Information Security Architect
Resume:
--Information Security Architect--
Accomplished and highly analytical professional, offering extensive years of experience in the areas of information assurance, security
operations, and architecture. Equipped with in-depth familiarity with engineering concepts and processes to evaluate business systems,
ensuring compliance with all security standards. Expert at administering the security of enterprise information by identifying security
requirements; planning, implementing, and testing security systems; preparing security standards, policies, and procedures; and
mentoring team members. Accustomed to working with professionals of diverse backgrounds within fast-paced, technically sound, and
operationally complex environments.
Areas of Expertise
Information Security Architecture Regulatory Compliance Test and Evaluations Risk Analysis and Mitigation
Documentation Maintenance Information Security Engineering Business Systems Management
Mission-Critical Security Delivery Strategic Planning and Implementation
Leadership and Cross-Functional Collaboration
Professional Experience
FireHost Inc., Richardson, TX
Senior Security Engineer Level III 2012–2015
Played a key role as lead infrastructure engineer, responsible for overseeing a team of two security engineer level III; while training
them and other departmental organizations on Security Operations Center (SOC) standards and procedures.
Resolved complex problems considering system capacity and limitations, operation time, and desired results.
Created and modified standard operating procedures; as well as evaluating and reengineering legacy solutions to ensure scalability.
Expertly handled infrastructure projects encompassing planning for new product rollout and decommissioning; as well as close
monitoring of all security, feasibility studies, implementation, communication, testing, change management, and training strategies;
which included large scale implementation of Bitdefender and Trend Micro Deep Security as well as migration from a legacy Splunk
instance to a clustered Splunk deployment.
Carried out key tasks such as providing consultative support to internal staff; updating complex system configurations; and conducting
audits of solutions to ensure compliance with specifications and delivery of mission-critical security layers to customers and internal
environments.
Acted as subject matter expert on infrastructure as well as processes and procedures associated with security infrastructure and
applications.
Performed product management within various functional areas such as host-based intrusion detection system (HIDS), network intrusion
detection system (NIDS), web application firewall (WAF), anti-malware, password and session management, vulnerability scanning,
hardening, and log management.
Earned promotion from security engineer to senior security engineer level III for handling additional project-based responsibilities to
maintain company growth.
Acquired the role of knowledge leader and moderator of corporate knowledge base, responsible for ensuring consistent updating of all
documentation.
Received the Impenetrable Firewall Award for going above and beyond duties to effectively protect company reputation while adhering to
its standards.
Key Technologies: Imperva SecureSphere, Trend Micro Deep Security, Snort, Snorby, Bitdefender, Splunk and Splunk Enterprise Security,
Citrix Netscaler 3000 VPX, VMWare NSX, VMWare, Jira, Toggl, Smartsheet, Centrify, OSSEC, Arbor Peakflow, Nexpose, Brocade Stingray, and
PF_Ring
Security Engineer
Supported customers on compliance issues through security engineering and controls to meet their needs and/or requirements.
Initiated the development of procedures and documentation on operating system hardening, application setup, forensic/malware
investigation, and cleanup.
Facilitated the evaluation of current solution implementations to develop procedures and improve functionality and supportability; as
well as workflow processes to educate customers on company services.
Managed and maintained several clustered instances of Splunk, Snort-based IDS solution and dependent productivity pieces, five web
application firewall deployments, anti-malware/antivirus, and endpoint protection.
NeoSpire Inc., Dallas, TX
Security Operations Supervisor 2008–2012
Administered the creation of advanced project scope and objectives; facilitation of customer and corporate Payment Card Industry (PCI)
assessor and SSAE16 visits; and configuration of customer firewalls (Cisco ASA) and VPN solutions.
Oversaw the Security Operations Center including delegation of projects and deadlines; along with development/acquisition of tools and
software for SOC to automate internal processes, optimize productivity, and increase return on investment (ROI).
Established a security laboratory for the Security team for testing and training purposes; managed work delegation to meet corporate
and customer requests.
Rendered direction to a team of two analysts, responsible for supporting corporate and customer environments; while providing employee
evaluations to human resources on a monthly basis.
