Katrina Haseman, SSCP
*** *** ****** *****, **. Petersburg, FL 33701 850-***-**** *********@*****.***
Objective
Experienced Security Analyst with a demonstrated history of working in the higher education industry. Skilled in EMC Storage, Law Enforcement, Windows Server, Cisco Systems Products, and Security Devices. Strong information technology professional with a Bachelor’s Degree focused in Business Information Systems from Southern New Hampshire University. Currently pursing Masters in Cyber Security / Concentration in Information Technology Management. Excellent customer service relations and leadership skills, including mentoring and training, and a demonstrated ability to work effectively as a team player, as well as work independently to achieve organizational objectives.
Certifications & Skills
Systems Security Certified Practitioner SSCP (DoD approved 8570 baseline certification for IAT Level II and CSSP Infrastructure Support)
Access Controls Application Security Communications Security Cryptography Incident Recovery Incident Response Network Security Risk Analysis Risk Identification Risk Monitoring
Security Administration Security Operations Systems Security
Education
MASTERS (CURRENTLY ENROLLED) MAY 2019 SNHU
Cyber Security / Concentration in Information Technology Management
BACHELORS DECEMBER 2015 SNHU
Business Information Systems
PAT THOMAS LAW ENFORCEMENT ACADEMY 2002
Florida Law Enforcement Standards
Experience
SECURITY ANALYST FSU 2016 – MAY 2018
Florida State University Information Security & Privacy Office Security Operations Center (ISPO SOC)
Enterprise level security provided for all university departments and business units for the purpose of protecting FSU data at a tactical level. Provide system and network level security services from the network edge to the individual desktop devices.
Manage Cisco Firepower 9300 Security, Threat Defense, Source Fire, and Management Center (FMC); live monitoring, updates, firewall rules, policies, objects, whitelists, blacklists, etc., team lead in responding to cyber-attacks; proposes and implements response measures; leadership role in information security incidents, intrusions, malware, unauthorized access, and investigations; performs computer forensics following best practices, documents findings, and proposes appropriate procedures; web application security testing and protection; cyber threat research/analysis experience; reports incidents to customer using ticketing system; works closely with MS-ISAC and Symantec on investigations and log collections; provide forensic analysis of network packet captures, DNS, proxy, Netflow, malware, host-based security and application logs, as well as logs from various types of security sensors; Identify and understand issues, problems and opportunities; compare data from different sources to draw conclusions; remains current with developments and trends in areas of expertise; use collaborative relationships to facilitate the accomplishment of work goals
Plans, develops, and implements Rapid7 Nexpose vulnerability/configuration scanning, detection and remediation services based on credentialed scans. Supports Risk Management and PCI by performing required quarterly IT assessment and vulnerability scans, interpreting results and developing associated reports.
Works closely with FSU Police on digital forensic cases; utilizes AccessData Forensic Toolkit (FTK), performs security incident alerting, task assignments, follow up, and performance measurement reporting; researches critical incidents and advises remediation teams on corrective procedures and prevention techniques; performs duties in compliance with ITS policies, guidelines, and processes pertaining to support requests, work orders, project management, change management, and incident management; appropriately utilizes associated tools in accordance with ITS standards.
TECHNICAL SUPPORT SECURITY ANALYST FACILITIES COORDINATOR
PRESTIGE HEALTH CHOICE 2014 - 2016
Provided direction and guidance in pre-implementation reviews of new systems to ensure proper controls are implemented and executed to meet compliance and leading practice standards; ensure electronic systems architecture and functionality safeguards all confidential, proprietary, privileged and protected information assets; enforce information security derivatives within regulatory mandates to protect sensitive data; ensure the ongoing integration of information security with business strategies and privacy requirements
Managed relationships with all internal and external partners to understand feature and technology roadmaps to better align on long term objectives and opportunities; software upgrades for Citrix Receiver and TeamViewer, Thin Client setups, quarterly updates for Dell and HP laptops; troubleshoot Citrix environments and user profiles; assist users remotely in regional offices throughout Florida
Responsible for onboarding ticketing system for new hires and terminations; work directly with AmeriHealth's Director of IS Business Engagement Services for determining and establishing profile credentials for Prestige's new hires and transfers; handled local facilities, grounds, and office management functions for the Tallahassee office.
