Post Job Free
Sign in

Management Security

Location:
Londonderry, NH
Salary:
180000
Posted:
March 19, 2014

Contact this candidate

Resume:

NIGEL T. SAMPSON

*********@*****.***

781-***-****

SUMMARY

Over 20 years of experience in Information Technology and Information Security. Specializing in Networking and

Communications, and Information Security.

AREAS OF STRENGTH

* Team Building * Excellent Communication Skills

* Budget Management * Presentation Skills

* Staff Training & Development * Client Relations

* Leadership * Information Security Architecture

* IT Risk Management * Network Design and Management

* Change Management Frameworks * IT Process Automation

TECHNOLOGY EXPERTISE

* IBM Qradar Security Event and Incident Management * ForeScout Network Access Control

* Websense and Bluecoat Web Secure Gateway * Meridien and Avaya VoiP Management

* Microsoft, and VMWare engineer expertise * Cisco and Foundry Routing, Switching, Firewall

expertise

An affinity for technology has resulted in a multi-faceted career in IT that includes expertise in Information Security,

Network and Infrastructure design, IT auditing, Operations, Management, Leadership, problem-solving, and mentoring.

Previous employment for a multitude of different types of businesses in both the private and public sectors, from

International Banking and Investment groups, to Healthcare, to International Hotel and Casino’s, and government

agencies, both state and federal, offers a diverse set of skills that provides not just IT expertise, but knowledge and

experience on a multitude of IT related subjects such as Risk Management, IT security, network design, ROI analysis,

operational budget analysis, leadership, and management.

PROFESSIONAL EXPERIENCE

Information Security Program Manager for MBTA & MassDoT(Teksystems) Apr 2012 - Present

As a Consultant to the MBTA & MassDoT, my current responsibilities include creating an enterprise-wide risk

management program that satisfies PCI DSS 2.0, ISO27000, and NIST standards. I was initially tasked with managing a

multi-million dollar project that includes the implementation of a multi-tiered security monitoring and management

architecture, consisting of a SEIM, NAC, and Web Secure Gateway. My first task was to create a detailed RFP ensuring

the final product was an enterprise level technology from a well-known vendor, with a product within the Gartner magic

quadrant.. Working with multiple departments, I had to ensure governmental compliance and regulations were adhered to.

The RFP was distributed to over 60 vendors, including IBM, McAfee, Cisco, and Juniper. Working closely with the

MBTA IT Department and Purchasing department, I ran various meetings, and arranged for vendor meetings to clarify

issues with their bids. In order to expedite the process, I created a decision model that aided senior management in the

vendor selection process. The detail of the RFP, and the creation of the Decision Model proved crucial to expediting the

project. Other projects in my realm of responsibility included the roll out of the Juniper VPN Host Checker. This project

was cancelled two years ago by the CIO due to the large amount of issues it caused. I completed the rollout of the Juniper

VPN Host Checker project in two months. Working closely with the Network management team I gained a detailed

perspective of the MBTA network and the various systems the network supported. I worked closely with the Director of

Networking and Infrastructure and the CISO, to assist in related projects, to ensure the SEIM, NAC, and WSG platforms

were integrated seamlessly into the infrastructure, and were provided the appropriate resources.

