Security Management
Resume:
Emmanuel A. Oscar ******@**.******.***• • 786-***-****, CISM, CISSP-ISSAP ITIL NSA-IAM/IEM FCSE
OBJECTIVE: To obtain an Information Security Manager position where my leadership, management, analytical and
technical expertise can be utilized to effectively manage information security program from a risk
management approach.
EXPERIENCE:
Fortinet, Inc. – Sunnyvale, CA
Lead Security Analyst
Professional Service Engineer 11/08-present
Provide core security competencies by implementing policies, plans and procedures to safeguard people, information and
business assets. Counseled businesses in meeting compliance set by Federal regulators and Industry Standards. Incorporate
assessments, auditing plan to assess the effectiveness of security controls, and processes as part of a security lifecycle to
ensure security program aligns with business strategic objectives. Coordinate with business to address threats,
vulnerabilities and risk. Utilize Threat Management Systems (FW/IPS/IDS/VPN/AV/AS), endpoints security, Access
Control, Data Loss Prevention Database auditing/ Monitoring, Compliance (PCI, HIPAA, SOX) and Threat/ Vulnerability
Monitoring and Remediation coupled with security best practices to minimize risk.
Internally, manage a team of four security professionals.
Broward County Government – Fort Lauderdale, Florida
Information Systems Analyst IV – Security/ Disaster Recovery 01/06-11/08
• Information Technology Manager for Port Everglades Security Operations Center
• Manage Access control and identification management and video surveillance systems
• Plan, organize and conduct security audits of large-scale organizational operations; identify areas of vulnerability
and apply appropriate security controls to reduce risks
• Implement information systems security plan, data and systems classification, risks assessments, in accordance
with FISMA Risk Management Framework
• Assist with the deployment of Florida Unified Port Access and Transport worker Identification Card
• Security Liaison for Fort Lauderdale Airport and Broward County Office of information Technology as senior
Information Assurance architect
• Develop and review security policies, security awareness and perform policy gap analysis
• Conducted business case study for Security Event/ Incident Monitoring system and Intrusion Prevention System
• Create Security Incident response plan and Vulnerability management plans
• Review and analyze IT process work flows, develop procedures and solutions using ITIL and security best
practices
• Conduct Security Testing and Evaluation and systems Certification and Accreditation of information systems
• Designed and deployed Intrusion Prevention System and wireless intrusion prevention systems
• Conduct internal information systems assessment based on NIST SP800-53 risk management framework
• Member of IT CSRT and served as Disaster Recovery Coordinator at remote recovery site
• Established standards for network access, remote access and interconnected systems
• Threat and Vulnerability Management for enterprise information systems and cyber intelligence gathering
• Assure enterprise-wide information systems’ compliance in accordance to local security policies and governmental
regulations (HIPAA, Port and Maritime Act)
• Directed workflow, supervised and trained three senior-level security analysts in the design and execution of
complex projects
Emmanuel A. Oscar ******@**.******.***• • 786-***-****, CISM, CISSP-ISSAP ITIL NSA-IAM/IEM FCSE
Florida Department of Health/ Strategic Information Technology – Miami, FL 03/03-01/06
Regional Information Technology Security/Disaster Recovery Consultant
• Implemented regional COOP and Disaster Recovery plans
• Coordinate response to BIO- terrorism threats and natural disasters for RDSTF Region 7
• Incident Commander for Miami-Dade County and Monroe County Disaster Recovery during H. Wilma
• Deployed and managed region-wide IPS/AV Fortinet firewall solution
