Information Technology It Security

Zack Hussain

Email: *************@*****.***

Cellphone: 972-***-****

Professional Summary

Energetic, versatile and resourceful IT Professional who is certified in COMPTIA A+, Project+, Security+, MCSA, MCSE, MCITP, CCNA, CCNP, ITILv4. As a self-starter, I have a deep understanding of provisioning, migrating infrastructure, automating processes and optimizing cloud environments to mitigate cyber threats and vulnerabilities. I have Built robust IT systems and security frameworks for corporate companies, government municipality and LLC. Additionally, spearheading successful technology initiatives, driving operational efficiency, and fostering high-performing teams with proven track record of mitigating risks, optimizing system performance and implementing cost-saving solutions. I have held a public trust clearance from United States Department of Defense and CJIS certification in addition to receiving numerous recommendations from company customers and executives on LinkedIn: www.linkedin.com/in/zack-hussain-m-sc-654b1627

PROFESSIONAL EDUCATION

Master of Science in Information Technology

University of Denver, Denver CO

Bachelor of Science in Information Technology

Western Governors University, Austin TX

Technical Skills

• Project Management

• Risk Assessment

• User Awareness Training

• Team Development

• Process Analysis and Improvement

• Google Gsuite and Office 365

• Windows 10 and Windows 11

• Microsoft Azure

• Active Directory

• Microsoft Exchange Server 2016

• Windows Server 2008, 2012 and 2016, 2022

• VMware vSphere 8.0

• Nutanix AHV

• Hyper-V core and 2022

• Cisco Meraki, Cisco Catalyst and Ubiquiti Switching

• Fortigate, Palo Alto. pfSense firewall

• Cato SD-WAN

• Nessus

• Cohesity and Veeam Backup Solution

• DarkTrace

• Zoho Service Desk, Jira, Dell Kace ticketing system

• Centos, Ubuntu and Kali Linux

• TCP/IP

• DNS

• DHCP

• PowerShell Scripting

Professional Experience

Information Security Engineer

NEC Corporation (Semiconductor Company) – January 2024 to Present

Conducted comprehensive security vulnerability assessments and risk reviews for clients including Texas Department of Public Safety (TXDPS), Western Identification Network (WIN), and Virginia State Police (VSP) to ensure CJIS compliance for Automated Biometric Identification Systems (ABIS), aligning with NIST 800-53, NIST CSF, and ISO 27001 standards.

Spearheaded the deployment of Multifactor Authentication (MFA) using Windows Active Directory, Azure AD, Yubikey, and Duo Security, significantly enhancing identity and access management in compliance with CJIS requirements.

Performed continuous vulnerability scanning, threat detection, and patch lifecycle management using tools including Qualys, Nessus, Microsoft Defender for Endpoint, Tenable.io, and Rapid7 InsightVM.

Led cross-functional collaboration with teams in the U.S., EU, and Japan for coordinated vulnerability remediation, change control, and patch deployment, adhering to SOC 2 Type II and ITIL change management frameworks.

Conducted security vulnerability assessments, penetration testing and risk analysis using Nessus, Qualys and Metasploit to identify and remediate threats.

Analyzed and monitored the security events by using SIEM tool Microsoft sentinel to ensure timely threat detection and incident response.

Implemented CrowdStrike for the MBIS/ABIS systems for TXDPS, Western Identification Network and Virginia State Police.

Maintained and secured Active directory, Group Policy, DNS, DHCP and Azure AD hybrid to ensure identity management across on premise and cloud environments.

Configured, maintained and resolved problem with VMware and Hyper-V/Azure cloud environments.

Led patch management and software deployment process by utilizing Intune and Tanium to maintain system compliance and security posture.

Collaborated with cross-functional team and assisted in the implementation of Zero trust architecture and network segmentation using Fortinet, Palo Alto and Cisco ASA firewall.

Utilized best practice to manage incident, changes and service requests while adhering to SLA and compliance requirements.

Senior Corporate IT Systems Administrator

Eagle Materials Inc (Manufacturing Company) – March 2022 to January 2024

•Successfully managed IT budget for projects, optimized resource allocation on smartsheets by achieving cost savings without compromising performance by utilizing project management fundamentals.

•Led a top-tier team of 3 IT professionals, personally traveled and implemented Cohesity Linux Backup Solution to replace Arcserve StorageCraft for 25 cement, concrete, aggregate companies in United States in addition to setting up archival backup to wasabi cloud to maintain business disaster recovery.

•Deployed, configured and maintained Vmware ESXI host on plant side and Vcenter 8.0 on business site in addition to migrating virtual machines from Hyper-V and windows failover cluster manager.

•Conducted troubleshooting of storage issues for virtual machine cluster and Datastore in Dell VXrail and enforced minimal downtime.

