ALFRED NORRIS

*** **** ***** *** ********, Illinois 60074 847-***-**** adhrls@r.postjobfree.com

https://www.linkedin.com/in/alfrednorris/

SUMMARY

A dynamic, adaptable, and broad-minded senior IT security professional, with extensive experience in testing and troubleshooting, implementations and installations, strategic planning, project coordination, policies and procedures, quality assurance, inventory management, systems management, process improvement, and end-user support. Additional proficiencies include contracts, reporting, compliance and regulations, and reporting.

A resourceful, highly motivated, dependable, and proven performer, with strong problem-solving skills, who enables an organization to optimize the performance and efficiency of workflow processes, provides exceptional support to meet client needs, and enhances business potential and capabilities.

EXPERIENCE

R1RCM, INC. Chicago, IL

IT Security Analyst/Senior Site Lead, 2016-2020

Identified, remediated, contained, eradicated, and reported on threats that exploited vulnerabilities against organizations’ valued assets. Led daily activity, including working with numerous security tools, responding to alarms, documenting procedures for safeguards, and helping to drive strategy with mitigation control development as framed by compliance and regulatory responsibilities.

Gained experience with SOC2 and SSAE16 compliance controls and policy procedure mappings experience, based on auditing and compliance requirements. Utilized HITRUST compliance, HIPAA compliance framework, and PCI compliance.

Functioned as administrator and SME of PhishLine and Phishing campaign SaaS suite. Provided training and gathered metric data on success rate of Phishing attempts.

Oversaw SQL database scanning for PII and PHI, using Dataguise platform in getting accurate account of amount of sensitive data as related to HIPPA compliance and HITRUST certification housed in organization databases. Provided reports of amounts of PHI and PII to SIEM Engineers, creating rules and visibility on servers, with additional controls as related to HIPPA compliance and SOC2 control mapping.

Recognized as physical security auditor for security team. Performed on-site physical access monitoring, including auditing and enforcement of compliance to physical access of sensitive areas, employee areas, and revision of Access Control badges. Updated to Common Access Card criteria, enforcing photo sample to be authenticate employees.

Administered tools such as LogRhythm SIEM, Symantec End-Point Protection, Cybereason Behavior Intelligence End-Point Protection, Dell SecureWorks IPS, Carbon Black Bit9, Nessus, PhishLine, Dataguise, WinDSX, Trisul, Netwrix, Tripwire, and Websense.

Performed firewall and ACL reviews on ingress and egress connections across all web applications, services, servers, and VPN connections on Cisco ASAs, switches, and routers. Monitored alerts and responded to issues arising via Trisul IDS and Dell SecureWorks IPS.

Managed event analysis and escalation via LogRhythm alert, alarm, dashboard, and reporting assessment. Created cases and weekly list of attacking IPs for blocking via change management process.

Implemented and supported Tenable Nessus platform for vulnerability and patch management program. Led monthly scans on assets, devices, and systems. Oversaw report creation and service desk request tagging and tracking remediation efforts made to stay within compliance window for remediation.

Served as incident handler via in-depth analysis of malware and suspicious activity via Cybereason and Trend Micro Office Scan. Oversaw and performed incident response, based on NIST 800-61 v2 practices.

Recognized as SME for Trend Micro Data Armor for End-Point Encryption for 5,000 end points.

Established as SME for Absolute managing assets and managing reports for asset management to validate inventory through the SaaS application interface.

Assigned, administered, and troubleshot HP thin clients with VMware Horizon VDIs installed as OS.

Supported various cloud services and applications used by the organization through administration and support delivery that aligned to the Shared Responsibility model.

R1RCM, INC. Chicago, IL

Infrastructure Support Engineer, 2014-2016

Assigned permissions to users on UAT, DEV 2003 and 2008, and 2012 servers.

Documented 0365, Trend Micro endpoint protection, and data protection manager procedures.

Worked with infrastructure team in updating 2003, 2008, and 2012 servers for HITRUST compliance.

Collaborated with release deployment team, ensuring services and application to internal and external customers to drive business revenue and productivity.

R1RCM, INC. Chicago,IL

IT Desktop Support, Tier II, 2011-2014

Assigned on-boards’ and off-boards’ ticket requests to capable support resource.

Collaborated with Tier I in maintaining, monitoring, and troubleshooting end-user workstations and software-related issues.

Managed service request calls and ensured customer provided quickest and best possible service.

Administered Microsoft Front-End protection for spam, anti-malware service.

