Authorization, Authentication, and Accounting Security Attack Pathologies Security Vulnerability Assessment Cloud Computing Security Defense in-depth Firewall, IDS/IPS, SIEM, DLP Malware Detection |
Network Access and Segmentation Transport Layer Security Wireless Security MS Windows, Unix/Linux, VMware Kali Linux, Nessus, Nmap, Wireshark CobiT, ISO 27K, SSAE 16, SOX, PCI Writing, Speaking, Presenting Problem Solving |
Work closely with customers providing technical and security leadership to help protect crown jewel (engineering) and credit card data from malicious attacks and unauthorized access, providing critical system assessments/audits, architecture security design/review, and security awareness training. Align and reinforce business continuity and corporate initiatives through development and compliance management of information security policies and standards in the areas of physical, account, data, corporate services, network and computer systems, applications services, systems services, change management, incident response, and data center security.
+Lead and performed assessments for Mergers and Acquisitions (M&A)
+Reduced PCI assessment Scope
+Lead PCI DSS v2.0, 3.0, and 3.2 compliance projects
+Lead security architecture design and assessment for the private Public Key Infrastructure (PKI)
Provided IT design, direction, audit, and day-to-day support of the global information security infrastructure, including: firewall management, Intrusion Prevention System (IPS), Data Loss Prevention (DLP), vulnerability management, Windows and Unix patch management, and corporate antivirus (AV)
Payment Card Industry (PCI) Internal Security Assessor (ISA)
Certified Information Systems Security Professional (CISSP)
GIAC Certified Firewall Analyst (GCFW), SANS
MCSE +I Windows NT 4.0
Black Hat Cloud Security (CCSK-Plus)
Black Hat Real World Pen Testing
RSA Conference - Full Conference with Security Courses
Companies Worked For:
Job Titles Held:
Advertisement
