Leif Palmer

acpue3@r.postjobfree.com

813-***-****

SECRET Security Clearance

PROFESSIONAL SYNOPSIS

• 15 years IT experience with a B.S. degree from Saint Louis University

• CISSP-certified Security Engineer with high customer-service standards and success

• Project Management success and hands on defense-in-depth: proxy filtering, active

directory, ant-virus, full-disk encryption, host hardening, patch management, log

monitoring, two-factor authentication

• Strong understanding of security compliance directives: NIST, Risk Management

Framework, DIACAP, STIGs, IAVMs, vulnerability assessment/remediation

• Strong communication, documentation and organization skills

CORE COMPETENCIES

Operating Systems Windows NT/2000/2003/2008R2 Servers and Sun UNIX

Security Software Active Directory, Symantec, Websense, MS ISA 2000

Firewall, Pointsec Full Disk Encryption, McAfee, Internet

Security Scanner, PKI Desktop

Languages Visual Basic, SQL, HTML, and Java

VOLUNTEER

McLane Middle School (robotics institute); Brandon, FL; Teaching Math and Science to grades 6,

7, 8

PROFESSIONAL HISTORY

Security Engineer

USTRANSCOM-Harris 08/13 – 02/2014

• Met deadline to build four new McAfee servers to include Windows 2008 R2, SQL Server

2008 R2 and McAfee ePO 4.6; patched same and transferred all policies relating to

McAfee before placing on DoD GIG

• Provide Tier 3 support for the following security products: McAfee ePO 4.6 (DCM/DLP

9.2, HIPS 8, VSE 8.8P2, PA 6)

• Monthly patch management for eight Nessus vulnerability scanner servers and four

McAfee servers; monitor status of different security bulletins including STIGs, IAVMs,

CVEs, and Technet; successfully address false-positives accordingly

• Perform continual monitoring of TRANSCOM environment to locate and remediate

unauthorized activity (A/V, DLP, HIPS)

Endpoint Security Engineer

Consultant/Emerson 12/11 – 9/12

• Flawlessly upgraded Enterprise SEPM servers from 11.x to 12.x affecting 100,000 users.

• Provided Tier 3 support to local admins for the following security products, Symantec

Endpoint Protection Manager (SEPM), Websense Proxy, Pointsec Full Disk Encryption

• Setup, tested, administered new business containers and applied consistent enterprise-

level policies utilizing SEPM 11/12

• Improved replication of Symantec Endpoint Protection Manager servers (SEPMs)

throughout worldwide regions, deleted duplicate devices, moves/adds/changes of

devices for proper policies/updates.

• Troubleshot policy builds for all sites in Americas region utilizing Websense Proxy 7.1.

• Perform continual monitoring of the environment in an effort to locate and remediate

unauthorized activity (SEPM servers and Websense proxies)

• Worked with Websense vendor to get sites correctly categorized for global customers and

worked to identify/blacklist malicious web sites upon detection

• Provided 3rd tier support for Full Disk Encryption assisting local administrators to recover

data from encrypted network devices and troubleshoot image-build processes relating to

full-disk encryption.

Computer System Security Specialist

Hewlett Packard 1/11 – 12/11

• Led classroom settings to teach Risk Management Framework and meet ISC2 CAP

certification requirements for all new Security Specialists

• Craftsman level experience in DoD network security compliance regulations.

• Professional experience in analyzing and assessing information security requirements

and solutions using NIST and Risk Management Framework guidelines.

• Possess a working knowledge of NIST/DIACAP and DoD IA controls and the EITDR

system; exposure to eMASS software and expectations

• Monitor status of different security bulletins including STIGS, IAVMs, CVE’s and Technet

• Examined and evaluated system security architecture documentation to verify the

technical configuration of IA/IP capabilities, utilizing security measures and procedures to

protect security perimeter.

• Possess knowledge on applicable reports and products required by DIACAP processes.

• Performed IAAP assessments and staff assistance visits IAW AF Policy and 8570

guidelines.

• Reviewed and assessed IA and security related processes, identified problems, including

recommending/assisting mitigation strategies to managers.

Mentor/System Administrator

TechSkills, LLC 7/08 – 12/10

• Managed and rebuilt AD, DNS, DHCP, and file servers using Windows 2003 components

after Conficker worm infection of entire network.

• Successfully led effort to build SEPM server and rolled out new anti-virus agents to all

devices after clean-up of Conficker worm

• Expediently re-located entire network (router, switches, servers, and computers, printers,

all-in-ones) to new location

• Led TechSkills, LLC St. Louis from last in nation to 2nd in Course Completion and

Program Completion by instituting classroom lectures, new study habits and time

management skill sets.

• Performed/Documented Disaster Recovery duties after Conficker worm and subsequent

rebuild of network devices.

• Monitor status of different security bulletins including Technet, Adobe, Flash and testing

applications; able to identify false-positives accordingly.

• Mentored students in gaining MCSA, MCSE, CCNA, Network+, A+ and Security

certifications.

Network Administrator

Jefferson County Library 6/05 – 9/07

• Succeeded in phone transition to Cisco VoIP setup,troubleshooting and maintenance

• Designed and configured a separate secure wireless network for public use.

• Achieved Superior customer service in the upgrade, maintenance, and administration of

networking components (Active Directory, DNS and DHCP, Cisco VoIP)

• Successfully instituted new policies in use of MS Internet Security and Accelerator 2000

firewall for specific branch devices

• Perform continual monitoring of the environment in an effort to locate and remediate

unauthorized activity (anti-virus, firewall activity, active directory)

• Monitor status of different security bulletins including Technet, Cisco, Adobe, Flash; able

to identify false-positives accordingly

• Upgraded infrastructure components (AD, DNS, DHCP) from Win2k Server to 2003

Server. Supported, maintained, and upgraded Symantec Anti-Virus 7.6 Corporate Edition;

pushed out new agents/updates to clients over 4 sites.

• Managed on-going hardware/software computer support, network and local print

services, all-in-one equipment support; as well as local router and switch troubleshooting.

• Completed documentation of network infrastructure and Cisco VoIP phone system.

Systems Administrator/GS-7, promoted to GS-9

Department of Air Force 8/01 – 8/04

• Successfully worked with the VAT (Vulnerability and Assessment Team) to institute new

security standards after the 9/11 catastrophe for all of AMC.

• Built/supported eEyeRetina servers and scanned networked devices monthly; remediated

devices accordingly in a timely fashion

• Briefed Unit Commanders on state of security and time and resources it would take to

reach full network compliance

• Successfully taught other work group managers on current processes, standards, and

procedures regarding network device scanning/compliance to operate on DoD GIG.

• Monitor status of different security bulletins including STIGS, CVE’s and Technet; able to

identify false-positives accordingly.

• Complied with United States Air Force policy standards (DITSCAP, DIACAP, FISMA) and

maintained required documentation

• Handled closing tickets in a timely manner utilizing Remedy Tracking System.

• Gained project management experience in established first baseline for AMC while

upgrading to new domain structures and workstation hardware, software and firmware

• Experienced in workstation virus and spyware removal.

• Performed support on UNIX workstation/server systems for the USAF weather

department.

Application Programmer

Department Of Revenue 9/99 – 12/00

• Managed front-end programming utilizing Visual Basic, SQL, and Crystal Reports.

• Provided support in data requirements gathering and report writing.

• Utilized safe programming practices (reducing sql injection, cross-site scripting, user input

errors, etc)

EDUCATION

Saint Louis University, St. Louis, MO. BS Management Information Systems, 05/99

Contact this candidate