Security Engineer
Resume:
Matthew Frost
adkf1m@r.postjobfree.com
Education:
New Mexico Junior College 2004- 2006
Cisco Academy CCNA 2004-2005
CCNA router and switches 2012-2018
CCNA security 2015-2018
AWS Solutions Architect cert.
Dell and HP courses, AppleCare (Certification up for renewal), CBTnuggets (AWS Architect/SysOps, Wireshark, and Linux), Global Knowledge (Windows integrations), Entrust (Getaccess, Security Manager, IdentityGuard)
Skills:
O365, Datacenter installs & upgrades. Database organization & module compiling for AS400. Computrace MDM, PGP encryption setup and use. CA integrations, Servicedesk, Norton Ghost, VMware, VNC, VPN (Cisco, certificate-based, Netgear, Nighthawk) BES & Firewall administration. Palo Alto, ACMT, CCENT, CCNA, CCNAS, ITIL, QoS, WAN, iOS, Oracle OAM, GApps, C++, JavaScript, Python
Experience:
14 years’ experience with PKI, computer, and network security solutions. 10 years experience with Meraki systems.
Feb 2020 – July 2020 Security Analyst Program Manager, PCCI
• Putting together PnP for HITRUST cert
• Managed SLT sign-off meetings for PnP and evidence
• Working with international accreditation BDO
• Trained and prepared upper management for information security reviews
• Conducted risk management and oversaw program implementation.
• Implementation of PKI in environment
• Worked with Azure HIT-RUST blueprinting and security tools.
• Planning and implementing a security framework within the guidelines for protecting computer systems
• Auditing of code using Azure tools
• Pen testing solutions in the environment.
• Managed projects related to security and risk mitigation/management
Oct 2018 – Nov 2019 Security Engineer, Cisco Systems, Inc.
• Working with advanced SaaS offerings including AWS, CWS, CDO, AMP, VPN, OKTA, Firewalls, Umbrella. Beta testing, integrations, and new client design and launches.
• Hands-on with hardware and VM versions of ASA, WSA, SMA, ESA, ISE, AnyConnect. Advanced troubleshooting and backtrace for bug reports.
• Troubleshooting of Network and Security using Splunk and other SIEM products
• PEN testing and Nmap using Wireshark to locate vulnerabilities.
• Troubleshooting of certificate-based integrations across a wide variety of environments.
• Advanced Wireshark analysis and Web Proxy support and well as best practice solving for any out-of-band issues.
• Python programming, Javascript, FreeBSD, Cisco Green Belt in security
• 15% increase in services renewal exceeding expectations.
• Worked as part of the monthly DR for natural disasters.
August 2017 - September 2018 Security Engineer, Frost Design Consulting
• Technical consulting on 2018 version of cryptography and networking college textbook written by http://williamstallings.com/ (the book is now published and credited with my additions)
• Asked by Amazon to attend new classes for AWS certification. (completed and reviewed)
• Troubleshooting of CA, SSO, and cert issuance. Client Migrations and Legacy support.
• Defining standards and templates for Client (Windows systems XP - 10)
• Provide consulting services to capture/refine customer requirements and translate these into technical requirements.
• Develop technical solutions using existing best-practice solutions, templates, configurations and standards set by Customer
• Develop technical solutions to satisfy client requirements where standard Customer solutions do not exist/apply
• Create/contribute to technical documentation for proposed technical solutions.
• Document and communicate solutions and principles to a technical and non-technical audience
• Provide solution-level support to the design and implementation phases of assigned projects
• Review and validate deliverables produced by Design Engineers and Network Engineers
• Training with Thales, and SafeNet (HSM)
• Familiar with SC for IoT and automotive design.
• X509 certificates
• Monitoring Cisco Unified communications (SIP, MPLS)
• Wrote PnP and DR as well as Business Continuity for several clients. (Some clients can be released per NDA)
•
August 2013 - August 2017 Senior Network Support Engineer, Entrust
• Provide daily direction and communication, to ensure customer expectations are established and maintained for our platinum clients escalating and engaging development if needed. Client retention was 98% year over year. Upgraded sales of over $100,000. Personally, responsible for bringing in/retention of over $550,000 to department per year.
• Built test boxes using Hyper-V and VMware to recreate problem cases and build POC infrastructures for clients prior to integrations.
• Explained and Implemented PKI structure and usage. This was for both RedHat/Linux and Microsoft environments as well as mixed.
• Troubleshooting and integration of Office 365 with products (reading of logs, checking connections, and configurations.)
• Troubleshooting and maintain FTPS and VPN, load-balanced, wireless, MDM, and 2FA(OKTA, Ping) connections within Palo Alto, Cisco, IBM, and Oracle-based hardware/software
• Supported IdentityGuard, HSM’s, Security Manager, and mobile apps to provide maintained client security, including email, encryption, and access protection
• Used SafeNet, Thales, and FireEye for HSM certificate generation
• Built and hosted data-centers in an AWS cloud environment
• X.509 standards, Java Keystore, Python, and OpenSSL
• Provided back-end support for SaaS Smart-grid(UK project), mobile security network product
• Evaluate documented resolutions and analyze trends for ways to prevent future problems.
• Detailed thousands of tech notes and client notes on PKI, TLS/SSL, PGP certs and Symantec mPKI.
• Lead for on-boarding State of Missouri, Kansas, and others for SaaS offerings.
• Lead for USAID’s worldwide smart card implementation, federal bridge integration, and performance.
• UK smart-grid project lead
• Key management, profiles, and algorithms for encryption
• Familiar with payment standards and best practices (PCI, SOC, ANSI)
• Troubleshooting, Monitoring, and Installation of Linux systems (Entrust products are built on this platform)
• Client portfolio included but not limited to: Xerox, USAID, canada.gov, Bank of Brazil, Interpol, Her Majesties Guard, DEA, County of LA
2006 - 2013 Tech Support Supervisor, Insphere Insurance Solutions
• Provide daily direction and communication leading a support team of 5 people to ensure that calls are answered, tickets are resolved, and customer satisfaction is maintained within SLA’s.
• Establish work procedures and processes that support the company and departmental standards and strategic directives
• Built DR, Sox, and HIPPA guidelines.
• Participate in the Incident management process by acting as a single point of contact for escalations and notifications regarding outages and customer-related issues.
• Evaluate documented resolutions and analyze trends for ways to prevent future problems.
• Create and maintain a high-quality work environment so that team members are motivated to perform that their highest level. Use appropriate judgment in upward communication regarding department or individual employee concerns.
• Troubleshooting and maintain Cisco VPN connections
• Provide input on employee development and implementation of staffing, training, scheduling and recognition programs.
• Provided software/hardware support to a mixed environment of Linux/Windows
• Troubleshooting product on Linux shell environment
• Ran testing on Azure vs. GApps platform to identify performance for the client base. Lead conversion of local Microsoft Office to O365.
• Interacts with internal/external IT teams to mitigate customer issues. Escalates and initiates problem resolution.
• Develops monthly metrics and project status for process improvement. Lowered ticket count by 500%
• Lead company into SaaS platform (GApps Cloud) for nationwide staff.
• Planned and lead team DR runs as well as tabletop backup tests.
Build and refresh PCs for all areas of 1500+ workforce (200+ units per quarter), application troubleshooting, network integrity, hardware and software resolutions as necessary, Blackberry (BES and hardware), Air Card domestic and international support. Maintain 734 plus business-related programs, including installation, writing and set up of technical guides for end-users. Part of a two-man team chosen to support C titles with “Gold Support”. Awarded 4% bonus for “Top Performers” within the company (selected by department Directors).
Contact this candidate