Post Job Free
Sign in

Information Security Engineer

Location:
Mableton, GA
Posted:
August 03, 2020

Contact this candidate

Resume:

EDUCATION & CERTIFICATIONS

AABA - Degree in Computer Information Systems, AIU Alpharetta, GA

TRAINING & CERTIFICATIONS

ITIL F_2011 Certification, CompTIA A+ Certification, CompTIA Security + Certification, Microsoft Certified Professional (MCP), Check Point Certified Security Administrator NGX (CCSA), QualysGuard: Vulnerability Management, QualysGuard: Compliance and Web Application Scanning, CISM, CISSP and C EH in progress

Clearance

Security Clearance

SUMMARY

Information Security professional with a proven track record for implementing operational initiatives in dynamic, fast-paced environments. with 20+ years of achievement delivering IT-empowered business solutions that drive growth and efficiency for high-performing companies, including an accomplished background serving both Large and small to mid-size businesses. Analytical problem solver with comprehensive knowledge of traditional and leading-edge security technologies and control methods. ensuring all functions are working collaboratively to safeguard the needs of customers, employees, and shareholders while developing short- and long-term security, product, and service strategies.

Technical experience supporting servers and workstations in a MS Windows 2003/XP/2000/ NT, Linux Red Hat, Linux Fedora, in a Local and Wide Area Network environments. Strong knowledge and configuration of LAN/WAN network protocols and Directory Services such as TCP/IP, DHCP, DNS, WINS, Active Directory, Terminal Services, FTP and Telnet. Proficient with MS Exchange 5.5, 2000, 2003 and MS Office; Exceptional analytical, problem solving, organizational, decision making, and customer service skills. Ability to work independently or as part of a team with minimal supervision, Excellent installation and administering knowledge in MS Win 2008, 2003, 2000 Server, 7, Vista, XP, NT, 9x and Novel Netware operating systems. Installation and managing various anti-virus protection applications such as Sophos, Trend, Norton, And McAfee; Backup Exec, MS Registry, Blackberry, VPN, VMWare, Right fax, Call Pilot, Netkeeper, Remedy Ticketing systems, MS Baseline Security Analyzer, Point Sec, Norton Ghost; Ability to configure networked switches, hubs, printers, modems, network cables, network cards, And different wireless devices. Expertise in installation, configuration, and troubleshooting Server, Desktop, laptop, and other hardware issues. Manage Blue Coat proxy, FireEye, ArcSight SIEM, LogRhythm SIEM, QRadar SIEM, McAfee Network Security Manager (IPS), McAfee ePolicy Orchestrator (McAfee ePO), McAfee Iron Mail, Air Defense, Websense, WhiteHat, Splunk, Tipping point, Qualys Guard, CheckPoint Firewall, Fidelis Network DLP, Symantec DLP, Secret Server, Knowbe4, CyberArk, SolarWinds and Endpoint protection. Ten Plus years of IT Security Architecture, Security Awareness, Business Continuity, Governance, Risk and Regulatory Compliance.

EXPERIENCE

RNN Group, Inc - Atlanta, GA

Global IT, Cyber Security and Data Compliance – February 2018 to Present

Responsible for protecting Interface's Information and Technology Assets.

Manage our security infrastructure and cloud environment

Processing exception and dispute requests, Identify and mitigate detection

Deploy SIEM Tool and implementing processes and procedures

Analyze host-based indicators of network traffic through SolarWinds SIEM

Manage internal and external audit requests and client security assessments

Worked closely with Infrastructure and Application Teams to Implement security controls, services, and processes to enable the workforce and to enable the expanded use of cloud services.

Collaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycle. Works with IT department and members of the information security team to identify, select and implement technical controls. Advises application, database, and system administrators on normal and exception-based processing of security authorization requests.

Implemented secure web browsing and mobility security enabling direct Internet access from branch locations and securing end user devices when working from anywhere.

Implemented review and governance program to ensure secure use of Cloud Services.

Implemented security training and awareness program focusing on modifying user behavior to protect Interface digital assets.

