SUMMARY:

• To obtain a position in IT management, IT Security and networking engineering where my background, education and experience will be utilized and challenged.
• My Professional Security Goal and Project Management experience
• Detect attackers’ reconnaissance activities in real time. Heighten the intelligence of Organization existing security infrastructure to find hidden patterns and relationships suggesting malicious activity to better business decisions about organization cyber risks and arms the business with an essential layer of business - relevant cyber protections plan that enhances the business existing security defenses.
• Under general direction, responsible for the acquisition, installation, maintenance and usage of the wide and local area network, Manages network performance and maintains network security, DLP Security, Ensures that security procedures are implemented and enforced, installs all network software, evaluates, develops and maintains telecommunications systems, troubleshoots network problems, establishes and implements network policies, procedures and standards and ensures their conformance with information systems and company’s objectives:
• IT Risk Management, IT Operations, or IT Audit Methodology strongly desired.
• Knowledge of ISO 27000 frameworks, BITS SIG, or COBIT/SOX IT control testing.
• Knowledge of security controls for the handling of Personally Identifiable Information (PII) data.
• Knowledge of regulations and security compliance requirements affecting financial institutions.
• Excellent organizational, written, presentation and verbal skills.
• Providing best practices and guidance on IT Infrastructure Controls Assessments
• Executing and evaluating infrastructure controls assessments and evidence for controls gaps and assisting with the documentation of any required remediation plans
• Driving the design and implementation of effective continuous testing and reporting processes and tools for infrastructure controls
• Proactive monitoring of internal and external-facing environment using specialized security applications
• Provide timely, comprehensive and accurate information to Incident Response Manager in both written and verbal communications
• Develop the requisite expertise, knowledge, and ability to perform independently through mentorship; mentor and share expertise with junior staff
• Driving the continuous improvement of the IT Infrastructure Controls Assessment process and documentation
• Monitors and responds to complex technical control facility hardware and software problems utilizing a variety of hardware and software testing tools and techniques. Provides primary interface with contractor support service groups or provides internal analysis and support to ensure proper escalation during outages or periods of degraded system performance. Provide network server support. DLP and NAC implementation and configuration, Cisco ACE Web Application Firewalls.
• Providing guidance and training for less experienced engineers.
• Implement, Configure, Maintain, Fine Tune & Troubleshoot Symantec Data Leak Prevention (DLP) Solution.
• Implement, Configure, Maintain, Fine Tune & Troubleshoot Network Access Control (NAC) Solution.
• Administrated of server technologies (HP blades, VMware, dedicated server hardware, cloud) Detected and mitigated of SQL injection attacks
• Detected and mitigated of DDOS attacks
• Detected and mitigated of malware attacks, Incident response and DR Disaster recovery expert,
• Cisco ISE, Source fire IDS, Bluecoat, ASA firewall
• F5, ICE, PCI and Cisco Security Malware Root kit Trojan Worms, Malware DLL Injection, Hooking
• Remote troubleshooting, Experience working with Forescout (Fore scout), Cisco ISE and SSL VPM experience
• System Administration, System Engineering, Linux/Unix administration to include:
• System troubleshooting, Checkpoint firewall, Barracuda Web Application Firewall, RSA /Symantec DLP, Cyber Ark PIM
• Cisco Nexus series switches and routers
• Public and private cloud architecture from Network & security perspective
• Understanding Splunk language (SPL)
• Experience with Amazon Web Services (AWS), ArcSight security analytics and log management
• QRADAR SIEM Rule Tuning, Custom Security Alert Creation, Custom Security Reports, Audit Support
• Log Parsing, Log Collection and Tuning
• Dashboard Creation, Updates, Fixes Remote Hands-On Support, Daily Reviews

TECHNICAL SKILLS:

Operating Systems: Windows 7, XP UNIX, Linux, Nokia IPSO, SPLAT NGX R65, R70,R71, R75, Provider 1, Check Point R75 SPLAT and Software blades technology.

Security Tools: NMAP, Wire shark, Nessus Secure Center, Snoop, Tcpdump, Proxy application. FireEye

Vulnerability Scanning Tools: Qualys, Trustwave (Cenzic Hailstorm), HP-Fortify, Splunk, RedSeal. Tripwire

Intrusion Detection Systems: MacAfee, Juniper, Air magnet, Checkpoint IPS/IDS, Weasel correlation tool, MacAfee Nitro IDS, Source Fire.

Firewalls: Checkpoint VPN-1/FW-R75 with Cluster/Secure XL, VPN, Watch guard Firewalls, Interlock Firewall, Cisco ASA and Cisco FWSM, Palo Alto, Juniper SRX Series.

