Post Job Free
Sign in

Engineer Security

Location:
Altoona, WI
Posted:
November 08, 2014

Contact this candidate

Resume:

MARIO SANCHEZ

Mario H Sanchez Cell: 210-***-****

**** ****** *******

Roanoke, Tx 76262

PROFESSIONAL PROFILE:

Professional background on Network Security engineering and architecture, with hands on Systems integration and Implementation with a broad range of solutions on enterprise global environments. During the last 15 years I have lead complex enterprise security projects while working for vendors, VARs, and independently. By utilizing my broad experience, technical, and program management abilities, I have successfully managed to assist companies exceed compliance objectives while reducing the risks associated with Information Technology to acceptable levels vs cost. A proven record to use creative solutions to difficult issues. Good organizational, documentation, written, presentation, and verbal communication skills, and able to perform efficiently with minimal supervision with a very positive attitude to work in a team environment. Over 10 years experience in firewalls such as Checkpoint, Juniper netscreen, SRX, Cisco Pix/ASA, Sidewinder, and at least 2 year on Palo Alto.

BACKGROUD SUMMARY:

Remote Network Technologies Network and Protocol Analysis Strategic and Operations Planning

Network Security, Arch, Design, and Engineering Network Security assessments. Expert Firewall Engineer

Checkpoint, PIX, Palo Alto, and Juniper SSG/SRX, Hands-on experience setting up DMZs Experience with Large Enterprises Data Center Network Security Network Security Management experience. Problem Resolution

Access controls Authentication infrastructure Policies and Procedures Dev

Project Management

Professional Accomplishments:

Developed methods to improve efficiency and implemented processes: Analyzed repetitive daily administrative tasks, and developed automatic scripts to improve effectiveness, minimize errors, and lowered overhead costs.

Results: An increase efficiency allowing engineers more time to resolve other more important issues. I have done this over and over throughout the year of employment.

Proven Record to resolve implementation issues that vendors could not resolve. Using my open mind and innovative and extraordinary ability to troubleshoot issues and find solutions, I was able to find adequate technical resolutions by using my vast collective experience. HP installation was limited by the naming convention and there seemed to be a conflict with Remedy being able to read the installation folder. I came up with the idea to create a symbolic link, HPOpenView, on the windows machine to the HP OpenView directory so that Remedy could find the files that needed to read. Neither vendor could find a solution, so I had to step in since a global installation was on hold.

Results: The installation went on as scheduled and saved lots of time and resources to the project.

Analyzed the architecture, and re-engineered an Endpoint Encryption solution for the City of Fort Worth. I was asked to look at the installation of the McAfee Endpoint Encryption Solution and found many flaws with the implementation. I had to re-architecture the Endpoint Encryptions solution to accommodate the City’s needs according to the network design. Once I had the architecture I came up with the engineering solution for the implementation. In order to be able to implement the solutions to all City departments such as Police, EMS, Water Works, etc., I had to implement some changes to the way AD was configured. I created the Re-Architecture and Engineering Documentation, following their change management process, got it approved, and implemented the solutions.

Results: Within 3 months, we were able to deploy to all the departments with minimal issues. In addition to the initial implementation issue, I discovered that Endpoint Encryption server required a lot of intensive and time consuming manual maintenance intervention for the server to be able to operate an optimal efficiency level. I created some scripts that would run on a daily basis to perform the tasks and the server is running with minimal manual intervention up to day.

Analyzed the implementation process, identified issues and made recommendations to improve the process. At the beginning of the project, the implementation process did not have any checks and balances and there were a lot of mistakes on the documentation. I started identifying the issues, went forward to management and got them to approve the changes, which subsequently put me in charge of reviewing all implementation documentation, and made me the final approving authority.

Results: Was able to resolve all documentation errors with the implementation documentation before it got to the implementation teams, and consequently saved time and resources and the company was able to complete the project months earlier than anticipated. Not only Improved the process, but I also improved the relationship with the customer’s Engineering Department and Management, resulting in a much smoother process. My military training has given me the ability to pay attention to detail where most of the issues hide.

Extraordinary ability to learn new technology: While employed at Savoir Technologies, I was asked to come in and do a cut over on the internet connectivity by moving the connection to another city. I was able to learn Pix in one week analyze all the configurations to the pixes, and the routers, prepare all the configurations and went to California to do the cut over the next week. I not only had to learn Pix, but I also had to learn the network connectivity to be able to make all the routing changes, make all arrangements with the providers, and yet was able to accomplish the second week after initial employment. I have a proven record of learning new technology and the ability to re-engineer and improve the design, under a tight schedule.

