IT Security & Apple Enterprise Specialist, NSA-Ready Veteran
Resume:
Sima Thomson
Email: ****.********@*****.***
Telephone: 240-***-****
Military:
U.S Navy Veteran
Profile:
I.T Professional CompTIA A+ Certified, CompTIA Network+ CompTIA Security + CEH Critical Ethical Hacker, CASP CompTIA Advance Security Practitioner, ACAS DISA Certified HBSS MacAfee Expert. JAMF Casper Administrator, JAMF Administrator, Apple Support Professional.
Advanced skills on both Apple OS X Client and Server through version 10.9. Proficient Microsoft Windows XP, Vista, 7, 8 and windows 10 Microsoft Office 2003 through 2011, including Word, Excel, PowerPoint, Outlook, and VMware vSphere 5. Experience in integrating Apple devices into Windows environments, including Active Directory and Microsoft Exchange. Advanced skills in JAMF Casper Suite, Absolute Manage, XHTML, CSS, GSS, NIST, FISMA, Microsoft RDP and Apple Remote Desktop.
Hands on experience in creating user accounts Including user rights, security and groups creation, demonstrated ability to determine and recommend products or services suitable to the user requirements. Profound and efficient in Tier1, Tier2, Tier3 deployment tech service issues Computer: PC \ MAC OS, Windows 7, vista, Me, XP, NT, Microsoft Office (word, Power Point, Excel, Access, Project), Remedy, Avaya cad support, (ACAS) Scans, VMware
Professional Knowledge & Skills:
Security Management: Nitro, ArcSight, Splunk, NetWitness, FireEye, Incident Response, TippingPoint, Snort, App Detective, IDS Policy Manager, Nmap, Nessus, RSA Security Analytics, Firewall Logs, Remote Administration (VNC, Putty, SSH), CheckPoint Firewall, Wireshark, TCPdump, REMnux, and various tools for Malware and Packet analysis Programs and Admin tool Clients. Familiar with in a Enterprise DOD Environment:
Nessus Security Center, Citrix client AVHE, Forensic, PeopleSoft, DDG1000, Maximo, Deltek, Active Directory, SCCM, Goverlan remote access Desktop, office administration operating Support, SAARN Forms, HBSS, Mcafee EPO Server Policy, configuring Firewall setting with in Classified & Unclassified I.T data base security systems.
SUMMARY:
With continuous monitoring, I can interpret and prioritize threats using Intrusion Detection/Prevention Systems; Security Incident/Event Management (SIEM). I can analyze packets using various security tools and recognize potential, successful, and unsuccessful intrusion attempts and compromises through analysis and review of security events, logs and network traffic. I can also perform static and dynamic malware analysis in an isolated virtualized environment.
Education:
2009-2012 University of Maryland College Park, MD
BS- Computer Science Information Technology GPA: 3.2
Certifications:
CompTIA A+
CompTIA
Network +
CompTIA Security +
CEH Critical Ethical Hacker & GIAC Certified Intrusion Analyst
CASP CompTIA Advance Security Practitioner
ACAS SCANS DISA
HBSS Host Base Security Systems
MDM MOBILE DEVICE
MANAGEMENT
MICROSOFT OFFICE
MCSE Certified
* Currently in school studying to take my CCNA Cisco Security
Professional Experience:
Security Engineer, NETE Solutions (Oct 2018 – Present) client site Rockville MD HRSA / HHS
●Patched systems using tools such as HEAT Ivanti Endpoint Security and followed established schedules for communications and execution of patching activities.
●Developed and provided post-patching reports to customers for review to demonstrate completeness of patching.
●Provided Documentation around key initiatives for building and sustaining a continuous monitoring program for incident response.
●System backups, patching and updates with BigFix, RDP, SSH
●Evaluate emerging forensic technologies and conduct forensic examination of High Priority Digital Media
●Conduct pivoting analysis on Threat Intelligence to identify current impact or proactively process mitigations for defense through security technologies and proactive mitigations including zero-day patching identification, anomalous behavior, and recommendations of remediation action.
●Managed Anti-Malware software on servers using Symantec Endpoint Protection on a daily basis.
●Use MDT for PC imaging and JAMF for Mac imaging along with Casper Remote for software pushes
●Ensured change management systems were updated accordingly with any remediation activities.
