NIGEL T. SAMPSON
*********@*****.***
SUMMARY
Over 20 years of experience in Information Technology and Information Security. Specializing in Networking and
Communications, and Information Security.
AREAS OF STRENGTH
* Team Building * Excellent Communication Skills
* Budget Management * Presentation Skills
* Staff Training & Development * Client Relations
* Leadership * Information Security Architecture
* IT Risk Management * Network Design and Management
* Change Management Frameworks * IT Process Automation
TECHNOLOGY EXPERTISE
* IBM Qradar Security Event and Incident Management * ForeScout Network Access Control
* Websense and Bluecoat Web Secure Gateway * Meridien and Avaya VoiP Management
* Microsoft, and VMWare engineer expertise * Cisco and Foundry Routing, Switching, Firewall
expertise
An affinity for technology has resulted in a multi-faceted career in IT that includes expertise in Information Security,
Network and Infrastructure design, IT auditing, Operations, Management, Leadership, problem-solving, and mentoring.
Previous employment for a multitude of different types of businesses in both the private and public sectors, from
International Banking and Investment groups, to Healthcare, to International Hotel and Casino’s, and government
agencies, both state and federal, offers a diverse set of skills that provides not just IT expertise, but knowledge and
experience on a multitude of IT related subjects such as Risk Management, IT security, network design, ROI analysis,
operational budget analysis, leadership, and management.
PROFESSIONAL EXPERIENCE
Information Security Program Manager for MBTA & MassDoT(Teksystems) Apr 2012 - Present
As a Consultant to the MBTA & MassDoT, my current responsibilities include creating an enterprise-wide risk
management program that satisfies PCI DSS 2.0, ISO27000, and NIST standards. I was initially tasked with managing a
multi-million dollar project that includes the implementation of a multi-tiered security monitoring and management
architecture, consisting of a SEIM, NAC, and Web Secure Gateway. My first task was to create a detailed RFP ensuring
the final product was an enterprise level technology from a well-known vendor, with a product within the Gartner magic
quadrant.. Working with multiple departments, I had to ensure governmental compliance and regulations were adhered to.
The RFP was distributed to over 60 vendors, including IBM, McAfee, Cisco, and Juniper. Working closely with the
MBTA IT Department and Purchasing department, I ran various meetings, and arranged for vendor meetings to clarify
issues with their bids. In order to expedite the process, I created a decision model that aided senior management in the
vendor selection process. The detail of the RFP, and the creation of the Decision Model proved crucial to expediting the
project. Other projects in my realm of responsibility included the roll out of the Juniper VPN Host Checker. This project
was cancelled two years ago by the CIO due to the large amount of issues it caused. I completed the rollout of the Juniper
VPN Host Checker project in two months. Working closely with the Network management team I gained a detailed
perspective of the MBTA network and the various systems the network supported. I worked closely with the Director of
Networking and Infrastructure and the CISO, to assist in related projects, to ensure the SEIM, NAC, and WSG platforms
were integrated seamlessly into the infrastructure, and were provided the appropriate resources.
