SUMMARY:

• Confidential is a seasoned “hands on” Information Security Manager experienced in performing analytical, technical and design of complex enterprise - wide Information Security Systems. Confidential possesses a solid understanding of project management processes. Accomplished professional with 7 years of experience in facilitating IT Project Management and Information Security System initiatives. Delivers efficient and reliable IT solutions through initiation, planning, executing, controlling and closing of a project. Excels in building/leading teams in high-dynamic environments.

PROFESSIONAL EXPERIENCE:

Confidential, Broomfield, CO

Sr. Cyber Security Engineer

Responsibilities:

• Responsible for day to day security operations of information systems
• Develops and implements security measures in accordance with applicable government regulations and local facility procedures
• Develop and maintain information systems security plan
• Conducts ongoing vulnerability testing of the information system to verify security features and operating controls are functional, effective and meet government standards
• Performs vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle
• Support major corporate infrastructure expanding and contracting.
• Support Global DNS - Create Honey Pots and or sinkholes
• Install Security Stack for new WAN Data Center
• Assist R80 Beta Version for Check Point and help Check Point develop R80 General release.

Confidential, Broomfield, CO

Sr. Network Architect Lead Engineer

Responsibilities:

• Plan and manage Data Center Network Virtualization
• Engineering risk mitigations with a CCNP and higher level.
• Design advanced networks using TCP/IP, dynamic routing protocols, VPN, and failover best practices
• Design firewall and VPN’s - Cisco ASA firewalls (VPN concentrators as well as contexts)
• Stand up new Data Center as a Cloud serveries using Cisco Nexus series (7000, 5000, 2000, 1000v switches), ACS and UCS resources
• Create processes for advance cloud services.
• Create process of Auditing and address vulnerabilities for FEDRAMP
• Manage network projects across functional teams and customers
• Continuous service improvement of networks and network services
• Design new management networks for the U.S. Department of Labor to separated internal and external management networks.
• Architect infrastructures as well as troubleshoot and restore technical service and equipment issues by analyzing, identifying, and diagnosing faults and symptoms.
• Stand up new Services for customers Including Network / server installation / Virtual configuration / routers, switches, and firewalls.

Confidential, Denver, CO

Security Audit Program Manager/Sr. Security Engineer

Responsibilities:

• Assess current Security program and make recommendations for security hardening.
• Design Network infrastructure and supporting protocols for future business needs.
• Designing and leading audits to validate that controls are adequate and functioning effectively.
• Documenting IT processes, controls, and exposures
• Communicating progress of audits to IT Audit Manager and audit clients in a timely manner
• Configuring 9000 services cisco with F5 ASM (LTM) to mitigate core redesigning to use security firewall and load balancing at network speeds to a virtual environment.
• Made changes to over 600 rules effecting over 50 policies on 5 Management systems, effectively hardening 200 Juniper devices, 100 Palo Alto’s and 50 ASA’s firewalls.
• Writing audit reports communicating audit observations and recommendations to both technical and non-technical audiences
• Participate on new systems development / implementation projects to ensure appropriate controls are incorporated
• Consult with IT and user personnel on system control methodologies and techniques.

Confidential, Littleton, CO

Principal Consultant Project Manager

Responsibilities:

• Assess current security program to meet HIPPA security compliances.
• Project managed Lead Systems Architect for VOIP, Data and Server design to create a confidante, integrity, and available VOIP system to meet HIPPA compliances.
• Installed Tufin SecureTrack to ensure all firewalls, IPS’s/IDS’s, switches and routers to provide top down approach for security control view for all
• Created Change Control Processes and documentation for all security related changes.

Confidential, Denver, CO

Manager of Information Security, SOC Manager

Responsibilities:

• Solved big data security invisibility problem by Designing Infrastructure wide solution with HP ArcSight to provide a unified view of security through collection, storage, and analysis for IT security, compliance, ops, and analytics.
• Provide guidance and support for governance of the global infrastructure using CISSP best practices.
• Created weekly executive reports for monitoring and maintain the operational awareness of the global infrastructure. This report included stats for malicious code, intrusions, failed logins by users, etc. also including snap shots of live charts for easy digestion of the information.
• Implemented incident response standards, plans and protocols to ensure that security incidents and policy violations are promptly addressed.
• Assessed various vendor security solutions for end point security of mobile device for host based IPS/IDS software.
• Project managed full life cycle of Palo Alto IPS (in-line) controls.
• Configured network requirements of routes, DNS, SNMP and Zones, policies for the successful deployment of the Palo Alto Network Unified gateway devices.
• Developed Security Office “runbook”, which is collection of procedures and operations that IT Security can use to effectively manage, execute and troubleshoot.
• Manager of SOC (Security Operations Center) consisting of 7 fulltime Security Analyst and 4 Security vendors resources that composed the incident response team,
• Managed day to day activities of all security related changes, maintenance and counter measures.
• Escalation point and manager for multi-team security issues from start to finish.
• Created processes for who can access data, how that access would be secured, and what and how data for each vendor would store information.

