Security Engineer
Resume:
Tony Carter, CISSP, GCFA
**** ******** ****, ********, ******* 30060
678-***-**** *******@*********.***
Summary
Experienced Information Security Professional with strengths in:
. Complex information security problem solving involving extensive
networks and disparate systems
. Aligning information and technical objectives with overall corporate
business goals
. Managing, motivating and training technical teams
. Planning & implementing major information security programs.
. Performing Security Assessments, implementing Vulnerability management
programs, Enterprise logging, Security Information and Event
Management (SIEM) and Incident response, Threat intelligence and
Security Operations.
. Planning, designing and implementing high availability Multi-factor
authentication (MFA) solutions into enterprise environments.
. Designing and implementing Endpoint Security (Anti-Spam, Anti-Virus
and Anti-Malware, Application white-listing, Host intrusion
prevention) solutions.
Experience
Independent consultant, Atlanta, GA June 2014 - Present
Security Architect / Consultant
. Implemented Mobile phone and Google Authenticator Two Factor
authentication solutions
. Implemented RSA's SecurID solution in enterprise environments,
integrating it with various VPN and Server Host based architectures.
. Lead Architect and Consultant for the design and deployment of a
global McAfee Network Security Platform (IPS), McAfee ePolicy
Orchestrator (ePO) and McAfee Enterprise Security Manager (SIEM)
. Performed Internal and External Network, Wireless and Web Application
penetration test
. Assisted companies to build Security Programs based on ISO 27002:2013,
Corbit and NIST 800-53-rev4
. Assisted companies with remediation and assessments to comply with PCI
Data Security Standard.
Bit9, Waltham, MA November 2012 - June 2014
Senior Solutions Architect
Trusted technical advisor, senior consultant, and technology escalation
point, to both customers and internal Bit9 Services team members. .
. Provided insight and recommendations for application control and
surveillance strategies with regard to policies, processes,
implementation details, and general approach.
. Interacted at multiple levels within customer accounts while
demonstrating strong technical skills, thought leadership, and
commitment to the customer's success.
. Established a Security Operations Center to facilitate 7/24
monitoring.
. Implemented a Security Operations Runbook for Triage and Incident
Response.
. Key contributor on team that designed and implemented Network
Segmentation.
. Integrated QRadar, FireEye Platform, Palo Alto Networks' NG Firewall,
Bradford NAC, Snort, Splunk, RSA SecurID, and Rapid7's Nexpose in
Bit9's Security Operations Center.
. Planned, designed and implemented RSA's SecurID high availability
appliances into Bit9's environment to include integration with Active
Directory, Cisco ASA Firewalls, Cisco Wireless Controllers, Bradford
Network's Network Access Control solution: Sentry and various Radius
based clients. Also trained IT and Helpdesk personnel on usage and
basic troubleshooting.
. Planned and implemented an upgrade of RSA SecurID appliances. The
project included: an upgrade, a test and acceptance and a back-out
plan.
. Installed and tested the latest version of SecurID Virtual Appliance
to test the migration from Version 7.x to 8.x.
. Integrated many threat intelligence feeds in Bit9 Security Operations.
Some to include: ThreatConnect, AlienVault's OTX, Virus Total, FBI's
Flash reports and Team Cymru's feed.
Xtreme Security, Inc., Atlanta, GA August 2005 - November 2012
Principal Consultant
. Performed Web Application, Network Assessments and Pentest.
. EffectedSecurity Architecture Design and Reviews.
. Completed Incident Response & Forensics for clients that have been
breached.
. Designed and implemented ArcSight SIEM Platform: ESM, Logger and
Connector appliances.
. Created extensions and implemented OSSIM (Open Source SIEM) for
multiple clients.
. Designed and installed Antispam gateway and Web Application firewalls
from Barracuda Networks.
. Led a team that implemented a VMware Datacenter consolidation project
utilizing: Juniper Netscreen Firewall, Juniper SRX/Cluster, Juniper
Network, and Security Module. CyberArk for Privileged Identity
Management and AlienVault SIEM.
. Planned and implemented RSA's SecurID high availability appliances for
use in a law enforcement, integrating with a custom Network Access
Control solution.
. Planned and implemented the upgrade of RSA's SecurID high availability
appliances as part of a remediation strategy after a customer breach.
. Planned and implemented the upgrade of RSA's SecurID high availability
appliances as part of a remediation strategy after a failed PCI
Compliance audit.
. Planned and implemented the upgrade of RSA's SecurID high availability
appliances as part of a remediation strategy after the RSA breach. The
projects included an upgrade, a back-out and a test and acceptance
plan.