DNS Servers: BSD and Linux based Internal and External Signature of Authority (SOA)

Load balancer: F5 Bigips LTM and GTM. LEM, FIM

Audit software and tools: Checkpoint Eventia Reporter, Tufin solutions for Revision control and Best practices, log logic, Manager.

Email Security Services: Message Labs, Cisco Iron Port, Anti-Virus, Anti-Spam, Image Control, Client Server.

Monitoring tools: Qualys, HP Open view, what s up Gold Service Exchange. Citrix Network Segmentation NSX

Software Applications: Virtualization Software, MS Office suites, MS Project, MS Front Page, MS Visio, SMS, Lotus Notes, Remedy, ETMS, Manager, SharePoint.

Protocols: TCP/IP, FTP, SNMP, SMTP, ICMP, RIP v2, OSPF, IKE, EIGRP, NAT/PAT, ACL,Forensic Encase, Encryption Tools, DDos Tools and DLP Tools

PROFESSIONAL EXPERIENCE:

Confidential

SYMANTEC DATA LOSS PREVENTION SECURITY ENGINEER II

Responsibilities:

• Deliver DLP implementation project including full PLM deliverables: requirements,
• Design, testing, pilot and global implementation
• Develop incident response workflow for DLP incidents as raised through DLP tool.
• Define policy/rules for the DLP solution and refine them as DLP strategy matures. Analyze reports from DLP tool and provide metrics to management.
• Document solutions and help documents as needed for future DLP Analysis team.
• Creation of DLP policy, Data at rest scanning
• Collaborate with other Information Security and IT team members to develop and implement innovative strategies for monitoring and preventing attacks.
• Develop appropriate metrics (key risk and performance indicators) to measure the monitoring program and related process.
• Develop/Monitor basic IDS/IPS rules to identify and/or prevent malicious activity.
• Develop and test new correlation content and use cases using SIEM filters, rules, data monitors, active lists, and session lists conduct research of emerging security threats.
• Propose additional components and techniques that could be used to proactively Detect and prevent malicious activity.
• Provide other services as a key member of the Cyber Security Operations Team:
• Security review and administration of changes to networks
• Manage various audits regulatory requirements System troubleshooting, Service management, checkpoint firewall
• RSA /Symantec DLP, Cyber Ark PIM
• QRADAR SIEM Rule Tuning, Custom Security Alert Creation, Custom Security Reports, Audit Support
• Log Parsing, Log Collection and Tuning
• Dashboard Creation, Updates, Fixes Remote Hands-On Support, Daily Reviews
• Respond to and, where appropriate, resolve, remediate or escalate reported security incidents
• Oversee the monitoring of system logs, SIEM tools and network traffic for unusual or suspicious activity. Interpret such activity and work with other IT functions on remediation Investigate and resolve security violations by providing postmortem analysis to illuminate the issues and possible solutions
• Maintain logging to SIEM solution, work with security and IT team to onboard data from key applications and servers and tune/adjust logging form event sources
• Collate security incident and event data to produce and publish exception and management reports

Confidential

Responsibilities:

• Oversee the monitoring of internal security control systems to ensure that security standards and appropriate information access levels are maintained
• Perform or assist with regular audits on end-user accounts, permissions and access rights for all critical systems.
• Design and manage Confidential processes.
• Maintain and implement role based administration program.

Confidential

Responsibilities:

• Participate in infrastructure projects to develop, plan, and implement specifications for network and distributed system security technologies in support of key information systems
• Primary role and oversight in the management of firewalls, intrusion detection systems, switches and routers
• Download and test new security software and/or technologies
• Support data encryption deployments, including key management
• Evaluate and recommend secure remote configurations
• Design, implement and maintain segmented secure network infrastructure

Confidential

Responsibilities:

• Implement or coordinate remediation required by audits, and document exceptions as necessary
• Perform system and application vulnerability testing
• Participate in enterprise testing and risk assessment activities
• Report unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation processes
• Build and maintain security dashboards, metrics and KPI’s based on business needs and requirements

Confidential

Responsibilities:

• Research threats and vulnerabilities and, where appropriate, take action to mitigate threats and remediate vulnerabilities
• Review, assess, and mitigate penetration tests and vulnerability assessments on information systems and infrastructure
• Monitor security vulnerability information from vendors and third parties
• Recommend, schedule and/or apply patches where appropriate and, at the direction of Management remove or otherwise mitigate known control weaknesses, such as unnecessary services or applications or redundant user accounts, as a means of hardening systems in accordance with security policies and standards
• Research, recommend, evaluate and implement information security solutions that identify and/or protect against potential threats, and respond to security violations.
• Perform threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities

