SUMMARY

• Enthusiastic Information Security Architect eager to contribute to team success through hard work, attention to detail and excellent organizational problem solving skills. Focused on assessing security requirements for IT systems and services, as well as to architect, implement and operationalize complex technical solutions.

AREAS OF EXPERTISE

• Operation and Information Security
• Security Architecture and Technologies
• Security regulations compliance
• IT security best practices
• Data Classification
• Data Loss Prevention
• Email Security
• IAM

PROFESSIONAL EXPERIENCE

Confidential

Information Security Architect

Responsibilities:

• Deployed Enterprise Comodo One Endpoint Security Solution (Containment, AV, IDS, IPS, Firewall) to replace inadequate legacy solution
• Deployed Titus Data Classification to Identify, classify, and secure sensitive data across platforms, devices, and in the cloud
• Deployed CyberArk Privilege Access Management Solution to achieve Least Privilege and reduce the risk credential theft for Workstations. Secure, rotate and manage privileged credentials to reduce risk. Monitor and record all privileged access activity and automated prevention and remediation of high - risk activities
• Deployed Zerofox Digital Risk Protection to remediate threats on social networks, deep/dark web, and external channels and to Protect company's brand from fraud, account hacking & reputational harm
• Deployed and configured Proofpoint Secure Email Gateway (SEG) to stop malware and non-malware threats, such as phishing and impersonation attacks. Control all of inbound and outbound email to detect and block threats. Including internal email security to help detect compromised accounts with Internal Mail Defense
• Deployed McAfee DLP suite: McAfee ePO, Mvision Cloud, DLP Discover, DLP Prevent, DLP Monitor, and DLP Endpoint to protect sensitive data and ensure compliance by protecting data on premises, in the cloud, and endpoints. Provide essential threat and anomaly detection through Mvision cloud to gain visibility into data, context, and user behavior across all cloud services, users, and devices. Take real-time action deep within cloud services to correct policy violations and stop security threats
• Deployed StealthBits SteathAudit, StealthDefend, StealthIntercept for reporting, governance, policy enforcement, threat detection & response, and cleanup & remediation of entitlements and stale data within Active Directory.
• KnowBe4 Training & Awareness
• Tanium Endpoint patch management
• Snow Software license management and mobile device management
• Rapid7 InsightVM and Insight AppSec provide visibility and provide proactive approach into vulnerabilities within IT environment and secure modern web applications.
• Darktrace User Behavior Analytics and Machine learning
• Okta SSO and User Life Cycle Management (Workday as a Master)
• Migration from On-premise Exchange to Office365
• Box deployment and migration of data.

Confidential

Lead Engineer

Responsibilities:

• Built and maintained Exchange environments for Standard, Dedicated, and Federal customers including Confidential 's corporate Exchange environment.
• Coordinated and performed maintenance windows for customers to provide latest Exchange, BES, Server updates with limited impact.
• Lead and Exchange Subject Matter Expert for my team. Provided root cause analysis and resolution for Exchange issues
• Migrated customer Exchange environments from Exchange 2007 to Exchange 2010 & 2013
• Performed small scale failover tests for customers to ensure integrity of service in case of primary site failure.
• Created and managed projects for Exchange / BES builds and ensuring builds were completed on time.
• Ensured customers servers were up to date with latest security patches to limit any vulnerability to their environment.
• Organized daily triage of customer change request to their environment and implemented changes daily to guarantee service satisfaction

Confidential

IT

Responsibilities:

• Lead administrator responsible for two separate LAN's (Unclassified and Secret) consisting of over 4,500 users, 40 servers, and 1300 workstations
• Responsible for network policy development and execution. This included ISA protocol bandwidth management, web filter restrictions, and router ACL development
• Responsible for backups on 40 servers and the transportation of backups to an offsite location to ensure data safety
• Exchange Subject Matter Expert. Resolving numerous Exchange issues and provided root cause analysis of problems
• Responsible for managing File Print Servers and NAS (Network Attached Storage)
• Managed Active Directory and DNS
• Maintained local intranet website
• SQL Administrator responsible for maintaining databases for NAVY educational program and DOD databases
• Administrated HPUX10 Servers, which included managing users and databases
• Provided baseline security analysis of all servers and workstations to ensure compliance with DOD Security policies and best practice and provided real time analysis and incident response to various computer threats
• Monitored network for unauthorized hardware and software, conducted inventories of PC's and peripheral equipment