We provide IT Staff Augmentation Services!

Security Administrator Resume

Petersburg, VA

MISSION

Is to continue to develop into the best Security Professional that I can be, through constant learning and never endless expansion of my technical skills.

Education

Master of Science in Information Network and Computer Security,

Bachelor of Engineering in Computer Science Engineering

Technical skills

Firewalls

Check Point, ISA 2004/2006

Intrusion Detection & Prevention

Snort , Source Fire

SIM /SIEM, and Log Management

ArcSight

Vulnerability Assessment / Penetration Testing

Nessus,Nmap, QualysGuard, Core Impact, GFI LANguard

Protocols

TCP/IP, L2TP, PPTP, IPSEC, IKE, SSL, SSH, UDP, DHCP, DNS

Operating Systems

Windows 2000/2003, Solaris 9/10, Linux(RedHat), Backtrack 3.0

Programming & Scripting

Java, CGI/Perl, C, C++, VBScript

Database

Oracle 10g/9i, SQL Server 2005/2000

Other Security Tools

Wireshark, MBSA, MS Visio, Apache, VMWare Esx 3.5, VMware Server, Encase

Professional experience

Confidential, Petersburg, VA Apr 2009- Present
Security Administrator

  • Utilize Security Information and Event Manager (SIEM) to Identify, track and manage security incidents throughout the Petersburg Public Schools enterprise.
  • Determine if security incidence occurred; examine all available information and supporting evidence related to an incident or event.
  • Logically determine scope of security event and the potential impact to schools and network; recommend appropriate course of action for managing security incidents and participate in the confinement, resolution and remediation of security incidents.
  • Installing, Upgrading and configuring (Checkpoint) firewall.
  • Manage enterprise equipment to include: addition, modification and/or deletion of firewall rules; proxy rule sets that are an exception to global baseline
  • IPS/AV signature updates; RADIUS/RSA user and group management; remote VPN assistance / VPN Management/Monitoring / creation of user accounts/tokens for remote access VPN
  • Monitor Service Center queues for customer reported requests or incidents; access tickets for applicability and assign to subject matter expert, as required.
  • Research security tools and security alerts, when requested, and share research within group; communicate with school administration and other team members regarding security status and participate in the mitigation of incidents as required
  • Provide technical support and assistance to schools and departments in the selection, installation, operation, and maintenance of computer hardware and software. Nortel - switches, routers, TLS, upgrades.

Environment: Mcafee ePO 4.0, Mcafee DLP, Check Point NGX R65 & R54, Nortel, Websense Web Security, Script Logic, Tenable Security Center.

Confidential, New York, NY July 2008 - Mar 2009
Security Analyst

  • Practices including: Network/Security, Anti-Virus Administration, Intrusion Detection Monitoring, System access ID and log-on procedures and policies, file transfer and encryption protocols
  • Automate the process of vulnerability management and policy compliance across the enterprise, providing network discovery and mapping, asset prioritization, vulnerability assessment reporting and remediation tracking according to business risk.
  • Security audit log monitoring and management which meets compliance. Integration of security logs and categorization with ArcSight SIEM with alert of severity based events.
  • Install and maintain security infrastructure, including Firewall, IDS/IPS, log management, and Security Information Event Management tools.
  • User management and implementation of security policies.
  • Auditing and Implementing base line standards for the all security devices.
  • Responsible for performing Root Cause Analysis in response to major security incidents to avoid or minimize damages to Enterprise.
  • Audit, enforce and document compliance with internal security policies and external regulations.

Environment: Qualys Guard, ArcSight, Symantec Endpoint Security, MBSA, Source Fire, GFI LANguard.

Confidential, Long Island,NY Jan 2008 - June 2008
System Analyst

  • Emergency response as needed to correct system failures by participating in an on-call rotation Virus/threat management, asset control, and deployment tools.
  • Administration of security systems, information systems and technology infrastructure.
  • Provide level 2 security incident response for select host and network security events
  • Minimized data loss risk from lost laptops by implementing strong hard-disk encryption company-wide.
  • Operating system hardening, patching, and file system security
  • Distribute security and compliance reports customized to meet the unique needs of business executives, auditors and security professionals.
  • Monitoring security devices and Monitor all aspects of security related events within network including firewall logs, IDS events, Windows security event logs , Antivirus reports and RSA Secure ID tokens.
  • Document and perform system upgrades, regular product updates, emergency patch applications, and define monitoring requirements.
  • Operating system hardening, patching and fixing pre-assessment audit

Environment: Qualys Guard, Loglogic, ISA 2004 , Check Point, MBSA, Source Fire, Symantec, CoreImpact.

Confidential, Parsippany, NJ May 2007 - Dec 2007
Security Administrator

  • Firewall implementation, firewall management, network management and troubleshooting connectivity, routing, and configuration issues with routers, switches, firewalls.
  • Perform operating system, network and application vulnerability assessments to identify security exposures in the environment.
  • Analyze, define and implement processes for user administration (request and required approvals) and security administration (access rules changes: job roles, profiles*)
  • Established protocols for backups, server space management, security, virus protection and other procedures essential to eliminating downtime or data loss.

Information Security Systems Intern Jan 2007- May 2007

  • Perform on-going security maintenance and administration
  • Analyze network and system logs and assist in security data analysis
  • Implemented Internet proxy/firewall and monitoring solution
  • Monitoring and reporting on IPS and IDS devices
  • Anitvirus Management
  • Hardening (securing) of servers

Environment:, Nessus, NMap, Snort, Check Point, Symantec

Confidential, New York, NY May 2006 - Dec 2006
Lab Assistant

  • Oversaw activities of Computer Science department.
  • Monitor for security incidents
  • Configured servers for DHCP and DNS services.
  • Installation and configuration of Print Servers.
  • Performed troubleshooting of hardware and software related problems.
  • Managed, installed and configured Windows 2000/NT Servers.
  • Created user and computer accounts on the Active directory server.

Other Projects include:

  • Design and Implementing Virtual Honeynets.
  • Design and implementing of Firewall and IPTables.
  • Wireless Fingerprinting.

Additional Training / CERTIFICATION

SANS Security Essentials Certification (GSEC) (Boot Camp)
Attended EC-Council\'s Licensed Penetration Tester Training
EC-Council Certified Security Analyst ( Underway )

Hire Now