CHIEF SECURITY OFFICER\IT DIRECTOR ECOMMLINK NOV 2010 - Aug 2011
AS THE CSO\IT DIRECTOR I AM RESPONSIBLE FOR INFORMATION TECHNOLOGY, AND SECURITY. USING MY IT AUDITING SKILLS, I CREATED
INFORMATION SECURITY PROGRAM THAT ENCOMPASSES ALL IT POLICIES AND PROCEDURES, AND ALL INFORMATION SECURITY RELATED
AN
POLICIES. HAVING OVER 17 YEARS OF NETWORK AND COMMUNICATIONS EXPERIENCE, I EVALUATED THE NETWORK INFRASTRUCTURE AND
RECOMMENDED TO THE CEO A $130,000 NETWORK INFRASTRUCTURE UPGRADE PLAN. THIS REPLACED A FLAWED AND UNSTABLE NETWORK
DESIGN, PROVIDING A MORE STABLE AND SCALABLE INFRASTRUCTURE. I SUCCESSFULLY GUIDED THE COMPANY THROUGH A PCI DSS, AND AN
SSAE 16 TYPE II AUDIT. I AM A MEMBER OF THE TECHNOLOGY AND CHANGE CONTROL BOARDS, AND A MEMBER OF THE SECURITY
CONTROL BOARD, WORKING CLOSELY WITH SENIOR MANAGEMENT. AS PART OF MY DAILY RESPONSIBILITIES, I CONDUCT SECURITY REVIEWS
UTILIZING A NUMBER OF APPLICATIONS, MOST OF WHICH I RECOMMENDED, AND PROVIDE MORE THAN JUST SECURITY MONITORING. SOME
APPLICATIONS SUPPORT THE CHANGE MANAGEMENT FRAMEWORK WHICH I APPLIED TO OUR PRODUCTION ENVIRONMENT, AND OTHER
APPLICATIONS PROVIDE NETWORK AND APPLICATION MONITORING, INCLUDING USER EXPERIENCE FOR OUR WEB SERVICES. THESE TOOLS ALSO
PROVIDE US WITH CAPACITY PLANNING, AND A PROACTIVE APPROACH TO PERFORMANCE MONITORING. I AM RESPONSIBLE FOR THREE DATA
CENTERS THAT INCLUDE AN EXTENSIVE VMWARE INFRASTRUCTURE, WITH 7 HOSTS AND OVER 150 VM’S. PART OF THE IT INFRASTRUCTURE
INCLUDES OVER 130 MICROSOFT SERVERS, CISCO ASA 5500’S AND CORE HP CORE SWITCHES, AS WELL AS A NUMBER OF MICROSOFT SQL
CLUSTERS USING PEER-TO-PEER HIGH AVAILABILITY TECHNOLOGY. WORKING WITH THE SVP OF SOFTWARE ENGINEERING, I WAS EDUCATED IN
THE AGILE METHODOLOGY OF SOFTWARE DEVELOPMENT, ADDING TO MY ALREADY DIVERSIFIED BACKGROUND. IN THE SHORT TIME I HAVE
WORKED AT ECL I HAVE IMPLEMENTED AN INFORMATION SECURITY PROGRAM, REDESIGNED, AND IMPLEMENTED, A NEW NETWORK
INFRASTRUCTURE, APPLIED A COMPLETE CHANGE MANAGEMENT PROGRAM, AND COMPLETED TWO SUCCESSFUL AUDITS. HAVING EXHIBITED MY
SKILLS EFFECTIVELY, IN JUST SIX MONTHS I HAVE MOVED FROM BEING THE INFORMATION SECURITY OFFICER, TO CHIEF SECURITY OFFICER
AND IT DIRECTOR.
IT EXECUTIVE AND RISK MANAGER NETWORK SYSTEMS CONSULTING, INC. MAY 2003 – Present
USING MY EXTENSIVE TECHNICAL AND MANAGEMENT SKILLS, I PROVIDE IT CONSULTING SERVICES TO A WIDE RANGE OF CLIENTS. MY
CISCO NETWORKING, MICROSOFT NETWORKING, AND NETWORK SECURITY. MY IT MANAGEMENT EXPERIENCE
TECHNICAL SKILLS INCLUDE
COMES FROM POSITIONS SERVED AS NETWORK ARCHITECT, NETWORK MANAGER, AND IT DIRECTOR. AS WELL AS PROVIDING IT CONSULTING
SERVICES AT THE EXECUTIVE LEVEL, I ALSO PROVIDE IT RISK MANAGEMENT SERVICES, WHICH INCLUDES REVIEWING INFORMATION SECURITY
PROGRAMS, BOARD OVERSIGHT, IT MANAGEMENT, OPERATIONS, BUSINESS CONTINUITY PLAN AND DISASTER RECOVERY, POLICIES AND
PROCEDURES, RISK ASSESSMENT AND ANALYSIS, AND NETWORK VULNERABILITY ASSESSMENTS. REGULATORY AGENCIES, FOR WHICH AUDITS
ARE PREPARED, INCLUDE THE FDIC, OTS, OCC, DFI (CALIFORNIA). OTHER AUDITING ENGAGEMENTS INCLUDE GLBA, AND SOX
TESTING. MORE RECENTLY I HAVE BEEN CONDUCTING SAS70 REVIEWS FOR COMPANIES IN CHICAGO, ST.LOUIS, MOSCOW, AND BUDAPEST. I
SUPPLY AUDIT FINDINGS AND RECOMMENDATIONS TO EXECUTIVE LEVEL MANAGEMENT AND BOARD MEMBERS THROUGH FORMAL PRESENTATIONS,
BASED ON IT BEST PRACTICES, AND REGULATORY COMPLIANCE. I ALSO PERFORM IT CONSULTING TO SMALL AND MEDIUM SIZED COMMUNITY
BANKS. I ALSO HAVE WRITTEN IT RELATED ARTICLES IN THE WESTERN INDEPENDENT BANKERS MAGAZINE.
