Security Information
Resume:
JOERARD JEFF C. PUNZALAN
Security+ CHFI CPCISI Qualys VM CCNA R&S CCNA Security
+639********* ***********@*****.*** www.linkedin.com/in/jjcpunzalan CAREER SUMMARY
An experienced IT Professional with more than 9 years of relevant experience in Information Security, Systems and Network Administration. Holds and passed professional IT certifications in Network Engineering (CCNA Routing and Switching, CCNA Security and JNCIA-JunOS) and Information Security (EC-Council Computer Hacking Forensic Investigator, Comptia Security+, Security Awareness, PCI DSS, SISA Information Security, RSA Conference). Experienced with Vulnerability Assessment and Penetration Testing Experienced with Cloud Environment (Amazon Web Services and Microsoft Azure) Experienced with Microsoft Windows Active Directory installation, design concepts and procedures. Experienced with LAN and WAN computer networking, implementation and design with mix network environments using Cisco, HP, Comware, FreeBSD.
Experienced in design, installing, configuring, and troubleshooting Windows and Linux Operating System. Familiar and knowledgeable in different configuration and troubleshooting of IP based networks, LAN, WAN, and Security
Experienced handing and managing SIEM and Security Operation Center WORK EXPERIENCE
ABS-CBN Corp. (www.abs-cbn.com) (June 2018 - Present)
Senior Security Analyst
Duties and Responsibilities:
Perform vulnerability management and penetration testing for networks, servers, web applications, and mobile applications
Conduct risk assessment
Managing and maintenance of day-to-day Security Operations Center (SOC) activities
Administering Security Incident & Event Management platform (IBM QRadar)
Administering IT Security Tools
Ensure timely response to any IT security incidents
Validate remediation activities conducted by network, systems administrators as well as application developers.
Conduct review sessions with the different IT groups to assess new releases, new security risks, Access Reviews, maintenance and clean-up, security assessment and assurance reports, Standards update, etc.
Creating Security Policies and Standards Documents
Conduct Security Audit for new and existing products, applications, or infrastructure.
Assisting Data Privacy Officer in the implementation of Data Privacy Act Project and Implementations:
Implemented and reviewed security measures and network environment for Halalan 2019 Project
Implemented and administered Privilege Access Management (Beyond Trust) Nokia (www.nokia.com) (March 2018 – June 2018)
Lab IT Security Engineer
Duties and Responsibilities:
Performed Vulnerability Management for all Nokia and Non-Nokia Host/Device residing in Nokia Manila Lab Network Infrastructure
Performed Remediation and Mitigation for all Host/Device that affected by a vulnerability
Responded and Investigated to any IT Security Incidents and provide post-incident analysis
Performed Initiative Network Base Scan using nmap
Created Security Policies for Nokia Manila Lab
Mandated Network Security Best practices for Lab Network Infrastructure
Researched any new threats or vulnerabilities and reporting it to the Global Security team
Designed and Implemented Physical security measures for Nokia Manila Lab Voyager Innovations Inc. (www.voyagerinnovation.com) (January 2016 – February 2018)
Senior Security Engineer (June 2016 – February 2018) Duties and Responsibilities:
Assisted in the implementation of PCI DSS 3.2 certification in the organization
Performed Vulnerability Assessment for the 500+ Hosts and Network Devices in the mix of On-Premise and Cloud (AWS) Environment
Performed Penetration Testing on all PCI-DSS components
Ensured timely response to IT security incidents
Administered IT Security Tools (NGFW, PT Tools, VA Tools, AV, DLP, FIM)
Administered Security Information and Event Management and Network Monitoring Tools (Splunk, Cacti, Observium)
Determined security needs, developed, and implemented solutions
Created and enforced security policies
Investigated Network and Systems Operation Issues
Analyzed and established security requirements for your systems/networks
Designed and conducted security audits to ensure operational security
Responded immediately to security incidents and provided post-incident analysis
Researched and recommended security needs and upgrades
Assisted Data Privacy Officer in the Implementation of DPA Project and Implementations:
Implemented Automation of Vulnerability Management
