MarkHouse
Electronic Resume'
workexperience
Click
on a link to be taken to that section only or
scroll down for entire resume'
OBJECTIVE: An information security management or high-level information
security architect opportunity within an organization with a solid commitment
to information security and to the protection of corporate information
assets. Organization should be seeking an extraordinary security professional
with proven and verifiable experience.
PROFESSIONAL SUMMARY:
Information Security Professional with 12+ years of demonstrated and
verifiable experience in global initiatives, information security architecture
and design, along with network architecture and design. Ability to solve
complex problems within a fast pace environment with proven results.
Very team-oriented with strong communication skills, and able to work
independently to further the goals of an organization without immediate
direction.
Circuit
City, Inc. Richmond, VA
Aug 2008 - Present
Information Security Architect
Circuit
City, Inc. Richmond, VA
Oct
2006 - Aug 2008
Sr. Data Security Analyst
Fast
Track Internet Solutions, Tampa, FL
Aug 2003 - August 2006
Sr. Security Engineer
Dow
Jones & Company, Princeton, NJ
Apr 2000 - Dec 2002
Senior Internal Consultant
Capital
Health System, Trenton, NJ
Mar 1998 - Mar 2000
Technical Services Manager (Promoted from Technical Project Manager)
Position 3 of 3
Capital
Health System
Technical Project Manager (Promoted from Senior Network Engineer)
Position 2 of 3
Capital
Health System
Senior Network Engineer II
Position 1 of 3
Starr
Tours & Transit, Inc., Trenton, NJ
Oct 1997 - Mar 1998
MIS Project Director - Onsite Contractort
Merrill
Lynch, Plainsboro, NJ
Apr 1996 - Oct 1997
Senior Systems Engineer - Onsite consultant
AT&T,
Holmdel, NJ
Dec 1995 - Apr 1996
Desktop Systems Engineer - On-site consultant
" 12+ years Information Technology and Project Management
experience
" Middle Management and Supervisory experience
" 10+ years WAN/LAN networking with T1, T3, OC3, OC12, Frame, SONET,
& MPLS technologies
" 8+ years Information Security experience
" 6 years Risk Management and Compliance experience
" 6 years of PCI & SOX experience and 5 years of HIPAA experience
" Multi-platform experience (Microsoft, Netware, *NIX, Solaris,
AS/400)
" Cisco Routing, Switching, and Firewall (PIX, FWSM, and ASA) experience
" Intrusion Detection, Vulnerability Scanning, Penetration Testing,
and Application Testing experience
" Internal Auditing experience
" Certifications include CCNA, CEH, MCP, CNE
" CISSP certification in process (expected to sit for test in 2008)
SKILLS SUMMARY:
Strategic Information Security Architect: Development of Information
Security Team and Information Security Steering Committee Charters.
Coordinate strategic initiatives and align Information Security projects
with business objectives. Successful transition of internal IT operational
functions to 3rd-party managed services provider. Process and procedure
re-engineering. Creation of technology standards. Develop auditing and
verification processes for security controls. Develop and implement
Information Security Metrics program. Review and analysis of Compliance
Audit reports. Measuring and reporting on compliance status to executive
management. Experience meeting with external and internal auditors regularly
to review compliance and remediation efforts.
Technical Information Security Architect: Architect and design the
following solutions to remediate PCI deficiencies and meet compliance
efforts, thus saving the company $4 million+ in exchange discount rates.:
RSA SecureID 2-factor authentication, Vericept Data Leakage Prevention,
Ironport Secure Email, Bluecoat Proxies, and Sensage Log Aggregation
solution.
Network Security Engineer: Project manage the deployment of ISS Proventia
network and host-based Intrusion Prevention System (IPS) along with
ISS Site Protector within a Managed Security Services environment, Architect,
coordinate the deployment, and transition support for the following
solutions: Ironport Secure Email, Vericept Data Leakage Prevention (Discover,
Monitor, and Edge), Sensage Log Aggregation, RSA SecureID two-factor
authentication, and Bluecoat proxy appliances. Project manage the deployment
of ISS Vulnerability Management System and create internal VMS procedures
for using NESSUS, ISS, and NMAP scanners, Architect enhancements to
Websense URL filtering, AirDefense wireless intrusion detection, and
Symantec & McAfee anti-malware solutions.
