SUMMARY

• A highly experienced and dedicated Information Systems Security Professional, Subject Matter Expert (SME), and Certified Ethical Hacker with over 18 years of experience
• Chief Engineer of System Security, IT teams, programmer, hands - on intrusion detection.
• Systems security administrator with an advanced degree in Science, team building, leadership, and management. Experienced supporting a large scale project for the Intelligence Community.
• Planning, implementing and operating large scale global and distributed Information Systems;
• Hands-on Risk assessment, Certification and Accreditation and Regulatory Compliance;
• Design and implementation of Security Architecture;
• Vulnerability Assessments and Penetration Testing; Conducting FISMA audits;
• Management of programs and personnel;
• Working in complex research facilities;
• In-depth understanding of the cyber security environment.

TECHNICAL SKILLS

Compliance verification: FISMA, PCI, DCID 6/3, NISPOM

Encryption: PGP, IPSec and SSL technologies.

Cloud Implementations: ORION, RED DISK (ICITE Cloud), Constellation

Cloud Technologies: Hadoop, Zookeeper, Mapreduce, Storm, Hbase, Oozie, Hue, MongoDB, Cloudbase, Accumulo.

Security Tools: CobaltStrike, AppDetectivePRO, Webinspect, ACAS (DOD Security Center), Retina, Nessus, Nexpose, Metasploit (FW 2/3/4), CANVAS, SILICA, Nmap; Wireshark, Omnipeek, Airtight Wireless Intrusion Prevention System (WIPS), Snort, IDPS, Cisco VPN, OpenVPN, JuniperVPN.

Operating Systems: 15+ years of system engineering experience with SunOS, Solaris, Linux and Windows.

Networking: Checkpoint Firewall, IP-Tables, IPCop, Vyatta, TCP/IP protocol suite, NFS, NIS, NIS+, DNS, SAMBA, SMTP, SNMP, VSAT technologies, Motorola Canopy, WLAN.

Virtualization: VMWare ESX 3.5, 4.1, 5.0, Workstation, VSphere

Programming: Java, C, FORTRAN, Perl, csh, PL/SQL

PROFESSIONAL EXPERIENCE:

Confidential

Sr. Cyber Security Engineer

Responsibilities:

• Designed and deployed an advanced persistent threat (APT) attack against the customer to identify exploitable vulnerabilities in the infrastructure, culture and SOPs.
• Delivered recommendations to the customer regarding cybersecurity awareness training, configuration and deployment of the security stack components.
• Performed as Defend Team Lead (Vulnerabilities Manager) for CND operations at NOSC for DCMA
• Managed and supported the vulnerability management process for the Agency
• Conducted scheduled scans, migrated Retina scanners to ACAS (Nessus), developed new SOPs
• Reported on the vulnerabilities identified, remediated, and POA&Med
• Performed as Cyber Security SME on FEMA IT Resiliency Project
• Conducted interviews and performed analysis in order to create Business Cases for upcoming Agency projects
• Provided guidance on the over-all systems architecture, scalability, reliability, and performance.
• Responsible for analyzing the latest technologies and development trends, establishing and implementing standard practices as well as training and mentoring other engineers.
• Participated in root cause analysis in order to recommend product enhancements or other appropriate actions to improve productivity for both the business units and IT

Confidential

Chief Software Systems Engineer

Responsibilities:

• Provided systems and software development services for an enterprise intelligence system being deployed to a Hybrid Cloud.
• Provided guidance on the over-all systems architecture, scalability, reliability, and performance.
• Worked with engineering teams to design and optimize a wide variety of development projects using a variety of development tools and practices.
• Responsible for analyzing the latest technologies and development trends, establishing and implementing standard practices as well as training and mentoring other engineers.
• Lead cross integration priorities across Cloud Provisioning, Cloud Operations, and Cloud Broker Management
• Defined market requirements, use cases, and business justification
• Presented Cloud Management strategy at industry events, conferences, and forums
• Developed cross-portfolio roadmap
• Presented end-to-end technical demos of the Cloud Management portfolio

Confidential

Sr. Security Engineer Infrastructure/HCE Team Lead

Responsibilities:

• Responsible for deployment, testing and system integration on ORION project.
• In charge of deploying, configuring and securing Hadoop ecosystem (hadoop, mapreduce, zookeeper, hbase, oozie, hue), Kerberos and PKI infrastructure.
• Applied the agile methodology for managing multiple medium and short-term systems integration efforts while preparing for system accreditation and during the deployment of unclassified instances of ORION at customer sites.
• Responsible for day to day operations of Global Information Systems security and IT for the company; in charge of eleven (11) highly trained IT professionals CONUS and OCONUS including Iraq and Afghanistan.
• In charge of setting and meeting goals for IT staff and the oversight of over a $3M annual IT budget.
• In charge of interpreting Federal Guidelines and implementing security policies for the company.
• Plan and conduct INFOSEC training for all personnel.
• Personally conducted Information Assurance and C&A work for the company under NISPOM Ch.8, DCID 6/3; collect and process information from a variety of security tools which monitor security events across the enterprise.
• Oversaw technical and Information Systems security aspects of all new deployments for the company; make recommendations regarding security of the IT solutions deployed CONUS and OCONUS.
• Worked closely with Business Development, Proposals, Security, Field Operations, Logistics and Finance departments to ensure adherence to a committed schedule. Communicate any deviations from the schedule to the respective stakeholder and recommend mitigation strategy.
• Among large scale global projects lead by me are the following: deployment of a private cloud and migration of services to the cloud in an effort to address global availability of services; migration of global messaging service from Exchange 2003->2010 using virtual infrastructure; upgrade of IS infrastructure during transition of WPPS to WPS programs for the Department of State.

