Davin Davis

adzzdu@r.postjobfree.com

803-***-****

(** years )

Summary

●Resourceful Professional with exposure to Intrusion detection, Risk Management, IT Auditing, Vulnerability Assessment, and Cyber security

●Strong development of Layer 1, 2, & 3 troubleshooting, support, and device configurations.

●Excellent analytical and problem-solving skills and the ability to handle multiple projects while producing high quality work in a fast-paced, deadline-oriented environment

●Knowledge of CISO firewall suite, SRX, and Palo Alto

●Familiar with NIST, FISMA, ISACA, ISO standards, RSA-Archer, Tableau,Windows, Linux and macOS operating systems, IBM Websphere express standalone two CPU's .

●Understands websphere stand-alone unlimited CPU's.

●Knowledgeable of websphere application server network deployment with multiple distributed nodes, DB2 and centralized administration and edge components.

Technical Skills

●Citrix

●Active Directory

●Network protocols

●FISMA

●Palo Alto

●Linux Servers AIX

●SQL Server, MySQL, Commvault

●IIAS

●Microsoft Exchange

●Qradar SIEM

●SNORT

●Intrusion detection

●NIST-800-53r4

●Cisco Routers (2800/2900)

●TCP Dump

●Switches

●Firewalls

●HIPPA

●MARS-e

●Switches

●Security Policies

●Hardware Installation

●Network Taps

●VMware

●Symantec Backup

●Vulnerability scanning

Solar winds

Experience

Blue Cross Blue Shield of SC January 2121 – Present.

Data Warehouse developer III

• Responsible for Archer BRJJ, POAM assessment for secure configuration checks.

• Responsible for Daily Security and validation reporting on Nexus vulnerability scanning tool.

• Perform daily file ownership checks for AIX/ DB2 and Sas users. Utilizing unix/linux commands sudo rm -R

• Demonstrate understanding of Business Objects and webi reports workflow process.

• Provide support for MSAD users with SAS issues and Web browser issues accessing reports and provide application support.

• Review and update PPS Baselines for the SMI’s on BOIT portal.

• Perform Log checks on J11 Part A, J11 part B, DME,MRTS, EMS, MILL, CBIC,ETL loads using a series of AIX commands on a DB2 Database.

• Guided users on setting up passwords utilizing complex security protocols and a Bot to successfully change passwords as mandated by CMS.

Department of Health Environmental Control. June 2020 – December 2021.

Server Administrator

Manage domains, auditing user permissions across platforms, for disaster recovery, offering technical support to users, and ensuring compliance with regulations and policies. Assign new users to OUs using Cares, Travwin, SCION(Maveen) E-permitting, O365/Azure applications. Utilize power shell scripting to automate user permissions. Configure email and reset passwords across domains. Utilize inhouse ticketing system called footprints to onboard new users.

Maximus Federal. October 2019 -Febuary 2020.

Sr. Information Systems Security Officer/Project Coordinator

• Conducts regular assessments of site implementation of FISMA controls to support Continuous Monitoring.

• Performs computer security Incident Response activities for a site, coordinates with virtual security team to record and report incidents.

• Provides security expertise in FISMA, OMB, NIST and federal government requirements to support IT Security and Privacy compliance.

• Leads execution of ATO and POA&M activities at the site, developing all supporting documentation to demonstrate resolution.

• Supports vulnerability management and responds to vulnerability reports for applicability at the site, taking remedial actions.

• Supports implementation of Physical and Environmental as well as Personnel Security controls at the site.

• Provides hands-on support to employees seeking clearance / EOD.

• Supports other Assessment and Authorization activities.

• Maintains current knowledge of relevant technologies and security trends. •

Participates in special projects as required.•

Reviews Computer Security Plan and implement actions which accurately reflects the •

security protection measures for each unclassified information system.

• Works closely with the System Administrator and engineers to maintain the system's security and

accreditation status.

• Implements site procedures for marking, handling, controlling, removing, transporting, sanitizing, reusing, and destroying media/equipment containing unclassified information.

