Post Job Free
Sign in

Ot security Qualys engineer

Location:
Atlanta, GA
Posted:
May 10, 2023

Contact this candidate

Resume:

Seeking position as…

ICS/OT SECURITY PROFESSIONAL

OT Security Engineer/ Security Steward/System Security Admin/ Risk Mitigation Framework /

Mobile Device Management / Symantec Endpoint Protection (SEP) Consultant

“Proactive Team Member and Problem Solver”

Currently Over 20 years experience in Information/ Operational Technology Command and Control Specialist and Cyber Security. Previous Top Secret SCI/DCID 6/4 Clearance. Subject Matter Expert (SME) of Symantec Endpoint Protection (SEP) and Validation and Identification Protection (VIP) and corporate security standards. Expertise in Security Administration, Team Supervision, Performance Management, and Data Loss Prevention (DLP), and Vulnerability Management. Proficient in Public Key Infrastructure (PKI), NIST 800-60 series, FISMA (Federal Information Security Management Act), OMB (Office of Management and Budget), Business Continuity Planning (BCP), Office Suite, Powershell, VBScript, Mobile Device Management (MDM), Cloud Security, ICS/SCADA

BASE OT SECURITY ENGINEER SUPERVISOR

UPS (Remote) 2019- Current

- Develops, designs, tests, integrates and deploys security system software solutions ensuring cyber security guidelines are exceeded

- Extensive understanding of OT Fundamentals and best cybersecurity practices.

- Manage required security assessments and security audits.

- Experience with protecting and implementing OT Technologies within critical infrastructures.

- Implements and monitors security solutions while oversees patch management

- Prepare security reports related to new and existing vulnerabilities specific to plant floor technologies thru Qualys

- Trains staff on Information security procedure and practices and communicate developed technology solutions

- Knowledgeable with Systems integration of Material Handling Systems

- Uses Qualys to automate the full spectrum of compliance and protection of OT Security

Technical Environment: Qualys, Sysinfo, iGate, Enterprise Access Management, NIST, ISO 27002, HMI, PLC, XLE, Claroty

IT SECURITY MANAGER

(MVET) Military Veteran Consulting Solutions (Remote) 2015- Current

- Manages workflow and schedule to ensure policies are followed, deadlines are met, and priorities are recognized

- Creatively demonstrates initiative, business judgment, leadership, and problem solving abilities.

- Serves as primary consultant with subject matter expert (SME) level knowledge of SEP to include ATP and Cloud

- Architecture engineer with ability to deliver and document on-site and remote implementation services.

- Provides security and privacy guidance to product.

- Demonstrates experience leading and managing projects utilizing project management tools and techniques

- Designs, builds, and implements enterprise-class security systems for production cloud environments.

- Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.

- Understand security best practices, policies and standards to design highly secure cloud architectures for internal and external cloud solutions as required by HIPPA and other regulations and requirements

- Works cross-functionally across the organization to develop a partnership strategy for the IT Security team

- Coordinates the execution of all IT Security tools, technologies, people, processes and procedures enterprise-wide, ensuring internal and external standards are followed

Technical Environment: Security Architecture and design, SQL server SEP environment, VMware, Centricity, Citrix, Symantec DLP, Active Directory, Maraki MX Firewall, Microsoft Office, Sharepoint, AWS

TRAVELING IT SECURITY SENIOR CONSULTANT

ITS Partners (Remote) 2014-2015

- Symantec Platinum partner solutions consulting installations, configurations, and support of enterprise level systems to include management, administration, and maintenance of Symantec Endpoint Protection (SEP), Validation and Identity Protection (VIP), and mPKI.

- Full life cycle design and implementation of IT security

-Keen ability to diagnose and troubleshoot technical issues at expert level

-Architecture engineer with ability to deliver and document on-site and remote implementation services.

-Creatively demonstrates and assist team members in the development of technical and professional competency.

- Ability to be direct on client-facing engagements identifying areas of IT Risk in the client environment and work towards opportunities to help improve their information security.

Technical Environment: Security Architecture and design, VIP, mPki, SQL server SEP environment, Active Directory, Data Loss Prevention (DLP), VMware, Symantec End Point Protection (SEP)

IT SECURITY OPERATIONS CONSULTANT

Resources Global Professional/ Novelis (Buckhead Atlanta) 2012 - 2013

- Global IT Security consultant for a $10B aluminum manufacturing company (Novelis) that has global presence in 11+ countries

- Global Security Administrator Manager of Symantec Endpoint Protection

- Configuration management of global policies, reporting, setting up locations, and certificate renewals

- Maintains over 6K+ endpoint users as well as manage over 30 Global Symantec site admins

- Manages Symantec and VeriSign Servers; Apply Patches and updates

- Security Administrator for VeriSign soft token application. Responsible for application upgrades, tracking, managing console administrators, certificates, and working issues.