Drove key initiatives which resulted in the promotion from security analyst to security engineer then subsequently to security
operations supervisor including:
Incorporation of project tracking for PCI solution implementations and Internal productized backlog.
Delivery of timely audits for internal services to ensure appropriate implementation of customer solutions, which were completed and
reported to the director of security.
Key Technologies: Snort, Symantec, Sophos, RSA Envision, Jira, Mingle, Cisco ASA, L2L VPN, OpenVAS, GreenBone, Syslog, Epilog, Snare,
ModSecurity, OSSEC, and Radius
Security Engineer
Employed analytical skills in evaluating compliance and new tools in addition to the NeoSpire security portfolio; as well as customer
facing monthly and quarterly network scans and validation/remediation as necessary.
Rendered direct supervision and support to the installation and integration of biometric hand readers at restricted access points
within the facility.
Security Analyst
Offered hands-on support to security infrastructure and maintenance of Snort sensors within corporate and customer environment.
Secured and properly maintained legacy security system tools and security infrastructure.
Conferred with hardware, communications, database experts, and software vendors to ensure system viability.
Observed strict adherence to client/NeoSpire standards to ensure updated documentation while assisting in user and peer training.
Displayed proficiency in utilizing Snort to detect suspected traffic and analyze data; as well as provide advice to client on methods
in mitigating risks and identifying possible causes.
Generated purchase orders for the acquisition of products and/or licensing of security-related software, certificates, and systems.
Successfully implemented and introduced RSA Envision SIEM solution to the company’s production; as well as numerous IDS units and
associated databases.
Affiliated Computer Services (ACS) Inc., Dallas, TX
Lead Security Analyst 2007–2008
Provided assistance in managing several terminal access controller access-control system (TACACS+) servers including modification and
removal of devices and user accounts; while providing data for Sarbanes–Oxley Act and PCI audits.
Assisted the development of tools for the SOC to automate several processes.
Successfully coded an internal customer management interface for SOC team members for tracking escalation paths and contact information
as well as monitoring 300+ Snort sensors.
Automated weekly reporting that reduced an eight hour process to an hour.
Key Technologies: Cisco Catalyst, and Snort, TACACS+
The Planet Internet Services Inc., Dallas, TX
Information Security Engineer 2005–2007
NOC Engineer Customer Care Analyst
Presided over in training new GlobalNOC technicians on network monitoring by travelling to relocated headquarters in Houston.
Modified procedures and disseminated information to effectively communicate needs and requirements across the company to implement
uniformity and knowledge.
Facilitated forensic investigations of compromised and/or exploited servers through knowledge of file systems of Windows- and UNIX-
based operating systems.
Exemplified industry skills in providing VPN and custom-network solutions to customers of The Planet.
Served as liaison between the upper management and the Security team; delivered analytical insights on the development and analysis of
new procedures and policies to standardize business practices.
Rendered direct phone support to aid customers in identifying technical problems and providing appropriate resolution.
Gained promotion from NOC engineer to customer care analyst for handling a Tier 2 Phone Support Group then subsequently to information
security engineer.
Led the merger of The Planet and EV1 by assisting the integration of Abuse, Global NOC, Security, and Inventory departments while
contributing to their policies and technical training.
Demonstrated excellent skills in performing operating system hardening of Windows and Linux along with their applications.
Performed network and server monitoring, troubleshooting, and maintenance of more than 20,000 servers across three data centers
comprised of Linux, Windows, and UNIX-based distributions.
Key Technologies: Cisco Guard, Arbor Peakflow, Cisco PIX and ASA, Checkpoint Firewall 1, and Snapgear
Education and Credentials
Coursework in Business Education and Information Security: Coursera.com
Coursework in Computer Information Systems: DeVry Institute of Technology, Irving, TX
RSA Envision Certified Training Courses
Professional Affiliation
Writer–The Analogies Project (theanlogiesproject.org)
Activities
TheLab.ms Women in Technology League of Professional System Administrators Defcon Dallas Hackers Association
Contact this candidate