Assisted with projects assigned by desktop support management.

Resolved issues and problems at first call and tracked metrics and documented incidents through Service Desk Ticketing System.

Built laptops, using Microsoft SCCM. Worked with infrastructure to institute new services and implement services.

Taught and gave orientation to new hires, giving guidelines on compliance and ensuring awareness of HIPAA and PHI rules.

Hosted weekly meetings with Tier I support, recommending and implementing corrective solutions, ensuring quick and accurate service delivery.

Aided end-users in ensuring Microsoft Data Protection Manager was working.

Deployed Windows 7 Enterprise and Data Armor Hardware Encryption for end-users.

TRIDENT USA HEALTH SERVICES, Burbank, California

Windows Server Administrator, 2010-2011

Configured, installed, troubleshot, and monitored Windows 2008 R2 Servers in production environment (RAID, OS, and Application Software).

Oversaw system testing, using standardized test cases. Managed test data preparation.

Led regression and integration testing, using test cases on TelradX Scan Software.

ADDITIONAL EXPERIENCE

AMERICAN SPECIALTIES, INC,Yonkers, New York, Information Technology Systems Administrator, 2005-2010. Monitored and maintained corporate-wide Windows server standards instrumental in boosting productivity, efficiency, and quality of multi-site operations with 500 users. Initiated network system reviews, identified and addressed existing and potential issues, and created proactive upgrades and enhancements for optimal results. Supported Symantec Network Backup Exec on a daily, weekly, and monthly basis for 35 servers and workstations in all different locations. Maintained and monitored MS Exchange Server 2K, 2K3, and 2K7. Oversaw a complete inventory of all system assets. Troubleshot Active Directory and group policy-related issues.

COMPUTER SCIENCES CORPORATION, Naval Station Great Lakes, Illinois, Computer Systems Analyst/Senior Lead, 2002-2004. Served as first point of contact in responding to user inquiries, troubleshooting problems, and delivering education with 2,000 users. Supported 150 servers in cluster environment at Great Lakes Naval Base, doing upgrades, updates, and troubleshooting. Managed Symantec Backups on a weekly basis. Performed IT upgrades, updates, installations, repairs, support, testing, and configurations. Supported software and hardware training for U.S. Navy Advanced Electronics Training Classrooms and Learning Resource Centers on U.S. Naval Base.

COMMWORKS, 3COM COMPANY, Mount Prospect, Illinois, Software Project Engineer, 1999-2002. Gained IT knowledge and analytical abilities in supporting diverse network solution products, troubleshooting hardware, software problems, setting up a laboratory environment, and performing system-level testing. Gave presentations to internal team and on customer site on how to use software product, license agreements, documentation, and follow-up visits. Collaborated with engineering team in strategically planning and steering critical projects. Completed migration project from WinNT 4.0 to Windows 2000 and set up Active Directory infrastructure.

MONITOR LIABILITY MANAGERS, INC., Rolling Meadows, Illinois, Network Administrator, 1997-1999. Supported 500 users, with full accountability for controlling and managing Exchange 5.5 and servers, workstations, administering network applications, and preventing virus infiltrations. Assisted with configuring, troubleshooting, and implementing Sphericall Telephone System on PBX Server.

EDUCATION

DEPAUL UNIVERSITY, Chicago, IL

M.S. in Cybersecurity, 2018

DEPAUL UNIVERSITY, Chicago, IL

B.S., Computer Information Systems, 2000

WILLIAM RAINEY HARPER COLLEGE, Palatine, IL

Associate in Science Degree, 1992-1997

CERTIFICATIONS

Microsoft Certified Systems Engineer NT 4.0 and 2000

MCITP Windows 2008 Server Administrator

CCNA

ITIL

EMC Proven Professional Info Storage AssociateVer2 (EMCISA)

CyberArk Certified Trustee Certificate # 1270513

Computer Information Security Auditor (CISA), expected Completion November, 2020

TECHNICAL SKILLS

Network Operating Systems: Windows Desktop Operating Systems, Windows Server Operating Systems, Windows 10

Software: Office 365, Symantec Network Backup Exec, Surf Control, Websense, Trend Micro Enterprise Anti-Virus, Trend Micro Encryption Services, Sophos, Absolute, Symantec Anti-Virus, Carbon Black, Cybereason, LogRhythm, Splunk.

Network Protocols: UDP, TCP/IP, DNS, TLS.

Contact this candidate