Information Security Disaster Recovery
Resume:
CORE QUALIFICATIONS
Information Security professional with experience in working within large corporate structure, performing security monitoring, remediations, carrying out internal IT audits, designing and implementing security and DR procedures. Astute in recognizing process shortcomings and formulating solutions inline with Risk Management Framework. Strong technical background on compute and network systems with 11+ years of security experience.
KEY COMPETENCIES
Strong technical knowledge of IT infrastructure
SOX Security Controls Design and Execution
Risk Assessment & Vulnerability Remediation
GRC Tools tracking and solution providing
Windows Domains & Exchange Orgs.
Disaster Recovery Planning
Identity & Access Management
Change Management
EXPERIENCE
MCKESSON CANADA www.mckesson.ca
Senior Security Engineer Mar 2018 - Present
Implemented Enterprise Data Encryption (EDE) program with local stake holders
Implemented database activity monitoring and Data Leakage Prevention (DLP) solution with Imperva
Deployed Web Application Firewall (WAF) for Canada based web services
Liaised with internal teams to define disaster recovery framework for critical systems
Worked with GRC tools like Archer, OneTrust to track open issues, remediation items and exceptions, reaching out to responsible BUs
Took part in team that deployed MFA solution for all outside facing applications
MORGAN STANLEY www.morganstanley.com (Contractor viaTCS)
Technology Risk Officer Oct 2015 – Jan 2018
Responsible for risk reporting & monitoring activities for global Enterprise Infrastructure superdepartment, facilitating the progress of SOX related risk agenda on following fronts:
Change management of vulnerability remediation activities with technical inquiry and operations engagement
Managing Disaster Recovery & Availability Testing of critical systems, schedules
Training operations teams on DR testing and test documentation creation
Performing data quality check and managing updated sets of asset DR procedure documentation
Overseeing access provisioning change program with asset, access inquiries and working with system owners and operations teams to ensure access provisioning system overhaul without business impact
Process Gap Analysis & Remediation
PEPSICO Inc. www.pepsico.com
Regional Security Analyst Oct. 2011 – Mar. 2015
Held responsibility for governance of security agenda of 5 European countries with 120+ servers. (Serbia, Bulgaria, Romania, Turkey, Greece)
Achieved persistent passing scores of over 90% in Internal Control Audits, performed periodic controls & remediation efforts for SOX compliace reporting
Provided Risk Management, Risk Assessment and Risk Mitigation and Vulnerability remediation governance for Windows, Linux systems and SQL, Oracle databases.
Performed Internal Security Audits of IT operations for backup management, Disaster Recovery, privileged access, access management and patch management
Successfully implemented access control and privilege governance framework across the region
Designed and deployed VMware virtualized Warehouse Management System (WMS) on NetApp Storage platform (SAN) dispersed across WAN, designed and executed DR solution for same system
Developed and updated security policy and procedures library and held annual training sessions for IT operations teams and other business stakeholders and HR department
DIALOG www.dialogdesign.ca
Systems Administrator Mar. 2007 – Feb. 2011
Provided deployment, administration and troubleshooting support for 60+ servers of multi-office company
Virtualized half of the server infrastructure with Vmware within 8 months
Performed upgrades of Active Directory, MS Exchange, SQL databases, NAS systems and backup systems
Performed domain migration and migrated MS Exchange, redeploying Sharepoint environment and other systems
Deployed and administered IIS, SFTP-EFT, Radius, VPN systems
Evaluated and deployed backup, systems monitoring, enterprise antivirus and helpdesk solutions
Devised policies and procedures for systems deployment & management, security configuration, change management and helpdesk workflow
Held responsibility for vendor management, hardware & software acqusition, licensing, budgeting for the compute tower
SAP SE www.sap.com
Support Technician Jan. 2007 – Mar. 2007
Provided remote support in German for retail stores’ POS systems
Worked to troubleshoot issues within SQL databases, SAP application UI, connectivity issues, POS equipment
CONSOLIDATED FASTFRATE Inc. www.fastfrate.com
Network Specialist Feb. 2005 – Jan. 2007
Deployed and managed enterprise backup solutions from Backup Exec and Computer Associates
Managed active directory, internet content filters from Websense, and Solarwinds firewall, MS Exchange, terminal servers and file servers
Deployed and configured PowerConnect switches and routers from Dell
Deployed and configured antivirus solutions from McAfee and Trend Micro
Responsible for helpdesk system’s maintenance
Acted as Tier 2 support for helpdesk
STAPLES Inc. www.staples.ca
Technical Support Specialist Jun. 2004 – Feb. 2005
Provided in-store computer troubleshooting support, performed computer and peripherals sales, setup and configuration
BESTBUY CANADA www.bestbuy.ca
Sales Officer Oct. 2003 – Jun. 2004
Provided sales support as in-store sales professional
PANALPINA Inc. www.panalpina.com
Network Specialist May 1999 – Jan. 2000
Troubleshooting support and deployment of workstations in Windows domain environment
TECHNICAL COMPETENCIES
Infrastructure elements : Active Directory, LDAP, Group Policy Objects (GPO), DNS, DHCP, Routing, Subnetting, VLANs
Service monitoring : Solarwinds Service & Application Monitor, VMware vCenter, MS SCOM, HP SIM, Dell OpenManage
Security : Solarwinds Orion, GFI Antispam, Websense Web Security, WSUS, Splunk Enterprise, Enterprise AV solutions: Trend Micro Smart Protection, Symantec Endpoint Protection, McAfee ePolicy Orchestrator, McAfee Vulnerability Manager, Tripwire CCM, Solarwinds Log & Event Manager, GFI IDS, Archer Information Security Management
Helpdesk solutions : Kaseya Helpdesk, Numara Service Desk, HP OVSD, HP Service Manager, ServiceNow
Backup solutions : Symantec BackupExec, CA ArcServe, HP Data Protector
Other : Vmware ESX, Microsoft Hyper-V, MS Sharepoint, SQL administration, Cisco VPN, Juniper VPN, Cisco CallManager, SAN/NAS storage systems Dell PowerVault, NetApp, Terminal Servers, MS RDS, MS IIS, Powershell, TeamViewer, VNC, Acronis workstation imaging and mass deployment, ITIL and COBIT knowledge, Autodesk Network Licensing, Microsoft KMS Licensing, Globalscape EFT Enterprise
COURSES & CERTIFICATION
Working towards ISACA CISA Certification
Microsoft MCITP (MCSE) - Global Knowledge 07.06.2010 - 18.06.2010 (80 Hours)
Exchange 2007 Administration - Global Knowledge 10.08.2009 - 14.08.2009 (40 Hours)
Cisco Call Manager 4.0 Administration - Global Knowledge 07.05.2007 - 11.05.2007 (40 Hours)
VMware vSphere 4 FastTrack - Blackmarket Toronto (01-2010) (40 Hours)
Cisco Certified Networking Associate (CCNA) - Bilsis 10.01.2003
EDUCATION
Sankt Georg Austrian College (1994)
Istanbul University / Computer Sciences Engineering (2000)
Contact this candidate