Humayun Khan
Milwaukee, WI ***** ● 414-***-**** ● ******@*********.***
Global Network Infrastructure Cloud & Security Architect
Infrastructure Design ● Planning & Rollout ● Project Management
Senior Network, Security, and Cloud Architect with eight years specializing in enterprise-wide network security and infrastructure. Well-versed across multiple skills including project management, planning, design, deployment. Possess an array of Cisco and Microsoft network, security, and technological certifications along with hands-on experience with worldwide projects with cross-functional teams in the United States, Europe, and Asia.
Mastered security requirements across technologies and operations, including technology, software, and technical architecture.
Expertly integrated project management methodologies such as Agile, SAFe, and hybrids according to outlined requirements.
Developed, designed, and executed seven network and security engineering domains in collaboration with global teams.
Core Competencies
Network Security Solutions Security Operations Center Solutions Team Leadership & Training
Planning & Deployment End-User Awareness & Support Cross-Functional Collaboration
Continuous Process Improvement Audits, Assessment & Quality Compliance Incident & Risk Management
Firewalls Routers Switches Project Management & Support Penetration Testing
Architecture Design Vulnerability Monitoring & Elimination Diverse Technical Knowledge
Cloud Security Architecture Designs Vendor Management AWS & Azure Solutions Architecture
Data at Rest & In-Motion Web Content Management Systems Secure Key Management & Storage
Technical Skills
● CCNP Routing & Switching ● CCNP Security ● Multiple OS ● Virus Malware ● Cisco Microsoft Firewalls ● F5 System ● Intrusion Detection & Prevention ● VPN ● AWS & Azure Clouds ● CI CD Pipelines ● WAN LAN ● Wireless Video Audio Telephony ● Vulnerability Assessment Nexus Qualys ● Microsoft Dynamics AX 2012 R3 ● Cisco & Palo Alto Firewalls ● Routers & Switches ● Wireless & Medical Devices ● ITIL ● Infrastructure & Operations Assessment ● DMZ ● Zscaler & BlueCoat Web Content Management ● Splunk Security Incident Monitoring ● Anti-Virus Anti-Spam Solutions ● Gemalto Key Management Solutions ● CEH ● CEI
Professional Experience
SENIOR INFO SECURITY ANALYST/LIAISON & CLOUD ARCHITECT WEBSTER/HSA BANK Milwaukee, WI 07/2017 to PRESENT
Subject Matter Expert, giving guidance on complex architecture, on cyber security matters, networking and operations, as a member of ARB (Architecture Review Board). Serving as a Liaison for Webster and HAS Bank, member of cloud initiative team to analyze security and cloud strategy and architecture design. Performing security analysis for applications, networks, systems, cloud, sites etc. Attending quarterly Webster and HAS Bank’s senior management meetings to share current operations and future upcoming projects. Reviewing technical contracts and agreements with legal team and responding RFI (Security Request for Information) to new clients during onboarding process. Trained CIS team on cloud systems and technologies, to perform cloud security assessments accordingly. Developed banking reference architecture, Dev/Ops skill matrix, CI/CD pipeline process, cloud computing service models, high-level cloud architecture and cost-benefit analysis structures as well as associated components. Performed CI/CD pipeline tools analysis to build and deploy CI/CD process.
Selected Achievements
Presented technical solution concepts to senior vice presidents, CTO, CISO, and stakeholders, tailoring content to their interests and concerns.
Trained CIS team on cloud systems, cyber security, networking, and tools to perform annual assessments.
Consistently exhibited expertise with security requirements spanning multiple onsite and cloud technologies and operations.
Selected as VP Cloud Architecture to create cloud architecture, CI/CD process, reference architecture, analyze cloud tools to build CI/CD pipeline, and build cloud computing models.
Become a member of ARB (Architect Review Board) and senior management quarterly meetings to share current and future goals.
SENIOR SECURITY & CLOUD ARCHITECT Northwestern Mutual Milwaukee, WI 03/2016 to 03/2017
Subject Matter Expert, giving guidance on complex of portfolio architecture to other Architects, IT employees, and business partners. Analyzed security and cloud strategy for public web architecture design to move onsite infrastructure to the public cloud. Mapped technology governing strategy, security solution architecture, and solution pattern development to facilitate high-impact applications and on-time business solutions in the public and private cloud. Navigated cross-functional team through new structure development processing across concept, execution, and deployment on department and project levels. Completed cost-benefit analysis structures as well as associated components such as SLAs (Service Level Agreements) and OLAs (Organization Level Agreements.
Selected Achievements
Presented technical solution concepts to directors, CTO, CISO, and stakeholders, tailoring content to their interests and concerns.
Consistently exhibited expertise with security requirements spanning multiple onsite and cloud technologies and operations.