Regularly report on the progress of information security related activities to the Executive team

Ensured security controls are included as company implements Dev, SecOps methodology

Understanding of the SCAP, CVE, CVSS and OWASP Top Vulnerabilities in web application.

Knowledge of PCI DSS, HIPAA, FISMA, and other cyber security standards

Manage annual certification activities including PCI DSS, HIPAA, FISMA etc...

Assists with risk assessment activities, analyzing the results of audits (performed by other groups) to produce recommendations of acceptable risk and risk mitigation strategies. Documents and presents the results of vulnerability assessments.

Primus Software Corp - Alpharetta, GA

Sr. Security Analyst – July 2016 to January 31, 2018 - Contract

Works with information security leadership to develop strategies and plans to enforce security requirements and address identified risks. Reports to management concerning residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance.

Administers security controls to prevent hackers from infiltrating company information or jeopardizing E-Commerce programs.

Maintains security systems for routers and switches. Administers security policies to control access to systems.

Maintains the company's firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration, or denial of access to information.

Assists security administrators and IT staff in the resolution of reported security incidents. Participates in security investigations and compliance reviews, as requested by internal or external auditors. Monitors daily or weekly reports and security logs for unusual events and trends

Implemented an Identify and Access Management strategy for utilization of Cloud Services utilizing Microsoft ADFS, Conditional Access, and Multi-Factor Authentication.

D+H, Atlanta GA

Sr. Security Analyst Lead – Nov 2015 to June 2016 – Full-Time

Researches, evaluates, and recommends information-security-related hardware and software. Works with business units and with other risk functions to identify security requirements, using methods that may include risk and business impact assessments. Components of this activity include but are not limited to communication, facilitation, and consensus building.

Assists in the coordination and completion of information security standard, process, and procedure documentation. Performs periodic quality assurance to ensure that system, network, and application configurations meet security standards.

Part of the team that deploy Solutionary SIEM

Analyze host-based indicators of network traffic through Splunk and Solutionary SIEM.

Assists in developing and delivering security awareness training and materials. Plays an advisory role in application development or acquisition projects to assess security requirements and controls and to ensure that security controls are implemented as planned.

Collaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycle. Works with IT department and members of the information security team to identify, select and implement technical controls. Advises application, database, and system administrators on normal and exception-based processing of security authorization requests.

Assists in developing a common set of security tools. Conducts reviews of tool output using defined operational parameters. Performs control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls and recommends remedial action.

Assists with risk assessment activities, analyzing the results of audits (performed by other groups) to produce recommendations of acceptable risk and risk mitigation strategies. Documents and presents the results of vulnerability assessments.

Assists security administrators and IT staff in the resolution of reported security incidents. Participates in security investigations and compliance reviews, as requested by internal or external auditors. Monitors daily or weekly reports and security logs for unusual events and trends

FISERV, Atlanta GA

Sr. Security Analyst – May 2013 to Jan 2016 – Full-Time

Support incident management processes and security monitoring alerts in preventing internal / external hackers from compromising Fiserv’s data and assets.

Analyze host-based indicators of network traffic through QRadar SIEM

Part of the team that build out the SOC at FISERV

Support new and existing security solutions, and partner with the Security Engineering team for the implementation and integration of any new enhancements made to existing security solutions in support of improving overall enterprise security.

Ensure security tools and solutions hardware/software/devices are operating effectively and updated in a timely manner.

Knowledge of PCI DSS, HIPAA, FISMA, and other cyber security standards

Develop and maintain operating guidelines and procedures in support of Fiserv’s policies, standards, and guidelines.

Use appropriate and effective measures to respond to network security alerts.

Understand the latest hacker techniques and propose appropriate countermeasures, configurations, and awareness.

Work with members of all BU and ETG staff to support the enterprise approach to security.

Ensure the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise networks.

Perform ticket queue monitoring, resolution, and prioritization, maintain diagrams and documentation as appropriate and support firewall rule set reviews, auditing, and maintenance activities

TEK Systems, Atlanta GA

Sr. Security Analyst / Infrastructure Security Engineer – May 2013 to October 17, 2013 – Contract

Consultant - DCMA

Day to day management and maintenance of CND-IS devices by rotating logs, troubleshooting connection problems, offering guidance to geographically interspersed teams, assisting with deployment of hardware, assisting with various software upgrades, etc.

