Post Job Free
Sign in

Security & compliance

Location:
Windsor, ON, Canada
Posted:
July 10, 2014

Contact this candidate

Resume:

Vince (Xiao Yun) Shen Mobile: 226-***-****

***********@*******.*** Windsor, ON

PROFILE OF SKILLS:

. 15 years in IT service, mostly in information security, business

control, privacy and compliance

. Proficient in TCP/IP network, UNIX, Windows, and information

security,

. Familiar with ITIL, COBIT, IT architecting and consulting

methodology

. Good interpersonal skills, e.g. teamwork, communication, negotiation. An

experienced project manager in complex system integration and technology

implementation services across countries.

. Extensive knowledge in the following security solutions and

processes:

Network and Cyber Security Data Center Security

Content Security Virtual and Cloud Security

DLP BYOD and Mobility Security

SAS70 Testing UNIX/Windows Hardening

Service Level Management Business Continuity / Disaster

Recovery

Issue and Risk management Physical Access Controls

Host/Network Intrusion Detection System Activation and Deactivation

User Id Management Problem and Change management

Patch Management Harmful Code Detection

Data Privacy Security Incident Management

Portable Storage Media Management System Access Controls

Workplace / Workstation and Website Security Vulnerability Scanning

. Expert level implementation skill on Cisco ISE (Identity Service

Engine), ASA, good at VPN, IDS/IPS.

WORK EXPERIENCE:

Cisco China, Advanced Service Department 2011.04 - 2014.06

Network Consulting Engineer (Security)

. Leader of security services, to design and deliver offerings in Great

China

. Network and information security consulting and architecture

IBM China, AP Strategic Outsourcing Department 2010.04 - 2011.04

AP Security Service Line Owner

. In charge of Security Service Line of SOM (Customer Security

Policy/Contract), SC (Health Check, Patch Management, Vulnerability

Management, Malware Defense, Information Security Assessment),

IP(Intrusion Detection/Prevention, Emergency Response, Security

Event/Log, Email/URL Security) in Asia Pacific.

IBM Canada, World Wide Business Control Department 2008.02 - 2010.04

IT Security Compliance Analyst

. Conducted more than 30 IT security reviews, network security reviews,

and SAS70/CICA5970/JSOX reviews for commercial customer and IBM

internal at international sites, including various IT technique and

process.

. Team Leader in eleven reviews

. IT audit support

IBM China, AP Business Control Department 2006.03 - 2008.02

IT Security Compliance Analyst

. Delivered IT security and network reviews for commercial customer and

IBM internal within Asia Pacific.

. Performed IT audit and application audit

IBM China, IT Security Department 2003.04 - 2006.03

Security Consultant

. Implemented IT security projects on security strategy consulting,

security designing architecture, ISO27001 consulting, risk evaluation

and penetration test.

. Technical support in developing solutions for security consulting or

system integration projects

IBM China, Network Department 2002.02 - 2003.04

Network Architect

. Implemented network projects on telecom backbone, bank network

architect, service provider WLAN, IDC network.

IBM China, UNIX Department 1999.04 - 2002.02

UNIX System Service Representative

. Maintained AIX, IBM pSeries hardware and storage for corporate clients

CERTIFICATION:

Cisco: Security CCIE 16340, CCNP, Wireless LAN System Engineer

IBM: AIX IBM Certified Advanced Expert, including six certifications:

System Admin, System Support, TCP/IP, Installation, Performance Tuning, and

High Availability, IBM Certified Tester, IBM Certified Reviewer

Others: CIPP/IT (Certified Information Privacy Professional - IT), CISSP

(Certified Information Systems Security Professional), CISA (Certified

Information System Auditor), ITIL Foundation, SCTA (Symantec Certified

Technology Architect), COBIT Foundation, ISO 27001 Lead Auditor, TOGAF

9(The Open Group Architecture Framework)

PROFESSIONAL TRAINING:

AIX System Support, Performance Tuning and High Availability

PM Foundation PM Leadership

Negotiation to Yes Signature Selling Method

Introduction to Consulting CISSP Education

ASCA (Application Security) Foundation Penetration Test

COBIT Foundation ITIL Foundation

IT Architect Professional IBM Business Control University

TOGAF Cisco CCIE Bootcamp

EDUCATION:

Joint international MBA by Webster University of US and UEST of China

2004 - 2005

MBA

UEST(University of Electronic Science & Technology) of China 1996 -

1999

Master of Engineering, major in Communication and Information System

-Computer Network

Xi'An Jiaotong University of China 1992 - 1996

Bachelor of Engineering, major in Telecommunication Techniques

References available upon request



Contact this candidate