Sales Management
Resume:
PO Box ***
Denton, Texas *****
******.******@*****.***
www.linkedin.com/pub/steve-maiden-cissp-ceh/3/9a4/111/
Software Pre-Sales Security Professional
OBJECTIVE/PROFILE
Highly motivated Information Security Engineer with over 10 years of
combined information security and software pre-sales. Experienced in
customer engagments at a business level to for Data Security
methodology and best practice strategies. Well seasoned in the
continuous learning in the areas of product knowledge and business
issues related to industry verticals. Highly experienced in
information security initiatives and best practices; including SAP
systems.
CERTIFICATIONS
Certified Information Systems Security Professional (CISSP/ISC2)
Certified Ethical Hacker (EC-Council)
Network + Certified Associate (CompTIA-Network+)
Juniper Networks Certified Internet Associate (JNCIA-SSL)
Qualys SaaS Certification (Certified Vulnerability Specialist)
EXPERIENCE
09/2014 - present Senior Software Pre-Sales Engineer - Onapsis
Security - Remote office Denton, TX.
Responsibilities:
. Key contributor in the deployment of SAP vulnerability mgmt. solutions
from Onapsis, including offsite customer installations and user
training
. Provide technical expertise for sales support in pre-sales client
demo's/trials/POC of software solutions to numerous companies within
the IT departments and stake holders
. Expert-Level experience in cyber security vulnerability management
. Act as cyber security advisor with customers/prospects and consulting
partnerships to design and implement new cyber security strategies
. Authored and presented proof of concept and training material utilized
at client sites
. Worked with development internal teams to test and perform quality
assurance on beta releases of software
. Communicate and assure the deliverable and project specific activities
performed by cross- functional project teams. Manage internal and
external expectations around project scope
Provided technical support at international trade show events
11/2013 - 09/2014 Senior Information Security Engineer - Conexis -
Irving, TX.
Responsibilities:
Identity management using active directory processes to
provide users with access to data locations. Included
network account management to provide information security
expertise for company end users and client members
Interact with HR department and internal auditing for HIPAA
and High Tech Act compliance using industry best practice
guidelines such as ISO27001/002.
Perform Information Security Engineering task such as
installations of appliance hardware and monitoring of
common industry cyber security tools and solutions.
Vulnerability management and remediation of daily
operational processes/incident research and response and
collaboration with the infrastructure engineering team
SME (subject matter expert) for several key applications
including Juniper VPN, QualysGuard Vulnerability Scanner,
McAfee Web gateway and the SolarWinds LEM.
Authored several Active Directory scripting tools for
InfoSec process improvement and reporting needs for user
provisioning and de-provisioning.
Key contributor in the deployment of corporate wide Data
Loss prevention/privilege mgmt. efforts, including offsite
hardware installations and user training.
11/2012 - 6/2013 Senior Information Security Analyst (contract) -
UT Southwestern - Dallas, TX.
Responsibilities:
Interact with legal department and internal auditing for
HIPAA and High Tech Act compliance processes as well IT
investigations using various internal procedures and
reporting tools/software
Intrusion Detection and Vulnerability management using
SecureWorks and Rapid7, remediation of daily operational
processes/incident research and response
SME (subject matter expert) for key applications including
Rapid7 Vulnerability Scanner, Sophos AV with DLP,
Metasploit, BurpSuite vulnerability detection and Druva
cloud-backup solution
Assist with activities associated with Laptop encryption
efforts mandated by UT Systems to ensure compliance with
industry standards in order to achieve full compliance
with UT Information Systems best practice and its benefits
to the company minimizing risk
07/2005 - 07/2012 Information Security Analyst - VHA - Irving,
TX.
Responsibilities:
Identity management using active directory processes to
provide users with access to data locations. Included
network account management to provide information security
expertise for company end users and client members
Interact with legal department and internal auditing for
HIPAA and High Tech Act compliance using industry best
practice guidelines such as ISO27001/002.
Assist with IT investigations using various internal
procedures and reporting tools.
Vulnerability management and remediation of daily
operational processes/incident research and response and
collaboration with the network engineering team
SME (subject matter expert) for several key applications
including CrashPlan cloud-backup solution, Juniper VPN,
QualysGuard Vulnerability Scanner, Burp-Suite, Cenzic web
application vulnerability detection, McAfee EPO and
Endpoint Encryption
Authored IT User Awareness published intranet articles
utilizing sharepoint.