Selected as Senior Security Architect for the $42M private cloud project and recipient of the Exceptional Service Award Value Stream by senior management, along with gaining recognition for building the best RACI Model to identify corporate and third-party responsibilities.
Authored and administered designs for network, security, cloud, statement of work, and technical project plans.
Developed and presented clear corporate vision for private and public cloud architecture by devising current and future architecture designs outlining security gaps, goals, and easy to understand strategy to achieve long-term objectives.
Mastered intricacies of the competitive landscape, gaining ability to articulate the technical differentiations and value proposition.
SOLUTIONS ARCHITECT CONSULTANT MGIC Milwaukee, WI 01/2015 to 04/2015
Guided Architects, IT personnel, and business partners through business-critical portfolio architecture. Championed technological solutions impacting strategy, security, and pattern development for applications. Led multi-disciplined teams throughout all phases of deploying new structure development on a departmental and project level. Demonstrated knowledge of how technology, software, and solutions interact across the technical architecture to meet business requirements. Explained technical impact on infrastructure to senior management and stakeholders. Designed networks, security, and cloud architecture. Formulated cost-benefit analysis and contributed to comprehensive SLAs and OLAs. Helped assess network and security sectors in addition to mapping action plan.
Selected Achievements
Evaluated and offered solid recommendations to improve security architecture designs, eliminating 2000+ vulnerabilities across the enterprise.
Redesigned network and security architecture, resulting in reduction of vulnerabilities as well as decreasing number of tools used, ultimately cutting 30% of the daily security operation tasks.
Identified and resolved issues while making daily decisions regarding network and communications, representing the Telecommunications Team in choreographing work processes and projects with other departments and divisions.
Developed and presented clear corporate vision for private and public cloud architecture by devising current and future architecture designs outlining security gaps, goals, and easy to understand strategy to achieve long-term objectives.
CHIEF SOLUTIONS ARCHITECT & TRAINER Bork Solutions LLC Hales Corners, WI 01/2014 to Present
Consulted IT staff, Architects and business partners on building and maintaining a secure portfolio architecture. Drove web-based architecture design, security, and strategy for the public and private cloud. Outlined strategic solutions related to security architecture and pattern development for applications for pivotal and timely cloud solutions. Led cross-functional teams on structure development from concept to implementation. Integrated multiple effective project management methodologies, to enhance end-product velocity and quality. Presented new technical concepts and solutions to stakeholders and upper management. Performed cost-benefit analysis and assessed vulnerabilities of the network and security structure to close gaps, as necessary.
Selected Achievements
Designed scalable, fault-tolerant and secure architecture to meet strict corporate specifications and budgets
Member of the Global Security Team, building and deploying teams and business units accountable for network security.
IT MANAGER & NETWORK SYSTEMS CONSULTANT Actuant Corporation Menominee Falls, WI 08/2014 to 12/2014
Accountable for managing team tasked with supporting Windows, Active Directory, Exchange, MSSQL, VMWare, Citrix, backups, Disaster Recovery, web/email filtering, email archival, related Wintel technologies, voice, video, data, audio, and virtualization technologies. Led the Infrastructure Team consisting of network/system administrators to support LAN/WAN, Firewall, security, PBX, voicemail, mobile phone, mobile devices, video/web/audio conferencing, and other related telecommunication systems. Managed printing, file storage, Windows applications, DNS, DHCP, server systems hardware, and storage/SAN.
Selected Achievements
Guided team of six engineers to complete and rollout redesign of North American security architecture and document network as well as security infrastructure, decreasing firewalls and IDS/IPS systems, optimum scalability, fault tolerant design, visibility, and improved security control following NIST methodologies.
Promoted to IT Manager infrastructure from network architecture within only six weeks on the job.
Identified and fixed issues while making daily decisions on network and communications, representing the Telecommunications Team in choreographing work processes and projects in collaboration with other departments and divisions.
Authored and administered designs for network, security, cloud, statement of work, and technical project plans.
SENIOR ARCHITECT & CONSULTANT PDS, Inc. Brookfield, WI 01/2014 to 04/2014
In charge of security assessment to evaluate network security architecture, operation, policy, procedures, and compliance. Examine effectiveness of company strategy, digital forensics practices, cloud-based internet monitoring, and filtering solution for web content filtering, email spam, anti-virus solutions and data loss prevention. Interviewed CISO, Security Engineers, Security Analysts, and Security Architect during risk management and auditing. Assess processes such as Incident Management, Problem Management, and Change Management. Execute GAP analysis and create future architecture design. Reviewed and advised on Public Key Infrastructure and Certificate Authority. Audited and tested internal external security vulnerability.
Selected Achievements
Led multiple Fortune 100 and 500 company teams on IT infrastructure assessment to identify and eliminate vulnerabilities while creating future plans.
Composed documents to help companies visualize their current versus future state using gap analysis and transition plans.