Confidential

Responsibilities:

• Ensure network security diagrams are created and maintained.
• Support information security architectural requirements
• Develop and maintain documentation for security systems and procedures
• Participate in information security working groups
• Leverage industry best practices to create, maintain, and document security baselines and standards

Confidential

Responsibilities:

• Perform Confidential providing risk analysis of the following:
• Vulnerability scanners
• Security event logging & monitoring analyzers o Intrusion Detection/Prevention System (IDS/IPS) and firewall logs
• Performs system and network security audits
• Anti-virus products and central console

Confidential

Sr. Network Security Engineer

Responsibilities:

• Working with BIG-IP LTM, GTM, and Viprions
• Configuring advance load balancing algorithm
• GLB Resonate Unix/ Linux Environment
• Working knowledge SSL PKI
• Implementing routing protocols including BGP, EIGRP, OSPF, IP Multicast, MPLS
• Researching and recommend performance improvements for the customer’s IT network infrastructure environment
• Evaluating existing systems and/or user needs to analyze, design, recommend, and implement system changes
• Analyze and recommend appropriate network upgrades to support future requirements.
• Develop key life-cycle documents and diagrams as required to support new projects including Concepts of
• Operations, Analysis of Alternatives, requirements specifications, and design specifications
• Design/Configure Firewalls and Load Balancer as required
• Configure/Design remote wireless solutions
• Supporting Cisco Identity Services Engine - ISE
• Supporting Terminal Access Controller Access-Control System - TACACS
• TACACS+ and RADIUS Comparison
• QRADAR SIEM Rule Tuning, Custom Security Alert Creation, Custom Security Reports, Audit Support
• Log Parsing, Log Collection and Tuning
• Dashboard Creation, Updates, Fixes Remote Hands-On Support, Daily Reviews
• IDS/IPS New Generation Firewalls, Anti-virus, Event log analysis, Risk analysis for vulnerabilities, incidents and change requests, Data classification and encryption of data, Manage/perform security audits, Develop security awareness instructional material, Dhcp, Vlan, Firewall, Nat, Packet Tracing, Bgp, Load Balancers, Smtp, Dns, Vyatta Routers, Brocade Switches, Softlayer, Rhel 7, Windows Server 2012, python Programming, ArcSight security analytics and log management

Confidential, HERNDON, VA

Availability Services Engineer

Responsibilities:

• Managed Services provider, Disaster Recovery, Enterprise Cloud
• SOC Center Servers Implantation and service integration Engineering
• Data Centers and End user system analysis planning and deployment management
• Developing effective recovery infrastructure solutions.
• Proven ability to troubleshoot, resolve issues and develop knowledge resources to increase uptime and restoration of services. Cisco Firewalls lifecycle management - design, config, code upgrades, Rules management
• Troubleshoot firewall issues (setting up captures, syslog.)
• Network administrators write scripts and applications that access Active Directory Domain Services to automate common administrative tasks, such as adding users and groups, managing printers, and setting permissions for network resources
• DLP and NAC implementation and configuration
• Implement, Configure, Maintain, Fine Tune & Troubleshoot Data Leak Prevention (DLP) Solution.
• Implement, Configure, Maintain, Fine Tune & Troubleshoot Network Access Control (NAC) Solution
• Proven ability to develop scalable solutions based on hands-on experience and savvy ability to anticipate customer expansion needs and solve critical problems expediently and effectively during crisis situations.
• Served as the liaison between customers, sales personnel and operational staff to effectively communicate the needs of the customers according to agreed-upon configuration plans.
• Manage ghost cast deployment and equipment restoration from hot site to production site.
• Administrating Servers, Switches, Routers, Proxy, F5-BIG IP and Monitoring NOC/SOC Activities
• Supporting Cisco Identity Services Engine - ISE
• Supporting Terminal Access Controller Access-Control System - TACACS TACACS+ and RADIUS Comparison, Dhcp, Vlan, Firewall, Nat, Packet Tracing, Bgp, Load Balancers, Smtp, Dns, Vyatta Routers, Brocade Switches, Softlayer, Rhel 7, Windows Server 2012, python Programming

Confidential, ALEXANDRIA, VA

Network Security Engineer

Responsibilities:

• Lead engineer for datacenter relocation
• Lead engineer relocating multiple server rooms to a consolidated datacenter
• Applied various technologies to identify server and application dependencies
• Developed and executed move event criteria and communication plan throughout the lifecycle of the project
• Validated application test plans using various network tools reducing risk and minimizing end-user impact
• Worked with network team to identify potential impact of new IP addressing scheme as a result of the relocation. Application components were isolated via VLAN with new addressing and transaction performance
• Developed and implemented single-vendor and multi-vendor enterprise network management architectures using industry and vendor best practice methodologies
• Lead NSM teams responsible for design, implementation, administration, and management of enterprise system
• Interfaced with customer to define critical business applications
• Developed support documentation and conducted operations training for deployed solutions
• Designed and implemented a high-availability enterprise DNS and DHCP, and IP management solution for global telecommunications company
• Cisco ISE, Source fire IDS, Bluecoat, ASA firewall, F5, ICE, PCI and Cisco Security
• Support Palo Alto Firewall and Aruba Networks Technology Segment Infrastructure
• Support Cisco Firewall and Juniper Networks Technology Segment Infrastructure
• Integrated solution with corporate Active Directory implementation
• Developed and validated failover test plan and worked with global deployment team to implement solution and execute scheduled failover testing.
• Implementing and Configuring TCP/IP, DNS Architecture, Server Load Balancing, Routing, Switching, NOC /SOC Network Security, Web and Mobile Applications.
• Windows and UNIX Operating System Administration
• Implemented and configured Windows 2008 R2 Server
• Implemented and configured Windows 7 in large scale corporate environment
• Maintained Active Directory Administration,
• Built servers in VMware VSphere environment
• Administrated MS Exchange 2010
• Experience with F5 LTM/GTM expertise (v11.x )
• Maximo’s ticketing system, PeopleSoft Financials and PeopleSoft HR
• P 2 V and V 2 P Servers Protections Via Confidential Snap-Shot Backup and recovery
• Design, Implement and Configure LAN/MAN/WAN and Wireless Networking
• Install / Configure Cisco Switches, routers and Firewalls
• Install, configure, and manage Cisco firewalls (ASA 5500 series, PIX, FWSM).
• Experience with Cisco CSS or other load balancer technologies and F5 BIG IP
• Install / Configure Brocade Switches, Routers
• Setup, configure and manage all Brocade SAN switches
• Install / Configure Juniper Switches and Firewalls
• Install / Configure and Monitor Juniper Networks SSG Series ( SSG350M Appliance / SSG550M Appliance)
• Data Center DMZ design and implementation
• Configure and troubleshoot IDS/IPS, VPN, Content Filtering Solution, and Firewalls
• Install / Configure Wireless networking and Monitor AP’s Traffics
• Monitor and Mitigate Large-Scale Multi-Sites Networking Using CA Spectrum Management
• Design, configure and deploy Brocade Mobility RFS6000 wireless controller and access points.
• Knowledge of routing protocols, especially BGP (Border Gateway Protocol

Confidential, WASHINGTON, DC

Sr. Network Security Engineer

Responsibilities:

• Develop and implement enterprise network architectures using industry best practice methodologies
• Design, implementation, administration, and management of enterprise IT service management solution
• Support Palo Alto Firewall and Aruba Networks Technology Segment Infrastructure
• Support Cisco Firewall and Juniper Networks Technology Segment Infrastructure
• Cisco ACE Web Application Firewalls
• Configuring, deploying server load balancers and Configuring, deploying reverse proxies
• Configuring, deploying internal and external DNS services
• Support Palo Alto Networks and Aruba Networks Technology Segment Infrastructure
• Perform administration and preventative maintenance of all F5 Networks BIGIP LTM equipment deployment
• Administrating ISA Server and F5 BIG IP Proxy, http, https load balancing, Dhcp, Vlan, Firewall, Nat, Packet Tracing, Bgp, Load Balancers, Smtp, Dns, Vyatta Routers, Brocade Switches, Softlayer, Rhel 7, Windows Server 2012, python Programming, Administrate F5 BIG-IP LTM/GTM/APM Load balancer and security solution,Administrate Blue Coat ProxySG as Reverse Proxies, Cisco ISE, Source fire IDS, Bluecoat, ASA firewall, F5, ICE, PCI and Cisco Security, Cisco ASA: ACL's, Group Policies, AD Integration
• VPN: Cisco Any connect, SSL VPN, NAT, AAA
• Cisco Client: 802.1x, MAB. Profiling
• Guest Access, User Access
• Device Authentication: Certificate based authentication, Admin Node Maintenance
• OS updates and maintenance., Posturing
• Supporting Routing and Switch
• Manage Open Web Application Security Project (OWASP), ArcSight security analytics and log managementManage and Monitoring Security Information and Event Management (SIEM)
• Contributes to incident resolution by diagnosing and troubleshooting the incidents
• Understanding of how hardware design contributes to threat mitigation
• Detected and mitigated of SQL injection attacks
• Detected and mitigated of DDOS attacks
• Detected and mitigated of malware attacks
• Implemented Pro IPS System to diverse set of networked applications requiring application traffic management solutions, including HTTP, HTTPS, SSH, FTP, DNS, NTP, ANYCAST services
• DMZ Network infrastructure knowledge including topology, security policies, firewalls and the L2/L3 switch and router infrastructure is required.
• Data Center DMZ design and implementation
• Monitoring and Fore Scout Counteract is security control platform
• Use Spectrum Security to manage and monitor multi sites network traffics
• Use Aruba Software to manage and Monitor multi sites wireless networking
• Secure switches and Physical Ports using NOC Authentication Technology
• Build and support security related infrastructure systems Performance Engineering
• Conduct network application readiness assessments of new and existing enterprise applications
• Manage Open Web Application Security Project (OWASP)
• Security Information and Event Management (SIEM)
• Monitoring and Fore Scout Counteract is security control platform
• F5 BIG IP and Proxy, http, https load balancing
• Data Center DMZ design and implementation
• Symantec NAC Implementation and security project management
• Implementing Symantec access control management solution strategy
• Use Spectrum Security to manage and monitor multi sites network traffics
• Use Aruba Software to manage and Monitor multi sites wireless networking
• Secure switches and Physical Ports using NOC Authentication Technology
• Build and support security related infrastructure systems
• McAfee antivirus, spam, spyware protection, virus protection, virus removal and application security
• Analyses of NSESSUS Vulnerability Management Scanning
• Knowledge of ISO 27K, IT Controls, CobiT, and Sarbanes-Oxley
• Maintain and monitoring Web Defend firewall logs and application for vulnerabilities
• Configure Endpoint SEP12 (Symantec endpoint protection 12) Cisco Security Agent (CSA)
• Mitigating any vulnerabilities in the Web application firewall and set rules for each of the applications
• Administering user’s digital rights management of identified documents
• Experience with the security issues surrounding SOA and web services, and the ability to architect solutions
• Provide Cyber security and Information Assurance program support
• Develop, test, and operate firewalls, intrusion detection systems, enterprise anti-virus systems
• Safeguard networks against unauthorized infiltration, modification, destruction or disclosure
• Design, Implement and Monitor NOC (NETWORK OPERATION CENTER)
• Information Assurance Logs conversion to Management reporting and presentation
• Expert in DLP Data loss prevention and Disaster Recovery Plan
• Expert in Incident response Event Management
• Inspector: DOD Network and Organizational Inspection Program (OIP)
• Expert of Design and implement Robust Security Systems According to NIST, ISO-27001Expert DOD IA Certification and Accreditation Process (DIACAP)

Confidential, RESTON, VA

Sr. Soc/Noc Analyst/Engineer

Responsibilities:

• Responsible for sustaining managed service engineering support, design, and
• Designed and implemented proactive management solution that improved incident notification, isolation, and resolution times. NMS solution reduced SLA violations
• Providing a single portal for all operations tools improving the efficiency of the NOC
• Implemented a continual improvement process designed to mature the capabilities of the management solution based upon feedback from NOC Team Leaders.
• Developed reports reducing the NOC turn-over time between shifts by consolidating multiple data sets into a single format clearly defining the incident status
• Provided network support for other IT business initiatives, implementations and rollouts
• Manage the performance of Level 1 and Level 2 services & support to clients (internal and external) and ensure that service levels are achieved.
• Designing, deploying, maintaining complex wireless data networks for indoor and outdoor
• Support Palo Alto Networks and Aruba Networks Technology Segment Infrastructure
• Understanding of IEEE 802.11 standards including 802.11a, 802.11b, 802.11g, 802.11i and 802.11n
• Understanding of all wireless security practices and fundamentals covered in 802.11i
• Knowledge of and direct experience deploying and configuring Cisco Wireless LAN Controllers
• Designing and implementing a Cisco 802.11 a/b/g/n network infrastructure that support various 802.11 client
• Understanding of the Proxim wireless AP system configuration and architecture
• Performing an RF analysis which identifies RF sources of interference which can affect the performance
• Conducting wireless site surveys for Cisco 802.11 a/b/g/n Wi-Fi infrastructure deployments and direct experience resolving interference issues
• Monitor and Mitigate Large-Scale Multi-Sites Wireless Networking Using ARUBA Management