Key contributor in the deployment of corporate wide
Unified Communications efforts, including offsite hardware
installations and user training
08/2001 - 09/2004 Senior Software Engineer - UC4 Software Inc. -
Broomfield, CO.
Responsibilities:
Provide technical assistance for sales support in pre-
sales client trials/POC of software solutions to numerous
companies.
Provide technical assistance to support post-sales
software installation and implementation for UC4
Enterprise Process Automation Solution for Windows and Mid-
Range computer systems on OS/390, UNIX, SAP, and Windows
platforms for new and existing clients
Provide technical call center help desk support to new and
existing clients.
Accomplishments:
Acted as project team leader liaison with
customers/prospects to design and implement new Enterprise
batch scheduling centralization strategies.
Authored and presented power point material utilized at
client sites. Authored and presented training seminar
material utilized at client sites.
Worked with development team to test and perform quality
assurance on Beta releases of software.
Communicate and assure the deliverable and project
specific activities performed by cross- functional project
teams and manage internal and external expectations around
project scope
Facilitated team meetings and presentations and training
material for internal department and customer sites
software.
7/1997 - 10/2000 Professional Services Engineer - Beta
Systems/ASG - Arlington, Texas
Provide technical assistance for sales support in pre-
sales client trials of software solutions to numerous
fortune 500 companies.
Provide technical assistance to support post-sales
software installation/implementation for automated job
scheduling system, report distribution and batch
management tools, including implementation for client
company standards and conversion activities.
Instructing classes on Automation Solutions for IBM
mainframe and personal computers as well as team agents
for Unix, AS400 and Windows platforms using TCP/IP
Protocols for new and existing clients.
Accomplishments:
Instructed classes for three years on the following
software products:
Beta 42 Automated job scheduling, Beta 92 System Output
Management, Beta 93 Report
Distribution and Beta 44/45 Batch Process Management.
Acted as project teams leader liaison with
customers/prospects personnel to design and implement new
client server automation strategies.
Authored and presented training seminar material used at
client sites.
Conducted pilot projects with clients to convert existing
software from Smart/RD to Beta 93 report distribution
solution.
Worked with development team to test and perform quality
assurance on Beta releases of software.
Responsible for technical support at international trade
show events for Beta Systems software solutions.
12/1992 - 7/1997 Professional Services Consultant - Altai
Software/Platinum Technology - Arlington, Texas
Responsibilities:
Instructing classes on Enterprise Automation Solutions for
IBM mainframe and personal computers as well as team
agents for Unix, AS400 and Windows/NT platforms using
TCP/IP Protocols for new and existing clients.
Provide technical assistance for sales support in pre-
sales client trials of software solutions to numerous
companies.
Provide technical assistance to support post-sales
implementation for automated event scheduling, and system
management.
Accomplishments:
Instructed classes for four years on the following
software products:
Zeke-automated event scheduling, Zack system management,
Zebb automated restart, and ZARA
tape management.
Acted as projects team leader liaison with
customers/prospects personnel to design and implement new
client server automation strategies.
Authored and presented training seminar material used at
international client conferences. Conducted pilot projects
with clients to convert existing software technologies
Received sales support tech of the year, President's Award
1995, in recognition for contribution made to sales goals.
EXPERIENCE
Software Support
. Key contributor in the deployment of SAP vulnerability mgmt. solutions
from Onapsis, including offsite customer installations and user
training
. Provide technical expertise for sales support in pre-sales client
demo's/trials/POC of software solutions to numerous companies within
the IT departments and stake holders.
. Expert-Level experience in cyber security vulnerability management,
including SAP systems.
