision towards success.
Confidential, Ann Arbor, MI
Lead Workstation Support Specialist
Responsibilities:
- Managed and trained new hires and students to resolve break/fix and software requests.
- Performed Cisco wireless network setup on desktops and laptops throughout the Confidential and campus.
- Performed Cisco wireless network setup on desktops and laptops throughout the Confidential and campus.
- Managed several projects at the Confidential, which included workstation deployment of Dell computers throughout the hospital.
- Performed NT and Novell account administration, including created, modified and deleted accounts.
- Created and maintained Novell and Active Directory user accounts.