CAREER PROFILE:

A well - presented and adaptable professional, with a distinguished IT\OT track record underpinned by work experience in environments demanding self-motivation and focused approach. I can work with and without supervision and willing to assume additional responsibilities. A committed team player with leadership ability, who uses high standards of communication to establish positive interpersonal relationships. I am seeking a secure, challenging, and rewarding position to apply my practical knowledge and experiences to contribute to an organization's success.

TECHNICAL SKILLS:

Cisco Routers / Switches: Configuration / Troubleshooting / Management, Knowledge of multiple security standards (ISA 62433, NIST, ISO 27002, CPwe, etc.), Knowledge of Security Incident Handling and Response

SIEM Management: Azure Sentinel / IBM Qradar / Splunk, Firewall / Intrusion Detection / Intrusion Prevention / Malware Analysis

Cisco ASA Firewalls: Configuration / Firewall Policy / Troubleshooting

Check Point Firewalls: Configuration / Firewall Policies / VPN / Tshoot / Upgrades / Management

Check Point Firewalls: Multi-Domain Management/ Provider-1 / EPS / NXT Gen Firewalls

FortiGate Firewalls: Configuration / Firewall Policies / VPN / Troubleshooting / Upgrades

Palo Alto NGFWs: Configuration / Firewall Policy / Troubleshooting / Management

Administrating Authentication Controls: Radius / RSA / Secure ID / TACACS+ / Port Security

Network Monitoring Tools: Indegy / IBM Qradar / Websense / Tenable SC / SolarWinds

TCP/IP Packet Analysis: IBM Qradar/ TCP Dump / Wireshark / ZScaler

Networking Concepts / Technologies: Network Design / Encryption / Network Security Technologies

PROFESSIONAL EXPERIENCE:

Confidential

Industrial Control System Security (ICS) Engineer

Responsibilities:

• Leads the development and management of ICS Network Firewall Rules to standardize deployment and minimize security risks to Operational Technology (OT) environments.
• Participate in security requirements, network design reviews, and security testing for network, systems, and applications.
• Coordinate with systems, network, and development teams to ensure network security standards are being followed and implemented correctly.
• Evaluate new security technology & emerging threats and provide recommendations to strengthen the OT security environment.
• Utilize existing and newly deployed OT Security Solutions to perform threat assessments, substantiate security incidents, and effectively respond.
• Provide extensive coordination with Confidential IT Security to ensure overall business alignment and communication of OT security risks.
• Evaluate available vendor security solutions to determine if and how they should be deployed in the OT environment.
• Lead the development, deployment, management, and enforcement of Confidential OT Security Policies. This will include leading the effort in Confidential adopting applicable components of IEC 62443 & NIST Cyber Framework that provide increased OT Security while minimizing increased production risk.
• Provide firewall support to concurrent and complex projects while working collaboratively across multiple business units to implement new technology and support existing environment
• Lead maintenance and administration efforts of internal ICS infrastructure (Level 0-2) utilizing a strong understanding of ICS environments.
• Consult on ICS security matters as needed and act as a liaison between operations and corporate IT security teams.
• Respond and Participate in ICS security incident response through all phases including investigating computer and network intrusions and remediation support.
• Perform comprehensive computer surveillance/monitoring, identifying vulnerabilities; developing secure network designs and protection strategies, and audits of OT our infrastructure
• Report and communicate with the relevant E&I techs & superintendent in the organization about critical ICS Industry Vulnerability events.
• Perform proactive research to identify, categorize and produce reports on new and existing threats
• Arrange and Plans security awareness programs etc. needed for the Confidential OT employees and all Confidential contractors.

Confidential

Information Security Engineer

Responsibilities:

• Fully versed in the syntax of security platforms, and rule verification
• Engineering experience configuring and deploying large scale LAN/WAN networks
• Understanding how business application requirements drive Firewall policy and rule sets
• Support the day-to-day firewall engineering and operational tasks and in the process, advancing knowledge of Checkpoint firewalls, routing protocols, and VPNs
• Provide firewall support to concurrent and complex projects while working collaboratively across multiple business units to implement new technology and support existing environment
• Configure, deploy, administer, and document firewall infrastructure, working with Check Point and Cisco
• Manage the firewall deployment, rules migrations, and firewall administration
• Responsible for converting existing rule base onto new platforms
• Good understanding of ACL’s and when they would be deployed to complement or in place of firewalls
• Maintaining the design and integrity of the internal network, including customer-facing hosted and cloud environments
• Providing expert technical assistance to team members with high-level system and networking knowledge
• Working independently and as part of the IT team to respond to Level 2 and Level 3 escalations
• Securing and managing network infrastructure to protect productivity, mitigate threats, and reduce costs
• Thoroughly familiar with Check Point models, capabilities, and architectures including firewall virtualization

