Sr. It Security Analyst Resume Profile
CA
SPECIAL SKILLS: In-depth knowledge of configuring Pix, Checkpoint and Juniper firewalls. Know-how to successfully implement Windows 2000/2003 forest, and troubleshoot Active Directory replication, DNS and FSMO role issues. Extensive knowledge in performing attack penetration testing and reviewing third-party applications. Intermediate knowledge of IP routing protocols: IGRP, EIGRP, OSPF, BGP, and RIP. EXPERIENCE WITH: Load Balancers Radware LinkProof, WSD Sniffers tcpdump, wireshark Programming languages Java, JSP, ASP, VB.NET, Perl Network Operating Systems IOS, CatOS, JunOS, XOS, COS Server OS and Internet Software Linux, MS Server 2K/2K3, Apache, IIS, Tomcat
EXPERIENCE: Confidential Sr. IT Security Analyst Review third-party client-server apps using reverse engineering tools such as TSearch, OLLYDBG, PEiD, and various unpackers for IA-32 apps, and MSIL/Salamander's .NET decompiler for .NET web apps. Replaced all Check Point NGX firewalls and management server with Juniper ISG1000s and NSM management server. Implemented three-tier architecture for WesCorp's B2B portal. The deployment consisted of implementing load balancers, SSL accelerators, and two DS3s with EBGP/IBGP. Implemented and managed Imperva's SecureSphere Web Application Firewall for public Web applications. Having a background in programming proved useful in ruling out false-positives, investigating malicious activity, and fine-tuning the configuration. Hardened our MXtreme mail firewalls by removing domain names from our pattern-based message filter and defining all internal relays via IP to prevent spoofing, and enabled RBL, DomainKeys, Token Analysis, DCC, Bulk Analysis, SPF, Spam Words, UBLs, DNSBL, and various mail anomalies to eliminate spam. Confidential IT Security Analyst Maintain Cisco PIX, Check Point and Juniper rule sets. Project lead for the design and implementation strategy of WesCorp's Crossbeam X80. WesCorp's Crossbeam implementation consisted of Squid proxy, Websense, Trend Micro IWSS, and Check Point NGX R60. Administered QualysGuard in conjunction with Skybox to reveal network vulnerabilities and missing patches. Implemented and manage Juniper SSL SA4000 and site-to-site VPNs. Perform security reviews and security hardening of all servers, websites, databases and in-house developed applications. Security reviews and hardening consisted of using tools such as SecureIIS, IPLocks, AppScan, MBSA, Qualys, Tsearch, and manually attacking web servers using techniques such as Cross-site Scripting and SQL Injection. Confidential Threat Vulnerability Management Associate Performed an assessment of the security controls of the IT network devices for a major aerospace company. The scope of the project included a configuration review of Checkpoint Firewall-1 firewalls, Nokia appliances, Symantec Enterprise firewalls, Cisco PIX firewalls, and Cisco 3600 routers. Recommendations were then made to management for mitigating identified risks. Performed an Internet-based Attack Penetration against a bank's network and third party banking applications, and a security diagnostic review on multiple aspects of a company's security infrastructure by assessing existing technical security controls, identify vulnerabilities that could be exploited by external or internal threats, and recommending to management strategies for countering or mitigating associated risks. Tools such as lsadump2, psexec, netcat, nltest, sqlexecute were utilized for gaining administrative access. Assessed a company's IT and operational environment to determine the degree of compliance with Payment Card Industry PCI requirements for developing remediation plans for the client. Major areas of focus were an enterprise security gap analysis, security training and awareness, and security and operational policies and procedures. Other areas of focus included assessments of firewalls, routers, and NT/2000 configurations. Confidential Election Assistant II Supported the planning and deployment phase of Touch Screen Early Voting sites for multiple elections by creating design details for interconnections to remote sites IP addressing, ACLs, T1, ISDN backup . Implemented migration plans for migrating from an NT 4.0 network to a Windows 2000 native network. Installed and configured Compaq mass data storage and 8500e servers for a storage area network. Routinely ran security tests using tools such as Nessus, MBSA, and THC-Scan 2.0 to find any network vulnerabilities. Implemented Samba Servers for the storing of digitized public records. Routinely orchestrated, in conjunction with a CERT advisor, Microsoft critical updates for over 1000 PCs. Administered domain user account passwords and group memberships. CERTIFICATIONS: Cisco Certified Network Associate CCNA Certified Information Systems Security Professional CISSP
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
