Engineer Security

Paul Keser

Ph 415-***-****

Email ****@*****.***

San Francisco, CA

EDUCATION

Degrees

MS in Information Assurance with Honors, Capitol College, Laurel, MD 2007

Converted from MS in Network Security 2004

BA in Management, Augustana College, Rock Island, IL 1989

Certifications

Certificate in UNIX Administration, UCSC Extension, Santa Cruz, CA 1999

Certified Information Security System Professional (CISSP) 2002

NASA Certified Cyber Security Specialist 2003

Check Point Certified Security Instructor/Engineer/Administrator (CCSI/E/A) 2000

Cisco Certified Networking Associate (CCNA) 2001

QualysGuard Certified Specialist 2009

PROFESSIONAL EXPERIENCE

Stanford University, Stanford, CA 2005 present

Associate Information Security Officer

Working with IT Services to design a PCI compliant wireless LAN

Perform security risk assessments for new and existing university projects

Monitor network for DLP purposes looking for SSN's and Credit Card numbers develop

new policies and procedures to prevent leakage

Network and system forensics in the event of a security incident

Developed policies and procedures for the handling of Restricted data

Developed policies regarding virtualization at Stanford

Information Security Office representative on Firewall deployment project

Maintain ISO WWW site and develop new documentation

Raytheon ITSS, NASA Ames Research Ctr. 2001 2005

Sr. Network Security Engineer

Managed and maintained NASA Ames Research Center firewall infrastructure

Project Lead for Check Point to Netscreen firewall migration project

Developed and revised scripts for monitoring firewall health

Migrated firewall infrastructure from Nokia FW 1 appliances to Alteon ASF

accelerated Firewall 1 clusters

Architect for the migration from Alteon ASF to Juniper Netscreen firewalls

Designed, architected and implemented highly secure network for location of

network security monitoring, vulnerability scanners and NetForensics SIEM

Pre production server vulnerability scanning with FoundScan and Nessus

Evaluated and implemented NetForensics SIEM

Evaluated Intrusion Prevention Systems

Tested implementation of WPA WLAN security on WinXP and Linux

Tested rollout of SecurID 2 factor authentication

Essential Check Point Firewall 1 by Dameon Welch Abernathy aka "Phoneboy"

Technical Editor for above Firewall 1 book

Dataway.com Inc., San Francisco, CA 2000 2001 (laid off)

Sr. Security Engineer and Check Point Instructor

Level 3 escalation engineer for Network Operations Center that manages and

monitors ~300 customer firewalls and servers

Developed documentation for Solaris Check Point FW 1 performance optimization

Participated in after hours emergency support line rotation

Setup Check Point Authorized Training Center, taught initial FW 1 classes

ShopExpert.com Inc., San Francisco, CA 2000 (laid off)

Network Security Engineer

Designed & implemented VPN to COLOcation facility, managed, patched and

hardened NT FW 1 install, revised FW policy

Researched & bid High Availability firewall solution for COLO

Conducted port scanning penetration testing of HQ and COLO DMZ's for

vulnerabilities

Responsible for location, selection & implementation of security patches on Linux,

NT4 & W2K

Nokia IP Routing Group, Mt. View, CA 1998 2000

Senior Technical Support Engineer

Level 2 & escalation engineer for firewall security appliance running FW 1

Phone & email technical support configuring routing, Firewall1, VPN tunnels,

SecuRemote access & High Availability

Traveled to local high profile customer sites to assist resellers in complex network

installations

Provided after hours pager support for platinum support customers

Developed documentation for knowledge base.

3Com Corp., Santa Clara, CA 1996 1998

Technical Support Engineer III

Level 3 escalation engineer for the Office Connect Remote product line and

Transcend Network Management Software (built on HP OpenView)

Provided telephone and email support and escalation support to customers.

Escalation point for support engineers.

Technical team lead, coordinated bug escalation to engineering division.

Point of contact for major customer accounts.

Morgan Interactive, San Francisco, CA 1995 1996

Network Administrator, Technical Support Engineer

TECHNICAL SUMMARY:

Languages: HTML, Shell scripts, Python

Operating Systems: UNIX (Linux, Solaris, FreeBSD), XP, Win7,

Mac

LAN Types: Gigabit Ethernet, Fast Ethernet, Ethernet

Network Protocols: TCP/IP, IPX, SNMP, IPSEC

Hardware: IDS/IPS, Firewalls, Routers, Remote

Access Servers

Software: NESSUS, QualysGuard, Check Point FW 1,

GPG/PGP, NMAP, Snort, WireShark,

VMware

Contact this candidate