Objective: To attain position that utilizes my experience in PCI Compliance, Secure Applications Testing, and Security Architecture.

Confidential

PCI Compliance/Information Security Consultant

Responsible for the implementation of security controls to meet the new PCI DSS 1.2 by analyzing current technology infrastructure. The comprehensive analysis involves: Server Systems, Software Applications, Network Systems, Intrusion Detection and Prevention Appliances. Information Security duties include: Incident response, log analysis, incident correlation, security appliances tuning, and the preparation of processes and procedures.

Currently applying the following:

• PCI: Audit of information systems in accordance with Processing Card Industry standards.
• Compliance Tools: nCircle CCM
• Security Architecture: SABSA
• Compliance Standards: PCI, FISMA, DoD, and NSA
• Web Application Testing: Accunetix, Paros Proxy, IBM Rational Appscan, Metasploit Frameworks
• Vulnerability Assessment: Nessus, Nmap, nCircle IP360, IBM Proventia Enterprise Scanner.
• Operating Systems: Windows Server 2003, XP, and Linux
• Virtualization: VMWare Server, VMWare Desktop, VMWare Player, Microsoft Virtual PC, and Sun Virtual Box.
• Threat Modeling: Microsoft SDL Threat Modeling Tool
• Malware Analysis: Software signature identification and initial analysis compilation utilizing Microsoft DBG Tools, OllyDBG, and IDAPro.
• Incident Response: Respond to incidents documentation of actions and initial forensic analysis.
• Security Incident Event Management: LogLogic, MARS, and Symantec Endpoint Reporter, RSA EnVision, and ArcSight.
• Intrusion Detection/Prevention: Cisco IDS/IPS, Ethereal, Snort, and Log reviews.

ITT Federal Systems

Sr. Network Administrator/Sr. Systems Administrator:

Deployed with the United States Army to support ongoing information technology operations. These operations include daily management of network infrastructure for confidential and classified networks. Responsibilities include but not limited to: Daily monitoring of network and systems infrastructure, application of US Army Information Assurance Program. Development and training of both civilian and military personnel.

Key Technologies and Responsibilities:

• Full architectural design of secure communications networks utilizing Cisco Systems IPSEC IOS software.
• Compliance Standards: PCI, FISMA, DoD, NSA, and HIPPA
• Network Systems: Cisco 3750 LAN switches, Cisco 6500 platform, Cisco 7200 VXr systems, and General Dynamics Encryption Systems.
• Management and Operations of Symantec End Protection Servers, deployment of client software to desktop systems via remote installation, update of malware signatures, ant-virus operations, host integrity scanning and remediation.
• Implementation of Secure Access systems utilizing PKI Systems, Encryption Systems, and Secure Access.
• Security Tools: Retina, GFI LAN Guard, Websense, SMS, Wireshark, Log Collector, Flying Squirrel, and Symantec End Point.
• Incident response management and coordination with Department of Defense personnel to prevent further security incidents.
• Responsible for the architectural design and implementation of network wide management systems utilizing Solarwinds, Spectrum, SNMP, and RMON monitoring tools.
• Storage Area Network based on EMC CX 600 Systems
• Microsoft Server Systems: DNS, MS-Exchange 2003, Active Directory, SQL Server 2005, Microsoft MOM, Websense, SMS, and WSUS
• Analysis of Network Management and Security Management reports and logs to discover possible security vulnerabilities or potential systems integrity violations.
• Administration of SMS Servers to manage hardware and software inventory, software updates, program installations, and compliance.
• Content and Web Filtering: Web Sense and Bluecoat

Network Technician Team Leader

Position Responsibilities involved the day to day operations of data center consisting of 11 Windows 2000 Servers, 6 Windows 2003 Servers, 1 Exchange 2003 Server Pix Firewalls, and SQL 2003. Provided direct support to network systems to insure a 7 by 24 working environment in an emergency health care environment.

Directly responsible for the following:

• Implementation of intrusion detection systems based on SNORT and ISS Real Secure technologies utilizing Windows 2003 Server Platforms and Cisco PIX Firewalls.
• Administration of Microsoft SQL Server 2003 to implement data warehousing technologies. Responsible for daily maintenance plans, query analysis, performance improvement, and report creation.
• Implementation of Cognos Server Version 7 to gather and analyze data in a business intelligence model to comply with federal and state rules on HIPAA information.
• Upgrade of Windows Exchange Server 2000 to Exchange 2003 and integration of wireless services via RIM Blackberry Enterprise Servers to provide coverage to over two hundred square miles service area.
• Architecture of disaster recovery services utilizing internal and external backup strategies.
• Management and support of emergency medical services patient management software utilizing Medtronic platforms. The technology deployed in this system required mobile systems to operate in a Radio Frequency wireless environment.

