Network Security Architect
Resume:
Keith Houchen
Cyber Security Consultant
ady8s3@r.postjobfree.com
Technical Skills:
● Network Security Design
● Security Appliance Deployment
● Intrusion Detection/Prevention Systems
● Enterprise Firewalls/VPNs, Proxy Appliances
● Security Compliance Audits & Remediation
● Security Incident and Event Manager (SIEM)
Certifications:
● CISSP (Certified Information Systems Security Professional #65887 10/31/2004)
● CCSA (Check Point Certified Security Administrator)
● CHP (Certified HIPAA Professional)
● AWS CSAA (Certified Solutions Architect Associate)
● ACE (Palo Alto Accredited Configuration Engineer)
Agency: Sparity St. Louis MO
Client: Lumen Inc Aug 2016 – Present
Position: Senior Security Architect/Security Engineer
● Designed and reviewed network security solutions for Lumen Inc Consumers.
● Reviewed new products for corporate InfoSec compliance prior to network deployment.
● Worked with developers to secure Kubernetes clusters in cloud and on premise.
● Used Palo Alto Prisma and CloudHub to review AWS and Azure application logs.
● Ensuring the proper security controls are applied depending on data classification levels.
● Ensuring that authentication, authorization and encryption at rest and in transit are implemented.
● Used Tufin to review firewall change requests and run audit reports.
● Created Firewall Audit guidelines for customer network and created firewall rule reports for regulatory compliance.
● Managed Palo Alto, Check Point, FortiGate virtual appliances to secure ingress and egress connectivity between datacenter and AWS VPC in a cloud hybrid environment.
Unum Inc Sept 2015 – Aug 2016
Position: Sr. Security Consultant Chattanooga TN
●Designed, deployed, and upgraded Palo Alto firewalls with the Panorama Management Appliance in a cloud environment.
●Configured firewall, anti-virus, anti-spyware, application, and vulnerability Palo Alto policies.
●Locking down inbound and outbound connectivity between EC2 instances using PA firewalls and secure group settings.
●Managed Palo Alto firewall rule change requests and firewall configuration changes via Panorama Management Appliance
●Managed Enterprise Cisco ASA firewall change requests and firewall configuration changes via Cisco Security Manager appliance
●Managed Cisco Firepower IDS/IPS appliances, updated signature database, tuned signatures, added exceptions as per client request. Identified and corrected false positives.
●Upgraded client’s CSM appliance and Cisco ASA firewalls to latest stable release.
●Developed formal firewall change request documentation and firewall report for the client. Provided change request tracking reports to the client on a weekly basis.
●Developed firewall audit process for the client, identifying and eliminating unused rules, objects, and services from the firewall policies.
●Reduced firewall policies by 75% greatly increasing firewall and CSM performance by incorporating SkyBox appliance.
Blue Cross Blue Shield of Michigan Apr 2015 -Sept 2015
Sr. Security Architect Detroit MI
●Provided technical advice for security solution deployment for Blue Cross Blue Shield’s network infrastructure.
●Designed security solutions, including SIEM solutions, End Point and Database security to protect PHI and PII.
●Conducted security product evaluations and recommended upgrades to improve current security posture.
●Presented findings and recommendations to key decision makers at BCBSM.
●Provided recommendations for maintaining information security policies, standards and procedures in compliance with NIST 800-66 (HIPAA Regulations) and industry best practices.
CenturyLink Technology Solutions Oct 2014 – April 2015
Position: Security Architect/Security Account Manager St. Louis MO
●Designed network security solutions for CenturyLink Cloud Consumers, including perimeter and core firewalls, Cisco FirePower IPS/IDS, F5 Load Balancers and Imperva WAF.
●Assisted client with maintaining POA&M (Plan of Action & Milestones) for federal partners, by tracking and confirming the existence and effectiveness of various Controls.
●Created and presented security portion of Target State Architecture to CenturyLink Cloud Consumers.
●Developed and delivered tactical security profile reports, using data from Qualys and Log Rhythm SIEM, presented weekly security reviews to customers.
●Audited customer firewalls and created firewall rule reports for PCI compliance.
●Managed Cisco ASA, Palo Alto, Juniper, Check Point, FortiGate firewalls and Cisco FirePower IPS appliances for client networks.
●Created weekly network security incident reports, included data from Imperva WAF, Qualys Vulnerability scans, Cisco IPS and Fortigate, Palo Alto, Check Point and Cisco ASA firewalls.
Federated Department Stores July 2013 – Oct 2014
Position: IT Security Consultant Atlanta GA
●Managed LogRhythm SIEM solution for PCI project.
●Designed security policies and monitored core network for suspicious activity using multiple SourceFire IPS appliances.
●Identified and corrected network connectivity issues between core network and remote sites on MACY'S network.
●Created scripting procedures to configure Check Point UTM-1 Edge appliances via CLI.
●Managed and upgraded Checkpoint UTM-1 and GAIA firewalls.
●Managed Cisco switch and Checkpoint firewall VLANs
●Created procedure documentation and trained new hires.
●Conducted end to end network and VPN troubleshooting between Cisco ASA and Checkpoint firewalls.
