Post Job Free
Sign in

Security Management

Location:
Oklahoma City, OK, 73118
Posted:
February 24, 2012

Contact this candidate

Resume:

PHILLIP D. BROWN

**** *. *. **** **. (C) 405-***-****

Oklahoma City, OK 73118 ****************@*****.***

SUMMARY

Extensive experience in network security and computer operations with most recent experience as Security Assessor and Disaster Recovery. Skilled in a wide variety of platforms including Access, Document Direct, LIDS, NeuSecure/TSOM, IBM TSO/RACF, Tandem, AS400, and HP. Key strengths include a strong understanding of network security and operations. Successfully trained many other operators and associates.

TECHNICAL SKILLS

CSAM, SCAT, NeuSecure TSOM, FDDB, Lotus Notes, Active Directory, TSO, MVS, CICS, RACF, VRU, Tandem, AS400, Windows, checkpoint, VPN, PIX

PROFESSIONAL EXPERIENCE

FEDERAL AVIATION ADMINISTRATION, Oklahoma City, Oklahoma 2009-2011

Security Assessor (2009-2011)

Performs security audits, system certifications and annual assessments of information systems while also assessing there compliance with the Federal Information Security Management Act (FISMA).

• Evaluate and analyze security controls on existing/ new systems by comparing current security documents against the National Institute of Standards and Technology (NIST) Special Publication (SP) 800 series to asses the security posture of a system. Make recommendations to any vulnerabilities the systems has in order to insure its compliance with NIST.

• Collect and summarize system support data and information to be able to create Information System Security Plans (ISSP), Risk Assessments documents and Security Test & Evaluation (ST&E) documents.

• Provide independent certification of SYSTEM to prepare the system for accreditation by the Authorizing Official (AO) asper (Appendix X, Project Schedule, Information System Security Support).

• Conduct independent certification, annual assessments or continuous monitoring assessments of the SYSTEM to help the system maintain Federal Information Security Management Act (FISMA) compliance.

• Provide Plan of Action& Milestones Independent Verification and resolution advice.

• Awarded “Outstanding Support of 2010 ISS Initiatives”

THE HERTZ CORPORATION, Oklahoma City, Oklahoma 1995-2008

Associate Network Security Administrator (2005-2008)

Monitor Network for security violations, Oversight of system Administrators assuring compliance of company standards /Sarbanes-Oxley (SOX), Provisioning user access to systems.

Resume continued on second page

PHILLIP D. BROWN PAGE TWO

• Assisted in proof-of-concept selection of vendor at start up of security monitoring department.

• Created and adopted documentation of best practice of security process for TSOM/NeuSecure

• Earned Sans GIAC Certification with emphasis on network security and Sarbanes Oxley compliance.

Team Lead, Computer Operator (1995-2005)

Computer Operations: completion of daily schedule and system monitoring. Training new employees. Assign team daily priorities.

• Created and maintained Standard of Operations Manual

• Assisted and advised team during cut-over of new reservation system.

• Awarded for perfect attendance at least three times for six-month periods.

MARRIOTT INTERNATIONAL, Oklahoma City, Oklahoma 1993-1995

Team Lead

Oversaw daily tape backup and print operations. Trained new associates. Assigned daily

Duties. Maintained weekly attendance and time card reports. Closely interacted with customers in high-volume environment.

• Saved over $100k by perceiving a defect in product delivered to company.

• Created and maintained Standard of Operations manual.

• Maintained Service Level Agreement.

EDUCATION

Computer Science (12 hours), Oklahoma City University, Oklahoma City, OK

General Education, Southwestern Oklahoma State University, Weatherford, OK

PROFESSIONAL DEVELOPMENT / TRAINING

OSVS1 FOR Operators, HASP for Operators, OSVS Job Control, OS Operation Training, MVS for Operators, System Management/Operations with MPE for Hewlett Packard, DOS 5.0, Introduction to UNIX, GIAC 309.1-6 A Framework for Information Security. Visual Basic VSE services across Group Knows and follows applicable regulatory and reporting environment Insurance or Banking Background Qualified Security Practitioner with Certification like CISSP, CISM, CISAA least 3 years experience in a similar function Years of Experience: 7+ Years Of Related Experience CCDP/CCNP or CCIE [written or lab] certification preferred General Security background and experience Project/Program Management Project Cost analysis, Business Case, TCO, ROI development & documentation Project Life Cycle Management - Plan, Design, Implement, Operate Good verbal and written communications skill

CERTIFICATIONS

GIAC Information Security Fundamentals expired Oct. 2010, Emergency Management Certifications ISC100 and ISC200, Government security clearance.

MEMBERSHIPS

egroups: Sans Security, newsBites, Tech Republic

Resume continued on third page

PHILLIP D. BROWN Page Three

REFERENCES

Name Company Position Held Phone Email

Phat T. Quach Hertz Network Support 405-***-**** ******@*****.***

Ryan Hodges FAA Security Assessor 405-***-**** ****.******@***.***

Erin Adams Creger DTS IT Director 405-***-**** **********@*******.***

Jeff Silvers Silvers Construction President/Owner 405-***-****



Contact this candidate