●Performed forensic Analysis using Fire eye for hands on control over powerful auto configured test environment to safely execute and inspect advance Malware Rader to collect malicious data for more analysis.
●Participated in on-call activities and planned on remediation of penetration test reports.
●Monitor security events from multiple sources, analyze the results, and escalate to the appropriate group for remediation when necessary. The events will originate from but are not limited to DLP, IDS, IPS, antivirus, firewalls, and system security logs.
●Conduct vulnerability assessments and penetration tests to identify and remediate security vulnerabilities in our information systems, applications, and infrastructure.
●Remediated Nessus (Tenable) active scan results.
Incident Response Analyst, Insight Global (Dec 2017 – Feb 2018) client site- Washington DC DOL (Dept. of Labor)
●Supported the enterprise security operations center onsite reporting incidents, including those involving personally identifiable information (PII).
●Maintained the incident tracking database and supported the client breach notification team.
●Monitored the US-CERT site and other alert sources.
●Maintained standard operating procedures and incident response plans.
●Utilized data analytics tools including Splunk and LogRhythm to make sense of machine data in performing responsibilities.
●Experienced using tools such as IBM BigFix, Web Inspect Fortify, Nessus Security Center, Splunk, FireEye, LogRhythm, Stealth Watch, and Appscan. CrowdStrike
KSH Solutions Inc./
BUMED Navy Medicine
Lead Security Analyst Oct 2015 -2017
7700 Arlington Blvd, Falls Church VA. 22042
●Configured McAfee firewall policy settings, blocked ports, set up rules to prevent incoming virus intrusions, and ran daily ACAS/Nessus scans.
●Troubleshot hardware/networking/Windows 10 OS related issues and assisted customers over the phone and remotely using RDP/Goverlan on-site/off-site client support.
●Managed IAVM CAT1 vulnerabilities using Nessus scan dashboard analysis and provided advanced tier3 IT helpdesk support using Goverlan remote access and remote support using VMware admin tools.
●Assisted in packet capture analysis and monitored authentication aspects.
●Set up Bluetooth radar RSD machines scanning for rouge access points testing to protect network security and reviewed IAVA reports and patched all updates manually or remotely.
●Provided HBSS McAfee system tree management using McAfee 4.0 Orchestrator and deployed McAfee agent to all systems and updated the data version on the machine clients.
●Managed Windows system update plugins and software using software center SCCM and Configuration Manager cycle patches.
●Set up group policy updates and user profiles settings scan for vulnerability using Security Center Nessus/ACAS management tool.
●Mitigated severity patches for update on the system IAVM ID summary and remediation reports for all PCs on the network.
●Provide HBSS McAfee system tree management using McAfee 4.0 Orchestrator
●Deploy McAfee agent to all systems and update the Dat Version on the machine Clients
●Configure McAfee firewall policy settings, block ports Setup rules to prevent incoming virus intrusion, Run Daily ACAS/Nessus scans Setup IDS/IPS to prevent intrusions
●Symantec Endpoint Encryption Support, Install and Configuring desktops, laptops, and Printers (local & Network) machines on the servers .
●Review system logs System security management using HBSS / Goverlan Admin, Unlock HIPS, DLP, DCM search and Monitor Data loss security prevention and maintain security policies on the ePO server .
●Setup wake up intervals to push McAfee agent to systems
●Manage McAfee Dashboard analysis, logs and Changes on the EPO server / workstation critical reports
●Manage AD accounts that are sync to the system tree for monthly or daily McAfee agent updates, Also create user accounts profiles using Active directory and install images to machines that are ready to deploy McAfee agent framework exe.
●Use Microsoft Windows Active Directory providing support to unlock user accounts and set group policies added to user laptop with TLS, SSL settings Site logins.
●Configuration of DNS, DHCP and SCCM Installs on user Computer. Installing updates using SCCM / software center or Microsoft updates patches install.
●Provide Admin Support for users check In’s with SAARN Forms.
●Creating and manage Tickets using Remedy with Alt user account access.
HP-Hewlett Packard
Computer Sciences Corporations, NIH Bethesda MD
Senior Network Security Analyst / Incident Response SOC Analyst
January 2014 – August 2015
Client: United States Department of Health and Human Services
●Conducted senior level log analysis, proactive monitoring, mitigation, and response to network and security incidents
●Analyzed security event data from the network (IDS sensors, firewall traffic).
