VLADIMIR SHIKHMAN
**** ******* **., ********, ** 11235 646-***-**** ac3asx@r.postjobfree.com CCNA, CCDA, CCNA Voice
http://www.linkedin.com/pub/vladimir-shikhman/13/788/889/
Objective
IT Security Analyst, Cybersecurity, IT Infrastructure Auditor, GRC, Internal IT Controls and Compliance, PCI Compliance, IT Auditor. UNIX/Linux/Windows Sys Admin, IT Security Architect with experience in cloud infrastructure (AWS, Azure, etc) and orchestration, hoping to maintain and engineer a Secure and Reliable IS Environment.
Experience
IT Security Analyst, IT Auditor, Consultant – MTA Headquarters 03/2016 – Present
NYC, NY
Provide directions and hands-on instructions to obtain IT Compliance. Verify IT Security, Management Control and IT Controls Compliance using various tools, such as LT Auditor+ by Blue Lance, Control Compliance Suite by Symantec, Power Shell, bash, GRC by Oracle
Verify Audit Results from the other Auditors; Validate Collected Evidences
Maintain/Support (back-end) of the main Business Apps based on IBM AIX-5.x, RedHat-5.x and Oracle. Compile Run Books
Implement and manage auditing and security policies and procedures
Infrastructure Support, User Support; AD support, GPO Management, W10, Office’365
IT Admin, Consultant - Innovative Software Creators, Inc 01/2014 – 03/2016
Brooklyn, NY
Configure, secure, and administer Linux and Windows systems on Amazon AWS, Digital Ocean, Azure and Rackspace cloud platforms for SMB clients (printdiecut, great.digital, …)
Properly size and build Linux (Red Hat, CentOS, Debian) EC2 instances for web workloads
Install and configure LAMP environment, WORDPRESS setup and maintenance
Use Puppet to configure and maintain database, webserver, and file server roles for on-demand provisioned images
Use Amazon CloudWatch on AWS to monitor and troubleshoot box infrastructure, along with standard UNIX monitoring tools (ps, iostat, du, sar, tcpdump, …)
Create web and database log analytics using Splunk
Configure OpenVPN tunneling between cloud infrastructure and locally hosted infrastructure
Windows/Linux System Administration at the client’s site. Infrastructure, Networking
IT Specialist North America Chesapeake Pharmaceutical Packaging
02/17/1997 – 12/31/2013
Hicksville, NY
Configure and install Unix/Linux/Windows/Macs servers; System/Security/Application Administration. Systems and Network Monitoring. Security Audits
Software Development and Testing
Configure and install Cisco R&S, WLC, AP, FW and appliances. Infrastructure Support LAN/MAN/WAN and monitoring (NTP server, SNMP poller, Nagios monitoring and alerting)
IT Security, Internal Controls, IT Compliance; SOX Compliance. Perform and document SOX testing of IT General Controls in the areas of Security, Change Management, Application and Data Access, and Monitoring Controls
Manage application patches, data backup, security changes and network configurations across a heterogeneous environment of 16 RHEL and 24 Windows servers (Puppet)
Develop tools and Python/shell/PowerShell scripts to monitor reliability and functionality of the environment, tasks automation
Configured and managed Asterisk PBX phone system, as well as Cisco Call Manager
Collaborate with the global team to resolve IT support cases
Serve as sole database administrator for IBM Informix DB storing mission-critical ERP data
Conduct annual IT Compliance Audits across North American Sites
Develop and maintain accurate systems and network documentation (internal Wiki pages and Visio diagrams)
Accomplishments
Designed and setup a new HQ to be relocated from Hicksville, NY to Raleigh, NC 2013
Designed Wiring of Network Infrastructure for Shop Floor Data Collection across NA
2012
Planned and supervised Fiber and CAT5e Ethernet cabling for 70,000 sqft combined production floor to 24 PLCs that support industrial printing press equipment
Configured vendor equipment (PLCs, PCs) using vendor-supplied documentation and built monitoring system for infrastructure using Nagios (via SNMP polling)
Consolidated legacy physical Windows 2003 server environment to VMWare virtualized Windows 2008 R2 environment, reducing physical server count from 28 to 10