- Subject Matter Expert (SME) for Fiberlink and MaaS360 Mobile Device Management.

- Security Admin for Security testing tools Fortify and Web Inspect with specific training from Hewlett-Packard.

- Global Security Admin managing Public Key Infrastructure (PKI) SSL Certs on an Enterprise Level

- System Engineering and management for Public Key Infrastructure by serving as Registration Authority to create, recover, and revoke PKI Credentials

Technical Environment: Public Key Infrastructure (PKI), Certification Authority, MaaS360, MDM, Fiberlink, Symantec 12, VeriSign, Fortify, Web Inspect, SEPM Servers, VMware

COMPUTER SYSTEM CERTIFICATION & ACCREDITATION SECURITY ANALYST

Lockheed Martin/ Centers of Disease Control (CDC) (Chamblee Tucker/Clifton Atlanta) 2008-2011

-Team Lead/Deputy Team Lead at CDC providing managerial, training, and leadership oversight.

-System Security Steward assigned to CDC center and created platforms for these system.

-Conducts risk assessments and provides recommendations for application designs within the CDC network.

-Configuration Management conducted daily through maintaining consistency of a system's performance.

-Maintained a 95% completion rate of annual Authorization to Operate (ATO’s)

-Produced accurate, complete, and consistent work-products that resulted in a reduced 40% life-cycle process.

-Created Access Database while maintaining several projects located internationally

-Develop and implements security procedures across various security domains including Disaster Recovery (DR) and Business Continuity Planning (BCP) on CDC Network

Technical Environment: Secure Fusion/ Risk Automation Suite/ Microsoft Access/ Security + training/ CISSP Training/ Vulnerability Assessment Scans and applying patches, development reviews/ platform creation/ application design, Business Continuity Planning (Includes Tabletops and Functional). NIST 800-60, NIST 800-53 NIST 800-37, FISMA, HIPPA, ISO 27000

SYSTEM SECURITY NETWORK ANALYST/ INFORMATION ASSURANCE

General Dynamics (Peachtree City, Ga) 2006-2008

-Provide 24/7/365 Information Assurance technical support to the Army Reserve Network with a professional, trained, and certified team as an operating part of the G2/G6 staff

-Proactively scan and report for IAVA compliance, malicious code and security violations and provide forensic support to mitigate vulnerabilities.

-Monitor and correlate events from security-related hardware and software including firewalls, proxies, intrusion detection systems, and operating systems

-Monitor IDS fused to protect more than 150 US facilities including more than 50k devices to include over 300k alerts reviewed daily

Technical Environment: Bluecoat/Dameware/ Stormshadow/ ESD/ESA Tools/ Log Collector/ Netwitness/ Netscreen Manager/ Intrusion Detection System / Harden Network/ Operate and Monitor Voice, Data and Alerting Systems/ SNORT/ Wireshark/ Tipping Point, Powershell, DNS upgrades

OPERATIONS AND LOGISTIC TEAM MEMBER

United States Air Force 2002-2006

-Quickly grasped working knowledge of system operations for “Theatre Ballistic Missile Defense System”

Key Personnel in Airlift Superiority; successfully launched, recovered and maintain in-transit visibility of over 500 missions, 8000 passengers and over 30,000 tons of valuable cargo during my tenure.

-Always maintained 100 percent of Communications Control equipment valued at over $40,000.00

-Received special mention for accuracy in receiving, processing, and disseminating operational readiness reports.

-While assigned to the United States Air Force I pursued a second career as a Sales Associate, providing all customers with outstanding service and promoting a friendly environment.

- Specialized in information security; managed emergency action orders both classified and unclassified.

- Maintained and provided 100% Communication Security (COMSEC).

Technical Environment: M3/Hardening Network/ COMSEC/ Operate and Monitor Voice, Data and Alerting Systems/ OPSEC Reporting

-EDUCATION-

American Intercontinental University Masters Information Assurance Security Management 2019

Devry University (BS) Technical Management (Security Management) 2011

-EMPLOYEE TRAINING/ LICENSES/CERTIFICATES-

DD214 Honorable Discharge

Level II Information Assurance Cert

OPSEC, COMSEC (ALC-1), COMPUSEC (Standard)

Network Management Course Training

Information Assurance Security Officer Cert

Symantec Mobility Training

Symantec Technical Specialist (STS) Symantec Endpoint Protection (SEP)

Security +

Symantec Sales Expert (SSE) Symantec Endpoint Protection (SEP)



Contact this candidate