CHIEF SECURITY OFFICER\IT DIRECTOR ECOMMLINK NOV 2010 - Aug 2011

AS THE CSO\IT DIRECTOR I AM RESPONSIBLE FOR INFORMATION TECHNOLOGY, AND SECURITY. USING MY IT AUDITING SKILLS, I CREATED

INFORMATION SECURITY PROGRAM THAT ENCOMPASSES ALL IT POLICIES AND PROCEDURES, AND ALL INFORMATION SECURITY RELATED

AN

POLICIES. HAVING OVER 17 YEARS OF NETWORK AND COMMUNICATIONS EXPERIENCE, I EVALUATED THE NETWORK INFRASTRUCTURE AND

RECOMMENDED TO THE CEO A $130,000 NETWORK INFRASTRUCTURE UPGRADE PLAN. THIS REPLACED A FLAWED AND UNSTABLE NETWORK

DESIGN, PROVIDING A MORE STABLE AND SCALABLE INFRASTRUCTURE. I SUCCESSFULLY GUIDED THE COMPANY THROUGH A PCI DSS, AND AN

SSAE 16 TYPE II AUDIT. I AM A MEMBER OF THE TECHNOLOGY AND CHANGE CONTROL BOARDS, AND A MEMBER OF THE SECURITY

CONTROL BOARD, WORKING CLOSELY WITH SENIOR MANAGEMENT. AS PART OF MY DAILY RESPONSIBILITIES, I CONDUCT SECURITY REVIEWS

UTILIZING A NUMBER OF APPLICATIONS, MOST OF WHICH I RECOMMENDED, AND PROVIDE MORE THAN JUST SECURITY MONITORING. SOME

APPLICATIONS SUPPORT THE CHANGE MANAGEMENT FRAMEWORK WHICH I APPLIED TO OUR PRODUCTION ENVIRONMENT, AND OTHER

APPLICATIONS PROVIDE NETWORK AND APPLICATION MONITORING, INCLUDING USER EXPERIENCE FOR OUR WEB SERVICES. THESE TOOLS ALSO

PROVIDE US WITH CAPACITY PLANNING, AND A PROACTIVE APPROACH TO PERFORMANCE MONITORING. I AM RESPONSIBLE FOR THREE DATA

CENTERS THAT INCLUDE AN EXTENSIVE VMWARE INFRASTRUCTURE, WITH 7 HOSTS AND OVER 150 VM’S. PART OF THE IT INFRASTRUCTURE

INCLUDES OVER 130 MICROSOFT SERVERS, CISCO ASA 5500’S AND CORE HP CORE SWITCHES, AS WELL AS A NUMBER OF MICROSOFT SQL

CLUSTERS USING PEER-TO-PEER HIGH AVAILABILITY TECHNOLOGY. WORKING WITH THE SVP OF SOFTWARE ENGINEERING, I WAS EDUCATED IN

THE AGILE METHODOLOGY OF SOFTWARE DEVELOPMENT, ADDING TO MY ALREADY DIVERSIFIED BACKGROUND. IN THE SHORT TIME I HAVE

WORKED AT ECL I HAVE IMPLEMENTED AN INFORMATION SECURITY PROGRAM, REDESIGNED, AND IMPLEMENTED, A NEW NETWORK

INFRASTRUCTURE, APPLIED A COMPLETE CHANGE MANAGEMENT PROGRAM, AND COMPLETED TWO SUCCESSFUL AUDITS. HAVING EXHIBITED MY

SKILLS EFFECTIVELY, IN JUST SIX MONTHS I HAVE MOVED FROM BEING THE INFORMATION SECURITY OFFICER, TO CHIEF SECURITY OFFICER

AND IT DIRECTOR.

IT EXECUTIVE AND RISK MANAGER NETWORK SYSTEMS CONSULTING, INC. MAY 2003 – Present

USING MY EXTENSIVE TECHNICAL AND MANAGEMENT SKILLS, I PROVIDE IT CONSULTING SERVICES TO A WIDE RANGE OF CLIENTS. MY

CISCO NETWORKING, MICROSOFT NETWORKING, AND NETWORK SECURITY. MY IT MANAGEMENT EXPERIENCE

TECHNICAL SKILLS INCLUDE

COMES FROM POSITIONS SERVED AS NETWORK ARCHITECT, NETWORK MANAGER, AND IT DIRECTOR. AS WELL AS PROVIDING IT CONSULTING

SERVICES AT THE EXECUTIVE LEVEL, I ALSO PROVIDE IT RISK MANAGEMENT SERVICES, WHICH INCLUDES REVIEWING INFORMATION SECURITY

PROGRAMS, BOARD OVERSIGHT, IT MANAGEMENT, OPERATIONS, BUSINESS CONTINUITY PLAN AND DISASTER RECOVERY, POLICIES AND

PROCEDURES, RISK ASSESSMENT AND ANALYSIS, AND NETWORK VULNERABILITY ASSESSMENTS. REGULATORY AGENCIES, FOR WHICH AUDITS

ARE PREPARED, INCLUDE THE FDIC, OTS, OCC, DFI (CALIFORNIA). OTHER AUDITING ENGAGEMENTS INCLUDE GLBA, AND SOX

TESTING. MORE RECENTLY I HAVE BEEN CONDUCTING SAS70 REVIEWS FOR COMPANIES IN CHICAGO, ST.LOUIS, MOSCOW, AND BUDAPEST. I

SUPPLY AUDIT FINDINGS AND RECOMMENDATIONS TO EXECUTIVE LEVEL MANAGEMENT AND BOARD MEMBERS THROUGH FORMAL PRESENTATIONS,

BASED ON IT BEST PRACTICES, AND REGULATORY COMPLIANCE. I ALSO PERFORM IT CONSULTING TO SMALL AND MEDIUM SIZED COMMUNITY

BANKS. I ALSO HAVE WRITTEN IT RELATED ARTICLES IN THE WESTERN INDEPENDENT BANKERS MAGAZINE.

