Information Security Engineer III – High 5 Games
Jan 2018 – Present
Maintain and/or enhance security posture of endpoints, mobile devices, servers and other network devices using various tools and methodologies. Collaborate with the Infrastructure team to identify potential security weaknesses; suggest possible mitigation techniques and implement accordingly. Assist Manager of Network Security and Risk Management Officer with various regulatory compliance and risk management tasks. Assist Manager of Network Security and Human Resources Department with ongoing security awareness training. Create and administer monthly phishing campaigns and provide results to upper management. Assist Manager of Network Security with planning of future security enhancements. Review and adjust Active Directory security groups to meet the principle of least privilege. Daily review of security logs, reports, and alerts; respond and remediate as necessary. Add/adjust PaloAlto PA-3050 firewall polices, objects, etc. to accommodate business objectives. Maintain SSL certificates/keys using Managed Engine Key Manager Plus. Create new reports in Integrity/Pratum SIEM for Security, IT and DevOps departments. Setup secure remote desktop capabilities in Pulse Connect Secure for users to work from home. Create and adjust user roles, policies, profiles, and VPN settings in Pulse Connect Secure. Add and maintain user access to FTP server. Vulnerability scanning using Rapid7 Nexpose and Trustwave Trustkeeper. Manage users’ BYOD devices using Sophos Mobile control. Administer and maintain Sophos email appliance. Rapid7 InsightIDR (SIEM) deployment and configuration.
Network Security Specialist – High 5 Games
June 2016 – Dec 2017
Maintain and/or enhance security posture of endpoints, mobile devices, servers and other network devices using various tools and methodologies. Collaborate with the Infrastructure team to identify potential security weaknesses; suggest possible mitigation techniques and implement accordingly.
Network Security Engineer – Axelacare
May 2015 – June 2016
Developed and implemented the company’s computer security incident response plan based on NIST standards (SP 800-61, SP 800-66) to meet HIPAA compliance guidelines. Conduct monthly health checking of all Company network infrastructure and systems to ensure compliance with the company’s security policy and contractual obligations and document results. Setup and configured Solarwinds LEM (SIEM) product to monitor logs from various servers and to alert on security incidents. Own the immediate containment and investigation of any security incidents to the company’s network devices, systems, storage and company/customer proprietary information. Work with third party managed security services vendor on resolving any security incidents. Add IP addresses and URLs to the blocked list in Barracuda web filter when necessary. Setup and configured Solarwinds Orion product to monitor health and connectivity of enterprise devices. Run vulnerability scans using OpenVAS installed on Kali Linux virtual machine against internal networks and provide results to management and other IT members. Serve as primary point of contact for external third party security audits. Created network diagrams of the MPLS connectivity between sites and equipment rack diagrams in both the data center and corporate computer room.
Security Engineer – Foresite (Managed Services)
April 2014 – May 2015
Lead, guide, and train junior Security Analysts on company and industry best practices. Lead incident response calls and interface with customer during incidents. Collect, consolidate, & communicate weekly activity reports and performance metrics to VP of Security Operations. Provide remote security device management and support. Implement access control and security policy per requests. Support monitoring real-time event data, keeping abreast of intelligence from the IT security community and government/law-enforcement, or other industry sources. Implement change requests and provide 3rd level troubleshooting support. Analyze security event data from various computing platforms, network elements, and security devices. Perform system/network inventory, configuration management, operational ticket submission, request tracking, and problem resolution. Active system tuning for short term rules (i.e. temporary suppression) and approval of new rule logic for implementation. Design and document new MSSP client deliverables for onboarding. Develop, document, and maintain operational processes and training documentation.
MSS Security Analyst – Fishnet Security
June 2013 – March 2014
Provide security monitoring, event analysis and countermeasure proposals in Information Technology Security on behalf of clients to reduce the impact of security incidents and system compromises. Analyze and respond to security threats and configuration issues from Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Network Access Control (NAC) and other client data sources. Perform network troubleshooting to isolate and diagnose common network problems. Train new Security Analysts on the use of LogRhythm SIEM and how to differentiate between real and false security threats. Provide guidance to new Security Analysts on researching security threats and the proper way to report those threats to the clients.
Systems/Network Administrator – Jack Henry & Associates
July 2010 – Jan 2013
Responsible for network/system monitoring, modifying and maintaining systems for acceptable availability, stability and response time to customers. Systems include, but are not limited to, data center, network, operating system, product development, mail server, applications server and groupware. Implement system enhancements to improve the performance and reliability of the system. Troubleshoot and resolve customer and internally-reported system problems received from the internal ticketing system. Document and implement system procedures, policies and events. Perform essential functions required for effective system backup, including management of onsite/offsite backup tapes, using CA ARCserve software and IBM TS3310 tape library. Configuration of existing and new monitors within DeepMetrix ipMonitor 6.1. Use F5 Big-IP configuration utility to manage the network between data centers. Manage the DNS zones and zone files using the ZoneRunner utility within F5 Big-IP. Exposure to IIS 6.0 and IIS 7.0 website administration. Exposure to CiscoView device manager and Cisco Application Networking Manager to manage server availability at corresponding data centers. Managed the new installation of Cisco Application Networking Manager virtual appliance to replace the old system running on a RedHat machine. This included taking the backup of the current device database and restoring it on the new virtual appliance. Connected to VMware vCenter Server using VMware vCenter Client to manage, modify, and launch virtual machines. Use SQL Server Management Studio to run queries in both SQL Server 2008 and SQL Server 2005. Create reports using Microsoft Excel and data pulled from the SQL database. Assist other groups with file management using FTP and within AIX 5 (file upload, file permissions and file ownership).