Maintaining CND-IS device compliance with USCYBERCOM requirements (e.g. IAVA, STIG, etc.) and actively responding to suspected and verified cyber attacks.

Analyze host-based indicators of network traffic through Log-Rhythm SIEM.

Completing regular situational awareness reports and daily reports.

Performing regular management and maintenance of network vulnerability scanning tools and other NOSC IA tools and performing vulnerability assessment scans, as necessary.

Analyzing situations and suggesting information assurance (IA) solutions and process improvements to help minimize the risks the client faces to computer network defense threats.

Exercising independent judgment when appropriate and within the defined (NOSC) Network Operations and Security Center processes and procedures when pursuing, recommending, or executing actions to obtain results.

Communicating and interacting with the customer, vendor service providers, other government entities, and functional peer groups verbally and through electronic correspondence to gain cooperation of others, seek or distribute or coordinate information, and to report.

Ensuring project schedules and performance requirements are met.

Knowledge of PCI DSS, HIPAA, FISMA, and other cyber security standards

Creating and maintaining working relationships with internal and external customers, stakeholders, and management.

TSYS, Atlanta GA

Sr. Information Security Analyst – Sept 24, 2012 to April 2, 2013 – Contract

Provide Threat Management / Incident Response leadership, triage, discovery, technical resolution, and inter-team communication during security events

Develop internal security processes and procedures that complement existing National and International corporate policy

Analyze host-based indicators of network traffic through ArcSight SIEM

Validate the scoping of vulnerability and web application scanning engagements

Deliver data configurations and support for Anti-virus, Web access and Remote Access solutions

Provide guidance to customers and their third-party technology providers (e.g., web hosts) on the remediation of threats that fail their scan

Assist in operational projects and tasks such as Audit and enforce security policies both internally and with vendors & customers

Participate in the ongoing improvement of the scanning and vulnerability remediation processes

Coordination of Patch Management and Penetration Testing. Proactive determination of trends related to predictive pathways, threat agents and attack vectors

Ability to provide effective metrics in support of Information Security strategies while evaluating technology solutions and provide recommendations for the most secure way to implement these solutions and working with other engineering teams to design and build a secure network

Provide Information Security training to new employees and administer semi-annual Security Policy awareness training.

AT&T, Tucker GA

Security Analyst – Jan 3, 2011 to Sept 2012 - Contract

Daily responsibilities include supporting our network infrastructure, troubleshooting software and hardware problems, training technicians in the PC/LAN/WAN environment, and performing basic Security administration. Serve as a point of escalation throughout the environment for Technical Support Services (TSS) and the Operations Center

Reviewed system applications, proposed network security measures on our Intrusion Detection and Prevention Systems

Manage security of servers and Monitor Security server for virus detection on our network and update the client PC with up to date definition files.

Enforcing compliance with company security standards ranging from logon management, network resources management and virus management while protecting data integrity

Administrated access on various platforms and applications, analyzed security processes and procedures for process improvement and implemented security software tools.

Assist in developing, defining, and directing the information security awareness program. Definition and implementation of technology and policy architecture.

Assisted awareness training, influencing compliance with security policies, providing solutions security issues, developing, coordinating, and managing information security systems.

TCH, Houston TX

Network Security Engineer – Feb 2010 to Oct 2010 - Contract

Using Mixomo / ticketing software to input request / incident information, tracking the status of incidents, and extracting reports on support activities. Supporting asset tracking and asset management activities.

Enforcing compliance with company security standards ranging from logon management, network resources management and virus management.

Implements and administers Security Information & Event Management (SIEM) systems

Monitor our platforms to ensure expected availability and performance levels are achieved. Perform maintenance and support of hardware and infrastructure on small to mid-sized projects. Perform root cause analysis for service interruption recovery; create preventative measures and present to management.

Worked with clients to assess and develop information and physical security policies.

Developed Statement of Work agreements for consulting engagements.

Managed projects and process improvement efforts.