. Hardware based encryption system for VISA CISP compliance for
Financial Institutions.
. Utilized Encase, Volatility, and SIFT Workstation during a forensics
investigation.
. Designed and Implemented a High Available Mission critical system for
a Government contractor.
. Provided Incident response to clients for compromised servers and
Distributed Denial of Service Attacks.
. Reverse engineered malware and provided analysis of threats.
. Effected numerous penetration tests and vulnerability assessments.
Turner Broadcasting Systems, Inc., Atlanta, GA October 2003 - August
2005
Senior Security Engineer
Responsible for designing, authoring, implementing and/or administrating:
. Developed Risk Mitigation Plan detailing components of an Enterprise
Security Plan.
. Created Policy and Procedures for Incident Response.
. Evaluated, designed, and deployed Security Architecture using:
McAfee's IntruShield IPS, Cisco FWSM, Air Magnet WIDS, Nessus
Vulnerability Management system.
. Led the evaluation of Iron Port's Email Security Solution.
. Planned and lead the migration/upgrade from SecurID running on Solaris
to MS Windows Platform. The project included the coordination of
Security personnel on 4 continents, a data migration plan, an upgrade
plan, a back-out plan and a test and acceptance plan.
. Airmagnet's Wireless Intrusion Detection Systems.
. Deployed Distributed RSA Token/Softoken Based Authentication System.
Integrated this system with many Custom In-house applications, IPass,
VPN and Squid Reverse Proxy system.
. Performed Security Analysis of new systems.
. Conducted Internal Audits.
. Executed Day-to-day Security Operations (Responding to virus outbreak,
worms, intrusion attempts, etc.).
. Performed Firewall and IPS configuration changes.
. Converted Checkpoint Firewall rules to Cisco's Firewall Service Module
rules.
. Triaged Forensics procedures on hosts that were affected by unknown
worms, virus or suspicious network activities.
. Upgraded, tuned, and implemented Global Snort Based IDS system.
. Implemented and automated system scanning using Nessus.
CipherLink, Inc. (acquired by iKobo, Inc.), Atlanta, GA March 1999 -
January 2003
Chief Technology Officer (later became iKobo's CTO)
. Designed and implemented a Secure Internet Banking Architecture for
the largest bank in the Cayman Islands.
. Architected and implemented Secure Internet Funds Transfer
Architecture for iKobo (a financial services company) which later
acquired CipherLink.
. Carried out forensic procedures on data obtained for a criminal
investigations.
. Performed many Ethical Penetration Test and Security Assessments for
CipherLink clients.
. Designed and executed Secure Architecture for CipherMessage (secure
message service), Distributed Intrusion Detection System and Log
correlation system, Firewall configuration and deployment, Hosts
Hardening, Application penetration test, Network Design and
implementation.
. Contracted as part of a Large Insurance Company's Information Security
Arm.
Information Access Technologies, Inc., Atlanta, GA February 1994 - December
2000
Chief Technology Officer
. Designed and implemented many Secure Network Architectures for small
and medium size businesses.
. Worked onsite with several large organizations including:
- Defense Advance Research Project Agency (DARPA)
- The Coca-Cola Company
- Tennessee Valley Authority
Sprint, Atlanta, GA April 1990 - February 1994
Network Operations Specialist, Software Engineer, and Systems Support
Engineer.
. Managed and served as Lead troubleshooter for a national rollout of a
large ISDN network.
. Lead Developer and Architect for an automated Network Evaluation
application that won Sprint "best use of technology" award from
DataComm magazine.
US Air Force October 1985 - March 1990
Computer/Communications System Specialist
. Designed, implemented, and managed the coordinated effort to monitor
and analyze secure military communications systems.
. Held a Top Secret SCI clearance .
Certifications
Certified Information System Security Professional (CISSP)
GIAC Certificated Forensics Analyst (GCFA)
Past: Various Cisco, Microsoft, Air Defense and Air Magnet certifications.
Certified in McAfee ePO (AV/AntiMalware/Firewall/HIPS and Application
Control), Intrushield Network IPS.
Affiliations
Previous Board Member & Director of Operations, Metro Atlanta's Information
Security Systems Association (GAISSA)
Veterans Programs Chair, International Consortium of Minority Cyber
Professionals (ICMCP)
Member, Black Data Processors Association (BDPA)
Member, Atlanta Open Web Application Security (OWASP)
Member, InfraGard - Partnership between the FBI and the private sector
Contact this candidate