SUMMARY:

• Security System Engineer with CI Poly. Over 10 years of Federal IT experience.
• AWS LightSail website build
• AWS Rout53 DNS configuration
• AWS CloudFront setup
• AWS S3 setup for file distributions and backups
• WordPress install and configure in LightSail
• AWS AI setup and configuration
• AWS EC2 deployment and configure
• AWS EBS encryption
• AWS IAM role creation and configuring
• AWS Load balancer deployment
• AWS VPC configuration
• Azure storage and configure
• Azure resource group configure
• Azure Virtual Machine build
• Website migration from a hosting site to AWS S3 Static website
• Server migration from 2003 DC to 2012 r2 DC server.
• Data recovery, Back plan implementation.
• LDAP configure in Linux server
• Website migration to AWS

SKILL:

Administers ESS ePO server version 5.9.1, 5.3.1, 5.1, 4.6, 4.5 and 4.0 for NIPR and SIPR. Deploys and configures policies and monitors the following applications HIPS, VSE, ACCM, DLP, ABM, PA, File integrity, RSD. Operates SIMs Tool Arc Sight, implemented DIACAP standards, NMAP vulnerability scanning, Manages SCCM and WSUS server. Monitors test network with Backtrack and Wireshark. Microsoft Office, Windows 7, Windows Vista, Windows XP, Windows Server 2003/2008/2012 , VBScript, PowerShell, ESRI ArcGIS, Arc Map, ERDAS Imagine, Gold disk, Retina, ACAS, NMAP, SCCM, AWS, SharePoint installation, and WSUS. Linux, UNIX, Solaris. Bilingual in Spanish and English.

PROFESSIONAL EXPERIENCE:

Cloud Security Lead

Confidential, Arlington, VA

Responsibilities:

• Working with Bitbucket to edit Ansible playbook for AWS deployment.
• Auditing Ansible playbook to verify it security sitting are in place.
• Create and implementing and Document security sitting for A&A packages.
• Deploy and configure ACAS, ESS, and ForcePoint with Ansible playbooks in AWS environment.
• Edited AWS security groups, Directory Service user account for testing and production environment.
• Working with assuming roles in AWS IAM services
• Implemented CICD with document changes and verifies the change merge correctly by applying approves of the code.
• Configuring RBAC in ESS, ACAS, and ForcePoint security application.
• Trained the SOC team on new features of the security endpoint tools.

Senior System Administrator

Confidential, Crystal City, VA

Responsibilities:

• Provide support to the Customer for engineering, implementation, technical resource assessment, consultant task management, and training requirements. Deploy ePO upgrade 5.3.1 to 5.9.1 on SAP network
• Build the Test Lab environment in VMware, with the following servers that was installed and configured Confidential, ACAS, SharePoint, MS SQL 2012, MS SQL 2014, File Share, Linux RedHat, Commvault Backup, Microsoft Servers 2012, and 2016.
• Provide training to IA staff on ACAS scanning.
• Provide recommendations for best commercial business practices from other commercial customers utilizing the Confidential Security Enterprise Architect team knowledge base. Continuously monitors that all Confidential components are online, communicating and are at current versions;
• Address all technical problems associated with Confidential Security software and provide proactive support with direct reach back into Confidential Security Technical Support and Confidential Security Labs. Maintained situational awareness via review of Confidential reports and dashboards. Reviews and approves HIPS policies. Performs Scans, tests, audit reports, and mitigates findings from audit scans
• Prepare and deliver documentation that will allow for accurate implementation/operation of new capabilities supporting live operating environments.
• Provide prior coordination and administration required for the delivery of solutions.
• Analyze technical/integration requirements and develop effective technical solutions for Customer review and consideration, and once approved, integrate into the customer’s infrastructure.
• Support product implementation/operation and engage in hands - on implementation of ePolicy Orchestrator® ( Confidential Security ePO™), Confidential Security Agent (MA), Host Intrusion Prevention System (HIPS), Asset Baseline Monitor (ABM), Policy Auditor (PA), Rogue System Detection (RSD), Device Control Module (DCM), Virus Scan Enterprise (VSE), Anti-Spyware Enterprise (ASE), as specified by the customer.
• Share knowledge and experience with implementation/operations team members and team leaders to expand and grow the knowledge and capability of all team members.