Confidential

Information Security Engineer

Responsibilities:

• Collaborates on IT projects to ensure that security issues are addressed throughout the project life cycle
• Reports unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation process
• Supports data encryption deployments, including key management
• Reviews data requests for information access and determines appropriate security actions
• Works with Information security leadership to implement strategies and plans to enforce security requirement and address identified risks
• Knowledge of Security concepts and ability to apply them to business processes (the concept of least privilege, handling if contractor access, the concept of locking down, integration/production environments), etc.
• Completed, Configured and Deployed over 100 Checkpoint firewalls in our southern region branches
• Assisting in the development of security architecture, policies, principles, and standards
• Responding to security incidents and escalating security incidents as appropriate
• Performing installation and configuration management of security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.
• Monitoring daily or weekly reports and security logs for unusual events
• Researching, evaluating, designing, testing, recommending and planning the implementation of new or updated information security technologies
• Provides support to our information security team and works closely with other members of the team to develop and implement a comprehensive information security program (includes defining security policies, processes, and standards)

Confidential

Network and Security Engineer

Responsibilities:

• Ensure prompt and accurate Network and Security support for Clayton’s WAN/LAN/VOIP/Security infrastructure
• Cisco ASA firewall maintenance and configuration - responsible for all firewall rules implementation, upgrades, troubleshooting, and maintenance.
• Completed a Cisco ASA upgrade on our devices ranging from 5505 to 5520’s (all running as HA) for all our 5 individual sites following Cisco Security Advisories Bulleting’s.
• Worked heavily with Palo Alto in support of the Intrusion Prevention System (IPS), - responsible for the day-to-day maintenance, upgrades, and configurations.
• Configured Checkpoint Firewalls - responsible for all firewall rules implementation, upgrades, troubleshooting, and maintenance.
• Completed a FortiGate Firewall upgrade, configuration, and optimization of devices ranging from 80 - 800C (mostly in HA) for all sites using best practices.
• Provide 2nd level support and resolution for end-user problems/issues and request including proper documentation using a corporate incident management tool.
• Support the development and implementation of the strategic direction of the WAN and LAN design
• Install, maintain, and optimize several networks containing Cisco 2800, 2900, 3800, 3700 series routers, 3560, 3750, 3750 Metro, 4500, 6500 series catalyst switches, and Cisco Nexus 2000 and 5000.
• Accountable for the day to day operational worthiness of Clayton’s network and security environment and/or Clayton’s backup and recovery environment including maintenance and the installation of any upgrades, patches, security fixes, etc.
• Accountable for monthly and quarterly collection and support of Clayton IT Security Controls (SOX, PCI, Hi-Trust & HIPPA)
• Adhere to established Services Level Objectives (SLO) for the associated services
• Work in conjunction with, and support of, other technology area support staff for issue resolution and project management
• Assist with reviews of departmental documentation regularly and assures it is complete, acceptable and accordance with standard
• Provide 2nd level support for hardware break/fix issues associated with the corporate WAN/LAN/VOIP/security infrastructure, 24x7x365 remote support and on- call for all troubleshooting issues

Confidential

Network Engineer

Responsibilities:

• Proven experience and success with LAN, WAN, and WLAN implementations and upgrades
• Configured, maintained and upgraded Cisco ASA firewalls
• Provide tier I and II technical support for all users at the assigned site(s). Troubleshoot problems encountered by staff and provide a timely resolution via email, telephone, and/or in-person
• Ability to Install and configure IDF switches and routers
• Assist with reports and provide solutions for timely reporting of information Proactively observe equipment performance, detect errors of operation, and correct those errors
• Knowledge and experience in the deployment and maintenance of enterprise network routing architectures using protocols such as OSPF, BGP, EIGRP, and RIP
• Assisted in day-to-day network administration and desktop support operations as needed

Confidential

Network Engineer

Responsibilities:

• Securing application servers and nodes from any security threats by installing firewalls and other security suites
• Work independently and in collaboration with others to evaluate, manage, research, repair, and maintain the computer network
• Troubleshooting Network connectivity issues, Monitoring Network activity, Configuring Routers, Switches, and Firewalls
• Configured, maintained and upgraded Cisco ASA firewall appliance
• Proven experience with network capacity planning, network security principles, and general network management best practices
• Assists with deployment and strategy of tools and related Network Management Systems