• Work with Asset Managers and Facility Security personnel to monitoring changes to the unclassified

• system components, environment, and location, including temporary relocation to another • unclassified area.

• Serves as an informational resource to users for all I.T. and Physical security questions concerning • site security.

• Audit users' access requests for approval and revocations regarding controls users' access.

• Ensures users are instructed on the appropriate use of computer systems.

• Perform security debriefing on behalf of Maximus.

TRC INC September 2019 to October 2019 (Temp)

Performed Active Directory migration to reestablish a previous domain.

Responsible for Data validation of draw back claims.

Utilized Sap module navigation for data aggregation.

Demonstrate knowledge of Excel formula creation.

Managed data correlation of thousands of records across multiple platforms.

Department of Administration of South Carolina June 2013 to January 2019 (67 months)

Info Resource Consultant II

●Responsible for configuration and deployment of 100+ Intrusion detection systems for the K-12 initiative and libraries statewide and configuring cisco, SRX and Palo Alto firewalls for various school districts.

●Gathered security requirements for all school districts participating in the E-Rate program resulting in increased monitoring, bandwidth and increased security posture. Installed, configured troubleshoot and maintained LAN WAN hardware and VOIP.

●Configured MPLS for Cisco routers using commands such as enable, configure terminal, interface gigabit Ethernet, MPLS ip, show cef summary to verify MPLS is configured .

●Assist onsite personnel in configuring firewall NAT rules and SPAN ports for monitoring network traffic as respects ingress and egress traffic flowing in and out of the network.

●Worked tickets for Palo Alto and SRX network change request to access agency’s networks.

●Utilized the default MGT port to access external services.

●Created policy rules based on application instead of port rules to ensure accurate identification of the application.

●Utilized network-monitoring tools such as Ntop, Short, Nagios, Nessus scan, Talon, and Centos 6.5 to monitor intrusion detections using SNORT to send alerts to proper personnel as to what actions to take.

●Provided solution requirements to extend monitoring tools for network security devices under management and used solar wind network performance.

●Implemented appropriate technical countermeasures for cyber threats to network infrastructure such as network taps, shutting down services on ports, using centos built in firewall Iptables to accept or deny inbound traffic, and recommending systems such as web servers to be in a DMZ.

●Aggregate, correlate, and analyze log data from network devices, security devices and other key assets using Qradar SIEM.

●Responsible for maintenance, administration and configuration of the log aggregation solution.

●Created custom views, reporting and automated alerting for both operational and security use using Qradar.

●Responsible for SNORT upgrades and remote administration on all Intrusion Detection systems.

●Responsible for maintaining availability, reporting and communication of the SIEM between its event-sources and the endpoints.

Time off for Medical reasons April 2011 to May 2013

Time Warner Cable June 2010 to April 2011(10 months)

Network Surveillance Specialist

●Utilized Active Directory to add users to groups, create new users, and give access to network services.

●Monitored existing network equipment via in-house tools to ensure network functionality.

●Utilized the Remedy ticket creation program to document network issues, send alarm points and update company share point site.

Ward Financial Services August 2004 to March 2010 (67 months)

Systems Support Technician

●Managed the installation and configuration of several pieces of software to ensure efficiency of a paperless enrollment process.

●Ensured the security of highly classified employee information for an access database.

●Used Active Directory to configure and maintain users’’ rights, usernames and passwords in a windows server 2003 environment.

●Established system by planning and executing the selection, installation, configuration, and testing of PC and server hardware, software, LAN and WAN networks, and operating and system management systems; defining system and operational policies and procedures

Beazer Homes Inc. March 2000 to June 2004 (51 months)

Regional Support Technician

●Travelled to sales agent sites to install and configure Citrix client.

●Installed and configured HP desktops for Network connectivity as well as trained users on a new mortgage application that saved the company 15,000.

●Developed software solutions by studying information needs, conferring with users, studying system flow data usages and work process, investigated problem areas, following the SDLC.

Education/Certifications

DeVry Institute of Technologies

Bachelor’s in Information Technology

GIAC Security Essential Certification Attempt.

Contact this candidate