Tanium SME

Confidential, Alexandria, VA

Responsibilities:

• Provide support to the customer for engineering, implementation, technical resource assessment, consultant task management, and training requirements for Tanium 7.2.
• Provide recommendations for best commercial business practices from other commercial customers utilizing the Tanium knowledge base;
• Implemented trend data to monitor all assets with vulnerability in the network;
• Conduct Tanium module training
• Created packages to patch endpoint with Tanium Patch module;
• Created sensor to automated the tag deployment, and updated endpoints;
• Used Tanium Discover to identify unmanaged assists to deploy Tanium to the endpoints;
• Implemented Tanium Comply to run STIGs scans;
• Prepare and deliver documentation that will allow for accurate implementation/operation of new capabilities supporting live operating environments;
• Provide prior coordination and administration required for the delivery of solutions.
• Analyze technical/integration requirements and develop effective technical solutions for Customer review and consideration, and once approved, integrate into the customer’s infrastructure.
• Share knowledge and experience with implementation/operations team members and team leaders to expand and grow the knowledge and capability of all team members.

SME

Confidential, Alexandria, VA

Responsibilities:

• Provide support to the Customer for engineering, implementation, technical resource assessment, consultant task management, and training requirements. Deploy ePO upgrade from 4.6.6 to 4.6.8, 5.1, 5.3.1, 5.9.0 on NIPR and SIPR, JWIC network
• Build and configure Confidential server in AWS for the test lab.
• Provide recommendations for best commercial business practices from other commercial customers utilizing the Confidential Security Enterprise Architect team knowledge base. Continuously monitors that all Confidential components are online, communicating and are at current versions;
• Address all technical problems associated with Confidential Security software and provide proactive support with direct reach back into Confidential Security Technical Support and Confidential Security Labs. Maintained situational awareness via review of Confidential reports and dashboards. Reviews and approves HIPS policies. Performs Scans, tests, audit reports, and mitigates findings from audit scans
• Prepare and deliver documentation that will allow for accurate implementation/operation of new capabilities supporting live operating environments.
• Provide prior coordination and administration required for the delivery of solutions.
• Analyze technical/integration requirements and develop effective technical solutions for Customer review and consideration, and once approved, integrate into the customer’s infrastructure.
• Support product implementation/operation and engage in hands-on implementation of ePolicy Orchestrator® ( Confidential Security ePO™), Confidential Security Agent (MA), Host Intrusion Prevention System (HIPS), Asset Baseline Monitor (ABM), Policy Auditor (PA), Rogue System Detection (RSD), Device Control Module (DCM), Virus Scan Enterprise (VSE), Anti-Spyware Enterprise (ASE), as specified by the customer.
• Share knowledge and experience with implementation/operations team members and team leaders to expand and grow the knowledge and capability of all team members.
• Create and test HIPS signature for deployment to 1,000,000 assets on the network.
• Prepare daily brief on Confidential compliant status on the network
• Briefed daily slides to senior leadership
• Created a SADR spreadsheet of all four ePO system tree groups, Identify active
• SADR in each policy to pinpoint the low compliant issues in NIPR network.
• Applied HIPS log all tags to requested systems to troubleshoot any issues

Security System Engineer

Confidential, Quantico, VA

Responsibilities:

• Share knowledge and experience with implementation/operations team members and team leaders to expand and grow the knowledge and capability of all team members.
• Confidential - configured changes, data loss prevention policy configuring and agent deployment, HIPS Host Firewall Tuning and HIPS Event Analysis and Tuning processes and Incident Response processes
• Confidential - configured changes, data loss prevention policy configuring and agent deployment, HIPS Host Firewall Tuning and HIPS Event Analysis and Tuning processes and Incident Response processes
• Deploy ePO upgrade from 4.6.6 to 4.6.8, 5.1, 5.3.1 on NIPR and SIPR, JWIC network
• Installed and maintained ePO servers and point products
• Continuously monitors that all Confidential components are online, communicating and are at current versions;
• Developing and implement Confidential rollout plan
• Maintained situational awareness via review of Confidential reports and dashboards. Reviews and approves HIPS policies. Performs Scans, tests, audit reports, and mitigates findings from audit scans
• Maintained servers and other computer devices; Analyzes system logs and identifies potential issues; Performs monitoring and performance tuning; Provides user/group administration via Active Directory; Performs scripting to automate services and refine procedures
• Monitored network with Confidential manager for any security risk
• Conducting weekly internal audits and reviews on the NIPR and SIPR networks
• Developing and secure baseline configuration for ePO NIPR and SIPR networks based on STIGs
• Deploy third party software and scripts with the Confidential
• Configures Confidential for CCRI, and ATO ready for on-site and off-site organization.
• Performs STIG Validation, implementing STIG processes and mitigates IAVA and prepares POAMs packages
• Preform ACAS scan and analysis the scans to identify vulnerability on the network
• Manage CCRI Prep project to achieve 90 present score on then CCRI pre-assessment
• Created tool that monitors RMF controls and crosswalk the STIG to RMF controls

Security System Engineer

Confidential, Alexandria, VA

Responsibilities:

• Configured changes, data loss prevention policy configuring and agent deployment, HIPS Host Firewall Tuning and HIPS Event Analysis and Tuning processes and Incident Response processes
• Deploy ePO upgrade from 4.6.6 to 4.6.8, 5.1 on NIPR and SIPR, JWIC network
• Installed and maintained ePO servers and point products
• Continuously monitors that all Confidential components are online, communicating and are at current versions
• Maintained situational awareness via review of Confidential reports and dashboards. Reviews and approves HIPS policies. Performs Scans, tests, audit reports, and mitigates findings from audit scans
• Developing and implement Confidential rollout plan
• Maintained servers and other computer devices; Analyzes system logs and identifies potential issues; Performs monitoring and performance tuning; Provides user/group administration via Active Directory; Performs scripting to automate services and refine procedures
• Monitored network with Confidential manager for any security risk
• Conducting weekly internal audits and reviews on the NIPR and SIPR networks
• Developing and secure baseline configuration for ePO NIPR and SIPR networks based on STIGs
• Deploy third party software and scripts with the Confidential
• Configures Confidential for CCRI, and ATO ready for on-site and off-site organization

Security System Engineer

Confidential, Alexandria, VA

Responsibilities:

• Continuously monitors that all Confidential components are online, communicating and are at current versions
• Developing and implement Confidential rollout plan
• Maintained situational awareness via review of Confidential reports and dashboards. Reviews and approves HIPS policies. Performs Scans, tests, audit reports, and mitigates findings from audit scans
• Maintained servers and other computer devices; Analyzes system logs and identifies potential issues; Performs monitoring and performance tuning; Provides user/group administration via Active Directory; Performs scripting to automate services and refine procedures
• Monitored network with Confidential manager for any security risk
• Conducting security, system auditing using ACAS, Retina, and SCAP tools to identify the security posture
• Conducting weekly internal audits and reviews on the NIPR and SIPR networks
• Producing risk assessment and reporting of the NIPR and SIPR environment it to upper management
• Developing and secure baseline configuration for JPRA NIPR and SIPR networks based on STIGs
• Develop and implemented vulnerability management process
• Deploy Microsoft patch and third party software SCCM 2012
• Deploy third party software and scripts with the Confidential
• Develop PowerShell and VB scripts for software and hardware audit in NIPR and SIPR network

Risk Manager

Confidential, Alexandria, VA

Responsibilities:

• Continuously monitors that all Confidential components are online, communicating and are at current versions
• Maintained situational awareness via review of Confidential reports and dashboards. Reviews and approves HIPS policies. Performs Scans, tests, audit reports, and mitigates findings from audit scans
• Monitored network with Confidential manager using RSD and DLP for any security risk
• Continuously monitors Arc Sight logs for any risk in the network and identify false positive
• Implemented DIACAP standardization, and prepared C&A packages
• Performs Retina vulnerability scans, SCAP Validation, STIG Validation, and implementing DIACAP processes and prepares executive summery reports for ATO packages
• Created and implemented Database to filter and analysis Retina, Confidential, Citrix Logs, VMS result to create a final report;
• Managed VMS components as a DAA, reviewing and approving POAMs
• Review firewall logs and approve and exception in the firewall