Information Security Analyst
Hewlard-Packard, Herndon, VA
Jan 2009 – Dec 2011
Dept. of the Treasury, Federal Reserve Contract)
January 2009 to December 2011
Information Security responsibilities include Ad Hoc Security Scans, Monthly Enterprise-Wide Security Scans, Security Architecture Solution Reviews, Security Point of Contact for Projects, NIDS, HIDS administration and signatures updates, ArcSight Logger Log review, anomaly investigation, and results reporting, admin access review, password strength testing of all Unix and Windows passwords, liason for Audit request, remediation, and coordination, system patch management, annual system security plan review and updates, user recertification documentation compilation, conducting of internal audits, policy application and guidance, application vulnerability management, Security representative for change management, incident response and root cause analysis, InfoSec request facilitator, firewall rule review board, Security design and review for all projects, Remedy change request security review, Software Security Reviews, external application scanning, Security Awareness Training, Security compliance including CAP and Tripwire, ArcSight Connector event flow monitoring and customization, Disaster Recovery Assistance, In-depth database scanning, Key Management (documentation and configuration) assistance, Identity Management visibility and expertise,
Dept. of the Treasury,
Feb 2007 – Jan 2009
Network responsibilities providing subject matter expertise for Network technologies. Evaluate and implement new technologies, policies, and procedures for business network operations.
Perform security engineering tasks such as implementing firewall changes and establishing VPNs with partner companies, designing, configuring, testing, and maintaining network firewalls, routers and switches, network load balancers and network authentication servers in a highly available distributed global network.
Configure, support, and troubleshoot advanced firewall features, including high availability, OSPF, BGP, EIGRP, and static routing, RADIUS and TACACS+.
Contribute as a network SME to projects involving cross-functional technical teams and external partners. Create and maintain network documentation. Maintain knowledge of network security alerts and patches. Maintain up to date documentation and diagrams of network. Provides off-hours, on-call support on a rotation basis with others in the Network Engineering group
Lead Network Engineer
Arnold & Porter, LLP, Washington, DC
Jan 2000 – Feb 2007
January 2000 to February 2007
Responsibilities include the day to day administration and maintenance of network security systems and applications, threat/vulnerability assessments, security audits of applications, IDS analysis/monitoring and generating technical and executive reports. Responsibilities also included coordinating computer and network forensic investigation functions and responding to security incidents. Evaluating, testing and recommending network security products and services, represent the network security team in technical and functional workgroups as well as the change review board and business continuity and disaster recovery teams. Contributed to development and administration of network backup and recovery plan to maintain LAN/WAN network systems operation.
Experience with risk assessment, intrusion detection/prevention, data loss prevention, network access control, threat and vulnerability management, and identity and access management. Ability to analyze and reduce cyber threats and vulnerabilities using a multitude of techniques, tools and sources. Knowledge and understanding of network protocols such as TCP/IP, BGP, EIGRP, OSPF, HSRP, NTP, TACACS+, Radius, and RSA authentication. Technical proficiency with security related systems and applications, including Nessus, Snort, Arcsight, Wireshark, NMAP, tcpdump, and other various open-source tools.
Responsibilities also include the design, implementation, maintenance and monitoring of the Cisco AVVID Data/Voice Networks, Stonesoft and Cisco Pix Firewalls, Internet Bind DNS Servers, ensuring the operational integrity and high availability of the Enterprise WAN using MPLS technology, providing proactive Network management support and problem analysis for the Enterprise WAN and LAN using Network General's Infinistream. Providing configuration, implementation and problem analysis for Fully meshed VPN and Firewall Infrastructure and support for protocols and Applications including Cisco Call Manager, Cisco Unity, Cisco Wireless, Lotus Notes, Microsoft Exchange, Microsoft Active Directory, Microsoft SQL, PERL Scripting, IPX, AppleTalk, CA Unicenter, HP Openview, , Unix/Linux, LAN infrastructure wiring, Cisco Catalyst 3000, 4000, and 6000 series switches.
Develops and recommends strategies for Network growth, Security, and Enhancements by maximizing functionality of Network equipment such as Routers, Firewalls, and Switches. Assist system owners to develop and implement risk and threat mitigation strategies, develop computer security policies and procedures as related to industry best practices. Develop detailed network specifications and adheres to standards in support of new project scope work. Perform periodic scanning of network devices and advising administrators of vulnerable systems to ensure that systems are properly patched and protected.
Interface with vendors to ensure adequate delivery and maintenance of equipment and services. Perform network analysis and capacity planning and testing for organization's LAN/WAN environment. Created SOP's of processes and procedures for network operations.
SYTEL SYSTEMS & TELECOMMUNICATIONS, Bethesda, MD
Mar 1997 – Jan 2000
Provide on-site networking support for the Nuclear Regulatory Commission involving the engineering and administration of multiple wide and local area networks, which includes a 5000 node environment.
Perform support services which includes installation, configuration, administration, diagnosis, and testing of network hardware and software including ATM, Novell 3.1x, 4.1x, Windows 3.x, Windows 95, Windows NT, Arcserve 6, Storage Express, Corel Office Suite, Fluke Mod-Tapps, Token-Ring Ethernet, TCPIP, HP Jetadmin, and Groupwise Mail.
Provide lead support for Infrastructure Restack Operations Team. Investigate, diagnose, and resolve problems identified by customers and other staff. Test UPS systems, servers, hubs, and gateways on a structured periodic basis.
Develop and implement operating procedures for "Test Lan" of new software and hardware products. Compose documentation of all solutions to problems and post on internal database. Perform daily maintenace of backups and restoration of application and database servers.