These are just a few of my accomplishments that give you an idea of my extraordinary technical and analytical abilities to resolve issues and get things done, in addition to my ability to manage and deal with difficult situations.

Personal Management and Human Resources:

Project Management on a million dollar project at the Nissan Plant in Mexico. I managed the project at the Nissan Plant in charge of three companies that we had to hire locally to do all the conduit and power work that was required to comply with Mexico’s IT Industrial regulations. In order for me to accomplish all the goals and complete the project in time, I had to learn all the Industrial regulations that pertained to our implementation schedule all the work and keep higher management abreast of the progress. Dealing with a company that has Japanese management involved, was a challange, but was very lucky to have endured that experience. I was able to complete the project in time despite all the issues with regulations, scheduling down time at the factory and personnel issues with the companies that I had hired, I was still able to complete it on time.

Results: The customer was very happy and satisfied, despite all the issues that were encountered, that we were still able to complete in time. I have employed the same dedication and innovative and creative solutions at every project that I am in charge of.

EDUCATION:

SAN ANTONIO COLLEGE, San Antonio,

GED – 1975

SAN ANTONIO COLLEGE, San Antonio, TX

Associates Degree, Microcomputer Specialist

Graduated Aug 1994 with Honors.

TECH SKILLS TECHNICAL SCHOOL

Completed six months CISSP training course

TRAINING AND CERTIFICATIONS:

• Personnel Administration Specialist/Computer Operator. U.S. Army. (Jun 85) including firewalls, VPNs, intrusion detection systems, cryptography systems, Load balancing.

• Computer Operator Certificate (UNIX). U.S. Army (Unisys Corp.) (Jun 86)

• Advance Computer Operator Certificate (UNIX). U.S. Army (Unisys Corp.) (Jul 86)

• Novell Netware 4.1 Management Course, (San Antonio College, Dec 96)

• Microsoft Windows NT 3.51 Administration Certification Course (23 Nov, 96)

• Microsoft Windows NT 4.0 Administration Certification Course (27 Mar, 97)

• HP Open View, Lucent Technologies (Feb 98)

• Unix Administration, Lucent Technologies (Feb 98)

• Sidewinder Fire Wall Certification Course, Secure Computing (Feb 98)

• Sidewinder Firewall Certification Course 5.0, (2003)

• HP Open View course. (2003)

• Mission Systems IIS - Access Control - Smart Force Training (Jun 2004)

• Mission Systems IIS - Data Control - Smart Force Training (Jun 2004)

• Mission Systems IIS - Systems Protection - Smart Force Training (Jun 2004)

• System Administrators YAF02SE – AF ( 05/05/2005)

• USAF Information Assurance Awareness 2005 – ZYAF0115

• Checkpoint Nokia, Vigilar intensive school (Feb 2006)

• NSA – Service Provider End User Information - Alcatel - Lucent Technologies (Oct 2008)

• NSA – Access Control Plan Policy and Procedures - Alcatel - Lucent Technologies (Oct 2008)

• Introduction to MPLS - Alcatel - Lucent Technologies (Oct 2008)

• Internet Protocol Multicast – Alcatel - Lucent Technologies (Oct 2008)

• Basic Setup and Operation of MPLS Layer 3 VPNs – Alcatel - Lucent Technologies ( Oct 2008)

• Constraint Based Routing in MPLS – Alcatel - Lucent Technologies (Oct 2008)

• MPLS Virtual Private LAN Services (VPLS) – Alcatel - Lucent Technologies (Oct 2008)

• Layer 3 Protocols and Services : Routing – Alcatel - Lucent Technologies (Oct 2008)

• Network + Certification - Techskills 2011

• Security + Certification - Techskills 2011

• CISSP training completed May 2011

• Tuffin Certification Class – Sep 2011

• F5 LTM – Jan 2012

Employment History:

CitiGroup (Princeton)

4050 Regent Blvd, Irving, Tx 75063

Network Security Engineer primarily responsible for support, configuration and installation of network security hardware and systems such as Palo Alto, Checkpoint, Juniper SSG and SRX firewalls, Proxies, Secure FTP Server and tools, and other network equipment. Completes varied complex/non-standard tasks and coordinates / oversees work of others within the Network / Information Security domain. Provisioning installation/configuration, operation, and maintenance of Firewall systems hardware, software, and related infrastructure. Incharge of designing installation scripts thru web gui (P1, NSM, etc), and command line, provisioning and optimization of new local and global rules. Application support thru the firewall for Secure Shell, Secure ftp, VPNs, etc…..