OTHER RESPONSIBILITIES INCLUDE:

SYSTEMS MANAGEMENT, INCLUDING NETWORK MONITORING, AUTOMATED MANAGEMENT, AND REMOTE MANAGEMENT

SYSTEMS INSTALLATION INCLUDING: SERVER HARDWARE AND SOFTWARE UPGRADES, ACTIVE DIRECTORY INSTALLATIONS, DNS

INSTALLATIONS, EXCHANGE 2003 MIGRATIONS AND INSTALLATIONS, NETWORK INSTALLATIONS AND NETWORK SECURITY INSTALLATIONS

NETWORK EXPERTISE IN CISCO AND FOUNDRY PRODUCTS

EXPERTISE IN A WIDE VARIETY OF MICROSOFT PRODUCTS

CONSULTED WITH CLIENTS ON NETWORK INFRASTRUCTURE ISSUES, SUCH AS DESIGN CHANGES, AND NETWORK PERFORMANCE, NETWORK

SECURITY, INTRUSION DETECTION, AND DISASTER RECOVERY PLANNING.

VULNERABILITY ASSESSMENT AND PENETRATION TESTING

BUDGET FORECASTING AND MANAGEMENT

PROJECT MANAGEMENT

INFORMATION SYSTEMS SECURITY AUDITING

RISK ANALYSIS AND MANAGEMENT

IT DIRECTOR

HALE LANE PEEK DENNISON AND HOWARD AUGUST 2003 – APRIL 2004

DIRECT THE CREATION AND EVOLUTION OF THE ENTERPRISE ARCHITECTURE STRATEGY TO OPTIMIZE TECHNOLOGY DELIVERY THROUGHOUT THE

ORGANIZATION. PROVIDES THE LEADERSHIP IN THE ANALYSIS OF THE CURRENT IT ENVIRONMENT TO DETECT CRITICAL DEFICIENCIES AND

RECOMMEND SOLUTIONS FOR IMPROVEMENT. RESPONSIBLE FOR THE ANALYSIS OF TECHNOLOGY INDUSTRY AND MARKET TRENDS TO DETERMINE

THEIR POTENTIAL IMPACT ON THE ENTERPRISE ARCHITECTURE. DIRECTS THE DEVELOPMENT, IMPLEMENTATION AND ONGOING REFINEMENT OF AN

IMPLEMENTATION PLAN FOR THE ENTERPRISE ARCHITECTURE BASED ON BUSINESS REQUIREMENTS AND IT STRATEGIES. IDENTIFY

ORGANIZATIONAL REQUIREMENTS FOR THE RESOURCES, STRUCTURES AND CULTURAL CHANGES NECESSARY TO SUPPORT THE ENTERPRISE

ARCHITECTURE. NOTABLE ACHIEVEMENTS INCLUDE REDUCTION OF OVERALL OPERATING COSTS BY 17% THROUGH RENEGOTIATING

TELECOMMUNICATIONS CONTRACTS AND ELIMINATING NONPERFORMING LEASE CONTRACTS. ALSO, A CRITICAL MEMBER OF THE CONSTRUCTION

COMMITTEE RESPONSIBLE FOR DESIGNING A STATE-OF-THE-ART DATA CENTER AND CABLE MANAGEMENT SYSTEM FOR A NEW FACILITY AND

MOVING 70 EMPLOYEES TO THE NEW LOCATION WITH NO SERVICE INTERRUPTION. MAINTAINED EXTENSIVE KNOWLEDGE OF MIDRANGE SERVER

ENVIRONMENTS (INCLUDING MICROSOFT WINDOWS), NETWORK LAN/WAN, TCP/IP, DNS, CISCO SWITCHES AND FIREWALLS, NETWORK

MONITORING, CAPACITY PLANNING, BACKUPS, AND DISASTER RECOVERY;

OTHER RESPONSIBILITIES INCLUDE:

MANAGED DAY-TO-DAY OPERATIONS OF THE TECHNOLOGY DEPARTMENT Personnel management

BUDGET MANAGEMENT ($2.5 MILLION) Board presentations

FACILITIES MIGRATION TEAM BUILDING

FINANCIAL SYSTEMS CONSULTANT COMPUSHARE SEPTEMBER 2001 – AUGUST 2003

LEAD CONSULTANT ON REMOTE ENGAGEMENTS THAT INCLUDED NETWORK INSTALLATIONS, SYSTEMS UPGRADES, SYSTEMS MIGRATIONS AND

NETWORK EXPANSIONS. ENGAGEMENTS WOULD INVOLVE 1 TO 2 JUNIOR ENGINEERS. STAFF TRAINING AND DEVELOPMENT, SCHEDULING,

TASKING, PROJECT MANAGEMENT, STATUS REPORTING TO REGIONAL MANAGERS, CLIENT INTERFACING TO ENSURE PROJECT COMPLETION.

OTHER RESPONSIBILITIES INCLUDE:

CONDUCTED MULTIPLE NOVELL TO MICROSOFT CONVERSIONS

SYSTEM MIGRATIONS FROM NETWARE TO MICROSOFT 2000, AND GROUPWISE TO EXCHANGE 2000.

PROVIDED NETWORK CONSULTATIONS WITH COMMUNITY BANKS ON BEHALF OF COMPUSHARE, WITH REGARD TO DESIGN, PLANNING,

IMPLEMENTATION, AND MAINTENANCE OF BANK NETWORKS.

CARRIED OUT MONTHLY CONSULTATIONS WITH REGARD TO NETWORK AND SYSTEMS ADMINISTRATION.

PROJECT EXPERIENCE INCLUDES DESIGNING, STAGING, AND INSTALLATION OF BANK NETWORKS THAT INVOLVE INSTALLING CISCO

ROUTERS, SWITCHES, FIREWALLS, INTRUSION DETECTIONS SYSTEMS AS WELL AS MICROSOFT WINDOWS 2000 SERVERS, AND

wORKSTATIONS.

NETWORK ARCHITECT TRIRIGA JUNE 2000 – SEPTEMBER 2001

NETWORK DESIGN, MANAGEMENT, AND SECURITY. PROJECT MANAGEMENT, VENDOR MANAGEMENT, NETWORK PERFORMANCE MONITORING

AND REPORTING, REPORTING TO SENIOR MANAGEMENT PROJECT STATUS, NETWORK PERFORMANCE STATISTICS, NETWORK DOCUMENTATION.

OTHER RESPONSIBILITIES INCLUDE:

DESIGNED AND INSTALLED A FOUNDRY NETWORK CAPABLE OF SUSTAINING ONE MILLION CONCURRENT INTERNET USER SESSIONS, WITH

TOTAL REDUNDANCY AND SECURITY.

MANAGED A NORTEL NETWORK PBX RUNNING CALL-PILOT, MAT 6.0, INCLUDING MERIDIAN MAIL AND SYMPOSIUM.

MAINTAINED A UNIFIED MESSAGING SYSTEM CALLED CALL-PILOT THAT INTERFACES WITH THE NORTEL PBX SYSTEM. CALL-PILOT

PROVIDED VOICE-MAIL MESSAGING ACCESSIBILITY THROUGH THE OUTLOOK EMAIL APPLICATION.

BID, PURCHASED, INSTALLED, MAINTAINED AND UPGRADED THE PBX PHONE SYSTEM.

AUTHORED NUMEROUS WHITE PAPERS ON VENDOR COMPARISONS TO INCLUDE NETWORK MONITORING, NETWORK VENDOR SOLUTIONS,

FIREWALL VENDOR SOLUTIONS, WEB MONITORING TOOLS, AND INTERNET USAGE APPLICATIONS.

CREATED COMPREHENSIVE DOCUMENTATION INCLUDING ‘NETWORK CONCEPT, DESIGN, AND BUILD’ DOCUMENTATION

OTHER TECHNICAL EXPERTISE INCLUDES: 6 YEARS EXPERIENCE IN COMPUTER OPERATIONS INCLUDING IBM SYSTEM 38 AND AS400

OPERATIONS. Leading TEAMS, STAFF PERFORMANCE EVALUATIONS, SYSTEM PERFORMANCE REPORTING AND SCHEDULING.



Contact this candidate