NETWORK SECURITY ADMINISTRATOR CAPITAL HEALTH PLAN 2008 – 2014
Assisted IT Security Administrator in validating NIST/ISO 27001 information security key controls to identify control risks, analyze root causes and trends in potential control weaknesses; suggest new controls to meet compliance standards where applicable; member of the Incident Response Team investigating potential unauthorized activity on the network
Responsible for implementation and maintenance of the antivirus software; isolating devices off the network infected with malware or viruses; part of a security team to determine the payload effect from a particular threat and best practices toward mitigation. Microsoft System Center Configuration Manager (SCCM) and Dell KACE
Responsible for Data Loss Prevention (DLP) analysis. Used McAfee ePolicy Orchestrator (ePO) to address risks associated with the storage and use of confidential data on laptops and desktops across the organization; provided documentation to Compliance on identified security issues/risks; assisted Technical Specialists with troubleshooting installation and compatibility issues with new devices; utilized Network Access Control (NAC) and Active Directory to enforce network security for compliance with security policies, guidelines, and business processes
Assisted with VMware VCenter and VSphere migrations and restores; Windows Server 2003 and 2008 preventative, maintenance, and troubleshooting support
EMC Avamar, ExaGrid, Symantec Backup Exec and Veeam Backup & Replication backup solutions; maintained source and replication grids of encrypted data; includes virtual machine image backups, data stores, proxies and tape backups; daily, weekly, monthly and quarterly backups; performed disaster recovery operation yearly at SunGard; member of the Disaster Recovery Team. Worked with Directors, Supervisors, and Managers to develop contingency plans including annual testing
Headed the conversion and implementation of the burglar, fire and badge access monitoring systems; liaison between CHP and vendors for support, conversions and implementations
Active Directory, TCP/IP networking protocols, DNS; experience with automated deployments, experience administrating large enterprise applications, public facing websites
TECHNICAL SPECIALIST CAPITAL HEALTH PLAN 2005 – 2008
Lead in the SCCM 2007 implementation and monitoring; installed/set up new workstations, laptops, and wireless tablets; installed software packages and operating systems; maintained strong, collaborative relationships with technical peers; provided customer service in response to client inquiries concerning systems operations, diagnosing system hardware and software problems; provided guidance and assistance with the installation of hardware components with IT personnel; document PC configuration and procedures for software and hardware installations
HELP DESK ANALYST CAPITAL HEALTH PLAN 2003 – 2005
Central point of contact for all users needing support with IS systems; troubleshoot, resolve/route, and document calls; ordered of all computer hardware and software specified by the various departments; included submission of requisitions for Senior Management approval, follow up on purchase orders, and distribution of items ordered; coordinated IS training facilities and peripheral equipment; coordinated hardware maintenance by outside vendors; maintained security badge program for all employees, temporary employees, and vendors; created secured access levels
RESERVE DEPUTY SHERIFF LEON COUNTY SHERIFF’S OFFICE 2004 – 2006
Maintained order during parades and public events; worked with local law enforcement agencies during preset DUI check-points; attended training and maintained proficiency in high liability functions such as vehicle operation, defensive tactics, and firearm use; worked with specific units within the department requiring the performance of specialized duties.
POLICE OFFICER TALLAHASSEE POLICE DEPT 2002 – 2003
Protection of life and property through prevention of crime and the enforcement of laws and ordinances. Responsible for the prevention, detection and investigation of crimes; preliminary investigations, preparation of reports, documented records of incidents encountered; answered calls for service and complaints involving traffic infractions and accidents, misdemeanors, and felonies; analyze disputed and complex situations objectively, determining proper course of action.