Gauged network architecture design of LAN, WAN, and DMZs along with operations, Disaster Recover, and business continuity.
ENTERPRISE SECURITY MANAGER & ARCHITECT VE Tech North America Greenfield, WI 01/2013 to 11/2013
Headed cross-functional teams and guidance on security and network design to IT staff, business partners, engineers, and architects in North America. Presented and reported design and operations to the North American Directors, GMs, and CIOs as well as CIO of GIMS and Global CTO in U.K., France, and Poland. Impacted application delivery using technical strategy, security solution architecture, requirements, and solution pattern development for the Google cloud environment. Delivered global network, security and cloud designs, and RACI Models, SLAs, and OLAs. Scrutinized effectiveness of network security and created roadmaps to close gaps. Resolved complex problems and implemented pivotal decisions related to network, security, and communications on a daily basis.
Selected Achievements
Guided team of six to complete and rollout redesign of North American security architecture and document network and security infrastructure, decreasing firewalls, IDS/IPS systems, optimum scalability, fault tolerant design, visibility, and better security control following NIST methodologies.
Scope of responsibility included managing $1.5M annual budget for North American security operations.
Saved $300K+ annually via redesign and implementation of architecture, processes, central operations, and automation.
Acquired and trained low-end help desk operators as Security Analysts, saving the company $60K per year across three years.
Reduced turnaround time for security support tickets by automating the onboarding and off boarding process.
Appointed as Global Security Operations Lead to standardize tools, processes, and designs.
SENIOR IT SECURITY ENGINEER Virtual Care Provider, Inc. Milwaukee, WI 08/2011 to 01/2013
Executed daily network security activities, security incident tasks, and identified access management. Implemented McAfee cloud-based internet monitoring and filtering solution for web content, email spam, anti-virus, and data loss prevention. Collaborated with VCPI clients to evaluate security solutions, data security, integrity, backup, and availability. Audited and assessed internal and external vulnerabilities against operating systems, network devices, applications, and web hosts using Qualys tool. Reviewed network/security architecture design on LAN, WAN, DMZs, and VPN. Participated in evaluation of processes including Incident Management Process, Problem Management, and Change Management along with Disaster Recovery and business continuity.
Selected Achievements
Offered comprehensive technical solution concepts to CTO, CIO, and stakeholders, tailoring content to their interests and concerns.
Consistently exhibited expertise with security requirements spanning multiple technologies and operations.
Authored and administered designs for network, security, infrastructure, statement of work, and technical project plans.
Contributed to team success during the $1.3M project for the data center redesign, handling router, switches, Nexus 7K, 5K, 2K, firewall, IDS/IPS, FireEye Malware appliances, F5, and NetScaler.
Developed and presented clear corporate vision as well as private and public cloud architecture by devising current and future designs outlining security gaps, goals, and easy to understand strategy to meet long-term goals.
SENIOR NETWORK & SECURITY PLANNING ANALYST Marshfield Clinic Marshfield, WI 08/2007 to 08/2011
Point person for internal and external audits and assessments within North America. Formulated cost-effective solutions to issues detected during audits and reviews of regulatory requirements. Implemented design planning, security management, and led network infrastructure projects involving firewall, IDS/IPS devices, routers, switches, Nexus, wireless, and medical devices. Senior team member, executing ITL processes and procedures. Devised and maintained systems and processes on top of supporting documentation. Authored and negotiated contracts, SLAs, and OLAs. Evaluated and introduced new technologies.
Selected Achievements
Reconfigured and deployed corporate firewalls, IDS/IPS systems for the Security Operation Center, reducing the volume of firewalls and opened the way for new firewall models to facilitate remote medicine and patient data collection.
Training & Credentials
AWS Cloud Essential Training ● AWS Cloud Concept Training
Member of EC-Council Consultants Team ● Member of Microsoft Partner for Training & Development
Member of PMI Project Management Institute ● Member of IIBA International Institute of Business Analysis
MCT Microsoft Certified Trainer ● CEI Certified EC-Council Instructor ● MCSE Security
CCNA Cisco Certified Network Associate ● CCNP Security Cisco Certified Network Professional Security
CCNP Routing & Switching ● CEH Certified Ethical Hacker ● ITIL Information Technology Infrastructure Library
MCTS Business Solution Microsoft Dynamics AX ● Microsoft Certified Business Management Solution Professional
Cisco Certified ASA Specialist ● Cisco Certified IOS Security Specialist ● Cisco Certified Specialist Virtual Private Networks
Cisco Certified IPS Intrusion Prevention Systems Specialist ● Cisco Information Security Specialist
Microsoft Certified Technology Specialist Dynamics AX ● Installation & Configuration Microsoft Dynamics AX
Microsoft Certified Business Management Solution Specialist ● AWS & Azure Cloud Certifications (In Progress)