Student

• Emergency Medical Technician and continued pre-professional studies towards business degree.
• Enrolled in training program for MCSE/MCDBA program utilizing the JTPA act after employment loss due to the events of September 11, 2001.
• Application Performance Consultant Project Lead

Independent Contractor

Applied Six Sigma DMAIC to support network performance analysis of software and network systems utilizing: OpNet ITGuru Concord Health Systems Trend Analysis NetScout nGenius Wan Probes Network General Sniffer.

• Architecture and deployment of performance analysis hardware, software, and supporting technologies network. Network was designed to provide application and network performance information.
• Construction of detailed network and application models utilizing OpNet's ACE profiler and network modeling software to identify negative performance impacts prior to deployment in production environments.
• Responsible for the performance analysis of data networks utilizing NetScout appliances to monitor bandwidth utilization in the Wide Area Networks.

Senior Optical Network Engineer

Services for this company were retained in order to provide a high level of quality testing for the deployment of advanced optical systems based on dense wave division multiplexing. As the Senior Optical Networks Engineer I was tasked with the creation of a full cycle plan that included the following: Test plan, technology evaluation, safety qualification, and cost of ownership, personnel training, implementation, operations and maintenance.

Key Technologies and Responsibilities:

• Project plan creation and submittal for verification and approval by client.
• Team selection, training, qualification, and certification in accordance with ITU-T and IEEE standards.
• Architectural design of the following: Data center HVAC plant, Fiber Optic for Single Mode and Multi-Mode cable plants which included the installation, testing and qualification in accordance with ITU-T standards.
• Site selection and approval process utilizing advanced technologies that simulated and considered climate and natural disasters to establish transmission sites.
• Full architecture design and technology implementation of voice, data, and video networks utilizing Cisco ONS 15454, Cisco GSR 12000, and Nortel Optera transport systems to integrate technologies that integrated all three technologies in a TCP/IP network with optical systems as the transport systems. Systems were deployed to utilize Metropolitan Area Networks technologies that consisted of Add Drop Multiplexers from Cisco with ONS 15454 DWDM access points with integrated Gigabit Ethernet modules, and SONET interfaces to provide long haul transports.
• Integration of Cisco VoIP technologies utilizing voice gateways to provide internal and external communications to clients. Integration was done via serial communications and integrated at client sites via Cisco 38xx series equipment supporting twenty four voice channels at a minimum.
• Preparation and implementation of test plan that involved the utilization of SmartBits test equipment, Optical Power Meters, Optical Spectrum Analyzers, and Protocol Analyzers to certify and qualify systems as operational by analyzing test results and comparing them to the ITU-T performance standards.
• Implementation of Cisco Voice technologies testing and deployment procedures for voice services.
• Responsible for customer interaction to prepare test plans and architectural schematics to integrate solutions and products in the MCI Advanced Intelligent Networks.
• Senior Test Engineer Specific Solution Contract Test and analysis of high capacity telecommunications circuits to predict capacity trends and plan for upgrades and installations of hardware and applications to improve performance to deliver high availability services for voice, data, and video.
• Preparation of full scale network and application models utilizing OpNet Simulation software to form a predictive and accurate architectural design for continued deployment. Data obtained from testing and analysis provide with the necessary information to construct the models that would assist in further deployments in the field.
• Design of high availability networks utilizing Nortel and Newbridge equipment.
• Performance analysis of high capacity circuits

Senior Network Consultant Project Leader

Implementation of metropolitan ATM area network based on Cisco ATM solutions to support large oncology provider. Integration of Video, Voice, and Data service delivery, coordination with service providers to implement connectivity at the wide area and metropolitan area network levels. Responsible for the security architecture of Health Care provider to comply with HIPPA regulations.

• Architecture of Wide Area and Metropolitan Area Network utilizing Cisco LS 1010 ATM switches connected via DS-3 ATM links with two Cisco 7513 routers in a redundant configuration utilizing HSRP.
• Implementation of RADIUS and TACACS security measures to supplement RSA Secure ID access controls
• Utilization of Chariot and OpNet's ACE software to analyze application performance.
• Network Security Monitoring
• Implementation of Cisco QoS controls to maximize utilization of ATM technologies in voice, video, and data services.
• Implementation of security controls to provide access to authorized personnel to privileged health information.
• Penetration Testing
• Software quality reviews
• Implementation of PKI and RSA Secure ID systems for safeguard of privileged information.