Individual Contributor/ Principal Technical Architect

SKILLS

Global view and broad knowledge of hardware, software, networking and security technologies to provide a powerful combination of architecture, analysis, implementation, and support. Experience in network administration, engineering, hardware evaluation, project management, information security and architecture.

• Seasoned professional with real-time experience and proven abilities in evaluating various aspects of security engineering and Information assurance technologies and tools, and understanding of trends and emerging capabilities.
• Highly proficient in identifying current and emerging IT vulnerabilities, championing security standards and processes, reviewing security architecture, and supporting the client IT security efforts.
• Work proactively with various groups within the client organization to identify security challenges and to devise available solutions by providing security expertise on complex technology issues.
• Knowledge of significant Enterprise IT concepts, including virtualization, cloud computing, SOA, perimeter protection, N-eyes network convergence, Public Key Infrastructure, and identity and access management
• Adept at managing multiple efforts concurrently, takes ownership, demonstrates accountability and has a reputation of following through to deliver results.
• Works in conjunction with peers in the realm of application security, network security, security operations, and compliance to develop and integrate security into an end-to-end enterprise architecture.
• Experienced in evaluating and implementing IT security tools and applications
  Familiarity with the systems development lifecycle (SDLC) and IA implementation in the SLDC and operational experience implementing security approaches to protecting encrypted network infrastructures that implement CISCO switches, routers, and security appliances.
• Goal oriented flexible, loyal, efficient team player with excellent communication, problem solving, time management, and customer service skills.
• Knowledge of security evaluation, auditing and assessment and penetration testing.
• Knowledge of various Information security standards such as ISO 17799/BS 7799, ISO 27001, DICAP, NIST 800-53, FIPS 199, FIPS 200 and OMB security standards.

PROFESSIONAL EXPERIENCE

Confidential
Principal Technical Architect 2010-Present

• Provided technical leadership in IA and systems architecture, developed and started the implementation of enterprise Information Assurance architecture to ensure IA requirements are integrated into the enterprise for the Army GFEBS, through the design and implementation of Arc Sight, BMC monitoring, and Hercules patch management systems.
• Led identifying current and emerging IT vulnerabilities and championed security standards and processes, reviewing security architecture, and supporting GFEBS IT security efforts
• Led GFEBS Network Infrastructure upgrade project which included complete redesign of the primary data center and backup data center and replacing EOL devices and integrating defense in depth methodology.
• Led several groups in the realm of application security, network security, security operations, and compliance to develop and integrate security into an end-to-end enterprise architecture

Confidential
Principal Security Architect /Consultant 2009-2010

• Provided technical leadership in IA and systems architecture, developed and started the implementation of enterprise IA architecture to ensure IA requirements are integrated into the enterprise.
• Developed Information System Security program for the District of Columbia Courts (Superior Court and Court of Appeal) and related policies, guidelines and standard operating procedures for various security appliances.. Developed disaster recovery strategy and plan for the District of Columbia Courts in cooperation with various business units.
• Assessed the information security posture at the District of Columbia courts and guided various teams in implementing the findings and the industry security best practices.
• Cooperated with various team members to remediate and mitigate the FISCAM Audit findings at DC Courts.
• Worked proactively with various groups within the DC Court to identify security challenges and to devise available solutions by providing security expertise on complex technology issues.
• Led and developed the technical response for the GSA Federal Acquisition Services and USDA FSIS Proposals for Intelligent Decisions.

Confidential 1999 to 2009
Senior Network Infrastructure Engineer

• Assumed VPN SME role for all intranet and extranet VPN connections for American Express worldwide which included over 350 sites terminated on various platforms.
• Provided consultative services to various complex VPN projects and ensured timely execution in compliance with Applicable Amex Security policies and standards, customers included, British Telecom, JPMorgan Chase, Toronto Dominion banks, Accenture, CollabNet, Oracle, Authoria, and Global Security.
• Led the design, implementation and testing of the 3rd party VPN Pod, overseeing related project execution, and configuration functions.
• Collaborated with network security and information security teams to enforce Amex security policy through the implementation of the PGB and site review process for 3rd party VPN customers.
• Led Merchant VPN process improvement through active involvement with various team members, to standardize the VPN TCP/IP checklist and communication guide.
• Identified gaps across the work streams and collaborated with ESI team to remedy them (VPN TCP/IP checklist standardization, and merchant VPN process flow standardization/documentation).
• Provided professional Consultative services for complex, highly visible, Revenue generating projects such as Bank of America Merchant Services, Best Buy, and global payments.
• Led the design and implementation for several complex projects for American Express Banks in Latin America and the Caribbean.
• Designed and implemented a project for a dot com company consisting of a PDC, BDC, three member severs running IIS 4.0, SQL, exchange 5.5, file and a print server running Novell Netware 5.1 and HP ProCurve 4000M Switch, and 45 workstations running Windows NT4.0.
• Designed and implemented several LANs utilizing Novell NetWare 4.2 Operating systems, Microsoft Windows NT 4.0, Back Office Small Business Server and Windows95/98.
• Provided technical post-installation problem resolution, upgrade and support for hardware and software issues for various clients throughout the Phoenix area.
• Assisted junior system engineers with configuration and installation issues.
• Designed and implemented and migrated a complete replacement network from an ARCNET network to an Ethernet Network running Novell NetWare 4.2 with 3COM Super Stack Fast Ethernet Switch and HP Print Servers for a major client.

EDUCATION

Master of Science in Engineering.
Bachelor of Science in Engineering.

CERTIFICATIONS

Certified Information Systems Security Professional (CISSP).
Certified Information Security Manager (CISM) in progress.
Cisco Certified Security Professional (CCSP).
Cisco Certified Network Professional (CCNP).
Information Technology Infrastructure Library certification (ITIL V3).
Microsoft Certified Systems Engineer (MCSE) NT 4.0.

CLEARANCE

Active Custom Border Protection (CBP)Clearance granted in 11/09.