Confidential

Senior Security Engineering Consultant /Managing Partner

Responsibilities:

• SME in charge of technical and security staff and ICs
• Managed customer engagements, client relations, write proposals and reports.
• Made recommendations to the clients regarding security solutions, and work with the clients to deploy and integrate chosen solutions. I have configured and deployed Windows (2003, 2008) and Linux (RedHat, CentOS, Suse, OpenSuse) servers; performed server hardening, configured and deployed application servers such as IIS and Apache, MySQL, Postgres; deployed firewalls, switches, wireless bridges.
• Conducted FISMA (NIST SP800-53A), PCI, SAS-70 security assessments for federal agencies, non-profit, educational and financial institutions using Tenable Nessus, Retina, Metasploit, Nmap, SILICA, and other tools.
• Designed, wrote and deployed custom application to verify effectiveness of logical controls.

Confidential

Director of Engineering Services

Responsibilities:

• Managed 35 skilled engineers, and responsible for the ramp up of an off-shore (Shanghai, China) development center. Responsible for hiring, team building, training, setting and reaching teams’ objectives. Developed and implemented metrics necessary to measure the performance of the off-shore team.
• As part of the company’s leadership counsel worked on development of an overall plan for merger and acquisition (M&A) activities. Responsible for planning of engineering activities during initial assessment of technology, pre-signing and post-signing phases of M&A.
• Responsible for quality assurance, release engineering and sustaining engineering departments (totaling 35 people), setting and meeting objectives for all of the departments.
• Worked closely with the Senior Operations Staff, IT and Engineering to coordinate development, testing, and deployment of company’s product. Worked with stakeholders to mitigate deviations from committed schedule.
• Developed more suitable processes and procedures to address tactical needs to meet strategic goals.

Confidential

Senior Engineer and Director of Engineering Operations

Responsibilities:

• Planned, coordinated, and provisioned the oversight of releases. Managed personnel (18 people, 5 team leads with respective teams) and budget of the Release Engineering and QA organizations.
• Developed and implemented QA processes and metrics, which helped to improve quality of deliverables. Ensured that the processes and metrics provided the insights necessary to improve the flow of product development and integration. Conducted bug review and after action review meetings.
• Coordinated QA sign-offs, conducted pre-release and release to market meetings. Participated in production of marketing requirements document, product requirement document, test requirement document and test plans.
• Worked closely with developers, project managers (PM), sales, on site deployment teams, technical publications department and other major stakeholders in an effort to prepare and coordinate product releases. Has communicated any deviations from the committed schedule to stakeholders and recommended mitigation strategy and contingency plans. In conjunction with the effected project managers worked on resolving scheduling and program conflicts to address various change requests.
• Defined the charter of operation for a build and release organization, its policies and procedures. The Release Engineering organization has been responsible for configuration management, compiling and maintenance of the source code (Perforce), as well as software releases to customers and partners. Escalated issue resolution and release evaluations. Worked to improve build process to provide reproducibility of builds and build tracking; worked with development teams to improve labeling process.
• Responsible for design, implementation and support of global IT services. In charge of the globally distributed team of senior IT professionals responsible for the following: Worldwide Helpdesk, Business Automation (Oracle Financials, Intranet), Systems Security, Network and Infrastructure, and 24x7 Data Center Operations.
• Responsible for budgeting, setting and meeting goals, and the overall management of IT services team.
• Implemented an “IT Operations Scorecard” to gather metrics on all aspects of the IT teams ensuring financial responsibilities, controlled growth, preventive maintenance, user satisfaction, etc.
• Major projects included: design and implementation of anti-virus solutions for globally distributed offices, design and implementation of security and disaster recovery procedures for the enterprise core systems, proposed and implemented internal webcasting solution for global broadcast of meetings and training.
• Supervised, scheduled and coordinated IT work during various large scale projects, upgrade of corporate mail system, roll-out of enterprise-wide Oracle 11i financial apps, merger and acquisition of other businesses, etc.
• Purchased, recommended and evaluated various hardware and software solutions.

Confidential

Systems Manager

Responsibilities:

• Responsible for code maintenance, application development and testing to insure real-time geophysical and navigation data acquisition, processing and QA of data during experiments aboard R/V Maurice Ewing.
• Performed computer application development using Perl, Java, C on Solaris platform.
• Worked as system administrator for the Office of Marine Affairs at LDEO of Confidential .
• Responsible for large relational database for seismology programs in the United States and abroad to support Joint Seismological Project with National Nuclear Center of Republic of Kazakhstan; assessment and purchasing of equipment for the project.
• Developed computer applications (C, csh, Perl) for seismic data processing, analysis and archiving.
• Conducted several field expeditions in the republic of Kazakhstan for project.
• In charge of managing logistics and operation of a large scale network in a foreign country.