Network Administrator – CTSS, Inc
March ‘08 – July 2010
Lead, counsel, and train less experienced technical staff on company best practices. Collect & communicate weekly activity reports and performance metrics to company owner. Responsible for the hardware, software, networks and security of CTSS clients’ Information Technology infrastructure. The main clients included: Headache and Pain Center, Doctors Specialty Hospital, Weight Loss Surgical Center, and Nemechek Health Renewal. Services include but not limited to the administration of Microsoft Windows servers, Microsoft Exchange (2003/2007), Active Directory domains, CyBlock Filtering Proxy Server, Syspine IP phone system, and 3Com NBX V5000 IP phone system. Configuration, installation, and troubleshooting of Dell switches. Troubleshooting of existing and installation of new voice cabling, including 66 and 110 punch blocks and corresponding cross-connects. Configuration and maintenance of network security appliances (SonicWall Firewalls, Symantec Endpoint Security, and Symantec Mail Security for Microsoft Exchange). Performing routine audits of Windows 2000 through 2008 Servers and 3rd party medical practice, back office software. Configuration and maintenance of Microsoft Windows servers, desktops and peripherals. Maintain proper security access control for file and print shares. Maintain proper access to various components within GE Centricity® practice management software. General administration of Healthland Physician Practice Management system installed on IBM AIX Unix server including but not limited to setting up new users, password resets, and monitoring print queues. Monitor and maintain daily backup tapes using Veritas Backup Exec. Worked with third party audit company to review and certify procedures to maintain compliance with necessary HIPPA guidelines and regulations. Deployment of software patches/upgrades and configuration changes. Effective oral and written communication with management providing expert advice IT topics.
Production Support Technical Analyst – Federal Reserve Bank
Feb ‘06 – April ‘07
Provide support to all Federal Reserve System check-processing sites to resolve complex problems associated with all aspects of check processing in a time-critical, deadline-driven environment. Proactively monitor systems using various software tools for early problem detection and ensure processing remains on schedule for each of the 32 offices nationwide. Perform process improvement initiatives that affect the standard check environment, as well as develop and maintain departmental procedures and standards. Provide a calming influence on others in a crisis situation.
Network Administrator – IntelliMark
Oct ‘98 – Oct ‘99
Maintained the local Novell 4.11 network. Supported and managed 30 regional Windows 98 workstations. Supported and resolved LAN/WAN connectivity issues. Configured and managed all workstations to access the corporate mail server as well as Internet connectivity for 30 regional employees. Implemented and ported Novell password and login script with corporate NT network. Documented network diagram consisting of username, passwords, IP address and network port locations. Scheduled and maintained local backups and restore of files from ArcServe 6.1
Network Implementation Specialist – Shared Medical Systems Corp
Jan ‘98 – Oct ‘98
Data network responsibilities included maintaining fractional T1 connection to a full T1 connection within the various central region hospitals. Installed, supported and administered Cisco router 2500 series and CSU/DSU’s for AT&T Frame network. Supported and resolved LAN/WAN connectivity issues. Installed and managed Compaq NT servers. Designed and maintained DHCP and static IP addressing scheme. Created login script security to access user folders within NT servers. Support, managed and maintained NT Workstations at the client level. Supported and managed Microsoft SNA client for connectivity to corporate mainframe.
Network Analyst – Sprint PCS
Dec ‘96 – Jan ‘98
Voice network responsibility including managing the monthly Sprint long distance and LEC charges based upon contractual agreements. Maintained and supported voice traffic within the inter-exchange carriers, local providers and alternate access providers secure network. Supported and managed four call centers by providing Windows NT workstation client support, Clarify and Remedy trouble ticket software support. Third level support regarding network connectivity issues that fail to meet service level agreement. Monitored call traffic volume for customers not to exceed hold/wait time.
Network Technician – MultiService Corporation
Jan ‘96 – Dec ‘96
Provided end-user support on Novell, NT, UNIX, and Mac networks for network and hardware issues. Supported and resolved LAN/WAN connectivity issues for 250+ users. Administered and maintained NT RAID 5. Created, routed, and terminated voice and data cables during Moves, Adds and Changes. Managed availability within the Mitel phone system. Established new user accounts on Mitel and Fijitsu phone switches. Strengthened business relationships with vendors and managed the acquisition of hardware and software. Built and upgraded network servers and PCs for internal and client use. A member of the Mitel to Fujitsu conversion team. Set up and wired 250 extensions, installed additional trunks and extension cards as needed in Fujitsu phone system and configured to accommodate users.
Network Communication Support – Commerce Bank
Jan ‘95 – Jan ‘96
Provided end-user desktop support connectivity consisting of Balun connector and Ethernet cable connections from dumb terminals to mainframe within a Token Ring network environment. Supported and resolved LAN/WAN connectivity issues. Installed ATM connections within internal network. Routed voice and data cables from office locations to centralized wiring closets. Installed additional wiring and network ports to accommodate users’ network connectivity.