Security Management
Resume:
Antonio D. Hicks
Lawrenceville, GA. 30045
**************@***.***
SUMMARY OF QUALIFICATIONS:
Operating Systems: Windows /XP/Vista/7, Active Directory, Microsoft Server 2003, Cisco, Mac OSX, Linux
Software: MS Office (Microsoft Word & Excel advanced knowledge), Word Perfect
Hardware: PC repair, Printers, Hubs, Cable Scanner, Cabling including installation and troubleshooting diagnostics
Services: Frame Relay, ISDN, WINS, DNS, PPP, Active X
Protocols: TCP/IP, SMTP, HTTP, FTP, NAT, SNMP, PAT, RIP
Compliance Controls: PCI DSS, HIPPA, SOC2, NIST, FedRAMP
Personal attributes: dedication, integrity, and strong work ethic. A fast learner that adapts well to new challenges and job requirements. Able to approach extreme challenges with composure and clarity.
Well organized, detail oriented and efficient. Able to plan, prioritize and complete multiple tasks in a thorough, efficient & accurate manner.
Extremely service oriented and self-starting individual with a strong track record of success in problem solving skills.
Confident, articulate and persuasive team-builder able to motivate and communicate effectively to maintain integrity of mission and vision while achieving exceptional business performance.
EDUCATION/TRAINING:
Westwood College Information Systems Security Bachelor of Science
Strayer University Computer Security Management Masters of Science - In progress
CEH (Certified Ethical Hacker); Security+; ITILv3; Qualys Guard Certified Specialist
RELEVANT EXPERIENCE:
07/2015-Present Cyber Security Analyst, Country Financial, Alpharetta, Georgia
Respond to CSIRT mailbox, escalating and remediating incidents
Create objects and rules for Checkpoint Firewalls
Using Bluecoat Reporter, scheduled reports malicious botnets, application downloads and potential infections.
Monitor and investigate TAP alerts from Proofpoint. Remediating malware infections through virus scans using McAfee Anti-virus and tools such as Virustotal, Malwr and others to investigate malware alerts. Respond to phishing alerts.
Gray and white box pentesting for compliance audits and general network security using Kali Linux, Metaslpoit Pro, Nmap and Nessus Vulnerability scanner.
Use ProofPoint to blacklist email addresses block senders and IP addresses associated with SPAM. Monitor spoofing and geo-location folders for suspicious email.
Checking shared drives for PII and escalate for quarantine or mark as false positive
Identity management: permissions, access revocation and provisioning using Sailpoint.
Creating, maintaining safes; adding accounts after discovery and onboarding to safes, and members to them for privileged access in Cyberark.
Monitor security events and logs from a variety of sources including firewalls, network and data at rest DLP, IDS/IPS, network devices, system logs, and other data feeds in order to detect security anomalies, provide analysis and respond with appropriate mitigation to prevent a security incident.
Interface with Security Risk Management and provide detailed analysis and information on applicable weaknesses and vulnerabilities.
04/2014-07/2015 SOC Analyst, Fiserv, Atlanta, Georgia
Perform analysis of log files. Includes analysis of system resource access using Arcsight and Checkpoint Smartview Tracker and firewall health checks
Monitor network security events received from alerts in Sourcefire IDS/IPS and Solarwinds, and then take appropriate action based on security policy. Also monitoring the network for any anomalies and malicious/suspicious activity.
Perform vulnerability scans of devices sitting on the network using Qualys, gather reports and determine security levels from QID’s
Blocking/blacklisting URL’s on the Bluecoat proxy, check proxy health and traffic
Strong analytical and problem solving skills
Incident response using Remedy ticketing system and Alarmpoint notifications to join bridges to remediate incidents.
Investigate and remediate SOC tickets from Dell Secureworks.
07/2013-04/2014 Security Analyst, Fiserv, Atlanta, Georgia
Maintain certificate management operational guidelines and processes to directly support Fiserv’s security architecture and design to protect web sites, applications and the integrity of financial transactions.
Support existing SSL certificate management security solutions and partner with the security engineering team for the implementation and integration of any new enhancements made to Certificate Management security solutions in support of improving overall enterprise security.
Ensure certificate management security tools and solutions hardware/software/devices are operating effectively and updated in a timely manner.
Develop and maintain certificate management operating guidelines and procedures in support of Fiserv’s policies, standards and guidelines.
Determine appropriate levels of certificate management security configuration, controls and monitoring.
Use appropriate and effective measures to respond to certificate management network alerts and incidents.
Support the maintenance and deployment of new certificates, renewals and revocations in multiple ETG data centers.
Understand the latest key and certificate management threat techniques and support appropriate countermeasures, configurations and awareness.
Support X.509 certificate management technologies on multiple platforms for internal/external clients.
Overall central management of certificate management solutions.
Work with members of all BU and ETG staff to support the enterprise approach to key management and certificates.
Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise networks.
Perform certificate management ticket queue monitoring, resolution and prioritization, maintain diagrams and documentation as appropriate and support data reviews, auditing and maintenance activities
SSL Certificate experience (root, intermediate, CSAPI, PKCS, certification stores, chains.)
Foundational network knowledge including load balancers, bindings and system configuration
PKI and SSL exposure and experience, including a strong preference for industry tools used for Certificate Lifecycle Management (Venafi, Trustwave.).