OTHER RESPONSIBILITIES INCLUDE:
SYSTEMS MANAGEMENT, INCLUDING NETWORK MONITORING, AUTOMATED MANAGEMENT, AND REMOTE MANAGEMENT
●
SYSTEMS INSTALLATION INCLUDING: SERVER HARDWARE AND SOFTWARE UPGRADES, ACTIVE DIRECTORY INSTALLATIONS, DNS
●
INSTALLATIONS, EXCHANGE 2003 MIGRATIONS AND INSTALLATIONS, NETWORK INSTALLATIONS AND NETWORK SECURITY INSTALLATIONS
NETWORK EXPERTISE IN CISCO AND FOUNDRY PRODUCTS
●
EXPERTISE IN A WIDE VARIETY OF MICROSOFT PRODUCTS
●
CONSULTED WITH CLIENTS ON NETWORK INFRASTRUCTURE ISSUES, SUCH AS DESIGN CHANGES, AND NETWORK PERFORMANCE, NETWORK
●
SECURITY, INTRUSION DETECTION, AND DISASTER RECOVERY PLANNING.
VULNERABILITY ASSESSMENT AND PENETRATION TESTING
●
BUDGET FORECASTING AND MANAGEMENT
●
PROJECT MANAGEMENT
●
INFORMATION SYSTEMS SECURITY AUDITING
●
RISK ANALYSIS AND MANAGEMENT
●
IT DIRECTOR
HALE LANE PEEK DENNISON AND HOWARD AUGUST 2003 – APRIL 2004
DIRECT THE CREATION AND EVOLUTION OF THE ENTERPRISE ARCHITECTURE STRATEGY TO OPTIMIZE TECHNOLOGY DELIVERY THROUGHOUT THE
ORGANIZATION. PROVIDES THE LEADERSHIP IN THE ANALYSIS OF THE CURRENT IT ENVIRONMENT TO DETECT CRITICAL DEFICIENCIES AND
RECOMMEND SOLUTIONS FOR IMPROVEMENT. RESPONSIBLE FOR THE ANALYSIS OF TECHNOLOGY INDUSTRY AND MARKET TRENDS TO DETERMINE
THEIR POTENTIAL IMPACT ON THE ENTERPRISE ARCHITECTURE. DIRECTS THE DEVELOPMENT, IMPLEMENTATION AND ONGOING REFINEMENT OF AN
IMPLEMENTATION PLAN FOR THE ENTERPRISE ARCHITECTURE BASED ON BUSINESS REQUIREMENTS AND IT STRATEGIES. IDENTIFY
ORGANIZATIONAL REQUIREMENTS FOR THE RESOURCES, STRUCTURES AND CULTURAL CHANGES NECESSARY TO SUPPORT THE ENTERPRISE
ARCHITECTURE. NOTABLE ACHIEVEMENTS INCLUDE REDUCTION OF OVERALL OPERATING COSTS BY 17% THROUGH RENEGOTIATING
TELECOMMUNICATIONS CONTRACTS AND ELIMINATING NONPERFORMING LEASE CONTRACTS. ALSO, A CRITICAL MEMBER OF THE CONSTRUCTION
COMMITTEE RESPONSIBLE FOR DESIGNING A STATE-OF-THE-ART DATA CENTER AND CABLE MANAGEMENT SYSTEM FOR A NEW FACILITY AND
MOVING 70 EMPLOYEES TO THE NEW LOCATION WITH NO SERVICE INTERRUPTION. MAINTAINED EXTENSIVE KNOWLEDGE OF MIDRANGE SERVER
ENVIRONMENTS (INCLUDING MICROSOFT WINDOWS), NETWORK LAN/WAN, TCP/IP, DNS, CISCO SWITCHES AND FIREWALLS, NETWORK
MONITORING, CAPACITY PLANNING, BACKUPS, AND DISASTER RECOVERY;
OTHER RESPONSIBILITIES INCLUDE:
MANAGED DAY-TO-DAY OPERATIONS OF THE TECHNOLOGY DEPARTMENT Personnel management
BUDGET MANAGEMENT ($2.5 MILLION) Board presentations
FACILITIES MIGRATION TEAM BUILDING
FINANCIAL SYSTEMS CONSULTANT COMPUSHARE SEPTEMBER 2001 – AUGUST 2003
LEAD CONSULTANT ON REMOTE ENGAGEMENTS THAT INCLUDED NETWORK INSTALLATIONS, SYSTEMS UPGRADES, SYSTEMS MIGRATIONS AND
NETWORK EXPANSIONS. ENGAGEMENTS WOULD INVOLVE 1 TO 2 JUNIOR ENGINEERS. STAFF TRAINING AND DEVELOPMENT, SCHEDULING,
TASKING, PROJECT MANAGEMENT, STATUS REPORTING TO REGIONAL MANAGERS, CLIENT INTERFACING TO ENSURE PROJECT COMPLETION.
