SENIOR INFORMATION SECURITY OFFICER
Profile
Successful senior-level experience in comprehensive information and network
security, including operational responsibilities, providing product and
customer requirements, and leading technical countermeasures teams. Creates
and oversees architectural, equipment, policy and procedural direction,
merging protection with business.
Integrate and lead operations security, physical security, cryptography,
security architecture, investigations, digital forensics and evidence
management, firewall administration, vulnerability assessments and risk
management, including policy and procedural controls. Manage communications
to end users, the legal team, project stakeholders, external customers,
senior management and IT staff as a subject matter expert. Execute time
sensitive, high-risk tasks in a constantly changing environment with
conflicting priorities.
Plan and implement secure but cost-effective integration of remote sites
and mergers/acquisitions into existing security infrastructure, from a
policy, procedural and technical perspective, including cost management,
risk analysis, and providing written requirements to stakeholders. Plan and
conduct written and oral status report briefings to all levels of
management and staff.
Design investigative, forensic and litigation support capability within
Information Security department, including operating digital forensic lab,
compiling and codifying evidence retention processes, and integrating
malware incident response. Specifies litigation support practice guidance
and equipment for the Information Security department. Forensic analysis of
NTFS, FAT, ext2 and ext3 and CD filesystems. Specify and implement Encase
forensic, Enterprise, and eDiscovery (Command Center) in the enterprise,
coordinating Legal, IT and InfoSec resources as project lead.
Proficient in various Unix operating systems (Solaris, Linux, Tru64, HP-UX,
Mac OS X), Windows versions, IP networking, systems hardening, and
security assessment tools. Manages Sidewinder, Juniper Netscreen and Cisco
ASA firewalls. Systems and network administration including DNS (Bind) and
Sendmail, storage systems, backup methodologies, telephony integration and
access control. Have done forensic or administration work on NTFS, HFS+, CD-
ROM filesystems, FAT, UFS, ext2/3, AdvFS, as well as volume managers for
various Unix operating systems.
Experience Senior Information SEcurity Officer
Intrado, Inc; Longmont, CO 2006-Present
Responsible for managing and implementing technical and policy controls to
ensure information confidentiality, integrity and availability in all areas
of the company. Technical lead provides guidance and training to
Information Security staff regarding all aspects of security function.
Escalation point for internal technical and policy issues, including
architecture, systems analysis and operation and company policy and
procedures. Travel to Intrado offices and subsidiaries both domestic,
European and in Canada required on a regular basis. Manages a blended
environment of Sidewinder, Juniper and Cisco ASA firewalls. Monitors and
analyzes data from Nitro IDS/IPS. As comsec custodian, manages PGP
Universal. Utilizes StillSecure vulnerability scanning and other open
source tools for vulnerability management.
Designed electronic discovery procedures and processing architecture,
spec'ed software tools and supporting hardware. Completed enterprise-wide
deployment of both Encase Ediscovery (Command Center) and Encase Enterprise
forensic capabilities.
Responsible for internal investigations and evidence handling; designed
and built Intrado Digital Forensics Lab, with the capability of handling
multiple operating systems, cellular phones and PDAs as well as alternate
storage devices (iPods, CDs/DVDs, etc.), including implementation of a new
litigation support role and the supporting equipment (Encase
Enterprise/Ediscovery).
Coordinated and managed all internal and company-wide security policies
and procedures for the department, including policy exception and approval
process, evidence processes, technical guidance and architecture
documentation.
Supervised and coordinated security systems integration of companies upon
acquisition, involving multiple offices in the US and Canada. Performed
full assessment and evaluation of current state; engineered and implemented
remediation under severe schedule and budget constraints.
Completed in-depth security assessment of overseas development shop and
implemented policy, process changes and systems required for remediation.
