From: route@monster.com
Sent: Friday,
November 4, 2016 8:52 AM
To: hg@apeironinc.com
Subject: Please
review this candidate for: PaloAlto
This resume has been forwarded to
you at the request of Monster User xapeix03
|
|||||||
|
|||||||
|
|
|
||||||
|
||||||
|
Amir Jabri (CISSP) Cell: (248) 755-2647 majabri@yahoo.com INFORMATION TECHNOLOGY AND SECURITY A
professional Information Assurance expert is seeking a private sector or
federal opportunity to capitalize on extensive information technology and
security experience. Strong desire to engage complex assignments protecting
concerns of information security; offers full investigative and reporting
skills to aid information security operations. SKILL SUMMARY
SUMMARY OF QUALIFICATIONS ·
Ten
years experience providing technical leadership and direction for a team by
supporting risk management of General Support System (GSS) and Automated
Information Systems (AIS) while implementing and integrating computer
security best practices. ·
Extensive
experience supporting DITSCAP/DIACAP efforts utilizing knowledge acquired
throughout the years of national, DoD, and DA regulatory policies relating to
Information Assurance (IA), Public Key Infrastructure (PKI), STIGs, and IAVA. ·
Extensive
experience writing POA&Ms on how to remediate vulnerabilities and follow
through by providing solutions and recommendation on how to fix them. ·
Proactively
identifying and establishing policies, principles, processes and guidelines
to protect information assets from harm caused by natural or unnatural events
by interpreting IA policy and procedures, and recommending tools and
solutions. ·
Developed
and tested a Disaster Recovery plan (DRP), Vulnerability Management Plan
(VMP), System Security Plan (SSP), Managed Information Assurance training
program, and Compliance reporting plan and implementation. ·
Highly
experienced in coordinating change management functions, conducting
configuration auditing, training employees on the proper CM procedures,
managing the release management function, and knowledge of ITIL v2.0 and v3.0
standards. ·
Extensive
experience in Identifying, developing track operational requirements,
situational Awareness, Incident Management, Vulnerability and Configuration
Management, Network Configuration and Security, Fault Tolerance and
Discovery, PKI, and Computer Network Defense standards/strategies. ·
Experience
in developing, documenting, and implementing backup/restore policies and
procedures for disaster recovery. ·
Five
years designing twenty eight offices
LAN/WLAN/WAN network teams to configure and troubleshoot networks with 1700,
2600, 2600 Series CISCO routers and 2900, 2950, 3550 series switches. ·
Fourteen
years configuring and administrating high
end Servers, such as Netware
servers, Windows 2000/2003 servers. ·
Thirteen
years in project management and coordination experience used in leading
projects supporting the Defense Logistics Agency network security
infrastructure in accordance to the PMBOK. ·
Six
years experience designing architecture and deploying McAfee ePO Security
suite (HBSS). ·
Knowledge
of information architectures, as well as strategic road-mapping methods and
tools, topology and Group Policies. ·
Dedicated
team player focused on satisfying client’s expectations by effectively
coordinating and delegating tasks to team members in a stressful, dynamic,
and fast-paced environment. Also I effectively communicate and relate to all
levels and members of an organization. EDUCATION
& TRAINING Ø Masters of Information Assurance, University of Detroit Mercy,
Detroit, Michigan 2012 |
|
Ø Completed
Project Management Training. Ø TripWire
User and Administrator training. |
Ø NetIQ
User and Administrator training. Ø McAfee
ePO User and Administrator training. |
PROFESSIONAL EXPERIENCE
Senior Security Engineer
Space System Loral(Mar
2013- Present)
·
Provided
24/7 on-call security incident response and remediation; drive to completion
·
Managed
security projects; scope, requirements, design and implementation
·
Provided
Network and systems; monitoring, POC, documentation
·
Provided
strong written and oral communications; awareness campaigns and general
security training, internal security blog, inquiries
·
Evaluated
systems, applications and projects to determine information security risks
developing plans to address any issues and managing to completion
·
Acts
as the subject Matter Expert; work with other engineering teams to ensure
that security requirements are satisfied
·
Managed
change; represent Security concerns at change control and evaluate and
approve changes
·
Point
of contact for full security assessment
·
Subject
Matter Expert for new technology design, implementation, and policy to
support it
·
Created,
implemented and documented comprehensive security policies, standards and
procedures
·
Took
on assignments to completion with minimal supervision or by following high
level guidelines
·
Analyzed
needs and determined priorities based on strategic and business objectives
·
Evaluated
new technologies and report findings and recommendations
·
Engaged
in proactive solutions to work and interactions; drive to results
Personnel Recovery Mission Software Program
ArrowPoint Solutions: IAO
/ Information Assurance Site Lead/Security Engineer
(Mar 2011 – Mar 2013)
L-3 Communications: IAO
/ Information Assurance Lead (Nov2009 – Feb 2011)
·
Performed
IAO duties for PRMS at Selfridge location.
