SUMMARY

• Over 20 years of information technology experience (financial, pharmaceutical, transportation, and manufacturing) across multiple platforms for: private clients, small business, and Fortune 500 companies.
• Managed projects for business system implementations, control/process improvements, risk remediation and application onboarding.
• Forecasted and managed annual investment budgets (up to $5M). On - boarded staff and procured hardware and software resources.

TECHNICAL SKILLS

Security: McAfee, Symantec, Qualis, CA, CyberArk, GFI, Wireshark, Nessus, Baracuda, WebSense, Untangle Compliance NIST, ISO 270XX, COBIT5, Cyber security Framework, PCI-DSS, SOX, HIPPA Software/OS MS Office(Incl. Visio, Project, Exp. Web), Linux, Windows all versions, Servers, Active Directory, VMware, Veeam backup, Microsoft management tools-System center 2012, Windows Intune, SharePointNetworking LAN, WAN, TCP/IP, Protocols, Wireless, Firewalls, Proxy servers, Routers, Switches, Bridges, NAS, SAN.

PROFESSIONAL EXPERIENCE

Security Analyst Consultant

Confidential, Stamford CT

Responsibilities:

• Vulnerability management program evaluation, gap analysis, new solution architecture
• Infrastructure users entitlement review
• Audit support
• CDP/DLP implementation
• User entitlements management for SOX compliant applications.
• RBAC management for critical application portfolio.

Security Analyst Consultant

Confidential, New York NY

Responsibilities:

• Development and implementation of IT security policies, standards, procedures and guidelines.
• BCP annual review and test. Elaborate test scripts, prepare final report for internal audit
• Assisting CISO and IT Risk in periodical IT security operations evaluation.
• Gap analysis in preparation for Cybersecurity framework implementation
• Provided guidance for establishing a viable repetitive process of vendor attestation
• Gap analysis of the in house hosted data retention system.

Security Analyst Consultant

Confidential, New York NY

Responsibilities:

• Supporting Regulatory Affairs Department and document preparation for external IS auditing following organization’s GxP.
• Establishing a vulnerability assessment program
• SIEM solutions testing and recommendation for future deployment preparation
• Technical writing for IT SOP’s, Training, DR procedures
• Audit vendors and service providers and review SLA for outsourced services in: production sites and DR/BCP

IT Security PM and Consultant

Confidential, Brooklyn NY

Responsibilities:

• Site security specialist: Risk assessments/ Penetration testing /Vulnerability Management/ PCI compliance, critical updates, malware cleanup and prevention, backup, IDS/IPS recommendations and implementation.
• PCI-DSS compliance
• Local client security: User accounts password management, antivirus definitions updates, firewall logs/policies
• Managing various projects: BC/DRP, Storage media security, Tracking devices systems implementation (GPS, RFID, etc.), video monitoring archival and retrieval systems as per TSA compliance, nationwide data center relocation, end of life IT infrastructure management.
• Event technology consultancy, PM and coordinator nationwide and offshore, managing equipment relocation and setup, round of clock availability, confidentiality and integrity assurance.
• Nationwide large projects estimator and quoting, team builder, resource management and logistics.
• Access control methodologies and security policies development and implementation, audits and compliance. Users training sections, awareness meetings, documentation.
• Storage Media management lifecycle for major financial industry clients.

IT Security Specialist

Confidential, Moorestown, NJ

Responsibilities:

• BCP project manager - employing a highly redundancy and availability approach ahead of its times and industry standards.
• Physical security solutions- testing and implementation
• Energy independent uptime solution
• Custom transaction based infrastructure system ( application and hardware provider-the cloud ancestor)
• Total storage solution based on three tier architecture.
• 3 factor smart card authentication development
• Corporate business model development
• ISO 2700x certification process

System administrator

Confidential, Long Island City, NY

Responsibilities:

• Primary technical contact for critical issues; Duties included client support-hardware/software, network support, backup, upgrades, and disaster recovery.
• Setup/maintenance/ troubleshooting for printers, plotters, large format printers, industrial machinery. Security policy implementation for an open end design environment.
• Users support, e-mail, devices deployments ( workstations, laptops), sales teams technical support
• Users management, access credentials management, new employees setup,
• Technical support for conferences and events, new branch offices technology deployments needs.

Hardware technician

Confidential, New York, NY

Responsibilities:

• Started as a hardware assembler later rotated thru all the areas of a computer manufacturing facility.
• Responsible of hardware troubleshooting, upgrades, devices configuration, clients site service calls, systems installations, wiring, servers maintenance and backups.
• Large deployments for new setups or IT conference integrations