We provide IT Staff Augmentation Services!

Senior Compliance Resume Profile

Columbia, SC

Objective
I am seeking a position as an Information Assurance/Systems and Security Administrator utilizing my knowledge and experience from the US Navy and IT profession. The skill sets I possess would highly benefit any organization which are teamwork, integrity, research, planning, communication, and coordination, and reporting. Experience

Confidential

Senior Compliance
  • Primary Lead in managing and administering IAVM Information Assurance Vulnerability Management on the Operation Compliance Team.
  • Planned and implemented technical security controls e.g. access management, antivirus, patch management, vulnerability scanning, log management, etc. .
  • Project Planning, Management, and Administration of major software and agent deployments, upgrades, and maintenance cycles to over 1500 servers, including life-cycle management of systems and applications via automation.
  • Ensured audit findings and evidence are collected, reviewed, remediated, and presented in a clear and concise manner.
  • Documented audit procedures, make recommendations, and follow-up to validate implementations.
  • Identified and evaluated business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
  • Tailored and Migrated approaches, methods, and tools to support service offering.
  • Identified and evaluated business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.
  • Facilitated use of technology-based tools or methodologies to review, design, and/or implement reviews e.g. Symantec Altiris, Symantec Norton, IBM Tivoli Endpoint Manager, McAfee EPO, CA, PGD, Retina, Nessus, etc .
  • Performed security risk assessments.
  • Technical Advisor to Systems Administrators, Engineers, and Architects.
  • Planned and Implemented technical security controls e.g. access management, antivirus, patch management, vulnerability scanning, log management, etc. .
  • Experienced with major security frameworks e.g. PCI DSS, HIPAA, DISA STIG, IAVM, NIST, FISMA, etc. .
  • Evaluated audits of IT systems and evaluate against technical controls and operating procedures.
  • Manage and administered Automation of Security Patches in support of Regulatory Compliance through the use of IBM Tivoli Endpoint Manager TEM for approximately 70 of the company's servers including Exchange, Clusters, SQL, and Management Servers.
  • Maintain Operational Compliance Efficiency, Effectiveness, and Success Rate of 97/98
  • Conducted Oversight and Managed vulnerabilities of over 4,000 servers throughout a systems life cycle from initial build/deployment, production, to decommission while strictly adhering to Quality Control of Content and Change Control.
  • Track, catalog, correlate, monitor, analyze on a daily basis: vulnerabilities CVE information from various sources: US Cert, NIST, Vendor's, MITRE, etc. , findings Tenable Nessus, Retina, PGD , and patches Vendor Security Patches .
  • Create maintain weekly on a daily basis vulnerability patch remediation baselines within the current remediation tool IBM TEM.
  • Analyze and Communicated defective/deficient audit finding codes and patches
  • Maintain TEM Deployment baseline to reflect the operational requirements real-time for new Deployment Projects ensuring accuracy, consistency, and minimizing unnecessary work for missed audit findings.
  • Maintain patch approvals in WSUS for the primary use by other departments and teams.
  • Schedule and Execute Automation via TEM with respect to predefined maintenance windows time parameter minimizing system outages to ensure high availability.
  • Track, monitor, maintain server status and their respective maintenance window to ensure no unwarranted changes to configuration has been made
  • Communicate any anomalies or deficiencies detected during Analysis/Assessment process to vendors Oracle, Microsoft, Adobe, Nessus, etc. for resolution.
  • Coordinate and Plan with multiple teams any potential delayed releases for further research, testing, and validation minimizing risk to the entire organizational infrastructure.
  • Conducted and Mentored Oversight of Testing.
  • Delivered Quarterly and Yearly Reports to Executive Management.
  • Reported Vulnerability/Configuration Posture/Status/Trends weekly or where needed Compliance Assessment/Recommendation to supervisor.
  • Documented Case studies for internal Knowledge Base and Training.
  • Analyzed/ Requested IBM to re-engineer TEM for proprietary enhancements and changes conducive to the company's business need and requirements.

Confidential

PC Support Specialist
  • Domain Administrator in a Windows 2003 Active Directory environment.
  • Administer and maintain 2 Print Servers with 270 printer objects.
  • Oversee, administer, and manage 3rd Party and In-House Software throughout its Life-Cycle.
  • Maintain and administer WSUS and resolve Windows Update issue.
  • Troubleshoot, assist, and utilize Local/Group Policy in a 2000/2003 Active Directory Environment to govern 1800 computer and 2500 user objects.
  • Maintain Altiris Notification Server database housing licensed software and computer object information.
  • Perform Level 2/3 trouble calls elevated from the Helpdesk.
  • Develop Software packages for initial and upgrade deployment. Configure and Create Desktop/Thin Client/Laptop Operating System Images.
  • Administer, maintain, and utilize Symantec Altiris Deployment Server for Software and Desktop/Thin Client deployments and upgrades. Develop deployment plan w/ consideration of time, resource limitation, operational impact, efficiency.

Confidential

Data Technician
  • Troubleshoot and resolved customer Internet connection issues on Windows and Macintosh computers, modem, and router.
  • Analyzed RF signal to determine packet loss, noise ratio, anomalies, and Up/Downstream strength.

Confidential

Helpdesk/Technical Support
  • Provided Support in the area of software installation, network connection, printer, and user accounts.

Confidential

Interior Communication Supervisor
  • Supervised operation, maintenance, training, upgrade, repair, and supply of shipboard operating and peripheral systems.
  • Provided technical support to command units within the Atlantic Fleet.
  • Directed the activities and conducted training of six junior personnel.
  • Data Multiplex/IVICS/SITE Technician
  • Troubleshoot and maintained the Data Multiplex DMS , Integrated Voice Communication System, and CCTV System.

Hire Now