Summary: 15+ years as a solutions-oriented Network Administrator and IT Security Specialist with success directing a broad range of network and security initiatives to include, but not limited to Layer 2 & 3 VLAN Switching, VLAN Management, Router Management, Network VPN implementation, Vulnerability Assessments, Intrusion Detection and Firewall Management. Active TS/SCI Focused Network Systems Administrator bringing more than [Number] years of diversified network security expertise. Excels at identifying and solving technical issues. Proactive Network Administrator focused on cultivating positive and productive relationships both internally and externally. Excellent customer service, sales and product support abilities.
Excellent problem-solving abilities
Windows and Linux
CISCO router management
Remote access technology
IP Forwarding proficient
Excellent diagnostic skills
Cyber Security SpecialistMarch 2013 to Current Integrated Communication Solutions, Inc
Security Engineering and Business Integration Support- DHS NSD Division Review System Security plans (SSP's) and assess risk based on provided documentation and customer interviews Review weekly vulnerability scans from Nessus Security Center, Microsoft security baseline analyzer tool, and McAfee Foundstone Work with CND analyst and business components in successfully translating operational needs and business objectives into traceable projects and resource allocation Assist System Administrators with understanding and implementing DHS 4200, NIST Controls, and FISMA recommendations for pre and post system designs Provide System Architecture design support for DHS Einstein program utilizing DOD DODAF 2.0 system framework Document business workflows to identify operational gaps in supporting US-CERT's Cyber analyst Work with Cyber analyst to successfully introduce and fund visual analytics (widgets) to improve operational situational awareness Evaluate configurations and implementation of fire.
Coordinated with systems partners to finalize designs and confirm requirements.
Provided continued maintenance and development of bug fixes and patch sets for existing web applications.
Ensured network, system and data availability and integrity through preventative maintenance and upgrades.
Developed work-flow charts and diagrams to ensure production team compliance with client deadlines.
Recommended network security standards to management.
Monitored network performance and provided network performance statistical reports for both real-time and historical measurements.
Trained junior members of IT team regarding network security and troubleshooting of data circuits.
Advocated for end-users to perform testing and problem analysis for server, desktop and IT infrastructure work.
Managed firewall, network monitoring and server monitoring both on- and off-site.
Recommended architectural improvements, design solutions and integration solutions.
Security Operations LeadJune 2010 to February 2013 Integrated Communication Solutions, Inc DTS-PO
Conduct Security requirements and traceability assessment detailing system strengths and weaknesses to allow the ISSM to accreditation worthiness.
Prepare Security Assessment Summary Reports Design Sourcefire network IDS solution for integration into operational environment Test and implement Juniper IDS module within SSG's firewalls Successfully design and Implement Tripwire Enterprise host based security solution for 200 plus nodes resulting in efficient configuration management controls Design and Implement Tenable's, Nessus Security Center and Passive vulnerability scanners.
Developed simple dashboards for easy understanding for senior management Responsible for providing monthly vulnerability compliance reports detailing vulnerable systems, time-to-remediation, and outstanding issues to the Patch Management Board Perform device hardening checks using various tools/scripts from DISA, NIST, and NSA Audit CISCO Layer 2 and 3 devices to include ASA 5500 appliances for security compliance and.
IT SpecialistJanuary 2010 to June 2010 IAP World Wide Services, Inc
Iraq Support and troubleshoot customer issues related to IAP Desktop, Laptops and Servers Install, troubleshoot and repair MWR communication devices Responsible for work order completion and adherence to quality control standards Diagnose layer 2/3 LAN issues.
Create VLAN'S, assign devices to ports, troubleshoot issues related to port security Configure Customer laptops with VPN client to access external locations Perform security audits on desktops ensuring computing devices had appropriate Anti-Virus, Firewall, and host based encryption services Support wireless LAN connectivity for user in living quarters Install and troubleshoot CAT 5 & 6 wiring issues Support MS Office Applications Word, Excel, and Powerpoint.
Sr. Network EngineerMay 2006 to January 2010 Access Systems Inc, FBI Network Integration
Engineer placement and configuration of CISCO FWSM and ASA appliances across unclassified network.
Configure and Manage Access Control List on all egress/ingress Internet gateway firewalls Interface with Systems Owners and Program Managers to determine security requirements for access through site firewalls Work with external customers like DOJ and DHS to accommodate business requirements across network boundaries to include VPN, Routing, and Firewall devices Configure and integrate CISCO IDSM and McAfee IPS solutions to monitor network activity Research security threats and apply appropriate mitigation strategies on Firewalls and IPS systems Work with Incident Response teams from FBI and DOJ Security Division's to deal with internal and external security infractions Provide network and systems support to Local Field Offices and Remote sites Deploy and configure CISCO 6500, 7200, 4500, and 3750 switches across enterprise Configure GRE, and IPSec tunnels for site-to-site communication Assist sit.
Security SpecialistApril 2006 to May 2007 Intelligent Decisions
Engineer placement of Intrusion Detection and Vulnerability Assessment devices in support of agency objectives Build and deploy McAfee Network Intrusion Detection, Vulnerability, and Host-based Intrusion Audit and report on site SSM deficiencies Assesses security architectures to include hardware and software limitations Monitor and research Internet threats Review perimeter Access Control List (ACL) to ensure successful device and application communication Support Forensic teams by deploying packet capturing devices Work with CISCO IDS blades and appliances Develop procedural documentation for management of McAfee Security equipment Conduct vulnerability assessments on security devices.
Network Security EngineerMay 2000 to March 2006 SMS Data Product Services, Inc
supporting Navy's Bureau Of Medicine and Surgery providing Network and security operations support Configured VLAN and QoS services on CISCO Catalyst 6505 and 6509 switches Implemented LAN segmentation design for sensitive data using VLAN'S and DMZ's Implemented patch management solution using Shavlik, NetlQ, and DISA GOLD Disk.
Implemented host based IDS solution called OKENA for public web servers and devices deemed critical by management.
Provided Exchange 5.5 administration and managed Trend-MICRO SMTP Gateway Implemented CISCO Works to manage configuration changes between administrators.
Implemented remote access solution using CISCO 3000 VPN devices and Juniper SSL Worked with SPAWAR Charleston and NAVCIRT to establish Incident response procedures for OCONUS Navy Hospitals and Clinics Configure Site to Site VPN connections on PIX 525 firewalls and 7200 routers Apply and remove router and Firewall Access Control List Tracking D.
Strayer University Rutgers University1996Camden, Washington D.C. N.J. B.S: Computer Information Systems
1987Cisco Certified Network Associate Certification (C.C.N.A 2.0) CISSP (expired) in process of re-certifying SANS Intrusion Detection GIAC Certified Silver/ Incident Handling and Hacking CISCO PIX Specialist/IDS Specialist Netscreen VPN/Firewall Administration Professional Hacking: (Certified Ethical Hacking-CEH) Computer Forensics Boot Camp (Certified Computer Examiner Certification-CCE) AccessData, Forensic Fundamentals CISCO CCNP (expired) :