Mindlance Inc, (Unisys) Conway, AR ( Acxiom Corporation) Contract

01/2014 to Mar/2014

Mindlance Inc, 10679 Westview Pkwy 2nd Fl, San Diego, CA 92126

Senior Network Security Lead Engineer:

As the lead engineer, Implements network and security infrastructure best practices within the IT operations infrastructure.

Assists in the collection of client infrastructure topology data, and the development and refinement of infrastructure design models using Unisys standard asset discovery and infrastructure modeling tools. Successful provisioning as well as supervision, installation/configuration, operation, and maintenance of systems hardware, software, and related infrastructure. General Audit of all network / Security devices as Checkpoint, Palo Alto, Juniper and Pix Firewalls, Cisco Routers and switches, and identifies issues and or non-compliance with policies and procedures, and best practices. Responsible for configuring a Secure ftp Servers and the support of the tools necessary for clients to connect, such as winscp, ftp over ssh, etc…

Misource Inc. for (Verizon Business), Plano Texas ( Capital One) Contract

08/2011 to 09/2013

11940 Sheldon Rd, Tampa, FL 33626

Toll Free: 877-***-****

We will be moving on 5/5/14 to:

2002 North Lois Ave, Suite 310, Tampa, FL 33607

Senior Network Security Engineer

Responsible for analyzing business / technical requirements and engineering infrastructure solutions by leveraging technology guidelines and providing conceptual, logical, and physical designs, architecture and engineering of Network Security Solutions for the customer with the goal to exceed expectations, stay in budget and deliver on time. Responsible to assists project team with requirements completion, Reviews, analyzes, and evaluates LOB infrastructure needs. In charge of the Network Security utilizing tools as Checkpoint NGX-R70/75, Juniper netscreen SSGs, SRX, Cisco Pix/ASA, and Palo Alto. firewall software, Proxies, load balancers, VPN. Lead multiple security projects with the goal of exceeding compliance objectives. Successfully designed/deployed multi-tier DMZ solution consisting of multiple firewalls, load balancers, Secure FTP Server and tools, and IPS systems. Responsible for approving testing and validating each firewall change request. Evaluating emerging technologies and their potential security benefits and impact on security policies.

Sentari Technologies (CITY OF FORT WORTH)

03/2010 to 08/2011

Michelle Hoskins (formerly Donnell)

Sr. Recruiting Executive

Sentari Technologies

4413 Spicewood Springs Rd., Suite 111, Austin, TX 78759

Direct Office Phone: 512-***-****

Mobile: 214-***-****

City of Fort Worth

Street Address:

275 W. 13th St.

Fort Worth, TX 76102

Mailing Address:

1000 Throckmorton St.

Fort Worth, TX 76102

Network Security Engineer.

The Network Security Engineer primarily responsible for support, configuration and installation of network and security hardware and systems such as switches, routers, firewalls, Secure FTP Server and tools, and other network equipment. Completes varied complex/non-standard tasks and coordinates / oversees work of others within the Network / Information Security domain. Responsible for writing processes and procedures and in charge of transferring knowledge to Network Support Engineers.

ACCENTURE

11/2009 to 03/2010

Information Security Lead

As the Information Security Lead, primarily responsible for support, configuration and installation of network and security hardware.

Accenture only verifies employment thru Payroll People Services – 1-800-***-**** or Theworknumber.com

SUN TECHNOLOGIES, (ALCATEL-LUCENT) Plano Texas

11/2007 to 07/2009

3700 Mansell Road, Suite# 125, Alpharetta, GA 30022

Phone: 770-***-**** FAX: 770-***-****

Senior Network Security Engineer

As a Senior Security Engineer, my primary responsibility is to provide network security customer support in a shared environment supporting multiple customers in a Fault Management and MACD Change Management operations support structure for new a large number of clientele in a Tier 3 Security Networking role in our SNOC (Security Network Operation Center) environment. Accepts escalations from Level 1, and 2 Support (SSE''s) and works as a member of a team to provide level III support and expertise for both pre and post support activities. Identified records and proactively revises current policies and procedures to improve customer satisfaction.

