SUMMARY:

Professional Executive responsible for developing and managing core technology cybersecurity and products encompassing systems and network operations, security, and related operational functions. In collaboration with the CISO to develop and deliver the programs and services that will help to achieve its strategic goals.

SKILLS:

Risk Management, Risk Assessment, ITIL, Lean Six Sigma, Strategic Planning, Security, Capacity Planning, Iaas, Paas, Saas, SIEM, SSH, SAML, TCP/IP, SFTP, Active Directory, LDAP, DLP, AWS, AZURE, Encryption, ISO27001, It Service Management, Disaster Recovery, Oracle, Linux, Unix,Solaris, Windows, VmWare, VMware VSphere 5.5, Esxi Servers, Oracle cloud and WebLogic, Cisco, System Administration - HP servers, IBM, Alcatel, Windows, F5, Vendor and Quality Management, Escalation Point of contact, SNMP, OSS, IP, Monitoring and Management, Network Attached Storage - Legato, TCP/IP-Static Routing, WAN/LAN network, Voice Services, VoIP Solutions, SIP, and Traditional Lines, System Integration, Programming - C, C++, Vim, Switching and Routing protocols (CCNA),, Capacity planning, technical specifications document(TSD).

EXPERIENCE:

Senior Cyber Security Architect

Confidential

Responsibilities:

• Create plans and designs for Carrier’s Cyber Fusion, PKI, Vulnerability Management Program.
• Responsible for supporting architecture changes, tool deployments and advanced content development.
• Build Framework for Vulnerability Management after review and assessment of Carrier’s network and infrastructure components.
• Define, implement and monitor key risk indicators and key performance indicators (KRIs/KPIs).
• Deliver advisory support for SIEM to other technology personnel and to technology management.
• Review and critique system security plans, network diagrams, and other security documentation as part of vulnerability engagements
• Technologies: Rapid 7, Nessus, Tanium, Microsoft PKI.

Chief Security Architect

Confidential, CT

Responsibilities:

• I provide overall design oversight with accountability for IT Security built up and reviews. I lead design and deploy security solutions with primary focus on infrastructure, cloud, operating systems, applications, database and issues and requirements.
• Developed standards, policies and controls with respect to compliance for public cloud delivery and solutions in the use of standardized design patterns across Application, Platform, Infrastructure and other projects.
• Published data privacy controls across the enterprise by collaborating with GRC team.
• Rollout security and privacy awareness.
• Participate in Table top exercises with the C - suite and legal team.
• Lead designing and deploying solutions with primary focus on infrastructure, cloud, operating systems, applications, database and issues and requirements.
• Cloud security design and solutioning
• Hardening across Windows, Linux, SQL and Microsoft O365
• Vulnerability scanning solution
• SOC (Security Monitoring)
• SIEM
• Advanced Denial of Service mitigation
• IDS / IPS
• Web Filtering
• Firewall Rules
• Network Malware Protection
• Define Incident Response Plan
• Continuity / DR

Director of Infrastructure and Security

Confidential, New York, NY

Responsibilities:

• Oversee all product development for startup focused on FinTech platform and determine strategic direction by focusing on product content and user design.
• Worked CEO and team to help figure out their Block chain vision and Strategy.
• Review the architecture of blockchain developed by experienced consultants on the team.
• Designed authentication and authorization for external facing applications and documenting Identity and entitlement processes
• Laying out Strategies using Hyperledger (Seth)
• Actively involved in SEC filings, SAFT reviews and Pre- ICO offering
• Using SSI, Self Sovereign Identity ( Decentralized +) and Distributed Key Management System
• Creating Business logic (Smart contracts) for transactions
• Managed Implementation of Sawtooth with Seth Capability (Ethereum)
• Dynamic Consensus protocol selection and Strategy
• Manage deployment of multiple interlinked crypto-assets • Draft technical portion of Company white paper
• Crafting strategies for block chain Ethereum integration with traditional platform following SAFT standards and regulations
• Collect requirements and business needs to make sure that their FinTech is secure and that if it handles sensitive data, that it is protected with encryption and key management.
• Deployed and upgraded truly and provably meet compliance and industry standards using centralised encryption key management system which is FIP 140-2 compliant, PCI DSS validated, conforms to NIST standards, KMIP compatible.
• Currently using AWS - IAM, Directory service, Guard Duty, Firewall Manager, CloudHSM, AWS shield for DDoS protection, RDS, API Gateway, Elastic Load Balancing.
• Monitor and conduct periodic assessments of existing AWS infrastructure and applications for capacity planning, performance improvements, upgrade requirements and hardware/software replacement and ultimately recommend changes to align with business strategy and ensure efficient processes and operations.

Infrastructure and Security Architect

Confidential

Responsibilities:

• Secure Gate comprised of IAM solutions, Key Vaults, Session Monitoring and Recording, MFA, Token Generations, RSA, Firewall configurations, Load Balancers flows and configurations, Logging, IDS/IPS, SIEM, Service Now Ticketing integration for automated ticket dispatching.
• NOC for Corporate Network included Network Monitoring using SNMP traps - HP NNMi, Logging, Network Monitoring on Microsoft Azure, CASB services.
• MS Azure Datacentre: VPN Gateway, Load Balancers, Traffic Manager, Virtual Networks, Application Gateway, DDoS Protection, Express Route, Virtual WAN, Azure Active Directory, Security Centre, Threat Protection, Key Vault, MFA, Microsoft O365
• Follow industry compliance and security standards including PCI DSS, ISO 27001, HIPAA, and NIST
• Other Latest delivered end to end projects: OLG servers migration to new cloud infrastructure, Oracle cloud infrastructure installations, Nokia Optimizing Tool implementation, Eclipse, OSS-RC, Video Monitoring and Delivery tools, Veritas Backup solutions, Hadoop, EMM, NNMi, Alarm and Monitoring Tools, Splunk, Netscaler, Citrix, Oracle cloud, VMware, PCA, Huawei Saas, Ericsson Paas
• 3G to LTE Transformation overall $30+ million project
• Laid strategies and frameworks for Information privacy and protection, Infrastructure and application protection.

Infrastructure Implementation and Design Engineer

Confidential

Responsibilities:

• Provide products for future and upcoming OSS systems and work closely with Solution architects.
• Accountable for the support of software applications and access configuration that support the computer-based operational systems for the surveillance, control,
• Major Projects delivered: Network Node Manager (NNMI 9.1x) comprising SNMP, LDAP, XML content, NMS, OMU, OVO. Handling Max (TV service) monitoring application from Ineoquest and Evertz, VLPro, Access link monitoring applications: Panorama, Preside. Wireless Products: Ericsson, M2000, NetAct, WES, DR solutions.
• Follow change management policies abide by ITIL for upgrades, installations, patching and hotfixes.
• Follow Audit procedures and method of procedures laid by ITSM

Wireless Network Operations Engineer

Confidential

Responsibilities:

• Maintained MSC switching equipment and related peripherals to ensure appropriate (proper) operation (call flow), Backups, Upgrades, Patching.
• Strong knowledge of Roaming principles and processes.
• Analyzed data and generate reports gathered from the switch Operational Measurements to identify problems and assist in the resolution.
• Supported the planning, testing, and acceptance of PSTN trunking and backhaul growth, switch equipment growth.
• Provided support to the Network Operations Center (NOC), Technical Support, System Performance, SS7, Information Systems (IS), Network Field, and Data Services teams in evaluating system performance, resolving service issues and maintaining switch and data network performance/growth.