QUALIFICATIONS PROFILE
Technically sophisticated, tenacious, and performance-centric professional
powered with broad-based experience in information security project
management as well as implementation of innovative solutions. Show
paramount efforts in all facets of project life-cycle development, from
initial system analysis and security network design through implementation,
quality review, and enhancement to optimize operational efficiency while
significantly reducing cost. Possess stellar qualifications in delivering
simultaneous, large-scale projects within budget and time constraints
coupled with remarkable ability to lead, train, and coordinate with
technical teams to provide innovative business solutions. Exhibit a keen
eye for detail complemented with proven effectiveness in fiercely
competitive and fast-paced environment.
CORE STRENGTHS
Network Infrastructure Design and Project Management and Operations
Implementation
Data Integrity and Security / Disaster Continuous Process and Performance
Recovery Improvement
Risk Assessment and Impact Analysis Technical Support and Troubleshooting
Leadership, Training, and Team Building Quality Assurance and Regulatory
Compliance
Organized with Strong Analytical Budget Implementation and Cost Control
Abilities
Articulate Oral and Written Problem Resolution and Decision Making
Communication
EMPLOYMENT HISTORY
Washoe County School District ( Reno, NV
Information Technology Security Officer 2006-Present
Direct and coordinate all operational aspects of School District's
Information Security department focusing on strategic planning for future
projects and budgeting. Instrumental in monitoring the District's IPS/IDS
and Firewall logs for anomalies in conjunction with IT staff. Work
collaboratively with School Police and school's Legal Department to conduct
internal computer forensic investigations on both servers and workstations
as they relate to criminal or policy violations. Convene with IT staff for
yearly internal and external computer security audits by gathering
information and statistics then compiling that information into a report
form for the auditors.
Notable Accomplishments:
. Established the IT Security Department and served as the project manager
to install a product to encrypt outbound e-mail; expertly managed the
encryption of school district laptops, notebooks and flash drives
. Cost-effectively saved more than $100K by utilizing an open source
solution
. Conceptualized and implemented all Information Technology ISO-9001
compliant procedures pertaining to IT security
. Led all efforts in ensuring both state and federal mandated compliance,
including NRS603A, FERPA and HIPAA, as well as encryption of laptops,
notebook and external storage devices
. Commended in facilitating Payment Card Industry (PCI) audits per PCI Data
Security Standards
. Initiated the development of Information Technology disaster recovery
procedure
. Designed and created data security information sheets for Administration
in the District
. Served as the representative of IT on the District's Emergency
Preparedness Counsel
Washoe Medical Center ( Reno, NV (1997-2005)
Senior Applications Security Analyst 2001-2005
Drove all initiatives in developing and implementing a Washoe Health
System's secure file transfers for the purpose of transferring sensitive
information to outside contacts while maintaining HIPAA compliance.
Analyzed internal computer security scans on servers and workstations
utilizing NetIQ for compliance to corporate policy. Primarily held
responsible for conducting internal computer forensic investigations on
both servers and workstations. Spearheaded and mentored a team of 15
security analysts that were responsible for RACF user support and maintain
user access on the OS/390. Pivotal in installing and maintaining Washoe
Health System's firewall and PGP for desktop usage. Facilitated educational
sessions for different hospital departments on security awareness.
Regularly interfaced with senior management for the hospital's yearly
internal and external computer security audit by gathering information and
statistics then compiling that information into a report form for the
auditors.
Notable Accomplishments:
. Recognized as the project manager for the overall project of the
hospital's application packaging software solution
. Displayed unsurpassed expertise in securing file transfer and converting
external and internal users from the dialup connections over to a VPN
solution
. Served as the focal point of contact of multiple departments on new
projects when they involved IT security and inquiries on data protection
. Earned comprehensive skills in firewall administration, computer
forensic, RACF security, and management
Applications Security Analyst 1997-2001
Installed and regularly updated NAI Virus Software on PCs throughout the
hospital using NAI's ePolicy Orchestrator. Rendered first level security
technical support for our OS390 mainframe system using RACF, Vanguard's
RACF Administrator product and TPX. Utilized Vanguards Security Reporter in
analyzing access on the OS390's resources and datasets for 3000-user
environment. Fulfilled expanded responsibilities as the Security
Administrator, responsible for the hospital's UNIX systems. Functioned as
the Administrator of the hospital's remote dial up access using Cisco
Secure software for access and monitoring purposes.
Notable Accomplishments:
. Developed the IT Security Department and managed the hospital's anti-
virus solution in collaboration with the IT Security Manager
. Appointed to be the IT part of the hospital's external audit that dealt
with the RACF portion
. Gained significant competencies and knowledge in RACF, data security, and
networking
PRIOR WORK EXPERIENCE
Data Processing Liaison ( Computing Resources, Inc., Reno, NV: 1993-1997
Computer Operations Analyst ( JCPenney, Reno, NV: 1988-1993
EDUCATION
Course Taken, GPA: 4.0
( Truckee Meadows Community College, Reno, NV: 2002-2005
Bachelor of Science in Business Administration, Major in Marketing
( University of Nevada, Reno, NV
Received numerous Debate and Speech Awards; Member of Delta Sigma Pi,
Alumni Association, and UNR Debate Team
Coursework in Accounting
( California Lutheran College, Thousand Oaks, CA
PROFESSIONAL TRAINING & CERTIFICATIONS
SANS.org
. Intrusion Detection In-Depth, Orlando, FL (GCIA Certificate #01936): 2007
. Hacker Techniques, Exploits & Incident Handling, San Jose, CA: 2005
. Computer and Network Security Awareness, Anaheim, CA: 2002
. Securing Linux/Unix, Orlando, FL: 2001
. Security in Windows 2000, Monterey, CA: 2000
. Windows NT Security, New Orleans, LA: 1999
. Intro to Information Security, Orlando, FL: 1998
GMIS
. Information Technology Executive Training, Reno, NV: 2007
TMCC
. Linux Install and Configuration, Reno, NV: Spring 2005
. UNIX System Administration, Reno, NV: Spring 2003
. Fundamentals of UNIX, Reno, NV: Fall 2002
PROFESSIONAL AFFILIATIONS
Member, Information Systems Security Association Member, InfraGard, Reno,
NV Chapter
TECHNICAL EXPERTISE
Applications: MS Office Suite (Excel, Word, PowerPoint, Access, Project,
Outlook), Cisco Mars, Encase Forensic Software, NetIQ Security
Manager, Lotus Notes, Novell GroupWise, Network Associates Virus
Suite, PCAnywhere, Drop Chute File Delivery System, FTP Voyager,
Gene6 FTP Server, Wireshark, VMWare, Nmap, Metasploit, Putty,
PGP, TrueCrypt, Tivoli IT Director, ProofPoint email security
appliance, Ironport email security appliance, Ironport web
security appliance, Surf Control Internet Filtering appliance,
Attachmate, TSO, CICS, TPX, SMS, A2K, RACF
Operating Unix (AIX, HPUX), Linux (Red Hat, Ubuntu) Windows Desktop and
Systems: Server, OS/400, MVS
Databases: Microsoft SQL and MySQL
Other: Data Encryption, Computer Forensics, OS390, z390, AS/400, x86,
Cisco routers and switches, Check Point Firewall, Cisco Firewall