Rolled out Network Discovery Appliance in Data Centers for Asset Inventory
Installed, Configured, Implemented and Administered IDS (Snort via pFsense) for all Voyager and Paymaya Infrastructure
IT Enterprise Specialist (January 2016 – June 2016) Duties and Responsibilities:
Monitored and responded to issues with regards to server/network
Responsible for designing, organizing, modifying, and supporting the organization’s computer systems
Management of backup and restoration
Assigned configuration of authentication and authorization of directory services
Maintained network facilities in individual machines, such as drivers and settings of personal computers as well as printers
Maintained network servers such as file servers, VPN Gateways, Intrusion detection systems
Administered servers, desktop computers, printers, routers, switches, firewalls, phones, personal digital assistants, smart phones, software deployment, security updates and patches
Configuration of network switches, routers, firewalls
Designed and installed LANs, WANs, Internet and intranet systems and, network segments
Troubleshooted problems reported by users
Made recommendations for future upgrades
Monitored networks to ensure security and availability to specific users Chikka Philippines Inc. (www.chikka.com) (January 2012 – December 2015)
Network Administration Specialist (July 2014 – December 2015) Duties and Responsibilities:
Connectivity uptime of each Chikka datacenter and main office
Management of 20+ Network devices, routers, layer 3 switches, Virtual Private Networks, Firewall, and other networking devices, with mix Network Network Environments using Cisco, HP Networks, and FreeBSD
Disaster recovery of production machines in the event of failure
Continuous system and network administration in support of product and software development
Improvement of Chikka’s network and system administration processes Project and Implementations:
Implemented Active Directory Authentication in Data Centers
Implemented VPN Connectivity in Multiple Data Centers using pFsense’s OpenVPN
Implemented High Availability Connection in ETPI Data Center using pFsense
Install/Configure/Administer/Manage Dynamic Network Access Control
Design, Installation, Implementation and Administration of Network Segregation for all Chikka Infrastucture
IT Associate (January 2012 – June 2014)
Duties and Responsibilities:
Management of Active Directory (Creation/Managing of Distribution Lists/Security Group, Managing Group Policies)
Configured/Deployed/Implemented IT Security (Palo Alto, Infoexpress Cybergate Keeper)
Configured HP Procurve Switches (Distribution Switch) for Chikka office network
Deployed and grants access to systems and software as required by the business owners
Highly-proficient in troubleshooting and fixing Desktop/Laptop issues
Configured and maintained wireless network (Aruba Wireless Network)
Handled networking, IP Technology and telephony.
Performed installation, configuration, migration, upgrading of desktop, operating system, hardware & software
Administered 600+ Workstations
Coordinated with Systems and Network Administrators for the setup of the network and server system
Supervised and maintained the connectivity and internet uptime of the workstation of the employees within the organization
Provided technical support for existing system
Performed other duties that may be assigned by the superior from time to time
Contacted Vendor for the third party support
Maersk Global Services Centres (www.maersk.com) (April 2011 – December 2011)
IT Senior Service Desk Associate
Duties and Responsibilities:
Working knowledge of Active Directory (Creating Security Groups and Distribution List)
Proficient with tools like desktop virtualization tools (Dameware, Real VNC, Ultra VNC, and Remote Desktop)
Proficient in Microsoft Products
Remote Desktop Support for GSC Employees
Troubleshooted Microsoft Products and other IT systems
Knowledgeable with business specific applications (Remedy, MS Office, IBM Per Comm, Citrix)
Installed Microsoft, IBM, and corporate software
Imaged, deployed, maintained and upgraded IT systems Avon Cosmetics Inc (www.avon.com.ph) (November 2010 – March 2011)
IT Staff
Duties and Responsibilities:
Deployed and implemented new Microsoft Security Patches, Trend Micro antivirus pattern to ensure all workstation from different Avon branches are compliant
Installed software such as Oracle, IBM Software, Printer driver, Lotus notes, Client Access.