OTHER RESPONSIBILITIES INCLUDE:
CONDUCTED MULTIPLE NOVELL TO MICROSOFT CONVERSIONS
●
SYSTEM MIGRATIONS FROM NETWARE TO MICROSOFT 2000, AND GROUPWISE TO EXCHANGE 2000.
●
PROVIDED NETWORK CONSULTATIONS WITH COMMUNITY BANKS ON BEHALF OF COMPUSHARE, WITH REGARD TO DESIGN, PLANNING,
●
IMPLEMENTATION, AND MAINTENANCE OF BANK NETWORKS.
CARRIED OUT MONTHLY CONSULTATIONS WITH REGARD TO NETWORK AND SYSTEMS ADMINISTRATION.
●
PROJECT EXPERIENCE INCLUDES DESIGNING, STAGING, AND INSTALLATION OF BANK NETWORKS THAT INVOLVE INSTALLING CISCO
●
ROUTERS, SWITCHES, FIREWALLS, INTRUSION DETECTIONS SYSTEMS AS WELL AS MICROSOFT WINDOWS 2000 SERVERS, AND
wORKSTATIONS.
NETWORK ARCHITECT TRIRIGA JUNE 2000 – SEPTEMBER 2001
NETWORK DESIGN, MANAGEMENT, AND SECURITY. PROJECT MANAGEMENT, VENDOR MANAGEMENT, NETWORK PERFORMANCE MONITORING
AND REPORTING, REPORTING TO SENIOR MANAGEMENT PROJECT STATUS, NETWORK PERFORMANCE STATISTICS, NETWORK DOCUMENTATION.
OTHER RESPONSIBILITIES INCLUDE:
DESIGNED AND INSTALLED A FOUNDRY NETWORK CAPABLE OF SUSTAINING ONE MILLION CONCURRENT INTERNET USER SESSIONS, WITH
●
TOTAL REDUNDANCY AND SECURITY.
MANAGED A NORTEL NETWORK PBX RUNNING CALL-PILOT, MAT 6.0, INCLUDING MERIDIAN MAIL AND SYMPOSIUM.
●
MAINTAINED A UNIFIED MESSAGING SYSTEM CALLED CALL-PILOT THAT INTERFACES WITH THE NORTEL PBX SYSTEM. CALL-PILOT
●
PROVIDED VOICE-MAIL MESSAGING ACCESSIBILITY THROUGH THE OUTLOOK EMAIL APPLICATION.
BID, PURCHASED, INSTALLED, MAINTAINED AND UPGRADED THE PBX PHONE SYSTEM.
●
AUTHORED NUMEROUS WHITE PAPERS ON VENDOR COMPARISONS TO INCLUDE NETWORK MONITORING, NETWORK VENDOR SOLUTIONS,
●
FIREWALL VENDOR SOLUTIONS, WEB MONITORING TOOLS, AND INTERNET USAGE APPLICATIONS.
CREATED COMPREHENSIVE DOCUMENTATION INCLUDING ‘NETWORK CONCEPT, DESIGN, AND BUILD’ DOCUMENTATION
●
OTHER TECHNICAL EXPERTISE INCLUDES: 6 YEARS EXPERIENCE IN COMPUTER OPERATIONS INCLUDING IBM SYSTEM 38 AND AS400
OPERATIONS. Leading TEAMS, STAFF PERFORMANCE EVALUATIONS, SYSTEM PERFORMANCE REPORTING AND SCHEDULING.