Network Security Auditing experience: Experience with auditing configurations
and controls involving Cisco routing, switching and firewall devices,
F5 Big IP Load Balancer devices, and DMZ/Extranet devices.
Cisco Certified Network Associate experience: Strong experience with
WAN designs, configurations and determining cost saving solutions using
VPN, T1/T3/OC3/OC12, Frame Relay, ISDN, and MPLS technologies. Experience
with LAN designs and configurations such as VLANs, DNS, DHCP, TCP/IP.
PROFESSIONAL EXPERIENCE:
Circuit
City Inc., Richmond, VA October 2006 to Present
Information Security Architect
Strategic Information Security Architect responsibilities:
" Development of Information Security Charter and Information Security
Steering Committee Charter.
" Conduct gap analysis of existing Information Security policies
and procedures and revise or create new policies and procedures where
deemed necessary.
" Development of Information Security Roles and Responsibilities
Matrix and define IT Information Security team objectives.
" Develop and implement Information Security Metrics program reporting
to OCIO weekly.
" Development of Information Security Awareness program and content
for enterprise.
" Perform vendor evaluations focusing on business requirements,
solution design, project planning, & establishing security controls.
" Coordinate strategic initiatives and align Information Security
projects with business objectives.
" Communicate security requirements to internal and external project
groups.
" Work with business channels and IT management to understand business
requirements and establish project priorities and action plans.
" Create and distribute security policies and procedures while
assisting in the security awareness training and communicating of routine
security best practices to all users.
" Creation of Certification and Accreditation process for internal
and 3rd-party solutions.
" Ensure the security of information system assets and design solutions
to protect systems from intentional or inadvertent access or destruction
in accordance with company policy and external requirements such as
Sarbanes-Oxley (SOX) and Payment Card Industry (PCI) standards.
" Develop and implement regulatory compliance remediation plans
using process flow charting.
" Work directly with Internal Audit to remediate outstanding compliance
issues.
" Coordinate external audits and compliance reviews, work directly
with auditors and develop remediation plans for those issues out of
compliance.
" Establish credibility of the Information Security Team across
the organization, including senior management, through education and
awareness.
" Educate data owners in the implementation of information security
controls.
" Create and provide weekly and monthly State of Security status
reports directly to the Office of the CIO.
Technical Architect Responsibilities:
" Architect and coordinate implementation of RSA SecureID 2-factor
authentication solution to meet PCI compliance and save the company
$4 million+ in exchange discount rates.
" Architect and implementation of Vericept's Data Leakage Prevention
solution modules Discover, Monitor and Protect.
" Architect and coordinate implementation of Ironport Secure Email
appliances which produced savings of $170,000 per year in maintenance
and costs of 3rd-party SPAM filtering services.
" Architect and coordinate implementation of Sensage Log Aggregation
solution to meet PCI compliance and save the company $4 million+ in
exchange discount rates.
" Architect and coordinate implementation of Bluecoat Proxy solution
to streamline Internet proxy services and save the company $55,000 per
year in hardware, software, and licensing costs.
" Provide transition support to IBM with regards to implementation
of ISS Proventia network-based and host-based intrusion detection solutions
and feeds to Managed Security Services portal.
" Provide transition support to IBM with regards to implementation
of ISS Vulnerability Scanners and the transition of anti-virus, URL
filtering, and wireless intrusion detection solutions to IBM Managed
Services.
" Conduct information security risk assessments with 3rd-party
vendor (Verizon/Cybertrust) contracted to perform quarterly internal
and external scans and tests of controls.
" Conduct quarterly PCI scans of all external systems related to
payment card and transaction-based systems.
Fast
Track Internet Solutions, Tampa, FL August 2003 - August 2006
Onsite - Pasco-Hernando Community College, New Port Richey, FL February
2005 to August 2006
Sr. Security Engineer (Consultant)
" Implementation, configuration and regular maintenance of multiple
network-based Intrusion Detection/Prevention Systems (ISS Proventia-G
and Proventia-M).
" Implementation, configuration and regular maintenance of ISS
Site Protector Intrusion Prevention management solution on Windows 2003
server with SQL database.
" Strong support and maintenance of Cisco PIX firewalls, multiple
routers and switches, and dozens of wireless access point devices.