·
Proactively
identify and establish policies, principles, processes and guidelines to
protect information assets from harm caused by natural or unnatural events by
interpreting IA policy and procedures, and recommend tools and solutions.
·
Developed
and tested a Disaster Recovery plan (DRP), Vulnerability Management Plan
(VMP), System Security Plan (SSP), and Managed Information Assurance training
program.
·
Provide
guidance to the Anti-Virus Management team and coordinate compliance
reporting.
·
Provided
Network and Security Engineering support for all current and future
department network projects.
·
Provided
security requirements analysis/definition, design/engineering, deployment,
implementation (installation &configuration), operation, maintenance, and
auditing of the network and security infrastructure.
·
Implemented
and maintained a configuration management process to ensure a consistent
design across current and future network projects.
·
Support
investigations in security and legal matters.
·
Documented
and maintained a configuration baseline that conforms to the actual hardware,
software, IP assignments, and other appropriate internetworking environment
specifics as required by DISA and Information Assurance best practices.
·
Supported
DITSCAP/DIACAP efforts in Certification
and Accreditation (C&A) of PRMS Enterprise System.
·
Performed detailed technical reviews of certification
documentation to ensure computer security integration during the SDLC
process.
·
Participated in computer security meetings and
activities.
·
Assisted with the application of computer security
integration.
·
Prepared written and verbal reports and briefings.
·
Tested, designed, implemented, and deployed different
security tools and concepts such as Symantec Corporate Antivirus server,
Quarantine server, and patching technology.
·
Wrote a plan of action and mitigation to accomplish an
ATO.
·
Documented
all information necessary to track and understand changes made to the network
environment.
·
Conducted
both network and user activity audits as required.
·
Conducted
annual security reviews and tested all IA controls.
·
Completed
and maintained the required IA Workforce Management training according to Air
Force Implementation Plan for DoD 8570.01-M.
·
Ensured
all users had the requisite security clearances, supervisor approval, and
awareness training before granting access to AF IS according to AFSSI 8522,
Access to Information Systems.
·
Implemented
and enforced all AF IS IA policies and procedures as defined by the security
C&A documentation as prescribed by AFI 33-210.
·
Provided
oversight to ensure that personnel followed the established IA policies and
procedures.
·
Ensured
all IA management review items were tracked and reported.
·
Ensured
all DoD information system IA-related documentation was current and
accessible to properly authorized individuals.
·
Maintained
HBSS systems on both networks (SIPRNET and NIPRNET), to include troubleshooting
and log maintenance.
·
Identified
additional security needs and provided continuous enhancement of current and
future network infrastructures.
·
Always
worked above and beyond job requirements to support the team with relocating
the entire enterprise infrastructure to another physical location to include
System, Servers, Operations center, and Circuits.
·
Supported
internal and external audits of all systems.
·
Fulfill
duties and worked as a backup to a network engineer by preforming there
duties.
·
Worked
directly with third party monitor units to ensure the security of the
enterprise infrastructure.
Senior Systems and
Security Administrator(Jun2009 – Nov2009)
·
Designed, implemented, and maintained two separate
networks for PRMS DoD. Hosted Windows Active Directory web-based environments
from development to production to service all Federal Government overseas
deployed personnel.
·
Maintained a 12 server network and a 16 server network
simultaneously while ensuring connectivity to a DMZ environment within each
network to thousands of Federal Government users.
·
Supported a six person Help Desk team in support of
PRMS.
·
Ensured that each network met strict DoD security
guidelines through STIG requirements and Gold Disk scans per DISA
requirements.