Coca Cola Refreshments Jan 2012 – July 2013
Position: Senior Security Engineer Atlanta GA
●Installed, upgraded and managed Checkpoint and Cisco ASA firewalls
●Migrated business partners VPN tunnels from Nortel VPN over to Cisco RAS appliances.
●Designed security policies, deployed and monitored core and edge network via SourceFire IPS appliances.
●Created HOWTO documents for managing and maintaining Sourcefire IPS solution and provided staff training.
●Replaced Tipping Point and IBM Proventia IPS/IDS with Sourcefire appliances at the core and perimeter of the network.
●Monitored Checkpoint and Cisco ASA firewalls, tracked firewall rule changes and produced technical and executive level reports using SkyBox.
●Designed and deployed network security lab network to test firewall/IPS rules.
●Managed and monitored HP TippingPoint IPS appliance for Coca-Cola enterprise network.
●Consultant on Disaster Recovery project to set up alternative sites.
●Worked as security consultant on enterprise firewall remediation project, including Checkpoint and Cisco firewalls.
●Assisted Network Operations Center with network security related troubleshooting.
●Deployed and managed Cisco ACS for RADIUS and TACACS authentication.
●Installed and managed Cisco Security Manager to centrally manage Cisco ASA firewalls and VPN devices.
AT&T Oct 2011 – Jan 2012
Senior Security Architect Atlanta GA
●Managed the migration of multiple Cisco ASA firewalls over to a central VSX Checkpoint firewall running on the Crossbeam platform.
●Used Provider One to manage multiple Checkpoint firewall instances for remote sites for the State of GA.
●Created firewall remediation and compliance plan
●Firewall and network troubleshooting
US Central Command April 2011 – Jan 2011
Information Assurance Manager SME Kabul Afghanistan
●Provided information assurance support for USCENTCOM (U.S. Central Command) in Afghanistan. Managed and deployed security system solutions to secure proprietary/confidential voice and data traffic in accordance to DISA regulations.
●Managed, configured, and troubleshoot Cisco firewalls, Bluecoat Proxy appliances, and Sourcefire IPS, on the NIPR/SIPR/CX-I networks for the northern Afghanistan Theater.
●Monitored security appliances, Cisco routers and switches using Solar Winds console.
●Responded to incidents and events as reported by the customer or detected by SNORT/IPS.
●Performed remote IOS upgrades and set up Cisco ASA in Active/Stand-by configurations.
●Responsible for ensuring and documenting that all systems are scanned and patched in accordance with DoD policy.
●Reviewed threat and vulnerability assessments to analyze the risk to the Information Systems/networks, and determined appropriate measures to effectively manage those risks. Ensured compliance with Federal, DOD and DA Information Assurance policies.
Health and Human Services Sept 2009 – Jan 2011
Senior Security Architect Atlanta GA
●Worked as ArcSight ESM Administrator monitoring events and incidents for the Health and Human Services Security Operations Center.
●Created and managed user accounts, channels, filters, field sets for multiple Security Analysts across the HHS Security Enterprise.
●Developed correlation configurations for analysts to meet specific needs of each Operational Division (FDA, NIH, HRSA, CMS) network.
●Monitored HHS CSIRC Network for security breaches using ArcSight SIEM.
●Incident response management reported all events, incidents and suspicious activity to US-CERT and internal reporting bodies in a timely manner in accordance with NIST and DISA guidelines.
●Developed and installed IBM/BigFix solution and agents to implement patch management for Microsoft and Linux devices.
●Managed Checkpoint firewall cluster and FreeBSD firewall.
●Deployed Entrust Radius server and hardware RSA tokens, providing two factor authentication for remote departments.
●Provided management with daily activity reports.
●Conducted weekly conference calls with Incident Response Teams for local and remote government agencies
●Developed SOPs and security policies following NIST, FISMA, and DISA guidelines and regulations.
Department Health and Human Services Oct 2008 – Sept 2009
Senior Security Architect Atlanta GA
●Worked as team lead to create CSIRC (Computer Security Incident Response Center) for Health and Human Services Department. Received Federal Government Security clearance level of Secret.
●Responsible for providing advice on best security practices, network security appliances and network security architecture. Created security advisories, weekly incident breech and situation awareness reports for department heads and incident response teams.
●Created SOP for new hires regarding Security Analyst duties.
●Evaluated vendor products to assist HHS in acquiring software solutions for government procurement process.
●Wrote C&A documentation for CSIRC network, server and security appliances. Corresponded with US-CERT to report security incidents and conducted GAP analysis for NIST 800 compliance.
●Acted as ArcSight ESM Administrator for HHS-CSIRC
●Designed and deployed Network Security Architecture for HHS CSIRC including SNORT IDS, Checkpoint Firewall Cluster, Bluecoat Proxy appliances, secure DMZ, Anti-Virus program and back-up process for secured file servers.
References:
UNUM
Anthony Lackey
ady8s3@r.postjobfree.com
Global NTT/Dimension Data
Nick Stockhaus
MACY'S Technology
Brian Phillips
ady8s3@r.postjobfree.com
Contact this candidate