Enthusiastic, detail oriented and organized Network-System professional with extensive experience in Network administration and support of large scale organizations. Able to implement forward thinking strategies by providing progressive yet cost effective solutions.

Expertise:

• Information Technology Compliance.
• IT Governance, Security, Identity & Access Management
• Information Systems Security Metrics
• Information Technology Risk Management
• Information Technology System Audits
• Information Security Tools & Techniques / Network & Systems Security
• Security of enterprise architectural components and associated management systems, including telecommunication networks, operating systems, database management systems, web servers, storage devices, etc.

Technical Skills:

Operating Systems

Win 2008/2003/2000/NT4.0/XP/ME/98/95, Novell 4.x, MS-DOS, UNIX, RACF

Security Software

AD, MS Exchange 2007, Hyena, Centrify, Symantic Enterprise Security Manager (ESM), Bindview, RSA SecurID, RSA Envision, IBM Proventia, Novell IDM, LDAP administrator, BMC BBSA, Trendmicro, Tripwire, Scriptlogic, Websense, IBM VSOC

Remote Access

Windows Terminal Server 2000/ 4.0, DameWare, RADIUS, CiscoVPN, LANDesk 8.0

Other Software

MS-Office 2010/07/03, Remedy, Heat, Peregrine Asset Center, ServiceNow, Lotus Notes, Ghost 8.0, Varonis

Projects:

Confidential, Branchville, NJ May 2012 Present

Senior Information Security Analyst

• Establish, maintain and monitor complete identity management, including authentication, access to systems and data, define specific access to network, files and database management systems. Systems include AD, RACF, Exchange 2007, Office Communicator, MCS Oracle,Cisco VPN.
• Deploy and maintain security monitoring tools including Tripwire, Scriptlogic, Websense, and IBM VSOC.
• Support audit activities sponsored by internal, retained, or external audit areas(SOX).
• Responsible for the collection and retention or documentation and execution of remediation plans as agreed to with the IT Management Team.
• Identify potential areas where existing data security policies and procedures require change.
• Maintain contact with vendors regarding security system updates and technical support of security products.
• Support security system upgrades and installations; assist with and coordinate installations and changes to automated operations.
• Develop ad-hoc reports for management regarding metrics/compliance.

Confidential,NJ Mar 2007 Apr 2012 Lead Information Security

• Project Lead for Data Privacy Project
• Develop a proof of concept for testing 3rd party software which includes Security and Access Management, Stale Data Retention, and Confidential Data (PII, SSN).
• Test and evaluate vendor tools in order to lock down unsecured data, clean up stale data, limiting future access by recertification.
• Coordinate between vendors, project team, and network team in order to implement Varonis software.
• Create a risk/issues log and a project run book with step-by-step documentation.
• Provide updates and modifications to project plan timeline.
• Open weekly changes with Change Control.
• Present weekly status reports to management regarding issues and progress.
• Run Varonis tool to clean up shares (open shares, stale data, PII data, individual ACLs, unresolved SIDs, etc.).
• Supply access reports to Business Owners in order for them to perform recertification tasks.
• Large scale administration of users and objects in Active Directory across multiple domains and forests (100,000+ users).
• Create and update Group policies.
• Perform server compliance audit for Windows/UNIX servers before moving into production using Symantec ESM, and BMC BBSA security tools.
• Install Symantec ESM and IBM Proventia software (manager & agents) on all servers.
• Deploy Centrify agent on Windows and UNIX/Linux/Solaris servers.
• EDMZ PAR vaulting for Windows/Solaris/Linux servers.
• Provide ad-hoc compliance report to upper management using Bindview.
• Run monthly Bindview recertification reports and send data to respective business units for remediation.
• Provide detailed security reports for IAD, PWC and SOX as and when required.
• Perform quarterly security review of privileged accounts (application ids, user ids, local admin ids).
• Manage RSA SecurID.
• Create and maintain user accounts using Novell Identity and Access Management software.
• Supply training documents and flowcharts for workflow processes.
• Provide Level 3 support for information security related issues.
• Migrate accounts from NT domains to Windows Server 2003 domain using ADMT.
• Remote server administration of domains using Server 2003/2008, LANDesk 8, and DameWare.
• Remote Access support for ATT VPN accounts using RADIUS.
• Participate in a rotating 24/7 on call support team.

Confidential,Florham Park, NJ Sept 2006 Dec 2006 Asset Management\\Auditor

• Create IT standards and protocols for hardware and software purchasing.
• Purchase hardware and office equipment using SAP and Peregrine Asset Center.
• Heavy phone communication involving vendors, clients, and managers.
• Handle financial transactions including paying invoices and managing budgets.
• Create audit reports for management pertaining to SOX recertification by providing proof of Good Practice protocols.

Confidential, Parsippany, NJ Sept 2005 Aug 2006 
IT Security Administration/Branch Office Technician

• Work with internal and external auditors on SOX audits compliance.
• Manage processes and act in the lead role for computer security incident response team. Perform and create procedures for system security audits, and vulnerability assessments.
• Provide technical training on risk assessment
• Manage security policies and procedures. Evaluate system conformance with security policies.
• Evaluate and develop tools for operating system, database management system, and network security testing as well as data analysis, incident tracking, and reporting.
• Install and configure Microsoft Windows 2000 & 2003 stand-alone servers.
• Setup the Local Users’ policies on the server. Install/Update the Microsoft patches.
• Check systems for vulnerabilities or unauthorized privileges. Provide integrity checks.
• Create distribution lists and group policies in ActiveDirectory.
• Create and manage the user accounts.
• WAN/LAN technical support for 80 Coldwell Banker/Burgdorff offices.
• Responsible for field refresh projects as well as assisting with Level 3 support duties.
• Use LANDesk 8 to remotely troubleshoot and configure desktops and servers.
• Install VPN connection for Branch Managers as well as configuring CISCO wireless routers for use in each office.
• Image desktops and laptops using Ghost 8.0.
• Present weekly reports to management regarding progress in various field projects.

Confidential,Secaucus, NJ June 2004 Aug 2005 Asset Management

• Develop a plan to expand the data center including buying and deploying of assets.
• Manageshipping and receiving of entire IT department using Peregrine Asset Center software.
• Excelled in customer relations in dealing with both vendors and project managers.
• Perform installation and racking of servers and provide logistical data center support.
• Assist in creating Email distribution lists using Active Directory.

Confidential, Bridgewater, NJ Dec 2003 May 2004 Asset Management/Desktop Support

• Responsible for configuring and supporting the LAN/WAN environment of 2000 computers consisting of Windows 2000 and Xp OS.
• Control security by creating users, groups, and access rights.
• Install and support local and network printers.
• Provide daily phone support for software issues.
• Image and configure new laptop and desktop workstations for users.
• Create an asset inventory of all used equipment from users as well as maintaining a damage assessment for all equipment.
• Oversee shipping and receiving of computer equipment for off site locations.

Education:

Bachelors Degree,Computer Technical Support Program