·
Offered guidance and support for all change requests
concerning systems implementation during the development stages and within
the production environment.
·
Applied and configured all system changes for proper
function within the production environment.
·
Performed all maintenance procedures within the
production networks.
·
Adhered to all environmental security guidelines set
forth by the DoD.
·
Provided Network and Security Engineering support for
all current and future department network projects.
·
Provided security requirements analysis/definition,
design/engineering, deployment, implementation (installation and
configuration), operation, maintenance, and auditing of the network and
security infrastructure.
·
Implemented and maintained a configuration management
process to ensure a consistent design across current and future network
projects.
·
Documented and maintained a configuration baseline that
conformed to the actual hardware, software, IP assignments, and other appropriate
internetworking environment specifics, as required by DISA and IA best
practices.
Dyntek
Principle McAfee
Solution Services Consultant (Aug2008 – May2009)
·
McAfee
ePO product update/familiarization/best practices and recommendations for
beneficial product use within NATO.
·
Reviewed
and provided evaluation of the current customer ePO protection policies.
·
Recommended
daily/monthly-reporting process.
·
Rationalized
the NATO ePO infrastructure to optimize centralized/federated reporting and
centralize client management with delegated administration.
·
ePO
server implementation covering at least: Database and repository architecture
service/system performance, server/product deployment, backup and recovery,
virtualization, security policies.
·
Serviced
and implemented pilotdesign, centralized/federated reporting, global
centralized client management.
·
Assessed
aspects of McAfee products that are not currently utilized but that could be
beneficial to customer.
·
Reviewed
and requested ePO infrastructure and configured it according to McAfee best
practices within the context of customer’s environment and operating
procedures.
Senior Security
Consultant (Aug2008 – Feb2009)
·
Orchestrated
the deployment of a host based security solution aimed at reducing the
ongoing threat of various host-based attacks.
·
Instrumental
in the identification and resolution of various firewall related
outages. Identified possible solutions and assisted in the employment
of the selected remedy resulting in reduced network outages.
·
Developed,
deployed, and supported a Host-based Security Solution (HBSS) for the
AF.
·
Utilized
McAfee ePO to define HBSS rules and policies, using host intrusion prevention
and host-based firewall.
·
Ran
and tested McAfee ePO to over 30,000 hosts.
·
Analyzed alerts from McAfee ePO and customized the rules
engine to tune out false positive messages.
SAIC
Information Security
Analyst II (Sep2007 – Aug2008)
·
Lead
engineer for designing and deployment of MacAfee Enterprise ePO to the SPAWAR
environment.
·
Provide
first, second, and third level troubleshooting to the SPAWAR Enterprise IT
Network & Computer Security Help Desk Support Specialists.
·
Perform
troubleshooting on networking and information assurance requests in a DoD
Research, Development, and Test & Engineering environment.
·
Supported
some DITSCAP/DIACAP efforts.
·
Provide
incident response to SPAWAR systems.
·
Support
and interact closely with extended help desk support team member’s to
resource and prioritize challenges when essential.
·
Support
DOD IA policies, administration of network security infrastructure devices,
security vulnerability identification tools and vulnerability remediation processes
in DOD networks to include blocking non-compliant hosts.
·
Evaluate
Retina and Web Inspect repots for special network and web access of
applications.
·
Troubleshoot
VPN connection for users to the SPAWAR network.
·
Troubleshoot
Antivirus issues for 6000 users.
·
Improve
specific processes and procedures for a senior level team supporting network
security helpdesk operations.
·
Lead
engineer to implement a virtualized Symantec Antivirus system to include
reporting and quarantine server.
·
Team
member on lead on server virtualization project using ESX server and VMware
product.
·
Lead
role in planning and implementing a Unified IT remedy Solution Helpdesk.
Network Operation
Center Lead (Apr2007 – Sep2007)
·
Monitored
all on-shift teams for total customer service delivery to maintain SLA
compliance.
·
Ensured
that all command center personnel were properly executing defined process and
procedures. This included addressing issues of performance failure and
elevating process or procedural issues.
·
Provided
input into quarterly, 6 month and yearly performance evaluations and
developed plans for employees.
·
Oversaw
and ensured continuity of services provided by the combined staff of HP
employees and contingent workers.
