I'm a highly motivated information security expert. I have over 10 years of combined experience ranging in fields such as system administration, networking, information security, cloud architecture and security, and information assurance. I currently possess the Certified Information Systems Security Professional, Certified Cloud Security Professional, Certified Ethical Hacker and CompTIA Security+ certifications and a Public Trust Clearance.
I have a bachelors in networking engineering and a masters in information assurance and cyber security.
I am actively pursuing the PMP, CISM, and a MBA.
I am always looking for new opportunities, please drop me a line if you are interested.
February 2017 - Present
Ensured compliance and conformance with mandated Veteran Affairs (VA) Security Assessment and Authorization (A&A) process through the Veteran Focused Integration Process (VIP) guidelines. Maintained and achieved Authority to Operate (ATO) and Conditional ATOs where appropriate. Ran static code analyzer scans using Fortify on source code to ensure secure code and secure design review artifacts were sufficient. Guided development teams on issuance of compensating controls and security controls to ensure full compliance with A&A and section 508. Assisted in the software review to bring out of date applications up to compliance via new software, dependencies, and the occasional recode of software. Provided Tier 3 support as an IA Analyst for applications under the Health Product Services contract with matters related to security, patient safety, and patient privacy. Assisted on acquisitions and contract proposals by providing information security, cloud security, cloud architecture, and overall networking and security expertise.
January 2017 - February 2017
Provided tier 2 support on a 24/7/365 network configuring and setting up new security services through Cisco ASAs, F5 LTM/GTM, McAfee Firewall, Cisco switches and Cisco routers. Interfaced directly with customer to ensure efficient and effective resolution of issues and concerns to meet service level agreements. Educated tier 1 personnel on incident response technologies and security posture remediation where required. Ensured continuation of security environment in relation to posture, incident response, direct connect services, secure VPN services, and intranet services. Configured and deployed FirePower and FireSight appliances for intrusion detection including Advanced Malware Protection operations . Identified and remediated GAO identified controls to ensure compliance with NIST 800.53 and other government regulations such as FISMA.
June 2015 - December 2016
Researched, Designed, Created, and Reviewed Security architecture plans in accordance to standards such as ISO 27001 and NIST 800-53. Utilized and created system hardening templates based on Security Technical Information Guides. Maintained and managed Ansible role for DISA STIG Unix compliant systems. Designed and built network and security system architecture in private and public cloud environments including, but not limited to RedHat OpenStack and Amazon AWS Cloud in order to facilitate proper scaling, resource utilization, and security awareness. Utilized as the foremost security systems SME for a wide array of teams and pursuits within the Harris Internal Research and Development team on the Common Services Platform pursuit. As the only systems security engineer, supported and provided sole security insights for half a dozen teams. Created Information Security Management Systems documentation for anticipation of accreditation and unified security design and operating procedure.
May 2014 - June 2015
Monitored 24/7/365 networks and systems for viruses, worms, botnet, and other malicious activity on public and privately accessible networks. Applied SIEM methodology through suites such as Splunk, ArcSight ESM, and McAfee ESM on a day to day basis. Utilized programs and devices such as Nessus, Orion, McAfee Security Appliance, Snort, RSA, Sourcefire Defense Center, Sourcefire IDS, and Cisco FireSight, Cisco FirePower. Worked directly with the customer in order to quickly and efficiently remedy ongoing malicious activity and/or attacks. Pioneered the configuration and deployment Cisco FireSight and FirePower IDS devices for two diverse networks. Designed and coded a Sourcefire (SNORT) signature creator for mass, near zero time, creation of incident campaign signatures. Configured resources to allow for mass creation of over 1200 incident cases saving over 200 man hours.
January 2013 – May 2014
Provided technical support for IP services by employing test methods to investigate and remedy network anomalies in a 99.999% uptime environment. Monitored for, analyzed, and troubleshot network problems within an operations center utilizing network management and monitoring tools such as SNMPc, Orion, Netflow, and CA Spectrum Suite. Efficiently used test methods to troubleshoot WAN/LAN technologies such as Ethernet, IP, Frame Relay, ATM, BGP, QoS, Circuit Emulation, IPSec tunnels, Cisco ASAs, and OSPF. Worked with local exchange carriers, ILECS, IXCs, internal and external groups as needed to resolve network issues. Remotely worked with onsite technicians and telecommunication partners to resolve network problem.
May 2012 – August 2012
Engineered all-in-one project tracking system using web development, database, and critical thinking skills. Utilized my routing, switching and UNIX skills to deploy networking devices. Assisted in the building of production-based voice gateways within the Cisco voice over IP system (CUBE & VXML). Overhauled and upgraded network devices by applying skills obtained by CCNA training and previous jobs.
June 2011 – August 2011
Created and modified applications based on Android SDK on the Java Development Platform. Completed graphic design work to provide demos and showcase dynamic webpages. Coded in languages including XML, SQL, PHP, HTML, .NET and JAVA. Deployed UNIX based web server for development and production resources.
August 2010 – May 2011
Responded to issues that arose across Purdue’s Campus related to networking. Configured Cisco switches and routers to integrate with existing network. Utilized critical thinking to troubleshoot network problems ranging all tiers. Installed hardware in new buildings across campus (full building installs).
January 2010 – December 2012
Managed and configured a multi-platform computer network for 140+ people. Configured HP switches and access points in order to effectively cover entire building. Setup and managed PfSense firewall to properly NAT (PAT), distribute DHCP addresses, and protect against threats. Regarded as SME on all technical matters related to network, computers, AV, and general technical problems. Designed, programmed, and implemented organization’s website and webhost. Performed site survey to best implement, provide, and ultimately support wireless network across facility.