Security Clearance Information
Resume:
SECURITY CLEARANCE: ACTIVE TOP SECRET
EDUCATION/CERTIFICATION
University of Maryland Global Campus (Bs Cybersecurity Management and Policy)
CompTIA Security+ CE Certified
CompTIA Linux+ CE Certified
AWS Certified Solutions Architect - Associate
Certified Network Defense Architect
Certified Ethical Hacker (CEH)
Certified Information Security Manager (CISM)
TECHNICAL SKILLS:
Redhat Linux, CentOS, Bash shell scripting, Ansible, Apache, VMware (vSphere Client, ESXi), AWS IAM, EC2, S3, NagiosXI, Teraform, Microsoft Office 2010/2013, Microsoft Windows 7/8/10, Microsoft Windows Server 2012, Service Now, BMC Remedy Ticketing System, Confluence, Jira, DISA STIG Viewer, SCAP Tool, CyberArk, Nextcloud, Netbox, Netbackup, Venafi.
PROFESSIONAL EXPERIENCE
Manav Consulting Group, Inc. November 2022 –Present
Linux Systems Engineer
Maintain and administer applications, operating systems, and hardware related to Linux system and Server based operating systems.
Perform routine system maintenance and resolve server-side issues as they arise.
Manage and administer all aspects of user account management such as password, group, and privilege management for user access.
Spinning up AWS EC2 Instances and creating Security groups to control inbound and outbound traffic.
Creating IAM users and user groups, roles and attaching the required policies.
Cloning EC2 instance AMI’s from one AWS account to another and creating new instances from cloned AMI.
Apply patches to staging and production servers on a monthly basis through a maintenace window.
Installation, configuration, and management of Linux servers.
Initiate corrective or preventive actions, such as increasing disk or memory capacity to improve system performance.
Coordinate support efforts between inter-departmental groups.
Troubleshoot and resolve system problems and performance issues.
Monitor system performance to prevent slowdowns and crashes
Administer all equipment, hardware and software upgrades.
Perform quarterly STIG work to ensure that systems are hardened properly and comply with DoD regulations.
Configure alerts to monitor system performance with the NagiosXI monitoring tool..
Enroll and manage VMs in Red Hat IDM to help reduce the administrative overhead of managing different services individually and using different tools on different VMs.
Applying security policies, hardening of servers based on customer specifactions.
Building and hosting of virtual servers (RHEL 7 and 8) using VMware (vSphere client/ESXi) per specifications of clients.
Installing and ensuring that all VMs are up to date with the current version of the McAfee agent.
Implement, and support of server and network components for VMs.
Coordinate with security team to remediate critical and high vulnerabilities affecting Linux VMs.
Soliel, LLC September 2019 - November 2022
Linux Administrator
Installed, configured, administed, supported and maintain of systems, including associated hardware.
Updated to new systems, as well as support on current systems by tuning performance, allocating storage space, and implementing critical system patches.
Planned and coordinated the installation of new products or equipment; installation of new or implementation of new Linux operating systems upgrades and releases.
Installed hardware, applications and software; control current versions in use and future releases of application software, and document the physical configuration of the system
Scheduled and managed jobs, patches and configuration files with Red hat Satellite Manager.
Optimize the functionality of networks and systems using performance tuning tools and techniques
Diagnosed and recovered failed systems using systems diagnosis tools and fault identification techniques
Resolve installation problems, identify and mitigate security vulnerabilities and risks, and maintain server integrity and availability
Configured and set up network for newly created virtual servers and added them to the Red Hat Satellite.
Created and managed channels in RedHat Satellite (scheduling patch jobs).
Patched development and production servers based on given patch cycles and times.
Installed and managed packages using yum and rpm tools.
Worked effectively with clients, technical staff, consultants and vendors.
Monitor system logs and activities on all servers.
NAOVI Inc., November 2016 – September 2019
Linux Systems Administrator
Proactively maintain and develop all Linux infrastructure technology to maintain a 24x7x365 uptime service.
Engineering of systems administration-related solutions for various project and operational needs.
Maintain best practices on managing systems and services across all environments.
Fault finding, analysis and of logging information for reporting of performance exceptions
Proactively monitoring system performance and capacity planning
Manage, coordinate, and implement software upgrades, patches, hot fixes on servers and workstations.
Create and modify scripts or applications to perform tasks.
Provide input on ways to improve the stability, security, efficiency, and scalability of the environment.
Collaborate with other teams and team members to develop automation strategies and deployment processes.
Provide support to users on basic and advanced desktop and server tasks.
Manage user accounts, groups, and services.
Eglobal Tech. April 2014 – November 2016
Information Security Analyst
Conduct structured security assessment and authorization (A&A), monitoring, certification, and accreditation (C&A), activities utilizing the Risk Management Framework (RMF), Cybersecurity Framework (CSF), and DHS Security Authorization/Ongoing Authorization guides in accordance with the provisions of the Federal Information Security Modernization Act (FISMA).
Assist Transportation Security Administration (TSA) System Owners and ISSO in preparing Authorization Package for Major/Minor Application systems, making sure that security controls adhere to a formal and well-established security requirement referencing DHS 4300A and SP 800-53 rev4.
Conducts kick-off meeting, initial risk assessment and categorization of information security system into Low, Moderate and High system centered on Confidentiality, Integrity and Availability (CIA) of the information type referencing FIPS-199, NIST 800-60 and NIST 800-30.
Prepare and produce e-authentication artifact identifying the appropriate authentication mechanism base on risk level (single, two-factor or multifactor) referencing SP 800-63.
Select and draft security control baseline in accordance with SP 800-53 rev 4 and FIPS 200.
Develop security authorization (A&A) documentation including system security plan (SSP), Security Control Test and Evaluation (SCT&E), Security Assessment Report (SAR), Contingency Plan (CP) and other artifacts required for the ATO package.
Collaborating with ISSOs to review and analyze security vulnerability scan results and coordinating the remediation response to system security administrators/engineering teams.
Develop system level configuration management plan template by leveraging NIST SP 800-128 to assist CM team that is responsible for the creation of system configuration baseline and change management process.
Participate in change, configuration, and release management process to ensure an appropriate security level is in the system lifecycles, ensure that senior management is kept apprised of all pertinent security systems issues.
Initiate, update, coordinate and track the patching and remediation of security weaknesses as they are documented in the Plan of Actions and Milestones (POA&M).
Review and analyzing security scans using tools such as the DISA STIG viewer.
Create and develop security documents and relevant artifacts to support FedRAMP compliant.
Conduct Systems Risk Assessment through Risk Analysis of the various assets within the systems authorizing boundaries to identify all possible vulnerabilities that exist within the system.
Contact this candidate