Security Human Resources

*** ********* ** ******* ** *****

678-***-**** ********@*****.***

Summary: An accomplished, experienced Key Skills:

information technology specialist

combining a rich 15 year computing

background with outstanding communication,

leadership and teamwork skills. Familiar

with common Penetration and Vulnerability

testing tools and experienced in

communicating those results to a variety

of recipients. I love to determine root

cause; I love to understand the "how".

Never afraid to pour over code or

documentation, as the devil is in the

details. Strong desire to learn from

experienced Security Professionals.

Compliance Enforcement

Penetration Testing

Vulnerability assessment

Windows Administration

Linux Administration

Customer Relationships

Project Management

Technical Proficiencies

Platforms: Windows Server 2000-2012, Unix, Linux and AIX, Windows XP

Networking: Zenmap, Wireshark, Standard Network tools (SSH, Telnet,

Netstat etc)

Software: Armitage, Burpsuite, Nessus, SCCM, LANDesk, VMWARE, Active

Directory

Education and Certifications

. CompTIA A+

. CompTIA NetWork+

. CompTIA Security +

. Microsoft MCP

. High school Graduate

Awards

. IBM Means Service Award

. IBM Hall of Fame

. IBM Centennial Volunteer

Professional Experience

Platinum Insurance (Dubuque Iowa) (Pentesting Contract

11/2013)

Initiated penetration testing on both the internal network and on the

external ip's provided using Arachni, Zenmap and Armitage. Utilized Arachni

to test for vulnerabilities in external web apps and Zenmap for Internal

Scanning and Armitage for Vulnerability Testing. Performed Risk Assessments

on Policies and on Physical Security measures. Reviewed the reports

generated for any known issues and gathered day to day procedural

information, along with Disaster Recovery plans. Provided an overall

Security Report of entire environment to CIO and Director of IT Services.

Accomplishments:

. Utilized technical security skills to produce comprehensive Security

Report

. Further developed my familiarity with Pentesting and Vulnerability

tools

. Additionally solidified Physical Security assessment skills

IBM (Atlanta Georgia) - Current Job 06/2010 -

Present

Monitored and performed event analysis on QRADAR and SIEM Events. Tracked

and analyzed Malware attacks, Network Scans and intrusion attempts.

Performed root cause of security events. Reported findings to customer for

resolution. Managed all security & compliance related issues for Windows

and Citrix environments on large commercial accounts. Security patch

management tracking and planning. Applicability assessment on new security

patches released. Vulnerability assessment of monthly port scanning.

Primary contact for both internal and external audits. Responsible for

updates to security technical specification documents. Perform monthly

random desk checks to ensure clean desk policy and physical security.

Provided key, experienced team leadership for other Security Focals charged

with maintaining security levels of supported servers. Utilized IBM Xforce

SIEM tools and Nessus scans for Vulnerability and Risk Assessment. Works

with other System Administrators on Risk and Non-Compliance remediation.

Additional duties at IBM included TADDM client configuration and

troubleshooting. This required regularly working with other teams of

networking specialists, system administrators, and vendor support to

analyze and dig deep into root cause determination of issues. Also

performed project work involved in integrating new TADDM customers, TADDM

Proof of concept projects, VMWARE server builds via VCENTER, User

Administration (2003/2008)and Windows Server patching. Achieved several

Service awards during my IBM career.

Accomplishments:

. Learned significant team-building skills while mentoring other

Security Focals

. Learned more network related troubleshooting skills while working with

other teams to resolve product communication errors

. Refined Project Management skills working on Proof Of Concept TADDM

Project

. Took part in Government, KCO and SSAE16 Audits while assisting Audit

teams to complete requests

. Used IBM Specific tools for Risk Management, Risk Determination and

Vulnerability Assessment

. TADDM TSM and Mentor for other TADDM team members

. Helped develop standardized training for new users and uniform

processes for customer integration.

