SANDU BOGI NASSÉ
Pasadena, CA ***** 310-***-**** *********@*****.***
SECURITY MANAGER – PUBLIC/PRIVATE SECTOR
Technology professional with experience managing an array of enterprise security systems. Proven ability to sustain and enhance business technology infrastructures that enable reliable end-user productivity. Expert in enterprise security systems, vulnerability detection and management, maintaining computer functionality, and analyzing system errors. Experienced leader in implementing security IT solutions, design processes, workflows, and testing technology for an array of corporate business needs. EXPERTISE HIGHLIGHTS
• Systems Administration
• Security Strategic Technology
• Team Management
• Security Project Planning &
Implementation
• Vulnerability Management
• Major Software/Systems
Implementations
• Systems Reliability & Disaster
Recovery Planning
• Testing & Documentation
• Enterprise-Wide Management &
Maintenance
PROFESSIONAL EXPERIENCE
Sr Systems Engineer – Threat and Vulnerability
Hyundai Autoever America [HAEA] Fountain Valley, CA – 2022 - Present Cybersecurity professional with a strong background in vulnerability management and web application security. Brought vulnerabilities from an initial 5k to an enterprise-wide 2.7 million vulnerabilities. This might seem like a detriment; however, it was necessary to get an accurate representation of our landscape and no longer present a pretty picture, but a correct one. Proven track record of successfully transitioning from Nexpose to InsightVM while enhancing security posture. Configured InsightAppSec for web application security, implementing scan authentication and scheduling regular assessments, along with Red Canary, SentinelOne, Splunk training and Azure management.
Key Results:
• Created, distributed, analyzed, and evaluated vulnerability management performance reports. As a security engineer, I was responsible for generating comprehensive management performance reports. The insights from these reports helped inform decision-making, capacity planning, and optimization strategies.
• Improved existing tools and developed new ones for vulnerability management. Noticed Nexpose was old and could be updated to InsightVM. Worked with my manager to stand-up and implement InsightVM with the Nexpose database.
• Managed Rapid7 InsightVM and Rapid7 InsightAppSec. I ensured that these systems were up-to-date with the latest threat intelligence and signature updates. This required opening up the firewall and whitelisting a series of ports and IPs required for the connection.
• Provided user support and problem management for managed security applications (Firewall, IDS, Encryption, Splunk, Web filtering). I ensured that these systems were up-to-date with the latest threat intelligence and signature updates.
Sandu Bogi Nassé Resume Page 1
Systems Engineer & IT Security Manager
VXI Global Solutions, LLC Los Angeles, CA – 2013 - 2022 Advanced to IT Security Manager after a proven track record of IT systems engineering and management. Evaluated and managed Sophos endpoint solution. Implemented industry-standard vulnerability scans, system updates, performance tuning, and monitoring applications/systems via DLP. Helped set yearly security direction and achieved PCI, SOC2 Type1, SOC2 Type2, and HIPAA requirements and certifications. Key Results:
• Achieved annual Certificate requirement of PCI, SOC2 Type2, and HIPAA regulation guidelines. This enabled our business to accept new and larger business organizations that require this level of business reliability and trust. Currently in the process of testing our qualifications for ISO27001 as a part of is the international standard for information security.
• Implemented the Symantec Data Loss Prevention (DLP) solutions for projects requiring the security of PII information. Successfully limiting the ability to compromise individuals’ personal data as required by our lines of business. Crafted rules per the specific requirements of our various projects to limit data at the PC level, email level, and even as a network share watchdog.
• Evaluated and maintained the Sophos Advanced X solution on every PC in the enterprise worldwide. Provided guidance to various team members on the necessity for accurate reporting and maintaining our endpoint security environment. Implemented Sophos security phishing campaigns, customized templates, and educational training as a first line of defense against the possible compromised credentials of all employees.
• Worked closely with our third-party penetration tester to allow for quick evaluation of both our internal and external networks, systems, and overall environment. Implemented Nessus Pro and Tenable.io vulnerability scanning tools necessary to perform internal audits and produce bi-weekly reports to all groups. Improved our overall pen test score from an undesirable outcome to one that allowed us to pass SOC2 Type2 with a much more positive report from both the tester and his company, within a critical two-week period.
• Work closely with my team to interface with security auditors from various large corporate entities to ensure their confidence in our ability to provide accurate reporting of incidents. Maintain their required levels of security logging and reporting and help with the need for Risk Assessment, Business Impact Analysis, Business Continuity Planning, Disaster Recovery, and Ransomware exercises. Operations Support & IT Administration Specialist
NC4, Inc. El Segundo, CA – 2004 - 2013
Advanced to senior operations support specialist to provide IT leadership for business technology infrastructure located in 7 facilities nationwide. Managed large-scale enterprise migration projects, systems conversions and performance tuning and monitoring of applications/systems. Helped set yearly technical direction and capacity plans.
EDUCATION
UCLA EXTENSION – LOS ANGELES, CA
Linux/Unix, 2012
TREBAS INSTITUTE OF RECORDING ARTS – LOS ANGELES, CA Certificate of completion in Audio Engineering, 1990 TECHNOLOGY SUMMARY
Certifications: UCLA Extension Certificate in Linux/Unix (in progress), Certificate in Audio Engineering Applications: Rapid7 InsightVM, Rapid7 InsightAppSec, SentinelOne, Slack, Microsoft Exchange/Outlook, IBM Lotus Domino/Notes, Microsoft Project, Wireshark, Sophos A/V, Nessus Pro/Tenable.io, Microsoft Office, Yosemite Backup, Symantec Endpoint Manager/Client, Symantec Data Loss Prevention, VMware Products. Systems: Windows Server 2003-2022, Hyper-V, VMware ESXi, Windows 10/11, Linux, MacOS. References: Upon request Sandu Bogi Nassé Resume Page 2