●Performed static and dynamic malware analysis on virtual servers with proper documentation and steps for removal on infected systems.
●Rescanned mitigated systems for further infections. If none, commission systems back to the network. Remote - Malware Analyst, SOC Analyst, Incident Response, Security Analyst, vulnerability analyst With continuous monitoring.
●Interpreted and prioritize threats using Intrusion Detection/Prevention Systems; Security Incident/Event Management (SIEM).
●Analyzed packets using various security tools and recognize potential, successful, and unsuccessful intrusion attempts and compromises through analysis and review of security events, logs and network traffic.
●Performed static and dynamic malware analysis in an isolated virtualized environment.
Insight Global
Supporting QSSI (Columbia MD)
Network security Engineer-CMS Application Support Analyst
December 2013- October 2014
●Monitored Network security center. Dashboard spike analysis summary.
●Experience with Security and Risk Management, Windows Server and Active Directory management.
●Anticipated and mitigated potential attacks through enterprise connections, ensure the security of the system.
●Prevented Exploits weaknesses detected in systems to assess and prevent potential break-ins.
●Monitored and analyzed business impact exposure based on security threats, vulnerabilities, and risks.
●Scanned for threats on the network. Assisted and monitored client network login activities include, transferring data on the network.
●Installed Share drives mappings for users PCs to identified provided apps and folders shares with-in the network.
●Setup VPN Access connectivity for remote application support users,
●Monitored firewall setting and secured connectivity for customer logins activities, schedule hospital roll service calls and provide frequent status of any change on the network.
●Requested POAM mitigating Risk reports / Network security application summary reports.
●Performed a variety of routine tasks that are technical in nature connections and escalating customer issues to the appropriate staff.
●Monitored problem ticket queue to ensure all assigned tasks are completed within specified metric requirements.
●Interfaced with Workstation Engineering to develop fixes for hardware and software problems and documents user's problems through the use of an online problem management system including opening, updating and starting and closing problem tickets Document.
Nielsen Technology
9705 Patuxent Woods Drive, Columbia, MD
Desktop support Technician
September 2012– December 2013
●Provided support of all three Nielsen Technology buildings on site, in charge of all Pc and Mac machines users as well as all Xerox, HP, Dell, Phillip’s and Konica Minolta bizhub printers and Servers.
●Responsible for all overseas work update in Data center sever room.
●Maintained inventory, receiving and issuing of PC /Mac and other machines equipment to all end-users on site in the Nielsen technology company.
●Refreshed, reboot, re image, wipe out hard drive, partition and repair Pc and Mac computer maintain, upgrade and/or replace hardware and software. Relied on documented processes and procedures to accomplish objectives including preparing new equipment, assembly of computer systems and peripherals, used specialized tools and
●software to backup and restore users’ data, install standard images and software, connecting users networks and domains.
●Set up users’ email accounts were properly set up on their new systems.
●Configured and installed new Microsoft systems. Administrative access to reset passwords / back up and migrate data using Ghost remote access and migrate Pc and Mac machines within our network as well as installing and update new programs /software.
●Provided tech support for any technical difficulty setting up Pc’s, VoIP, Projectors and IP config DHCP / DNS settings for conference rooms, auditorium VP meetings or presentations.
●Provided technical assistance and support for incoming queries and issues related to computer systems, software, and hardware.
●Responded to queries either in person or over the phone. Wrote training manuals and trained computer users. Maintained daily performance of computer systems.
●Responded to email messages for customers seeking help. Ask questions to determine nature of problem. Walk customer through problem-solving process.
●Installed modified and repaired computer hardware and software .Clean up computers.
●Ran diagnostic programs to resolve problems. Resolved technical problems with Local Area Networks (LAN), Wide Area Networks (WAN), and other systems. Install computer peripherals for users.
●Followed up with customers to ensure issue has been resolved. Gained feedback from customers about computer usage. Ran reports to determine malfunctions.
Atius Technology institute (ATI) Lanham, Md
System Admin Tech
PC/ MAC Technician
December 2011- Sept 2012
●Ensured computers and the network are operational.
●Supervised lab equipment and facilities, troubleshoot system problems and network connectivity problems.
