Information Security Architect
Resume:
HOWARD BUCK
**** ********* ** 515-***-****
Pleasant Hill, Iowa 50327 _ *********@*****.***
PROFILE
An Information Technology professional with over 30 years of experience for Fortune 500 companies and financial institutions. Proven record of aligning technology to support business initiatives. Recognized around the enterprise for creating high availability, high performance computing infrastructures that are secure and exceed compliance audits. Expertise and reputation include:
Ability to identify risks and means to mitigate
Rapid organization and deployment of teams
Vendor management
Strong negotiation skills
Ability to communicate vision and motivate action
Trend recognition and long-range planning
PROFESSIONAL EXPERIENCE
Walter Group
Firm that conducts IT Audits (SAS70/SSAE16, SOX, PCI), Penetration testing, Vulnerability Assessments, Information Security Consulting.
Consultant March, 2017 - Present
Perform and oversee vulnerability assessments/Penetration test and review the Executive Summary’s for content and accuracy. Reliable Technologies, Edie CPA firm and past bank clients.
INTL FCStone – West Des Moines, IA
Fortune 500 Investment Firm focused on commodities global wide.
DR Analyst Jan, 2016 – March. 2017
Developed and tested an aggressive Disaster Recovery Plan for all critical systems global
wide and acted as the focal point for all “High Availability” designs.
Kirkwood College – Cedar Rapids, IA Largest Community College in Iowa that remains the top 10 Community Colleges in the U.S. with over 15,000 students.
Sr. Information Security Engineer June, 2014 – Jan, 2016
Responsibilities include installation and management of various firewalls infrastructures, load balancing and BCP planning and execution. This includes engaging various Board levels, City Agencies and other companies within our campus (i.e.: TransAmerica). Other responsibilities include the creation and approval of written, confidentiality agreements.
Roth & Company, P.C. Des Moines, Iowa
CPA firm servicing the Iowa banking industry with director examinations, financial audits and Information Reviews.
Sr. Information Security Auditor/Consultant March, 2005 – June, 2014
The majority of our I.T engagements involve the review of bank policies and controls within their I.T. environment. This includes but is not limited to; Risk Management, Business Continuity Planning, Vendor Management, Information Security, Wire Transfer Processes, Outsourcing, Operations and Management oversight. The results of these audits are formally reviewed with the banks’ Board of Directors, with recommendations that can assist senior management with an overall implementation of a comprehensive Information Security Program. Many of our recent I.T. engagements consist of network redesigns to establish cost effective, high performance networks that are secure and can support remote image capture, VoIP, video conferencing and off-site data storage. In addition, with my past experiences in I.T. there are often times I assist our clients in the reduction of I.T. costs by renegotiating vendor agreements, telecommunication contracts and/or process improvements. In addition, I was directly responsible for implementing and supporting the firms internal network, which included all routers, PoE switches, real-time server mirroring and a flawless implementation of a VoIP system. This system integrated all voice-mail, faxes, email and dynamic call routing to keep our road warriors engaged with our clients at all times.
HARLAND FINACIAL/PREMIER SYSTEMS, West Des Moines, Iowa
Service organization that supplied all financial system processing and network infrastructure for more than 450 Financial Institutions nationwide.
Network Manager May, 2002 – March, 2005
Directly responsible for designing, implementing and support of all LAN/WAN networks, Server based systems, Desktops, Firewall infrastructures and Web development for both internal users and for more than 450 financial institutions throughout the U.S. These initiatives included tested disaster recovery solutions and negotiate contracts complete with service levels. It was through my accomplishments we were able to successfully pass SAS70 audits both financially and technically. In addition, my contract negotiations with our strategic vendors resulted in $50,000/mo savings.
MAYTAG CORPORATION, Newton, Iowa
Fortune 500 manufacturer of home appliances with 10 manufacturing plants throughout the US and Mexico, seven remote distribution centers, three call centers and over 1000 remote marketing personnel stationed throughout the world.
Corporate Manager of Network & Firewall Services Jan, 1995 – May, 2002
Charged with the creation of a cross-functional network group to serve the entire corporation by designing and developing network and Firewall infrastructures that supported all voice, video, data and Internet applications for a variety of business initiatives. In addition, I was charged with developing, training and delivering corporate security policies and standards.
Sr. Senior Network Analyst, Newton, Iowa April, 1990 – Jan, 1995
Charged with designing and implementing the first corporate data network to support all acquired appliance manufacturing companies purchased by Maytag. Migrated an old traditional SNA network to a Frame Relay network in 1992. This WAN was one of the first Frame Relay networks in the country as supported over 22,000 employees. This network infrastructure allowed the corporation diversity, mainframe independent and allowed for major cost reductions
EDUCATION
Southwestern Community College, Creston, Iowa
Associate Degree, Electronic Engineering
National Institute of Technology, Des Moines, Iowa
Associate Degree, Electronic Engineering
Iowa State University, Ames, Iowa
Course work in Electronic Engineering
University of Texas, Dallas, Texas
BS – Business Administration
Numerous Company-Sponsored Training including:
Several executive briefings with Cisco and Checkpoint
Kaizen
Six Sigma
Agile Project Management
Technical Management Executive Training
International Communication Association
Executive Strategies and Team Building
Continuous SANS development and training in addition to participating course prep.
Information Security Concepts course instructor for advanced I.T. Professionals.
Areas of Expertise:
GLBA, PCI and SOX Compliance
Alignment of IT initiatives with NIST standards
SAS70 Audits
Development of workable BCP/DR Procedures
Vulnerability Assessments/Penetration Testing using Qualys and Nessus tools
Routers, switches and other hardware in implementing high available and performing network infrastructures.
VoIP Systems
Firewalls (Certified), Fortinet, Cisco, SonicWall, Sidewinder/McAfee
Large Networks/Information Security
Linux and Windows Servers
F5's (Load Balancers, DNS, Segment Isolation)
Next Generation Firewalls (PaloAlto, Cisco, F5)
IPS/IDS
SIEMs
Carbon Black (end point security)
Backup solutions
SIP Trunking
Various office tools; Visio, Word, Excel, Sharepoint, Lotus Notes, Outlook, MAS90, Jabber, Skype, etc.
Contact this candidate