. Act as cyber security advisor with customers/prospects to design and
implement new
cyber security strategies
. Authored and presented proof of concept and training material utilized
at client sites
. Worked with development internal teams to test and perform quality
assurance on beta releases of software
. Communicate and assure the deliverable and project specific activities
performed by cross- functional project teams and manage internal and
external expectations around project scope
. Provided technical support at international trade show events for
various security software solutions
Security, Compliance and Risk
. Identity management using active directory processes to provide users
with access to data locations. Included network account management to
provide information security expertise for company end users and
client members/vendors
. Worked with team members and business unit representatives, develop
and publish information security policies, processes and procedures
that support compliance relevant to corporate information security
best practices and industry standards and regulations
. Interact with legal department and internal auditing for SOX, HIPAA
and High Tech Act compliance processes as well as IT investigations
using various internal procedures,reporting tools and Encase/FTK
software
. Experience implementing and assessing systems and providing
departmental guidance for HIPAA Security Compliance as well as PCI-DSS
Level 3 compliance
. Assist with activities associated with Information Systems internal
and external audits to ensure they have the proper scope, are
completed in a timely manner. Assist, coordinate and/or drive
remediation activities in order to reduce to an acceptable level any
risk that may identified as a result of an audit
. Ensure compliance with industry standards in order to achieve full
compliance with Information Systems best practice and its benefits to
minimizing risk
User Awareness
. Worked with other team members and business unit representatives,
develop user awareness programs and initiatives as it relates to
Information Security. Where needed, provide specialized security
training or assist in identifying and assessing sources of training
outside of the company
. Perform analyses of the Security User Awareness training in order to
gauge utilization and effectiveness; make recommendations to improve
training including publishing intranet articles utilizing SharePoint
services
Incident Response
. Lead and/or participate in incident response activities as directed
and as outlined in company procedures
. Review and update the corporate incident response documentation,
process and procedures in support of continuous improvement
Security Vulnerability Management
. Remediating, and mitigating vulnerabilities relevant to the company IT
environment including system assets and web applications and SAP
security best practice, using tools such as Onapsis, Burp-Suite, Rapid-
7, Qualys, NMAP and Metasploite
. Attend and participate in monthly Security Vulnerability Management
Meetings
. Participate in the Security Vulnerability Management process, offering
advice and recommendations in order to ensure risk from
vulnerabilities is kept to a minimum
. In conjunction with Security Vulnerability Management process,
coordinate and schedule scans of company internal/external address
space for vulnerabilities using approved tools
. Detection and Vulnerability management and remediation of weekly asset
scanning processes including research and response and collaboration
with IT department teams
. Generate and publish reports of vulnerabilities; using these reports,
assess level of compliance with the Security Vulnerability Management
process
. McAfee Web Gateway and EPO/VSE administration and user support.
Subject Matter Expert
. Keep abreast of information security compliance, privacy standards
and regulations that are relevant to industry verticals and best
practice
. Active Directory SME
. Juniper SSL VPN SME
. QualysGuard Vulnerability SME
. Mid-level expertise using Burp-Suite
. Cisco IronPort SecureMail SME
. SolarWinds event logging SIEM administration and installation
expertise
. Druva Insync Cloud Backup solution SME
. Code-42 CrashPlan cloud-backup solution SME
Other
. Participate in the Change Management process and weekly meetings
. Communicate and assure the deliverable and project specific activities
performed by cross- functional project teams and manage internal and
external expectations around various project scopes and facilitate
team meetings with internal departments
. Created web interface portals for several key employee access request
needs (Self Service Portals) within the corporate intranet using
active directory/LDAP interfaces, HTML, ASP and VB Scripting Language.
Utilized Juniper to build and integrate with active directory for
internal/external employee software download website
. Perform additional duties as may be deemed necessary by other
management teams
EDUCATION and
PROFESSIONAL
TRAINING Mountain View College - Dallas, Texas
Sunset High School - Dallas, Texas
Network training
Unified Communications training
Computer Forensics training FTK and Encase
Active Directory
SQL DB basics- UC4 Software
Oracle DB basics - UC4 Software
UNIX user level navigation - Platinum Technology/UC4
Software
LINUX user level navigation Onapsis/VHA
TCP/IP - Platinum Technology Public Presentations - Altai
Successful Sales - Altai
MVS Systems Recovery - Mervyn's
Quality Assurance best practice
McAfee EPO boot camp
REFERENCES
Rocky Musto, Director Software Sales - Oracle 214-213-
2348
Lynn Langham, Manager Network Operations- Conexus 972-
514-2443
Kate Quinonez, Director Channel Sales West - Onapsis Software 214-
668-1398
[pic]
[pic]
Contact this candidate