Move P2V and V2V using VMWare Converter
As per Customer’s Request installed trial Version of the Websphere and use MQ
Directed Front Office and Shop Floor IT relocation from Brooklyn, NY to Lake Success, LI in 2002 and from Lake Success, NY to Hicksville, NY in 2008
2008
Designed regional datacenter infrastructure and laid out data cabinets and points of distribution throughout front office and shop floor equipment
Orchestrated IT turnover from one location to another with no interruption in business operations
Migrated Avaya Merlin PBX to Definity, then to the open source Asterisk system at NY, and moved from Definity to Cisco CME at multiple locations and saved $60,000 in implementation costs
Researched and implemented WAN link using bonded T1 as a primary connection with Verizon FIOS as backup
Upgraded ERP System from IBM AIX-3.x to 4.x, then to the 5.x, then migrated from AIX to RHEL-4.x, then to 5.x; Move to the VMWare-4.1, then upgraded to VMWare-5.x
Achieved Complete Sarbanes Oxley Regulatory IT Compliance in Six Months
2007
Worked with auditors from Ernst & Young (E&Y), PwC and Deloitte to ensure SOX compliance
oCreated procedures for ensuring segregation of duties in IT processes and change control systems
oCreated procedures for ensuring segregation of duties in IT processes and change control systems
oAutomated backup systems and ensured that ensured that logs were collected and retained according to SOX requirements
oDocumented backup and disaster recovery procedures
oCreated password policies and database change auditing systems
Manage all IT equipment purchasing across All North American Sites 2013
Negotiate with IT vendors for office desktop hardware and printing supply contracts
Migrated and consolidated heterogeneous networking infrastructure to Cisco hardware with a support contract to lower operational burden
Education
Kiev Polytech Institute
1974-1980 Masters in Electrical Engineering (EE)
Technical Skills
Install/Configure and Maintain Wintel, UNIX (AIX-5.x), Linux (RHEL/CentOS), HP-UX
Strong understanding of various TCP/IP Protocols and Services
Implement and manage auditing and security policies and procedures
ITIL, CISM and CISA Knowledge; Process Improvement(s). SOPs, GRC Audit Software/Tools, CISA Certification working toward
Risks and Mitigations; Security Policy Development; SOC 2, SOX, IT Compliance
Recommend continuous improvements & streamlined processes
Coordinate discussions to resolve concerns & assess risk
Support test conclusions with clear, appropriately referenced work paper documentation
Identify key risks (actual and emerging) within IT processes and controls
Support enterprise IT projects to optimize control structure and reduce risk
Task Automation using Python, Bash, and Power Shell. Informix 4GL Programing
Linux Systems Installation/Upgrade/Update using Puppet Labs, Chef, Ansible
Data Center (NOC) Design/Management/Migration/Consolidation and Relocation
Applications/DB Design/Management/Migration/Consolidation and Relocation
System/Network/Security Monitoring Tools: Nagios, Solarwinds, Splunk, CloudWatch
Desktop and Server Support Windows’/7/8/10, 2003/2008/2012/2016. MAC’s Support
Exchange Server Administration, MS Office Support, File/Print Network System Support
VPNs. Multi Point Dynamic VPN. HA Proxy
Develop and maintain Backup and DR procedures. Test Restore. DRP/BCP
Active Directory Management; Auditing, Security Event Analysis; GPO Management
Intrusion Detection/Prevention Systems (IDS/IPS) Data Loss Prevention (DLP)
Database Administration (Informix/DB2, MySQL, Postgres, Sybase). SQL Queries
Design and Support/Maintenance of the Traditional and VoIP Phone Systems
Front/Back Office Network Design, Cisco L2/L3 Switches Management, Routers, Firewalls, ASAs.Juniper Support. Traffic Engineering
Infrastructure Capacity Monitoring and Planning platform
Advanced problem solving skills and the ability to work collaboratively with other
VMWare Support via vSphere Client; VMware Converter: P2V, V2V. Citrix Support
Experience in SAN/NAS/DAS storage environments
Multisite Help Desk, User Support and Troubleshooting. Screen Sharing
Operations Cost Control