Transcend Services (Brooksville Florida)

04/2008 - 06/2010

Moved from Level 2 App support to an HL7 Analyst. Studied HIPAA regulations

and data security, and utilized that information when necessary. Worked

with teams to establish connectivity through firewalls and over VPN

tunnels. Learned about tunneling protocols and common troubleshooting

methods. Managed ticket queues and documented procedure as applicable in

Bridgetrak, and/or Microsoft CRM. Managed projects for integrating new

customers in our transcription system. Routinely added doctors, nurses and

end users to our application database. Monitored server uptime and took

steps to resolve any issues that occurred. Created and maintained Desktop

images used for end user systems. Leveraged Remote desktop applications for

end user and server support. Researched ongoing user issues to resolution,

and assisted transcriptionists with hardware support of transcription

devices, and in resolving software errors, including reporting bugs and

documenting user enhancement requests to software developers.

Accomplishments:

. Learned connection methods, VPN's and firewalls while ensuring

connectivity between facilities

. Learned HL7 programming and how to read/troubleshoot HL7 code

. Received in-depth knowledge on HIPAA requirements

. Engaged other teams for Analytical troubleshooting of persistent

issues

. Worked closely with end users to develop service skills

Esolutions (Tampa Florida) 02/2008 -

04/2008

Performed nightly backups and worked with systems engineers to resolve any

backup failures. Developed a standardized patching schedule. Gained

familiarity with the Barracuda anti spam platform and with a variety of

firewalls. Monitored physical security systems and responding to network

security issues as they arose. Monitored Bandwidth usage down to individual

servers for any anomalies and acted on those findings accordingly. Deployed

images via Acronis and additionally created Servers in VCenter and Plesk

per customer RFS process. Created standalone servers, including hardware

assembly and customer O/S specifications along with user creation, file

systems and folder permissions. Installed Web Server platforms, database

software and proprietary software as provided. Ran Ethernet cabling as

required from switches to cabinets. Worked with major providers such as

Brighthouse and L3 to troubleshoot any network outages.

Accomplishments:

. Learned methods and tools of Physical Security while preventing

unauthorized access

. Received much needed experience with network first response while

preventing information breaches and resource misuse

. Learned more about firewall configuration and firewall log reviews

Verizon Communications (Tampa Florida) 06/1997 -

12/2007

Controlled Enterprise level projects, such as software upgrades for

monitoring software (BMC PATROL) numbering in the thousands of Servers, to

smaller user migration projects. Performed Physical Security Checks.

Performed network packet sniffing for application troubleshooting. I

created deployment methods and executables for applying software upgrades

that saved significant man-hours for Verizon, and handled patch management

on end user pc's and server systems (approximately 450). I created and

maintained the desktop image used in Verizon's DSL call center. I created

the centers internal webpage's, documentation and inventory systems.

Installed O/S and web hosting software to serve this websites. I maintained

and users in active directory and created user shares in which I managed

file (NTFS) and access (Active Directory) permissions. Advised users on

compliance issues such as password length and complexity, and reset user

passwords as needed. I made changes to the GPO when required. Maintained

application servers, database servers and phone systems (Rockwell, PBX,

POTS) and did cabling when required. Responsible for monitoring HVAC in

all server rooms. Worked with Build Teams to build out additional server

rooms when needed. Provided hardware recommendations based on past results

and assisted with network switch and fiber (multimode and single strand)

troubleshooting. Created a standalone Win2K domain for the Human Resources

Department within the DSL Sales Center, and maintained users and shares,

along with logon programs and remote management software. Utilized

proprietary Verizon mainframe applications for RACF user administration.

Dispatched tickets via BMC Remedy, and assisted with day to day user issues

involving company-wide order entry applications (client/server), software

installation requests and move orders.

Accomplishments:

. Managed large projects successfully to completion

. Created and Maintained Human Resources standalone domain

. Devised automated patching methods that greatly reduced downtime and

saved significant man-hours for Verizon

Contact this candidate