" Implementation and configuration of large scale (2000+) antivirus,
antispyware, and anti-malware host-based Intrusion Detection/Prevention
solution. (Proventia Desktop, Symantec and McAfee)
" Implementation and configuration of URL/Web filtering solution
integrated with Cisco PIX firewall. (Websense)
" Extensive network troubleshooting and network bandwidth management
and reporting of WAN and LAN segments utilizing Solar Winds and Orion
Bandwidth Manager.
" Perform regular vulnerability and penetrations tests utilizing
NESSUS and NMAP along with recommending remediation solutions.
" Perform application-level vulnerability testing looking for binary
attack vulnerabilities such as format string bugs, buffer overflows
and SQL injection vulnerabilities using Watchfire's AppScan.
" Evaluate and select 3rd party vendor (Qualys) for Payment Card
Industry (PCIDSS) vulnerability testing.
" Perform PCIDSS vulnerability testing and implement remediation
solutions to obtain compliance.
" Support of e-commerce digital certificates, VPN encryption technologies
such as PKI, IKE, IPSEC and SSL/HTTPS for authentication, integrity
and confidentiality.
" Operation, updates and maintenance of SPAM filtering application.
(GWGuardian)
" Event monitoring and reporting on network and host-related attack
attempts and vulnerabilities, determine best course of action, and implement
solutions where necessary.
" Policy and procedure re-engineering for credit card processing,
Internet usage, instant messenger and email usage, secure faxing, and
numerous other computer use policies.
" Enhancement of security, disaster recovery and business continuity
plans.
" Assessment and compliance testing and reporting related for HIPAA,
GLB, and ISO 17779.
" Regularly meet with state auditors to review security assessment
reports, network diagrams and specific regulatory compliance measures.
Various Small-Medium size business clients, Sarasota, FL August 2003
to February 2005
Sr. Security Engineer/Network Engineer (Consultant)
" Implementation and configuration of Cisco PIX firewalls, routers
and network security solutions such as Access Control Lists creation
and maintenance, Network Address Translation and Port Address Translation
statements, and one-to-one NAT statements.
" Implementation and configuration of IIS v5 and v6 web servers,
Apache v2 web servers and web site file/directory uploads.
" Implementation and configuration of URL filtering solutions integrated
with Cisco PIX firewall. (Websense)
" Installation and deployment of web-based medical transcription
and dictation systems including file upload, electronic medical records
integration with document imaging, and VPN encryption solutions to maintain
confidentiality, integrity and authentication.
" Development of remote VPN solutions for remote user connectivity
between physician's homes and their associated orthopedic surgery center.
" Provide coordination and configuration changes to web hosting
services, domain name registration services, DNS updating and POP3 email
functionality to small business clients.
" Perform Cisco router configurations including NAT and ACL configurations
and configuration file clean-up.
" Perform Cisco switch configurations and implementation projects
including VLANs, port-security, 802.1q trunking and Spanning Tree troubleshooting.
Dow
Jones & Company, Princeton, NJ April 2000 - December 2002
Senior Internal Consultant
" Guided the creation and deployment of security standards for
corporate LAN, WAN and wireless infrastructure.
" Part of security engineering team that analyzed, redesigned,
and/or developed new security policies, procedures and standards for
large-scale roll-out of VPN technology.
" Member of the Change Management Board that reviewed then approved
or denied work requests from a security and networking perspective.
" Development of Security Certification process and procedure within
SDLC.
" Lead ad hoc Certification team for security review of small,
medium and large-sized system implementations for news wires, television,
and news print businesses.
" IT Security Controls Audit and Compliance review of infrastructure
network and LAN components.
" Redesign of change management, asset management and configuration
system process framework.
" Development of IT network and security procedures and standards.
" Perform inventory, asset and configuration management audits
in infrastructure components including network routers, switches, and
firewalls along with auditing the physical security controls in place.
Capital
Health System, Trenton, NJ March 1998 - March 2000
Technical Services Manager (Promoted from Technical Project Manager)
" Management of Information Systems staff of 18 and operations
center consisting of 24hr customer service help desk, desktop &
server support and network command center.
" Budgeting, scheduling and accounts receivable/payable for medical
center IT department.
