|
05/2013-Current
ServiceSource
Inc.
Denver,
CO
Sr.
IT Security Manager:
·
Operations manager for IT Security group of mid-sized
multinational business to business managed service provider.
·
Security department was responsible for all aspects of
operational security including HP ArcSight SIEM, Splunk, Symantec DLP,
Symantec AV, Qualys, Websense Proxy, Cisco and Palo Alto Firewall,
AlertLogic, Whitehat, Amazon tools, Investigations, new product
implementation, audit, etc...
·
Lead an international team of analysts supporting
production AWS environment including weekly, monthly, quarterly review for
patching, audit requirement fulfillment, threat modeling, and vulnerability
assessment.
·
Ran change management board reviewing all production and
test infrastructure changes for security posture impact.
·
Develop new sources of logging information for
investigations, developed new reporting from internal logging resources and
deployed client based logging software. Added and modified log correlation
alerts and created a completely new threat dashboard for help desk
analysts.
· Planned,
tested, and implemented cloud based web proxy and DLP solution for entire
organization including eight international branch office locations, four
data centers, and a two cloud VPCs.
04/2011-05/2013
DigitalGlobe Inc
Thornton, CO
Sr. IT Security Engineer:
(DigitalGlobe
/ GeoEye)
(DOD: Secret Inactive)
·
Production IT Security engineer for satellite
intelligence and information processing company.
·
Responsible for network security in production, test,
planning, and installation including DevOps and audit.
·
Managed CheckPoint firewalls, zScaler web proxy,
Symantec log collection, Riverbed WAN optimization, SourceFire IPS systems,
RadWare anti-DDoS, etc...
·
Responsible for implementation and monitoring of
enterprise PaloAlto perimeter firewall infrastructure, Splunk SIEM, and
others.
·
Coordinated implementation of security products for
Amazon GovCloud infrastructure, including an Amazon Direct Connect engagement
and implementation of software clients through Chef scripts, review of AMIs
for compliance, etc.
·
Lead technical initiatives including installation and
configuration of DOD accredited networks, HBSS desktop environment,
engineering planning for Raytheon High Speed Guard appliance including rule
development, enterprise IDS project, and others.
·
Helped consolidate independent cloud infrastructure
systems into single pane monitored environment.
·
Developed, planned, and implemented Snort IDS for all
branch office locations.
06/2010-04/2011
Northrop Grumman Corp.
Lakewood,
CO
Test Engineer II:
(NACI: MBI Inactive)
·
Test engineer / acting lab manager supporting Department
of Interior customer with test, change, and configuration management tasks.
·
Maintained 1:1 test lab environment that mirrored
production infrastructure in network and server configuration. Maintained
network hardware IOS versions, server / workstation OS patching WSUS,
server software distribution SCCM, Active Directory GPO Administration,
virtualization environment vmWare ESX/ESXi, configuration of hardware consolidation
blade chassis IBM/HP, network storage array configuration Cisco UCS.
·
Responsible for systems engineering, requirement
development, change tracking, documentation, and new product testing tasks.
·
Hardware and software tests including interoperability,
acceptance, use case, and security baseline analysis.
·
Facilitated communication between Change Management
group, DOI customer, and contract company management.
·
Coordinated with telecom engineers to develop test
scenarios that mimic real world security, network, hardware, and software
environment.
·
Maintained document control system for version tracking,
change tracking, requirement development, and security auditing.
09/2008–06/2010
United Launch Alliance
Centennial, CO
Network Engineer II
(Lockheed
Martin / Boeing)
(DOD: Secret
Inactive)
·
Wide ranging responsibilities for maintenance and change
implementation on production Bluecoat, Infoblox, Cisco NAC, Cisco
switching, Barracuda, and other network systems.
·
Maintained a seat on the Change Management Board
approving changes for enterprise wide projects, voting for security group.
·
A member of the Architecture Working Group: Engineering
group guiding projects for infrastructure and security systems throughout
the organization.
·
Technical lead Cisco NAC deployment managing a small
security team; design, hardware, wiring, configuration, setup, integration.
·
Managed a group of people in support of an enterprise
wide intern project. Negotiated contracts, staffing, and other
functional assets.
·
Coordinated daily with seven remote sites managing break
fix and change implementation tasks.
07/2006–09/2008
Hologic, Inc.
Bear, DE
Test Engineer
·
Responsible for VnV testing of prerelease software for
QA department in a FDA controlled, bio-medical device R&D facility.
·
Tracked design changes including development of
requirements, writing test cases, use cases, etc…
·
Developed test protocols and configuration baselines for
future release tests including regression, interoperability, connectivity.
·
Established working knowledge of the formal software
design, implementation, upgrade, and testing process (FDA certified).
·
Coordinated daily with developers to find solutions to
complex software bugs inside Solaris 9, windows embedded environment.
10/2004–09/2006
Cognition Group, Inc
Newark, DE
Network Engineer
·
Ground up implementation of IT infrastructure for small
multinational breaking ground in the U.S. including SQL server, Windows
Server 2003, FTP interface, hosting services, etc …
·
All-encompassing responsibilities for tele-com and IT
infrastructure, including client side ops for U.S. clients.
·
Negotiated multiple contracts for IT functions including
contracts with suppliers, hosting services, Value Added Resellers, etc...
·
Communicated daily with Delhi, India; London, UK; and
clients in U.S.
·
Coordinated alpha site installs, FDA site installs,
contract installs for pharmaceutical industry clients including Merck,
Pfizer, Johnson & Johnson.
2003–2006
University of
Delaware
Newark, DE
Resident Computing Consultant (RCC)
·
Responsible for repair and maintenance of student and
staff PC’s.
·
Virus removal, Spyware/Malware removal, PC baseline
security implementation.
·
Troubleshooting network, software, and hardware issues.
·
On call for 3 months at a time, maintained own schedule
including scheduling offsite repairs with customers.
|