BACKGROUND SUMMARY   (ISC)² and Cisco certified information systems security professional offering over 24 years of diverse IT experience in system security requirements, design, implementation, evaluation, certification, infrastructure administration, policy and management. Team-oriented with the ability to build team cohesion as well as work independently. Active participant within DoD INFOSEC with an active Top Secret SCI clearance. Strong technical presentation and communication skills, both verbal and written.

 

EXPERIENCE  

 

Senior Manager, IT Security, Risk & Controls, 06/20/2011 – Present, Oncor Electric

Overview – IT and Security evaluation, architecture and oversight. Manage a team of high-caliber security professionals to implement progressive security policies and technologies and enable appropriate access while minimizing risk to security and operational reliability.

 

·           Provide management and over-sight of Security Operations Center.

·           Establish and manage strategic security relationships with business partners, customers and government agencies.

·           Lead groups for security risk management, compliance, vulnerability management and incident management.

·           Lead and coordinate enterprise security architecture, including security policy, standards, trust levels, tiered networks, and the relationships among them.

·           Lead implementation and management of complex layered security systems including Firewalls, TrustSec, IAM, Reverse Proxy, MDM, SIEM and Security Analytics.

·           Lead groups for Security Risk Management, Compliance, Vulnerability Management and Incident Management.

·           Lead problem resolution efforts across enterprise.

·           Conduct security product reviews, selection, and implementation architecture.

·           Promote new concepts and provide technical expertise representing new technologies to business towers and partners.

·           Provide technical expertise in developing security use cases, designs, proof of concepts and implementations.

·           Configure vulnerability and compliance scans across the enterprise.

·           Establish and provided enforcement of security baseline standards across the enterprise.

·           Responsible for ensuring the quality and compliance of the security engineering work performed, as well as providing domain expertise.

 

InfoSec Engineer, 05/2010 – 06/20/2011, SimplexGrinnell

Overview – Responsible for the development, implementation and ongoing management of information security policies and systems for compliance with corporate security standards, and providing domain expertise within Tyco cleared entities and throughout SimplexGrinnell.

 

·           Developed, implemented, monitored and enhanced data security policies, procedures and standards.

·           Provided hardening guidance in operating system, databases and application security for application systems throughout the enterprise.

·           Performed audit and vulnerability assessments (network, server, databases, application, etc), and managed remediation efforts.

·           Engineered, evaluated, and implemented new security solutions to improve enterprise security posture.

·           Managed corporate firewalls, IPS, DLP and security assessment systems throughout enterprise.

·           Published streamlined Date Release Form (DRF) guidelines and templates enabling the business to meet compliance regulations while utilizing 3rd party vendors.

·           Established test case and evaluate standards for new technologies to enhance the security of the enterprise.

 

NCOIC Cyber Surety, 09/2007 – 06/2013, Air Force Reservist (Part Time)

Overview – Manage, direct, and educate users on communications, computer, and IP security. Install, monitor, and direct computer and network defense measures and perform network security assessments to assure availability of mission critical applications.
 

·           Provide supervision of Cyber Security and Operations staff.

·           Lead core service implementations by designing, configuring, installing, and managing data services at the operating system and server application level.

·           Processes and reviews C4 systems requirement documentation, telecommunication service requests, status of acquisition messages, and telecommunication service orders.

·           Lead and provide technical expertise for team installing, configuring and maintaining DoD standard firewalls, routers, and proxy servers.

·           Responsible for configuration and use of Automated Security Incident Measurement System (ASIMS) package and Intruder Alert (ITA) to deter, detect, isolate network intrusions, and recover compromised systems after attack.

·           Responsible for Certification/Accreditation compliance for Theater Deployed Environments.

·           Achieved Active TS/SCI/ISSA security clearance.

 

Perimeter Security Engineer, 02/2007– 09/2007, Under Contract to: Perot Systems, Plano, TX

Overview – Perform architecture security assessments; identify potential risks to the network. Design remediation architecture and perform implementation to ensure compliance with regulatory, and policy requirements.

 

·           Provided HIPAA security compliance guidance for implementation of Network Access Controls, VPNs, and baseline audits.

·           Performed risk and vulnerability assessments on current and proposed designs.

·           Successfully designed, managed and completed extensive on-sight security remediation for CHS/Triad hospitals with no unscheduled loss of service.

·           Performed analysis of business requirements, provided cost effective security architectural solutions that facilitate customer service while protecting corporate assets.

·           Responsible for global implementations on Checkpoint, Netscreen and Pix/ASA firewalls.

·           Troubleshoot and lead efforts to solve complex network and systems issues related to security devices, DNS, routing, email, client/server and other applications.

·           Work with Hospital staff and Security Operations Center to ensure system security stance is proactively maintained and security threats are responded to appropriately.

 

Perimeter Security Engineer, 04/2005 – 02/2007, EDS, Plano, TX

Overview - Duties include analyzing user requirements, risks, and threats, performing cost/risk analysis, engineering and implementing B2B security and firewall solutions.