• Assisted in developing communications plan and response to City Readiness Initiative
• Developed regional IT security policy for Miami-Dade Health Department
• Performed network security assessments, System forensics
• Managed enterprise patch, antispyware and virus management
• Deigned Linux based virtualized Disaster Recovery systems
• Coordinate with IG and legal department on computer incident response
• Maintain and assure availability of Regional State core network
• Create secure baseline for windows (servers /desktop), Linux and routers
• Supervised Four Systems Administrators and managed regional network security for 1500 node on FR network
• Deployed secure storage and transmission of client’s data in compliance to HIPAA
• Assure integrity of Department of Health Medical records and clients data
• Deployed secure mobile Disaster Recovery network for state agencies during hurricane disaster relief
Brightstar Schools Credit Union – Fort Lauderdale, FL 06/02-03/03
IT Network/Security Consultant
• Deployed and managed LAN/WAN and Security infrastructure
• Designed, configured, managed and installed network perimeter security appliances
• Conducted security assessments and evaluations
• Migrated NetScreen firewall to Cisco PIX firewall
• Designed and deployed dynamic routing in conjunction with IP addressing
• Provided training support to internal MIS personnel
• Served as primary technical point of contact for vendors
EDUCATION:
Capitol College: Masters of Science, Information Assurance – 08/08
Pratt Institute: Bachelor of Engineering, Mechanical Engineering - 06/90
U.S. Army Chemical Corps: Nuclear, Biological and Chemical Warfare - 10/94
Florida Atlantic University: Project Management for IT Professionals, 02/07
SANS Institute: Intrusion Detection Analysis - 04/04
Systems Forensics, Investigation and Response - 02/05
Security Event and Incident Management - 07/06
Perimeter and System Audit - 03/07
CREDENTIALS
CISM, CISSP, ISSAP, FCSE, ITIL v3 and NSA-IAM/IEM CNSS-Network Protection - “Infosec Professional” CNSS-
Security Management, NSTISSI-4011, CNSSI-4012, CNSSI-4013 (A), CNNSI-4014 (A), NSTISSI-4015 and CNSSI 4016
(A), - Security Management Certification - Network Security Certification
SPECIALTIES
Information Assurance - IT Security Governance - Information/ Network Security Architecture - Vulnerability Assessment
and Threat Management-Remediation-Integration of physical and logical security - Incident Response- Risk Management/
Crisis Management – Business Continuity and Disaster Recovery Planning – Defense-in-Depth (DiD) - Intrusion
Prevention Systems (IPS) and Unified Threat Management (UTM) - Forensics – Compliance - Data Classification and
Categorization – Certification and Accreditation Program (CAP)- Systems Security Plans Incident Response - Security
T&E – Security IAM/ IEM
Emmanuel A. Oscar ******@**.******.***• • 786-***-****, CISM, CISSP-ISSAP ITIL NSA-IAM/IEM FCSE
TECHNICAL EXPERTISE
Platforms: Fortinet UTM - Cisco Security Networks - PIX/ ASA, Nokia CheckPoint NGX - IOS Firewall, IDS/IPS – Host-
based IDS – SNORT – IPS – NAC - Access Control Server - Vulnerability Scanner – ArcSight – AirDefense –
QualysGuard - SSL-VPN Concentrator - Encryption Technology – RSA – Security Event and Incident Management - Cisco
7500 7140, 3600/3088 and 2800 routers - 6500/4000 multi-layer switches- 3550XL switches - Protocols: RIP – IGRP –
BGP – OSPF –EIGRP - TCP/IP – PPP - SPX/IPX – IPSEC - IPSEC over GRE - Internet Key Exchange – PKI - certificate
servers – SSH – SSL – HTTP – SNMP - Operating System: Windows XP/Vista/ 2003/2008 Server - Linux (Red Hat &
Suse) - Active Directory Services – Wireless - Communications: Remote access servers - TACAS+ - RADIUS –
Gateways - T1 - T3 - DS3 – DSL - Metro-Ethernet – MPLS - Network Topologies: Ethernet - Fast Ethernet - Gigabit
Ethernet – FDDI - Frame Relay Networks - Standards: ISO-17799/ 27000 – NIST – FISMA – COBIT – FISMA – ITIL -
IT Security Governance Framework
MEMBERSHIPS:
Toastmasters International
ISC2
ISCA
Contact this candidate