Oversaw security & anti-virus updates & clean virus/Spyware/Malware infected workstations
Deployed and granted access to systems and software as required by the business users
Has working knowledge of Active Directory
Knowledgeable with business specific applications
Proficient with tools like desktop virtualization tools, VNC and ultra VNC
Did basic IT operation such as tape backup & server room maintenance
Highly proficient in PC hardware, MS Windows network, office software packages and network security issues
Maintained Hardware/Software inventory records for audit & asset management purposes documentation for IT related information
Has In-Depth knowledge and operations of Windows Operating System
Performed installation, configuration, migration, upgrading of desktop, operating system, hardware & software
Gets quotation and placement of orders for PCs and peripherals. Imaging and Setting up of new PCs/Laptops
Handled Networking and IP Technology, Internet Connectivity, firewalls and VPN Knowledge. Configuring Wireless Network
Installed and configured standard operating system, applications and software including network properties and related utilities/software packages required for computer system
Prepared documents and forms before deploying units to the respective users, departments and branches
Assisted non-Avon owned location in purchasing units, vendor coordination, billing statement, repairs and maintenance services
Installed, configured and changed local phones in Avaya PABX, VOIP and Patch Panel using Avaya Administration and Trouble Shooting
CERTIFICATIONS
EC-Council Computer Hacking Forensic Investigator (C HFI), ECC9216035874, (October 2019)
Cisco Certified Network Associate – Security (CCNA - Security), (December 2018)
CompTIA Security+ Certified, COMP001020639763, (September 2017)
Cisco Certified Network Associate (CCNA), CSCO012457745, (September 2013)
Qualys Vulnerability Management Certified, (April 2017)
Certified Payment Card Industry Security Implementer (SISA Information Security), 013631, (November 2016)
Juniper Network Certified Internet Associate (JNCIA-JunOS), JPR00229133 (January 2014) SEMINARS AND TRAININGS
CompTIA Cybersecurity Analyst (CySA-001), (May 2020)
Computer Hacking Forensic Investigator (C HFI), (October 2019)
Cisco Certified Network Professional ROUTE (CCNP), (Passed, August 2015)
Cisco Certified Network Professional SWITCH (CCNP), (Passed, May 2018)
Cisco Certified Network Associate – Security (CCNA - Security), (December 2018)
SISA CPISI – PCIDSS Implementation Training, (November 2016)
CEH Training (August 2017)
SIEM Splunk Training (August 2017)
Cloud Security Alliance Summit 2017 (July 2017)
RSA Conference Asia And Pacific (July 2017)
Qualys Vulnerability Management (March 2017)
CompTIA Security+ Training (June 2016)
Windows Server 2008 Training (August 2012)
Palo Alto Networks Training (February 2012)
TECHNOLOGY SKILLS
Security:
Vulnerability Management (Qualys, OpenVAS and Nessus), Penetration Testing (Core Impact), Packet Analyzer
(Wireshark), tcpdump, IPS/IDS (Cisco Firepower, Palo Alto, Fortigate), Network Monitoring (Cacti, Observium), CheckMarx Static Code Analyzer, SIEM (Qradar and Splunk), Symantec Data Loss Prevention, Anti-Virus, File Integrity Monitoring, Cryptography, Burp Suite Pro, OWASP Zap, MobSF, KnockPy, Appknox, Privilege Access Management, Autopsy, OS Forensics
Network and Systems:
Cisco Routers, Cisco Switches, HP Switches (Procurve, AS5800), Routing Protocols (Static, EIGRP, OSPF, and BGP), Switching Technologies, First-Hop Redundancy Protocol (HSRP, VRRP, GLBP, CARP), DNS, DHCP, Active Directory, TCP/IP, Aruba Wireless, Ruckus Wireless, Dynamic Network Access Control, Juniper Networks, pFsense, Fortigate, VMware Virtualization, XCP Virtualization, WINscp, Remedy Ticketing System, RT Ticketing System, JIRA, Supermicro Servers Dell Servers, RAID, Fortigate Firewall
Operating Systems:
Linux (CentOS, Ubuntu, Linux AMI, RedHat, Kali Linux), Comware, Cisco IOS, Cisco NX-OS, Juniper JunOS, Microsoft Windows Desktop OS (7, 8, 8.1, 10), Microsoft Windows Servers (2003, 2008, 2008 R2), PAN-OS, FreeBSD EDUCATION
Bachelor of Science in Information Technology
University of the East, Manila, Philippines (Graduated April 2010) High School Diploma
Village Montessori School, Bulacan, Philippines (Graduated 2005)
Contact this candidate