Joseph D. Fresch, CISSP
**** ***** **** **** *** 86 – Austin, Texas 78730
Mobile: 512-***-****
ad5yhu@r.postjobfree.com
CYBER SECURITY ENGINEER
Skilled Senior Information Security Engineer and Architect with extensive 29-year analytical background in information security risk management and systems security engineering, including recognized service in the banking, financial services, State Government and IT services. Numerous successes with detailed risk analysis and vulnerability management program implementations. Excels in ISO/IEC 27001/2, NIST Risk Management Framework based security risk assessments for technology deployments, ranging from web-enabled e-business applications to proprietary portal network architectures.
Professional Certifications
CISSP - Certified Information System Security Professional
[Expired] GCFA - GIAC Certified Forensics Analyst [2007 - 2021]
[Expired] GREM - GIAC Reverse Engineering Malware [2005 - 2021]
[Expired] GCUX - GIAC Certified UNIX Security Administrator [2005 – 2018]
MCSE - Microsoft Certified Systems Engineer – Windows 2000
MCDBA - Microsoft Certified Database Administrator – SQL Server 2000
LEADERSHIP
Core Competencies: Information Security Program Management, Security Operations Team Leadership, Enterprise Security Risk Management, Secure Enterprise Architecture & Design, Critical Incident Response and Forensic Recovery, Information Security Program Management, Security Operations, Security Engineering, Security Assessments
PROFESSIONAL EXPERIENCE
Denver Health and Hospital Authority, Denver, Colorado 03/2023 – 09/2023
CYBER SECURITY CONSULTANT
Helped with onboarding new employees, contractors and students
Performed threat hunting activities including malware attacks, phishing emails, and forensic research on log anomalies
Gap Analysis helped determine cyber security related needs, assessed coverage by existing tool sets, with recommendations on needed functionality (Learned all 18 Security tools)
Worked with several cloud-based security/endpoint management tools
Sexing Technologies Genetics, Navasota, Texas 07/2021 – 04/2022
CYBER SECURITY CONSULTANT
Interim Cyber Security Manager to maintain needed day to day cyber security operations
Performed threat hunting activities including malware attacks, phishing emails, and forensic research on log anomalies
Performed Firewall policy audits, including Web Application Firewall monitoring and maintenance
Intrusion Prevention System (IPS) rules check and monitoring
Gap Analysis helped determine cyber security related needs, assessed coverage by existing tool sets, with recommendations on needed functionality
Collaborated / Communicated with Stakeholders and the Chief Administrative Officer for the company regarding incidents and project requirements, status and results
Advised on implementation of NIST SP800-53/53A in to Risk Assessment process in the Enterprise
Worked with several cloud-based security/endpoint management tools
Helped with design and architecture of network projects to support core business
Achievements
Performed cyber security consulting role during third party vendor pen testing and discussions on coverage for the Center for Internet Security (CIS) Critical Security Controls for version 7.1 and 8
Provided cyber security research to answer upper management and C-Suite concerns and considerations
Taught security awareness regarding the companies’ valuable herd management data and the need to legally protect it, not just with security controls
APEX Systems, Inc. at the Texas Department of State Health Services, Austin, Texas 07/2010 – 06/2021
INFORMATION SECURITY ENGINEER
Performed information security related tasks under the general direction of the Information Security Officer and in coordination with the Security Team and Information Technology staff
Analyzed agency information security policy, standards, guidelines, plans, and procedures for network and system security
Responsible for working individually and collaboratively to achieve cost-effective, timely, successful completion of team goals, objectives, projects and assignments
Performed advanced computer systems security analysis work regarding forensics, email phishing, threat hunting, malware attacks, and incident response.
Performed technical risk assessments and reviews of new and existing applications and systems, including data center physical security and environment, to include NIST SP800-53/63A controls into assessment process and ensuring Regulatory Compliance (Health Insurance Portability and Accountability Act of 1996 (HIPAA) and Health Information Trust Alliance (HITRUST Common Security Framework (CSF)))
Analyzed information and systems security requirements for Proof of Concept/Value engagements, RFOs, and security architecture documents.
Collaborated / Communicated with Stakeholders and CISO for the Agency regarding incidents and project requirements, status, and results
Evaluated and recommend action on testing and certification of software and hardware upgrades
Reported on work products for customers and higher management
Achievements
Helped build process for performing risk assessments, including developing a C & A program integrated into the process
Completed risk assessments for systems, 108 systems, containing PII and ePHI
Built core servers for PKI infrastructure with PGP Universal Servers, a requirement for use of Veterans Affairs (VA) and Center for Disease Control and Prevention (CDC) Cancer Registry data
Guaranty Bank, Austin, Texas 10/2003 – 04/2010
SENIOR INFORMATION SECURITY ENGINEER
Led Security Response Team and coordinated incident management activities
Architected antivirus system for 8,600 workstations and 1,300 servers and developed associated policies, procedures and documentation
Designed enterprise security architecture requirements and worked with various key stakeholders to gain consensus
Performed forensic preservation of sensitive information for litigations as directed by General Counsel
Identified threats to sensitive information or private customer data and recommended mitigating action
Led Security Response Team and coordinated incident management activities
Responsible for Firewall maintenance
Architected and administrated Information Security Servers for Information Security Risk Management Department
Database Administrator for various security systems
Performed security engineering analysis for all infrastructure and application deployments, incorporating NIST SP800-53/53A controls
Collaborated / Communicated with Stakeholders and CISO of the Bank regarding incidents and Project requirements, status, and results
Escalation Point for information assurance team
Conducted training and evaluation of risk management staff
Achievements
Key member of the infrastructure transformation team as Guaranty Bank’s parent company was divided into three separate companies. Each managed application/device was duplicated for other lines of business
Designed and implemented IronPort Email Gateway, Firewalls, and ISA/SurfControl infrastructures
Deployed security monitoring tools to provide security event correlation and alerting
Facilitated collaboration between enterprise architecture and information risk management departments
Evaluated security tools for business requirements and cost-efficiencies
EDUCATION
BS, CHEMICAL ENGINEERING December 1994
The University of Texas, Austin, Texas
CHEMICAL ENGINEERING AND ECONOMICS PROGRAMS 01/1988 - 08/1990
Syracuse University, Syracuse, New York
PROFESSIONAL AFFILIATIONS
ISC2 – Member - 2007 Began Proctoring CISSP exams
SANS – SANS GIAC Advisory Board Member
Texas Exes Student Association - Life Member