Overview:

• 17 years of IT Security and Infrastructure experience. Experiences include design, installation, maintenance and decommissioning of circuits, networks, servers, databases, endpoint infrastructure, SIEM tools, network and security architecture, design, implementation, system integration, troubleshooting, project and program management.
• Responsible for the security posture of mission critical government networks and servers. Ensuring the safe guard of mission critical applications. Responsible for Security Incident Detection and Handling, Forensics, integrating tools and processes into a SOC environment.
• Experience includes working as a service delivery vendor, delivering executive level presentations and proposals, SoW, RFQ's, customer preliminary requirements, defining requirements and project delivery.
• Working knowledge of Security and Compliance Regulations: PCI, PII, SOX, HIPAA. Information Security Regulations, Frameworks and Leading Practices: ISO, SANS, NIST, NIACAP, DIACAP, DCID 6/3.

Confidential

Senior Information Security Adviser

• Advise, provide recommendations and develop of security strategies and policies relating to the Bank's Insider Threat focused developments. Provide direction on various projects concerning Data at Rest DAR Encryption, Data in Transit, Unauthorized Data Export, Unusual and or Excessive Data Consumption.
• Provide security framework guidance for development for SIEM monitoring, Big Data, Email Monitoring, Relational Database Management Systems, Data Security and Data Monitoring.Develop monitoring tool thresholds regarding excessive data consumption, after-hours data usage, unauthorized login locations, privileged access levels, out-of-scope behavioral activities, NPI, PII and PCI usage activities.
• Research and develop Proof of Concept methods on various monitoring tools for use with detection, prevention and monitoring of Teradata, Hadoop, Mid-range and Mainframe applications. Inquire different Lines-of-Business's LOB's applications within the bank on their use, functionality and monitoring to ensure Proof of Concept fits their business model.

Confidential

Senior Program Manager

• Project manage deployment of enterprise datacenter, telecom infrastructure and security projects. Report on project milestones, project status and issues, budgets,purchase requests, accomplishments and overall project health.
• Overseen large deployment ofa 9.8TB DWDM ring and other circuit technology spanning over multiple campuses. Delivered on time without delay on a compressed accelerated schedule in efforts to reduce operating telecom costs, and provide additional functionality to the business.
• Delivered multiple high visibility Network Security firewalls, SIEM, IPS/IDS, taps, etc and Network Infrastructure projects that carried direct impact to business customers.Combined two different datacenters into one logical, layer 2 datacenter, while creating minimal disruption to the applications residing in both locations.
• Managed teams to designed, integrate, and implement various projects through the system development lifecycle.Ensure project has been properly documented before closure and transition to sustainment team.

Confidential

Information Systems Security Officer Engineer ISSO ISSE

• Responsible for measurably improving the security of critical IT systems, through information assurance guidance in order to ensure continued mission success for NSA/CSS. Enhance the security posture of our NSA's critical communications systems. Increase the level of trust and reliability of NSA information resources, and providing for assured information sharing with minimal operational impact.
• Project lead of product evaluations, selection and implementation of Security Information and Event Management SIEM tools, collection agents network taps , host-based-intrusion-detection systems HIDS , firewalls, Government Off the Shelf GOTS and Commercial Off the Shelf COTS tools across multiple networks. Including removal of legacy systems, developing system designs, testing and stand up of many network management servers and clients distributed worldwide.
• Developed new security and network infrastructure solutions for expanding and improving operations within multiple network and remote datacenters. Develop solutions requiring routers, switches, firewalls, network sensors, network taps, SIEM, HIDS, HIPS, COTS and GOTS tools.
• Provide direct information security guidance and assistance to infrastructure teams supporting missions in the field. Review one-off solutions to ensure minimization procedures have been applied to mitigate risk. Ensure total solution created meets or exceeds any governing documents related to the local site policies without compromising other solutions or systems.
• Design Continuity of Operations Planning COOP for network security systems to meet organizations policies. COOP is an effort to ensure systems are accessible to continue Mission Essential Functions MEFs during all hazards.
• Apply security expertise to systems and projects, and ensure that the appropriate security features and safeguards are designed, integrated, and implemented by all information systems through the system development lifecycle.
• Oversee and conduct System Security Plans SSP audits for new and existing network and communications systems. Provide security guidance to ensure new systems integrate appropriately into the existing security architecture and that it meets DoD security policies.
• Project lead of projects and management of contractor personal manage contracts and payments, invoices, timesheets. Provide budget planning estimates for contracts, training, conferences, equipment maintenance, and upcoming projects.