08/2007 to EMC, Irving Texas / EMC Solution Architects

11/2007 Engineer, Tech Support SMARTS

Applies systems level technical expertise and language ability in quickly resolving standard to extremely complex systems level customer issues. Provides resolutions to an assortment of problems of moderately complex scope and uses judgment within defined practices and procedures. Accepts escalations from Level 1 Support (SSE''s) and works as a member of a team to provide level II support and expertise for both pre and post-sales support activities for EMC products. Able to communicate effectively in language of country primary support. Identifies records and proactively revises current procedures to improve customer satisfaction.

07/2006 to VERIZON WIRELESS, Southlake Texas

08/2007 Network Security Engineer / Team Lead

Primary responsibility as a Security Manager is to operate the security infrastructure which safeguards the Verizon Wireless voice and data networks. Network Design and Engineering, evaluating emerging technologies and their potential security benefits or impact on security policies. Secure FTP Server and tools

09/2005 to UNISYS, Plano Texas

07/2006 Network Architect Design Engineer.

As the Lead Engineer, responsible for Network Security, Evaluating emerging technologies and their potential security benefits or impact on security policies. Provide ongoing support of new network security infrastructure processes and procedures.

02/2005 to NCI, O’Fallon, IL (TRANSCOM IA)

04/2005 Information Assurance Security Engineer Architect

Mainly responsible for assisting the Majcoms and network control centers to recommend and deploy additional security products and tools, or enhancements to existing CITS tools, to detect violations of network security measures, and to help them become compliant with Air force Regulations. Designing, implementing, and monitoring of Network Intrusion Detection Systems (NIDS). Conducting forensic investigations of compromised systems and conducting security vulnerability assessments, and providing recommendations and solutions to mitigate system deficiencies. Installation and configuration of Smarts In charge 4.1.2, and InCharge Smarts adapters. HP OpenView Adapter, Remedy Adapter on the InCharge, Remedy Link for HP Openview. Assisting the Majcoms to insure that the software is properly configured.

01/2004 to MASH COMPUTER SERVICES, San Antonio, Texas

02/2005 Senior Network Security Engineer / Division Manager

As the Division Manager Responsible for managing a staff of engineers in the network security division. Evaluating emerging technologies and their potential security benefits or impact on security policies. Provide ongoing support of new network security infrastructure processes and procedures. Provide advanced network security incident management process design and implementation while managing connection security for local area networks, wide area networks, Secure FTP Server and tools, company Web sites, corporate intranets/extranets/portals, and e-mail communications.

07/2003 to TRW/NORTHROP GRUMMAN, San Antonio, Texas

01/2004 Network Security Engineer

Team Lead Engineer for the Frappe project in charge of an installation team for the Air force Health System project. Responsible for ensuring that all systems and network specifications are compliant with Security Regulations.

11/2000 to TRW, San Antonio, Texas

07/2003 Network Security Engineer

Lead Engineer / Project Manager for the NISSAN Automotive Project. Managed the project from the design to the implementation phase. In charge of over 35 personnel, and 3 different sub-contracting companies. Encompassing from Networking, power and Security, in a very demanding and pressed for time project.

06/2000 to SNCI / SYMANTEC, San Antonio, Texas

11/2000 Managed Services Division Supervisor

As the Managed Services Division Supervisor, Duties include providing Network Architecture expertise to general systems engineering and systems integration functions, such as developing Concepts of Operations, requirements documentation, and internal/external system interface control documentation, and solving a variety of critical interface and integration issues being encountered. Design, implement, administer, and support all data network components, policies, and procedures used by the company.

05/2000 to SAVOIR TECHNOLOGY GROUP, San Antonio, Texas

06/2000 Senior Network Engineer

Network Engineer mainly in charge of the Company’s Global WAN connectivity and network security. In charge of the frame-relay backbone with ISDN as a backup. The company’s network covers the United States, Mexico, and Canada.

05/1999 to TRW, San Antonio, Texas

05/2000 Information Security/Network Engineer

In charge of installation and configuration of the CITS/NMS BIP System which consists on the installation of NT Servers and Workstations, a GPS Antenna to time synchronize systems on the network with Time Serve, Sidewinder Fire Wall which runs on a modified version of BSD Unix, 2900 Cisco Switches, 7206 & 7507 Cisco Routers, Cisco Works, Network General Sniffer, NT Proxy Server, Network manageable UPS with Powerchute Software, Enterprise NT Security Manage and NT Intruder Alert Security package as well as NT Internet Security Scanner, HP Open View, NT Legato Enterprise Backup Software with an Exabyte Tape Drive Unit, Installation of Internet Security Scanner (ISS) SafeSuite 4.0. UPS Un-interruptible Power Supplies, APC Power Chute Plus software, a Global Positioning System (GPS), Spectracom NetClock/GPS Synchronized Master Clock connected to an NT Server via serial cable to provide internal time to the domain. Set Security Policies, Proxy authentication, Sidewinder Administration and authentication, User Groups, and Network Object Groups