12/2012-06/2013 Security Analyst, Park n’ Fly, Atlanta, Georgia (Contract)
Manage security of servers and monitor security server for virus detection on our network and update the clients with up to date definition files and content filtering of web proxy.
Monitor IPS for security related events and implemented blocks based on analysis of traffic patterns using Sourcefire SIEM.
Assist in developing, defining, and directing the information security awareness program. Definition and implementation of technology and policy architecture.
Coordination of Patch Management and vulnerability testing. Proactive determination of trends related to predictive pathways, threat agents and attack vectors.
Monitor and manage Symantec Endpoint anti-virus software on all remote computers using central management console
Provide Information Security training to new employees and administer semi-annual Security Policy awareness training.
Utilize remote tools such as RDP, Dame Ware and VNC to troubleshoot, identify and resolve Remote site connective issues.
Use of ticketing system to efficiently meet the clients’ needs
Tokenization of all customers personal account numbers for PCI DSS Compliance
Installed mobile device encryption technologies to employee company mobile devices.
Acceptable use/ Security policy creation and revision
Physical security administration, configuration and installation of Genetec and Axis camera and NVR systems.
Monitor Cisco ASA firewalls for security related events using ASDM
Document issues and their resolution in the incident management system
.
5/2012-12/2012 Security Administrator, Home Depot, Atlanta, Georgia (Contract)
Monitor and audited Symantec Endpoint anti-virus software on all remote computers using central management console.
Utilize remote tools to troubleshoot and identify issues
Monitor IDS and IPS for security related events and implemented blocks based on analysis of traffic patterns
Resolve Internet connectivity, DNS and DHCP issues
OS hardening, deploying security patches and deleting unnecessary files, programs and services
Document issues and their resolution in the incident management system
Utilize remote tools to troubleshoot and identify issues
Use of ticketing system to efficiently meet the clients’ needs
6/2011-4/2012 Jr. Security Analyst, Staley Technologies, Norcross, Georgia
Installing, configuring, upgrading and repairing Server hardware and software in accordance with business requirements and standards.
Supporting server / desktop related technologies such as printers, network cables and wireless devices. TCP/IP, DHCP, DNS, WINS, Active Directory, Terminal Services, FTP and Telnet.
Administered Active Directory and Exchange 2000/2003 and serve as point of contact for Global Helpdesk Analyst
Monitor IPS for security related events and implemented blocks based on analysis of traffic patterns
Remove virus from workstation while protecting data integrity
Document issues and their resolution in the incident management system
Monitor Cisco ASA firewalls for security related events using ASDM
5/2011-5/2011 Desktop Technician, Turner Broadcasting, Atlanta, Georgia (short term contract)
Disassembled and reassembled desktop & docking workstations and ensure all desktops & docking stations are properly connected.
Completed cable management to create a more professional display.
Provided technical support including: connectivity, printer, software & hardware issues.
Performed hardware upgrades, which included Ram and hard drives.
Utilize remote tools to troubleshoot and identify issues
4/2011-6/2011 Network Technician, Georgia State University, Atlanta, Georgia (contract)
Configured Cisco and Extreme switches and routers.
Uninstalled and un-configured old switches and replaced with new switches.
Performed hardware upgrades from Ethernet to fiber optic ports.
Router and Switch testing and “Rack and Stack” switches
Completed cable management to create a more professional display.
3/2009-1/2011 Desktop Analyst, Southwestern College, Toledo, Ohio
Hands on repair and troubleshooting of user and computer problems.
Install and update software and hardware.
Deployed over 100 new computers and printers by connecting them to network and domain.
Managed inventory of all new and old desktops, laptops, phones, and printers.
Reimaged all computers using Symantec Ghost software.
Document issues and their resolution in the incident management system
Experience in Server 2003, Windows XP pro, Vista, all Windows office products, and Linux systems. Proficient in LAN, WAN, and network installation, monitoring, and troubleshooting.
Experienced in Active Directory. Experience in configuring through TFTP and troubleshooting
Have a good understanding of servers and networking.
Connectivity problems
Printer issues
Utilize remote tools to troubleshoot and identify issues
1/2005-8/2007 Technical Support, COSI Toledo, Toledo, Ohio
Update and repair of computers and printers, maintaining backups, hardware and software, and in assembly of and installation of a wide array of computer systems, workstations, and peripheral hardware.
Responded to e-mail, giving tips or helping to troubleshoot problems.
Performed hardware and software installations while providing high-level customer care, training, and technical support.
Document issues and their resolution in the incident management system
Customer service and soft skills
2/2000-10/2005 Desktop Support, Convergys, Toledo, Ohio
Provided help line solutions to inquiries, problems and complaints relating to computer applications, equipment, and network for internal and external users.
Responsible for technical maintenance, Operational supports on personal computers LAN/WAN hardware and software.
Associated duties include the troubleshooting of software and hardware related problems, educating and assisting end-users on a personal level and analyzing the need of end-users relating to productivity.
Additional tasks include installing NT/2000 workstations on the network, including corporate E-MAIL and printers.
Daily responsibilities include supporting end-users, troubleshooting software and hardware problems, training technicians in the PC/LAN/WAN environment, and performing basic network administration.
Reviewed system applications and proposed network security measures.
Setup, new computing labs and coordinated upgrades and patches installation for software and hardware.
Contact this candidate