·
Verified
the availability and proper usage of the network, servers, and internet based
infrastructure applications. Specifically ensured the availability of phones,
OVSD, Telalert, Doc Server, etc.
·
Acted
as onsite 1st level escalation manager for high impact/high visibility
outages.
·
Ensured
proper communication processes/procedures were followed during an escalation;
this included engaging higher level support teams and or management staff as
required.
·
Communicated
incidents and outages with upper level management as required by process. As
well as monitored status of events and updated them until event resolution
·
Prepared
metrics through daily reporting to evaluate production flow of events that
happened on shift.
·
Shift
reports (CCR tool, Shift Turnover, Weekly ticket count information)
·
Coordinated
and ensured daily shift turn-over to the next shift in a 7x24x365 support
environment.
·
Reported
all customer impacting or personnel issues to operations manager, incident
manager, problem manager and/or technical leads as required in all operational
issues that impact the delivery of services to the customer.
Project Coordinator,
Michigan Dearborn(Mar2006 – Mar2007)
·
Reported
to Security Operations Center to provide support of a large and growing
program supporting Defense Logistics Agency network security infrastructure.
·
Supported
DITSCAP/DIACAP efforts and wrote POA&M
remediation and participated in CCBs.
·
Responsible
for project tracking and coordination in a fast-paced and high profile
information assurance team.
·
Advised
and recommend solutions to the SOC Team Lead to streamline IA processes and
procedures.
·
Developed
technical reports, status reports and project reports
·
Monitored
and tracked tickets in HP Open View Service Desk (OVSD) system and ensure
processing and updating of all issues.
·
Provided
Enterprise security support via Internet Security Systems (IBM/ISS) Intrusion
Detection Sensors (IDS).
·
Provided
analysis of security events and incidents to determine and reduce the risks
facing the DLA EDC network devices and infrastructure. (tool: Nokia firewall,
IIS, site protector, etc …)
·
Worked
with the DLA and HP to develop standard operating procedures for this work.
·
Alerted
the EDC operation and IA team of any of the above issues and Support
DR/COOP/ER plans as directed by the IA Team director.
·
Performed
Vulnerability Assessment using DISA Gold Disk including Manual Checks.
SOS International
Site Manager(Aug2003
– Nov2005)
·
Installed
Internet center for soldiers using satellite technology, Cisco 2600 Routers
and Cisco 2900 Switches.
·
Designed
Access Database, Wireless network, and ways to secure our company’s network
using different technologies such as VPN and RSA securID.
·
Coordinated
and advised military, civilian representatives of Multi-National Forces and
the US Department of State to manage the daily operation requirements.
Burns
& Wilcox Ltd.
IT
Branch Coordinator(Aug1998 – Jul2003)
·
Deployed
Windows Systems project to 900 PC’s as part of migration out of DOS IBM
systems.
·
Established
wiring and telecommunications standards.
·
Led
team of four engineers in a major server upgrade of Novell servers from 3.2
to 6.5.
·
Project
team advisor to implement and purchase T1s for Frame relay network and led
the deployment of the network infrastructure across multiple vendors.
·
Worked
with team of eight on a security assessment to secure access to
email/LAN/WAN/Internet using OpenBsd, Firefox and other firewall solutions.
·
Designed,
implemented, and integrated Voice/Data communication hardware with a team of
vendors and technical consultants
·
Solved
Novell 3.2/6.0 and Microsoft 2000 server issues and problems.
·
Solved
2600 Cisco routers and 2900 switches issues using serial and telnet sessions.
·
Solved
network, computer, printer, hardware, and software issues for 30 branch
offices by utilizing remote dialing software.
·
Projected
budget for voice and data communications equipment and facilities
·
Worked
on a team of twelve in creating a disaster recovery plan to ensure maximum up
time of the company’s systems.
·
Deployed
virus scan software project to 1200 users throughout the country.
·
Led
testing and implementation of new software that improved company operations.
·
Racked
routers, switches, and servers.
·
Designed
and maintained procedures and policies for the IT Helpdesk using Microsoft
database applications.
·
Oversaw
offices relocations, negotiated premise wiring and phone system installations
·
|
|
||||||||
|
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
Languages: |
Languages |
Proficiency Level |
|
Arabic |
Fluent |
|
|
English |
Fluent |
|
|
|