Confidential, Denver, CO

Sr. Security Engineer, SOC Lead

Responsibilities:

• Assess current Security program and make recommendations for security hardening.
• Design, develop, test and implement security solutions, such as measurement matrix based on quantitative and qualitative methods to validate and classify data assets.
• Responsible projects involving physical security, risk mitigation, security policies which often involved hands on configurations of new network and security hardware including Cisco, Juniper, Palo Alto, ArcSight, Check Point SourceFire systems.
• Responsible for perceiving the big picture and the ability to effectively influence others internally and externally.
• Write new security policies for customer base via ticket request.
• Saved Army 4 million dollar contract by addressing 2000 risky firewall policies holes by the implementation of intrusion prevention and network traffic segmentation.
• Responsible for evaluating VPN technology to determine the best solution for replacement of Cisco VPN to Palo Alto VPN.

Confidential, Denver, CO

IT Operations Manager

Responsibilities:

• Designed and deployed redundant data center for load balancing and fail over.
• Worked with multiple vendors to ensure new data center services were delivered as expected.
• Created and executed test plan of load balancing, failover and DR of new data center.
• Created and implanted security controls and monitoring for new data center.
• Direct management of Operations Engineering and Operations in Denver, CO and Europe locations.
• Created and maintained project plans in accordance with CHI standards and requirements.
• Developed and manage departmental budgets (staffing, hardware, services, etc.)
• Responded to 24/7 outages, technically trouble shot and fix problem.
• Plan and implement maintenance (upgrades, patching, etc.) and system changes.
• BPG redesign to support global load balancing with BIG IP F5 load balancers.
• Implemented all Firewall Changes on Cisco ASA’s.
• Installed firewalls, load balancers, switches and networks to insure no single points of failure exist system.

Confidential, Littleton, CO

Principal Consultant,Project Manager

Responsibilities:

• Project Managed AVIS to Black Stones network, this consisted of 296 Access sites with over 300 Cisco 3600’s running OSPF over IBGP and BGP networks.
• Define and manage all aspects of the AVIS to Black Stones network project including scope, schedule, staffing, issues and budget
• Planned and implemented changes of Pix and ASA firewalls for Black Stone networks.
• Install and trouble shoot Big IP F5, versions 9-10and Foundry Load Balancers for server farms use of, DNS, VIP, SSL accelerators.
• Provide Confidential with an external IT department.
• Audited Confidential ’s three companies to segment data and implemented security measures.
• Implement Active Directory and migrated MS servers.
• Managed and acted on all IT related requests
• Created test environment for load balancing of Web applications for Confidential .

Confidential, Englewood, CO

Lead Network Architect

Responsibilities:

• Managed Project Plans base line activities and over seen all activities merging Navigant 10,000 node network to Carlson Wagonlit’s 20,000 node network.
• Prepared and maintains standard operating procedures for network, technical specifications and documents, drawings, system documentation including operations management.
• Managed vendor proposals and benefits of changes in hardware, communications protocols, switching methods, access methods, and tariffs, and in the procurement of software and hardware.
• Participates and consults in the planning, design and integration of new networks.
• Manage Network Engineering daily tasks.

Confidential, Englewood, CO

Project Manager/ Sr. Network Engineer

Responsibilities:

• Responsible for creating/implementing QA strategy and product release management for multiple environments
• Responsible for the formulation and implementation of goals and plans as related to a specific function.
• Manager NOC teams daily incident response by supporting over 50,000 server and network nodes worldwide.
• Wrote reviews, evaluations, and prepared periodic performance reports of staff.
• Coached, motivated, and professionally developed staff by designing, implementing, scheduling and tracking individualized programs.
• Participated in project review, development, and implementation process.
• Responsible for resource planning, managing team workload, budget management including developing and maintaining annual budget.
• Responsible for vendor relations for infrastructure support for internal and external customers
• Provided executive management reporting.