Information Security

Igor Goro

* ********* **., ******* *****, IL ****9

Phone: 847-***-****

*********@*******.***

OBJECTIVE:

To obtain a challenging position that provides growth and technical leadership opportunities which will utilize my knowledge and skills to ensure high-quality delivery.

SUMMARY OF QUALIFICATIONS:

15+ years of experience in design, development, consulting, support and implementation of windows/web applications, security solutions and controls.

Experienced in managing/supporting engineering teams involving geographically diverse engineers and clients in different locations.

Experienced in implementation and coordination the security efforts across the multiple projects.

Experienced in developing and driving Information Security programs.

Planned and implemented of client information systems, including structure, process, and security.

Experienced in Risk Management, hazard analysis, mitigation etc.

Proficient in identifying potential risks, threats, and vulnerabilities present in the environment and providing solutions to ensure proper security controls to mitigate them.

Experienced with full variety of security techniques: penetration testing; vulnerability assessments, network recon; passive traffic identification; wireless, web app penetration; SQL injection; computer forensic, anti-forensics etc.

Experienced with the following programming languages/technologies: C#, C/C++, XML, WPF, Perl, SQL, Python, PowerShell etc.

Experienced with Nmap, Snort, Kali, Metasploit, Burp Suit, Nessus, MS Visual Studio, SQL Server, Advanced Installer etc.

Applied knowledge and used encryption/encoding such as SHA-1, MD5, BASE64, CRC64 at implemented application;

Experienced with Linux, Windows Servers roles, features, Web Servers, AD, configuration and maintenance;

Experienced with VMware ESXi, vCenter Server, vSphere, Workstation e.t.c.

Communication and protocols: local/domain environment, HTTP/HTTPS, TCP/UDP, CANbus, RS232/485 etc.

Experienced in SDLC, architecture, technologies and packaging of multi-tier applications.

Experience with IDS, IPS, Firewalls, SIEM tools etc.

Ability to adapt new changing technologies faster.

Experienced in supporting, planning, supervising staff

I have strong communication skills; I am providing security advice and guidance internally and to clients.

I have always been a very fast learner, and I adapt very quickly to new technical environments.

Strong team spirit and customer focus.

PROFESSIONAL EXPERIENCE:

08/2013 – Current: Principal Engineer (Fresenius Kabi, LLC - Lake Zurich, Illinois)

Consulting with customers and internal business partners to identify security requirements and communicating security issues, recommendations and deliverables

Designing and implementing cyber security solution for various R&D IT applications.

Developing, implementing and maintaining the information security safeguards and measures to enforce information security policies, standards and procedures.

Planning/performing vulnerability assessments and penetration tests.

Maintaining open communication to all stakeholders keeping them current on status

Participating in code reviews and design reviews;

Developing/participating in new product development of data management solutions and Client/Server simulations, software packaging etc.

Determining operating requirements, cost, as well as resource needs for assigned projects

Providing technical leadership and guidance to Security Engineers

Leading information security incident response activity

Continuously researching cybersecurity trends and emerging security technologies

Overseeing training in the department

Member of Global Cyber Security Committee.

2006 – 2013: Software Engineer, Senior (Woodward, Inc. - Mundelein, Lincolnshire, Skokie Illinois)

Performed Penetration Tests/Vulnerability Assessments of various applications on various company locations and on customer sites. Provided security advice and guidance to design teams and clients.

Designed/developed migration of existed multi-threaded C# applications to .NET 4.0/4.5 with to utilize the latest security solutions.

Designed/developed application and supported teams in North America, Europe, Australia and China.

Performed on-site training of Software Engineers in China.

2001 –2006: Engineering Manager (Gambit Inc. – Buffalo Grove, Illinois)

Planned/executed and supported full variety of security testing (physical, network, application level);

Evaluated/ implemented new test methods, hardware/software to accomplish full security testing on application and hardware level.

Member of IRT team.

Identified technical and schedule risks or issues, and proactively developed recovery plans.

Incorporated all test plans and test strategies for production and new product development linked to security policies.

Controlled and coordinated all critical activities related to resolving and correcting design or production issues.

Resolved technical and process issues for both development and production.

Identified program and technical requirements. Prepared work break-down and resource plans.

Assigned tasks and tracked progress.

Managed external resources (hardware, software, contractors).

Directly managed and mentored full-time members and contractors. Carried out all personnel actions are in a timely and effective manner.

Developed annual budget including capital expense planning.

EDUCATION:

M.S. in Electrical Engineering

Certificate: (IACRB) Certified Penetration Tester, Certified Ethical Hacker, Certified Expert Penetration Tester, Certified Computer Forensic Examiner, Certified Web Application Penetration Tester;

Certificate: (MathWorks) MatLAB; Model Management and Verification in Simulink; Simulink for Systems and Algorithm Modeling

Contact this candidate