" Direct supervision and management of 18 staff members including;
24-hour operations & help desk groups, server administrators, engineers,
PC support specialists, UNIX Administrators and LAN Administrators groups.
" Interview and relationship building with vendors and service
providers, develop RFPs and manage contracts for small-to-large scale
IT projects.
Capital
Health System, Trenton, NJ
Technical Project Manager (Promoted from Senior Network Engineer)
" Provide project management and project coordination for numerous
IT-related projects.
" Lead ad hoc teams in conducting small and medium-sized system
implementation projects within medical center, trauma center, and remote
physician practices and clinics.
" Gather necessary project requirements such as business need,
hardware and software resources, necessary WAN and/or LAN bandwidth,
microwave projects, budgeting, team and staff, and stakeholder approvals
for IT network and server projects.
" Develop statement of work from requirements documentation.
" Measure project deliverables, milestones and deadlines on a continual
daily or weekly basis and report to executive management and all project
stakeholders via project meetings.
Capital
Health System, Trenton, NJ
Senior Network Engineer
" Design and implement an ATM OC-3 network backbone with Fast Ethernet
switched LANs utilizing multi-mode fiber, FORE's ASX1000, ASX200 ATM
Switches and FORE's Powerhub 5000.
" Design and implement Internet connectivity utilizing Cisco routers,
T1 circuits and ISDN backups at main campus and approximately 22 remote
physician clinics and locations.
" Configuration of access control lists, network address translation
pools and other network security features on Cisco Internet routers.
" Installation and configuration of Citrix, Microsoft SQL, Fax
and Exchange servers.
" Perform inventory, asset and configuration management audits
in infrastructure components including network routers, switches, and
firewalls along with auditing the physical security controls in place.
" Develop project plans for large-scale computer system migrations,
upgrades, deployments and decommissions involving Active Directory Services
and Global/Local group policies.
Starr
Tours & Transit, Inc., Trenton, NJ October 1997 - March 1998
MIS Project Director (Onsite consultant placed by Source One Personnel)
" Project managed company's year-end I.T. initiatives including
new PBX deployment, development of 'cookie cutter' remote location connectivity
standards, development of new security standards.
" Design, architect, and deploy remote office connectivity network
design for 20 remote locations.
" Project lead for new PBX initiative in association with vendor.
" Requirements gathering for software business initiatives.
" Work with vendors and 3rd-party partners in evaluating requirements
against new tools.
Merrill
Lynch Plainsboro, NJ April 1996 - October 1997
Senior Systems Engineer (Onsite consultant with Nibbles & Bits Computer
Corp)
" Project leader for new desktop hardware and software implementations.
" Server administrator for 10+ local and remote file, print and
email severs.
" Troubleshoot networking, routing, filtering and security issues
across the WAN.
" Configure and coordinate server backups and tape rotations.
AT&T
(now Lucent Technologies), Holmdel, NJ December 1995 - April 1996
Desktop Systems Engineer (On-site consultant with Alpha Technologies-
currently - Immedient)
" Provide end-user support for desktop hardware and software issues.
" Provide technical training and guidance to end-users in Windows
desktop products, PC and printer hardware usage and software usage.
" Troubleshoot end-user problems pertaining to Microsoft Exchange,
networking and file & print server connectivity.
EDUCATION/PROFESSIONAL CERTIFICATIONS:
St. Petersburg College - Technology Management - Information Security
Assurance
Mercer County Community College - Computer Networking Technologies
Cisco Certified Network Associate (CCNA) - #CSCO10942592
Certified Ethical Hacker (CEH)
Microsoft Certified Professional - since 1998
Certified Netware Engineer in v3.12, 4.x and 5.x - since 1997
CISSP Certification in progress - completion expected 2008
CISA Certification expected in 2009
AFFILIATIONS
Sigma Beta Delta - International Honor Society of 4-Year Colleges
Phi Theta Kappa (PTK) - International Honor Society of 2-Year Colleges
Member: Information Systems Security Association (ISSA) - #3117458
Member: Association of Certified Fraud Examiners (ACFE) - #154978
PUBLICATIONS/ARTICLES
October 2006 - ISSA Journal - 'Making Sense of Cryptography'
Resume'
© 2006 Mark House mark
[at] homeemail [dot] org
© 2006 Mark House