Confidential

Network Architect Manager

• Reduced telecommunications costs worldwide by 18.3 million by analyzing business requirements. Determined business needs and renegotiated upcoming vendor contracts, consolidated and eliminated telecommunication circuits and making use of new technologies for data, voice, video and audio teleconferencing.
• Overseen network migration of telecommunications services from the Automotive Network Exchange ANX to alternative connectivity methods. Projected reduced B2B telecommunications costs by more than 50 by using Virtual Private Network VPN Connectivity and reduced support time by simplifying the network design to Tier 1 and 2 providers.
• Refreshed 324 sites located globally with new routers and switches that faced End of Life EoL and End of Support EoS . Guided Network Operations to ensure proper monitoring of new devices, removal of old devices and testing 'fail-over' of devices to their proper disaster-recovery DR units.

Confidential

Senior Network Security Engineer

• Project Lead firewall migrations from Checkpoint to Cisco ASA's, developed migrations plans, communications with business customers involved, reviewed configurations, and execution of deployment into the production network.
• Researched and Developed wireless connectivity options for remote users that reduced the overall cost of remote Evolution-Data Optimized EV-DO connectivity. Engineered solutions and planned business processes using new technology within the network.
• Engineered automated scripts to reduced man hours and developed configurations for Cisco Security products FWSM, ASA, CSMARS, CSMgr, Ironport, switches and routers , Checkpoint and Juniper firewalls, NetApp appliances and various Extranet devices.

Confidential

Senior Network Operations Engineer

• Trained Operation Analysts to review change control request for security risk factors, impact on productions systems, technical accuracy, business impact and gain, and resource requirements needed for the request.
• Developed, configured and installed network monitoring tool to provide up/down status and service port monitoring of firewall devices, security information and event management SIEM devices, switches and routers, mail relay devices, DNS, etc.

Confidential

IT Infrastructure Engineer / Project Manager Contractor

• Reduced data communications costs by 17 million annually by analyzing and removing, replacing legacy infrastructure and implementing new designs. As a result, new infrastructure designs simplified communications between the Support Center, Business and Partner reducing overall SLA times by more than 30 .
• Migrated 252 Partner connections within 18 months from ANX Etunnelz and legacy connections to Internet VPN Connections. Reduced the costs for both Pfizer and its partners, and cutting out 3rd party telecommunications support.
• Analyzed Business requirements for communication between Pfizer and the partner company. Determined best type of connectionand cost solution for the project based on corporate security, Federal requirements and business Service Level Agreements SLA requirements.

Confidential

Senior External Connectivity Engineer

• Designed security procedures that worked with the business clients, without restraining business processes and adhering to corporate standards. Ensured security procedures were aligned to meet federal government regulations, and audit requirements.
• Worked with multiple projects designing solutions based on the needs of the project as well as network standards and security restrictions. Solutions varied from requiring two-factor authentication, engineering and installing data/com lines, specialized network infrastructure, VPN's, firewalls, IDS Sensors, network taps, hardware load balancers or additional security policies.
• Performed vulnerability assessment scan on devices servers, firewalls, etc. along with sniffer analysis of traffic generated by new devices before entering the core infrastructure or DMZ's. Provided risk assessment reports back to the business customers, as well as overall network health and risk assessments to management.

Confidential

Network Security Engineering Manager

• Developed and implemented strategic network designs and security plans for a startup university to accommodate anticipated growth of the university. Successfully handled campus growth expanding from 300 people in its second 2nd year to 1900 people within the fourth 4th year covering three 3 domestic and one 1 international campus locations.
• Successfully connected campus networks from one 1 campus location to four 4 different locations in Michigan, Florida and Nicaragua. Overcame communication development issues associated with 3rd world countries and develop contingency plans for the monsoon and hurricane seasons.
• Established security policies and audits of all campuses including installation of network and system security controls limiting connectivity to user roles and restricting unauthorized users. Standardized incident reporting, logging, handling and tracking forensic investigation with regards to network abuse and attacks. Established working relationships with local and Federal government officials for security breaches.