•Championed the implementation of sync with Azure Microsoft Entra ID for multiple on prem Active directory forests which streamlined IT governance and enabled MFA and Yubikey to establish ZTNA for end user level which enhanced security to meet compliance needs.

•Managed PGP keys for both private and public PKI for incoming and outgoing mail in outlook and on-prem exchange server 2016 in addition managing certificates with Digicert, proof point and network solutions.

•Spearheaded the implementation of ITIL framework on Vorex ITSM improving incident response times by 40% and 99.9% system availability. Furthermore, also created SLA workflows which improved the integrity of IT service portfolio and streamlined change management workflow process for IT department.

•Architected and implemented a robust cybersecurity framework for user awareness training by using Knowbe4 led by quarterly phishing campaigns to mitigate problems of social engineering, phishing and ransomware attack.

•Engineered and led the deployment of Nutanix AHV cluster for corporate servers in Flexential Plano disaster recovery site to host virtual machines and applications for software team.

•Conducted regular technology assessments by utilizing ControlUP and Traverse to generate a daily executive summary by recommending and implementing solutions to keep the company at the forefront of technological advancement by eliminating any residual risk such as migrating and monitoring old windows server 2003, 2008 and 2012 virtual servers to Windows Server 2022; Upgrading Dell VRTX, Old Cisco Catalyst to Meraki closing gap in network with mac filter; switchport disable and enabling LACP for PowerEdge R750, upgrading FortiGate to CATO SD WAN to establish confidentiality, integrity and availability.

•Created and maintained group policy templates and enabled LAPS to meet audit needs to comply with company cybersecurity initiative.

•Installed and configured DarkTrace appliance on cement company plant side and administration offices to monitor any threat actors in addition to creating a reporting dashboard and mechanism for any intrusion detection from unwanted devices. In essence, designed the Intrusion prevention system so that it could be monitored remotely on phone app.

IT Systems Engineer

UWorld (Education Company) – March 2021 to March 2022

•Implemented Knowbe4 for users in the United States office and India office for purpose of Cybersecurity Awareness and Phishing campaigns while working with Human Resources Department to maintain security policies and procedures.

•Designed and Developed Windows 10 and 11 deployment packages with Microsoft Intune

•Provided support for Apple Macbook Pro, Cinema 4D, Maya, Autodesk and Zbrush.

•Administered Microsoft Azure Active directory at Server and Workstation level for accounts

•Administered accounts creation, delegation, transfers on Google Gsuite while also managing subscription for Office 365 Enterprise license for employees

•Implemented Spiceworks ticketing system and migrated away from Monday.com to preserve budget documenting, tracking and monitoring end user application issues in help desk call tracking system, keeping incident records up-to-date with the current information and keeping the customer informed of incident status to ensure timely resolution.

•Lead and enhance hybrid IT infrastructure with a focus on Google Workspace, Microsoft Azure AD (Entra ID), and various enterprise SaaS platforms to ensure high availability and performance.

•Administer and optimize Google Workspace, including email routing, DNS configuration, SPF/DKIM/DMARC management, and Google Directory Services (user lifecycle management, groups, organizational units).

•Owned and managed identity and access management (IAM) using Azure AD, including Single Sign-On (SSO), Multi-Factor Authentication (MFA), conditional access policies, and cross-platform integrations.

•Drove automation and scripting using PowerShell, Python, and other frameworks to streamline operational tasks and improve system efficiency.

•Oversaw and support network infrastructure, including vendor-managed systems, network segmentation, configuration management, and monitoring.

•Managed user provisioning and deprovisioning for enterprise tools such as Slack, Zoom, and other collaboration platforms, ensuring seamless access control and productivity.

IT Project Manager and Cybersecurity Analyst

City of Grand Prairie (City Government) – June 2018 to March 2021

•Organized a team of 20 IT professionals to create a project charter, manage schedule and scope of projects, and ensured the team executed the project plan and customer specifications by utilizing Smart Sheets, MS Project and MS Visio.

•Supported customer engagements with project status reports, strategic planning, risk management, user acceptance testing, and training.

•Developed specific content necessary to implement security use cases and transform them into correlation queries, templates, reports, rules, alerts, dashboards, and workflow.

•Planned and performed monitoring, updating security programs and advanced technical information security solutions such as Nessus, MacAfee, cisco firepower, and SolarWinds in addition to responding to network intrusions and vulnerability alters raised by automated detection systems, internal and external reports in addition to manual investigation using the Nessus tool.

•Expertise in conducting investigations of security violations, breaches and recommending solutions; preparing reports on intrusions as necessary and proving analysis summary to management.

•Performed user behavioral analytics and user awareness training to identify suspicious activities on the network in several phases of the cyber-attack kill chain by using knowbe4.

•Utilized Cisco Firepower, Cisco Umbrella, Nessus, and Zoho AD audit plus for purpose of IDS and IPS in addition to reconnaissance over the network.

Contact this candidate