 

·           Aided in development of security policies and processes to assure compliance with SOX and PCI audit.

·           Responsible for the security assessment and remediation of all Sabre and AA firewalls in both corporate and ecommerce environments across multiple sites.

·           Performed architecture, design, and support at the highest level of expertise for the VPN Infrastructure between Sabre and multiple travel agencies and Airlines.

·           Performed complex Pix firewall configurations requiring, content filtering, access control lists,  AAA, DMZ, Point to Point and remote access VPNs involving multiple corporate clients.

·           Responsible for monitoring system performance and providing resource utilization and system status reports.

·           Responsible for developing and driving utilization of global base-line audit process across all customer firewalls.

·           Responsible for investigation on IDS alerts, Computer Incident Response Team (CIRT).

·           Responsible for driving remediation on security related external audits.

 

Security Consultant, 08/2001 – 04/2005, Macrosight, Inc. Plano, TX

Overview – Function as the organization’s security consultant for corporate customer base. Provide architecture for network and enterprise security.

 

·           Performed IDS monitoring and Incident response for attacks on web based assets.

·           Authored Security Policies and Security Architectures for multiple clients specifying Acceptable Use, Internet DMZ Equipment, Router/Firewall use policy, ect.

·           Performed Installation, configuration, upgrades and troubleshooting on PIX firewalls, IPSec VPNs, routers, switches, wireless APs, VOIP, and Windows 2000/2003 servers/workstations.

·           Performed risk/security posture assessments, audit and impact analysis for new and existing business initiatives.

·           Modernized outdated information security awareness programs for several F500 corporations, and led branch office training on crucial new InfoSec policies, procedures and technologies Provided extensive hardware/software support services.

·           Produced budgetary estimates, documented new projects and concepts related to network architecture, infrastructure deployment and services delivery.

 

Enterprise Architect, 01/2000 – 08/2001, SciQuest Inc. Morrisville, NC

Overview – Functioned as organization’s lead architect, responsible for designing enterprise applications to meet business requirements. Responsible for evaluating existing systems, new technologies/tools, and setting direction for technology with business development, marketing, and IT.

 

·           Provided secure architecture, data normalization, data loading/maintenance planning, and lead management for multiple production public and internal applications.

·           Given responsibility to develop, set, and enforce best practices and standards for MQSI application development, and use of SQL.

·           Led large diverse teams through project completion of complex projects.

·           Developed “proof of concepts” as necessary to demonstrate feasibility of new technologies or upgrades to existing technologies.

·           Performed as 3^rd tier support for enterprise and customer specific applications.

·           Performed as Webmaster/developer for MS based technologies: ASP, ColdFusion, and SQL server.

 

Internet Systems Architect, 02/1997- 10/1999, Ericsson, Inc. RTP, N.C.

Overview - Functioned as organization’s lead architect, responsible for designing web based initiatives to meet business requirements. Provided security systems administration for internal and external web based applications.

 

·           Managed production and led development of Ericsson Consumer web site, Partner Network web, Dealer database web, Customer registration web, Ericsson Shopping mall and numerous internal web based secure applications.

·           Designed Internet/Intranet infrastructure & information management.

·           Key advisor for Ericsson on-line commerce activities.

·           Performed as internet systems engineer and 3^rd tier support for 1500 client.

 

Internet Systems Engineer, 08/1995 - 02/1997, Freelance, Raleigh, NC

Overview - Responsible for all phases of site building process, including system specification, design, development and quality assurance.

 

·           Responsible for taking multiple projects from conception, analysis, design and implementation, through to post-implementation.

·           Performed as technical developer for a number of large internal and external web base projects, including Duke University, LawSight, Glaxo Wellcome and Ericsson Inc.

·           Received multiple awards and industry recognition for architectural design.

 

Technical Director, 06/1992- 07/1995, Under Contract to: Jean Michael's Inc., Corrales, NM
Overview - Responsible for conceptualizing and implementing technical solutions toward increasing sales.

 

·           Researched and implemented mail order/invoicing software package assessments to meet business requirements.

·           Increased company recognition through innovative use of video and internet advertising resulting in over one million in sales during the second year of operation.

·           Performed linear video production, desktop publishing, digital advertising, and inventory automation.

·           Performed IT support services for sales force.

 

 

SECURITY CLEARANCE

 

Active TS/SCI/ISSAAug 01, 2005

 

CERTIFICATIONS

 

CISSP	Mar 10, 2007
CCSP	Apr 26, 2004
CCNA	Apr 26, 2004
Cisco IDS Specialist	Dec 08, 2003
Cisco Firewall Specialist	Oct 29, 2003
Cisco VPN Specialist	Oct 03, 2003
MCP + I	Nov 23, 1999
MCSE	Nov 15, 1999

 

EDUCATION 

 

A.A. 2010, CCAF Computer Science
A.A. 1991, Saint Leo College, Saint Leo, FL; Liberal Arts and Sciences

 

PROFESSIONAL MEMBERSHIPS

 

Member of Microsoft.com Research Panel since 2003

Member of ISSA (Information Systems Security Association) since 2004