●Keeping records of equipment and lab supplies. Maintained security of the lab. Installed software on lab computers. Assisted students by demonstrating the proper use of the equipment and how to use the hardware and software to perform lab tasks.
●Answered phone calls to provide printer assistance such a clearing paper jams in printers and copiers, refilling ink toners and supplying paper.
●Ensured cleanliness of the lab while ensuring safety and proper working conditions for the lab users and proper maintenance of the computers.
●Prepared the computer lab schedule. Provided backup of software and perform equipment repairs, responsible for imaging HDDs and wiping viruses.
●JAMF Certified Casper Administrator, JAMF Certified Mobile Administrator, Apple Certified Support Professional.
●Administered the university’s OS X based servers in the university’s two data centers, including several file servers, Open Directory servers, web servers, MySQL Community Edition servers, and NetBoot/NetInstall servers.
●Responsible for maintaining the university’s JAMF Casper Suite client management system for imaging, maintaining and asset management of all computer lab Macs.
●Installed, supported and maintained over 1,000 Mac desktop and laptop systems in a mixed PC and Mac environment across a large college campus in classroom style, public computer labs and 1:1 deployment for Faculty and Staff.
●Hardware installation, image building and deployment, troubleshooting technical issues, and administering directory servers for authentication and managed preferences.
●Supervised and trained between four and six student employee positions on the desktop support team and assisted in training call center staff and computer lab staff on troubleshooting and maintaining campus systems.
●Leadership position taking on many responsibilities, including user level desktop support for over 200 Apple Macintosh systems deployed across a college campus, creating and maintaining system images, managing Open Directory servers used for authentication and policy management, and development and maintenance of a web-based documentation system.
●Responsible for training and supervising other Desktop Support student employees on using Mac workstations. Supported and maintained 150 laptops which were leased to college students on a semester-by-semester basis.
●Updated, repaired and user level support of all laptops. Helped students create and maintain over 100 Student-lead Organizations on campus by answering questions via phone, e-mail and in person. Assisted in event planning and coordination and various clerical duties.
AES International Corp
WRNMMC / Walter reed Bethesda, MD )
Support HP-Hewlett-Packard
Helpdesk Technician
March 2009 December 2011
●Troubleshoot and resolved desktop support issues.
●Performed a variety of routine technical tasks, including assembly or installation of parts, testing and operational checks and interconnection of computer hardware and peripherals.
●Performed off hour desktop support.
●Assisted in the Client Asset Refresh process. Activities include deploying new PCs, transferring data, and wiping hard drives for PCs identified for disposal or reuse.
Henry Jackson Foundation/ NMRC
Research Assistant Lab-Tech support
August 2007 July 2008
●Negotiated contracts with outside and inside vendors to obtain the necessary equipment and other requirements to keep the research that the scientist do flowing properly.
●Installed and set up new PC’s and Mac computers, as well as the necessary software that was needed for that user, light cleaning.
●Troubleshot various Navy equipment. Instructed and guided the users on how to work the equipment and basic preventative maintenance.
●Kept an accurate record of the entire expenses of the directorate using excel spreadsheet.
●Updated and maintained a program database called Citrix that was on the Navy network.
●Operated different types of programs using PeopleSoft and Oracle.
●Highly skilled in maintaining, analyzing, troubleshooting and repairing computers /laptops, hardware software and peripherals.
●In depth knowledge of upgrading hardware and software systems.
I.T2 U.S NAVY April 2004 – April 2008
Walter reed Bethesda (WRNNMC)
United States Navy
Information Systems Technician Petty Officer Second Class (IT2/E-5)
●Manage computer and network systems
●Maintain network hardware, systems software, applications and configurations
●Provide support for LAN, Internet system and network
●Maintain network hardware and software
●Monitor network problems
●Provide troubleshooting of hardware and software problems,
●network problems, and systems problems
●Replace defective components
●Ensure user access to system
●Coordinate network security
●Maintain virus protection software
●Work with network users to solve system problems
Awards & Recognitions
Global War on Terrorism Expeditionary Medal, 2007
Good Conduct Medal, 2006
National Defense Medal, 2004
Letter of Commendation for …., 2007
Joint Task Force Medal, 2005
Employee of the month (CS) Professional Recruiter 2008
Contact this candidate