12/1998 to MASH COMPUTER SERVICES, San Antonio, Texas

05/1999 Division Manger Network Security Engineer

Lead Senior Network Security Engineer in charge of the Network Security division. Responsible for acquiring contracts, proposal writing, proposal negotiation, and to include the duties as a network project manager. Network design, review, validation, and implementation strategies. Perform technical reviews, planning, and problem space definition related to network architectures.

05/1998 to TRW, San Antonio, Texas

12/1998 Information Security/Network Engineer

Lead Engineer in charge of installation and configuration of the CITS/NMS BIP System which consisted of a large number of Network, Security and system.

02/1998 to CACI / EDS (RHI CONSULTING), San Antonio, Texas

05/1998 Network Security Engineer

In charge of installation and configuration of network management tools (HP OpenView, Legato Enterprise Backup Software, Network General Sniffer, and Cisco Works), information security software (Accent OmniGuard Intruder Alert Software ITA, and Enterprise Security Management Software ESM, and Internet Security Scanner ISS). Installation of ISS SafeSuite 4.0. UPS Uninterruptible Power Supplies, APC Power Chute Plus software, a Global Positioning System (GPS), Spectracom NetClock/GPS, set Security Policies, Proxy authentication, Sidewinder Administration and authentication, User Groups, and Network Object Groups.

Setting up authentication for Telnet or FTP sessions, Web Servers, Sidewinder Administration, Domain Name System, and Electronic Mail (SMTP). Responsible for installation and configuration of NT Servers and Workstations, Network Racks, Compaq ProLiant Servers, ESM, ITA, HP Openview NT & HP, Legato, Timerserve, NTP, and Netscape Proxy Server, 2900 switches, 7206 & 7507 Cisco Routers. Responsible for the operation of network troubleshooting tools: Penta-scanner, Microtester, Network General Sniffer, Fluke Enterprise 850, crimping tools, etc.)

07/1997 to NET FORCE (RHI CONSULTING), San Antonio, Texas

02/1998 Network Engineer / Security Specialist

Responsible mainly for Network Design and implementation from small office interconnectivity to wide area networks. Installation, operation and maintenance of information processing systems specifically utilizing LAN/WAN and personal computers or workstations. Design and implementation of Networks for Internet Connectivity.

09/1996 to COMPUTER DATA SYSTEMS, INC. (CDSI), San Antonio, Texas

07/1997 Senior Information Management Specialist

Installation, operation and maintenance of information processing systems, PCs, Workstations, network equipment such as Cisco & Cabletron Routers, firewalls, Switches, Sniffers, Fluke Enterprise 850, Pentascanner, Microtest, Punching & Crimping Tools, etc., in the LAN/WAN environment

05/1995 to COMPUTER SCIENCE CORPORATION. San Antonio, Texas

08/1996 Computer Resource Administrator

Responsible for the installation, operation, and maintenance of information processing systems in a LAN/WAN environment. Plans, coordinates, implements and supports the LAN/WAN hardware, software and Internet/Intranet/Extranet integration and linkage. Assists in implementing project tasks and schedules for LAN and workstation projects and reports activities and progress to project management.

09/1994 to METRICA INC. San Antonio, Texas

06/1995 Information Specialist

Responsible for the design of State Water Compliance Forms with Form Flow Designer. Design of the database according to the state requirements. I was tasked to design all forms with automated formulas and totals.

08/1993 to 90TH ARCOM, US ARMY RESERVES, Ft Sam Houston, TX

01/1996 Computer Technician/Network Admin

Network Administrator of the 90th Arcom Novell Netware 3.12 Server. Trouble-shooting and diagnostics of hardware, and software problems, systems configuration.

05/1991 to 5TH U.S. ARMY, Ft Sam Houston, TX

08/1993 Computer Technician/Programmer

Applications Software Programmer/ Personnel Administration Specialist for the 5th U.S Army. Application programs, design, installation, debugging, trouble-shooting and diagnostics of hardware, and software problems, systems configuration. Hardware maintenance and repairs, implementing project tasks and schedules for LAN and workstation projects and reports activities and progress to project management.



Contact this candidate