Information Security officer
Intrado, Inc; Longmont, CO 2004-2006
Managed Sidewinder firewalls, business to business VPN connectivity,
vulnerability management and corporate investigations. Responsible for
scanning and vulnerability management, configuring, troubleshooting and
maintaining corporate DNS systems and email gateways using BIND and
Sendmail on BSD-based Sidewinder firewalls. Comsec custodian, responsible
for specifying and operating corporate encryption systems (PGP, VPNs).
Implemented branch office IPSEC VPN tunnels on Juniper Netscreen firewalls.
Unix/NT Systems administrator - lead
Intrado, Inc; Longmont, CO 2002-2004
Primary responsibility for administrating, upgrading, maintaining and
monitoring a complex, multi-vendor Unix environment of over 60 machines,
including HP-UX, SCO, Linux, Tru64, Solaris, and FreeBSD systems. Managed
internal Listserv/Sendmail server, slave internal DNS server, wireless 911
elements including MPCs, CRDBs and other SS7, IP and mixed telephony
components. Upgrades, maintains and repairs equipment, does network
troubleshooting and resolution, systems analysis, tuning and documentation.
Design and implement Unix security standards and vulnerability management
for Unix department. Consulted by management and technical staff as subject
matter expert in IT best practice.
Unix/NT Systems administrator
Intrado, Inc (as SCC Communications Corp); Boulder/Longmont, CO 2001-
2002
Responsible for administration and maintenance of multi-vendor Unix/NT/2000
environment, including systems and network security functions directly
related to those platforms. Maintained firewall configurations for
perimeter security, Snort IDS and monitored and evaluated logs for attack
signatures.. Responsible for user account maintenance, backups,
installations of new equipment, operating system upgrades and monitoring
using HP OpenView.
Tandem operations specialist
Intrado, Inc (as SCC Communications Corp); Boulder/Longmont, CO 1999-
2001
Managed multiple Tandem midrange systems asTandem lead operator. Resolved
PSAP and ALI database connectivity issues, troubleshooting SS7, IP
connectivity over various transport, X.25 and Expand connections. Monitored
and maintained batch processing execution for ALI database updates.
Established and documented procedures according to workflow and customer
requirements. Acted as first escalation point for operators regarding
technical, personnel and process issues.
Implemented HP OpenView for monitoring of new Texas PSAP IP network, and
trained all operations staff on its use, including documented procedures
and oral presentations to staff and management.
Successfully managed Y2K event for the computer operations department,
including process documentation and on the ground troubleshooting,
resulting in no systems impact and full availability of all critical
services.
CLEC File Transfer operator
Intrado, Inc (as SCC Communications Corp); Boulder, CO 1999
Monitored and executed service order file transmission between CLEC
customers and business partners. Developed tracking systems for daily
service order transfers in a clearinghouse environment.
patrol Supervisor
Barton Protective Services at Amgen; Boulder, CO 1997-1998
Operated and supervised security patrols. Performed and supervised
investigations for client, monitored building management and access control
systems, overseeing response to environmental and security related
emergencies in a GMP environment. Supervised up to 7 officers per shift,
spread across four locations in two cities.
Certifications GIAC SECURITY ESSENTIALS (GSEC), analyst number 4740
NATIONAL SECURITY AGENCY - INFOSEC ASSESSMENT METHODOLOGY
- Registered on NSA/IATRP
LEGAL INVESTIGATIONS, USC
WETSTONE CERTIFIED STEGANOGRAPHY INVESTIGATOR
Education and
coursework Legal investigation Certificate
Colorado - Legal Investigation Certificate, 1998
paralegal certificate course
Colorado - University of Southern Colorado, 1999
Encase enterprise forensic examinations
Pasadena, California - Guidance Software, 2010
Encase e-discovery
Pasadena, California - Guidance Software, 2010
MAstering Packet analysis
Colorado - SANS, 2006
Implementing netscreen security gateways
Colorado - Juniper Networks, 2004
solaris 10 advanced systems administration
Colorado - Sun Microsystems, 2005