Developed and established security polices, self-assessment logical access program, security internal workflow, procedures, and documentation adopted at the corporate level.

Initiated and facilitated Security Awareness Program.

Participated in internal monitoring and auditing, cooperating with external auditors for successful audit completion.

Participated in establishing Intranet throughout the company.

Administrated logical access on various platforms and applications.

Administers security tools, security event monitoring, alerting, and reporting

Analyzed security processes and procedures for process improvement.

Evaluated and implemented security software tools.

Administrated and supported logical access on various platforms and applications.

Developed procedures, maintained, and generated reports.

Troubleshoot hardware and software issues and review system applications and proposed network security measures.

Administrated and supported the company network security system

RBS Lynk, Inc. Atlanta, GA.

System Administrator – Jan 1, 2007 to Oct 2, 2009 – Full-Time

Using Remedy / ticketing software to input request / incident information, tracking the status of incidents, and extracting reports on support activities. Supporting asset tracking and asset management activities.

Developing and delivering timely and accurate reporting on activity status. Conducting research into specific technology topics as requested.

Add, modify, and remove users’ access to network resources and domains. Determining problems assessment and escalated technical issue for resolution and Updates, maintains and documents security controls.

Installing, configuring, upgrading, and repairing Server hardware and software in accordance with business requirements and standards.

Administered Active Directory and Exchange 2000/2003 and serve as point of contact for Global System Analyst and Desktop Engineer.

Manage and Monitor Sophos server for virus detection on our network and update the client PC with up to date definition files.

RBS Lynk, Inc. Atlanta, GA.

Desktop Engineer – Aug 8, 2002 to Jan 1, 2007 – Full-Time

Using Remedy / ticketing software to input request / incident information, tracking the status of incidents, and extracting reports on support activities. Supporting asset tracking and asset management activities.

Reviewed system applications and proposed network security measures.

Developing and delivering timely and accurate reporting on activity status. Conducting research into specific technology topics as requested.

Daily responsibilities include supporting end-users, troubleshooting software and hardware problems, training technicians in the PC/LAN/WAN environment, and performing network administration.

Provide level II and III assistance to local and remote users connecting to the LAN.

Add, modify, and remove users’ access to network resources and domains. Determining problems assessment and escalated technical issue for resolution.

Setup Blackberry, VPN, Shiva dialup, Rightfax, and Call Pilot for end-user.

Philander Smith College, Little Rock, AR.

Junior Network Administrator – Feb 2001 to Jul 2002 - Contract

Provided help line solutions to inquiries, problems and complaints relating to computer applications, equipment, and network for internal and external users.

Responsible for technical maintenance, Operational supports on personal computers LAN/WAN hardware and software.

Associated duties include the troubleshooting of software and hardware related problems, educating and assisting end-users on a personal level and analyzing the need of end-users relating to productivity.

Additional tasks include installing NT/2000 workstations on the network, including corporate E-MAIL and printers.

Daily responsibilities include supporting end-users, troubleshooting software and hardware problems, training technicians in the PC/LAN/WAN environment, and performing basic network administration.

Reviewed system applications and proposed network security measures.

Setup, new computing labs and coordinated upgrades and patches installation for software and hardware.

Nestech, Inc. Little Rock, AR.

Network Support Tech – Aug1996 to Feb 2001 - Contract

Performed advanced troubleshooting for network hardware and software problems.

Performing installations, upgrades and maintain LAN server hardware and software Monitor and responding to complex technical control facility hardware and software testing tools and techniques.

Technical documentation and participate in the establishment of LAN policies, procedures, and standards to ensure conformance with information systems and client objectives and strategy.

Participate in large projects of moderate complexity involving installation.

Examined, researched several financial applications, and developed standard operating procedure reports.

Worked with vendors for new product implementation, technical support, and performance improvement.

Performed LAN/WAN configuration, systems backups, and managed users to access network resources.

Assisted in development of test cases and test plans and executed scripted test cases and backend software configurations. Performed manual tests all newly developed and modified software.

Edwin Ford

5748 Vinings Retreat Way SW

Mableton, GA

678-***-****

*********@*****.***



Contact this candidate