TECHNICAL SKILLS

• Manage cloud & API’s from Amazon (AWS, EC2, S3, IAM, VPC, ELB, Route53, AI/ML, EMR, Redshift, Kinesis, Dynamo DB, MySQL, NoSQL, Hadoop, Horton Works, MapReduce, SparkML, KAFKA, SQL Server, Oracle, Config, SQS, SNS, RDS, ECS, EKS, SSO, AWS Application Discovery Service, AWS Server Migration Service, AWS Database Migration Service, Azure, Nutanix Prism, VMware Cloud on AWS, AWS Snowball, AWS Direct Connect, Amazon Kinesis Firehose, AWS Storage and File Gateway, S3 Transfer Acceleration, Lambda, WorkSpace, Directory Service, Trusted Advisor, Inspector, CloudWatch, CloudTrail, and CloudFormation) OpenStack, RedHat Satellite 6, Veritas Infoscale, Qualys, Symantec Storage Foundation, Chef, Puppet, Dockers, Kubernetes, Terraform, Jenkins, LAMP stack, Nginx, Nagios, Dell Endpoint system management, PBM, SOX, NIST, PCI DSS, HIPAA, FERPA, and NERC.
• FlexLM Licensing, Synopsys, Cadence, VMware, vSphere, vCenter, Hyper - V, CAD/ASIC and IT Infrastructure, SAS Grid Manager, SAS Viya, Active Directory, LDAP, Office 365, VMware vRealize Log Insight, Desktop Central (App Management, Policy Management, Patch Management and Software Deployment), Automox, Tcpdump, Wireshark, Splunk (ES, UBA & ITSI), Splunk Cloud Enterprise Security, DB 2/3 connect, Splunk DBX, Security Intelligence, Security Domain, AppDynamics, Evident.io, AirWatch, AlienVault, CrowdStrike falcon, Carbon Black, Varonis, Rubrik, Okta, Kanban, Agile, Scrum Master, Checkmarx, Veracode, Vormetric, CloudLink, Proofpoint, DUO, Protegrity, Tanium Platform, Tanium Discover, SignalFx, Phantom, ServiceNow, JIRA, Confluence, Sharepoint, SCCM, SCOM and OMS 2016. MS Azure, Google Cloud Platform (Cloud Datastore, Bigtable, Cloud Storage, Cloud SQL, Cloud Spanner, and BigQuery).
• Cisco 2800, Cisco 1840, ASA, BMC Discovery, InterMapper, EMC, NetApp DATA ONTAP 7 & 9, iSCSI, HBA, and Fiber Channels.
• VB .NET, C#, C, C++, JAVA, HTML, Perl, VB script, bash, python, puppet, Shell and powershell.
• Rational Rose, UML, MS Access, Excel, Outlook, Powerpoint, Visio, Word, MS Project, SmartDraw, ArcView, ArcPad, AutoCad, Cadkey, GPS systems.
• Windows, Linux SUSE, RedHat, Sun Solaris, HP-UX, and AIX
• Teradata SQL, Hadoop, IBM Guardium, Microstrategy, Bteq, Teradata manager 7.2, Golden Gate, TPE, NCRPut, Teradata 12.0, Bynet, SANtricity, Symplicity, Oracle PL/SQ, SQL, ADO, ODBC, JDBC, OLAP, Stored Procedure, Trigger, MicroStrategy, SAP, Apache Web Server, Java Enterprise Eddition (JEE) system stack, IaaS, CaaS, PaaS, FaaS, SaaS.

PROFESSIONAL EXPERIENCE

Confidential, Phoenix, AZ

Sr. Splunk Engineer / Cyber Security Engineer

Responsibilities:

• Installed and configured different Splunk apps and add-ons on Splunk platform.
• Maintain network and system security, analyze and correct system issues and error logs.
• Responsible for design, installed, configured and administered Splunk Enterprise & DataDog on-prem, AWS, and GCP cloud environments.
• Performed maintenance and optimization of clustered Splunk deployment.
• Worked on log parsing, Splunk searches, including external table lookups.
• Monitor and support services with a variety of services such as Splunk (ES and ITSI)
• Develop, evaluate and document specific metric for management purpose.
• Used Qualys and Tanium to scan for vulnerability management in network, endpoint, continuous monitoring, policy compliance and especially PCI compliance.
• Create and configure management reports and dashboards.
• Support Splunk infrastructure, install, test, DB 2/3 connect, Splunk DBX, and deploy monitoring solutions with Splunk services.
• Worked Directly with Splunk Inc sales team in determining Log size and licensing cost for the client's Infrastructure.
• Troubleshoot Splunk servers, agent problems, and issues.
• Develop Best Practices to maximize the use of Splunk Enterprise Security with Carbon Black, Qualys, Varonis, CyberArk, Symantec, and Zscaler.

Confidential, San Diego, CA

Splunk Engineer / Cyber Security Engineer

Responsibilities:

• Installed and configured different Splunk apps and add-ons on Splunk platform.
• Maintain network and system security, analyze and correct system issues and error logs.
• Maintained and managed assigned systems, Splunk related issues and administrators.
• Responsible for design, installed, configured and administered Splunk Enterprise on Linux and Windows servers from on-prem or AWS cloud environments.
• Worked on log parsing, Splunk searches, including external table lookups.
• Monitor and support services with a variety of services such as Splunk (ES and ITSI), Tanium Platform & Tanium Discover, SCOM & OMS 2016, SCCM, and other proprietary systems.
• Develop, evaluate and document specific metric for management purpose.
• Installation of Splunk Enterprise, Splunk forwarded, Splunk Indexer, Apps in multiple servers (Windows and Linux)
• Create and configure management reports and dashboards.
• Support Splunk infrastructure, install, test and deploy monitoring solutions with Splunk services.
• Worked Directly with Splunk Inc sales team in determining Log size and licensing cost for the client's Infrastructure.
• IT security incident and vulnerability response and escalations;
• Detection and escalation of account privilege abuse; Policy compliance monitoring
• Lead team efforts in performance of information security risk assessments, security controls and corrective actions to mitigate risk using model, such as NIST 800, PCI DSS, HIPAA, FERPA, and NERC.
• Using with the following tools and technologies such as: Cyber Security Technology, Threat Modeling & Intel, Cyber Security Ethical Issues, Wireless and Mobile Security, Splunk (ES & ITSI), Evident.io, AirWatch, AlienVault, CrowdStrike falcon, Rubrik, Okta, SignalFx, SCCM, Office 365, SCOM and OMS 2016.
• Assign Roles, manage Users and groups and assign policies using AWS Identity and Access Management (IAM).

Confidential, San Diego, CA

Systems Engineer

Responsibilities:

• Manage, administer, patch/update, monitor, and support 500 Windows servers, 1000 UNIX servers and 2,000 Linux servers in Data Center.
• Designed and administrated server consolidation program through use of 500 VMware ESX servers for development environments.
• Monitor servers and virtual environment with Solarwinds. Installed and administered Solarwinds network performance monitor in 500 device environment.
• Maintain network and system security, analyze and correct system issues and error logs
• Develop procedures, programs, and documentation for the management and administration of networks, systems, resources, application and technologies, including backup and recovery of operating systems and host-based applications
• Repair and recover from hardware or software failures. Troubleshoot problems reported by users
• Research and recommend innovative and automated approaches for tasks.
• Recommend for future systems and application upgrades
• Design, test, and deploy new systems, applications and networks