Results driven Cyber/Network Security professional with over 10 years of progressive experience in Cyber Security, Network Security, Threat mitigation, Security design and Security solution implementation. Proven track record in strategic pro-active defensive capability design and implementation along with network performance improvement.
Networking/Systems: A+, MCP, CCENT, CCNA, CCNP
Security: Security +, CISSP ( 516952 ), GIAC-GPEN
Operating Systems : Windows Server, RHEL , CENTOS, Mac-OS
Internet Service Provider October 2015 to Current
Design Defensive Security Posture roadmap for Corporate Entities.
Design and implement best practice mitigation strategies for cyber threats to environment(s).
Created Threat Management process for all perimeter and core networking gear.
Implement corporate wide URL Filtering and SPAM mitigation.
Configure corporate SIEM to broaden enterprise visibility into potential threat propagation.
Developed internal process for pro-active scanning and threat intelligence feeds.
Migrated to industry leading next generation firewall platforms.
Reduce DDoS Time to mitigate via technical and procedural team improvements.
Migrate Corporate Load-Balancing ( 50+ prod sites) from Cisco ACE to F5-LTM.
Sr. Network Security Engineer June 2014 to October 2015Lennar Homes
Assess current security offerings to clients and present/design future offerings.
Manage internal Firewalls and IDS/IPS ( Checkpoint ) and improve upon existing rule sets.
Assessing SDN/NFV solutions for future SD-WAN routing/security CPE solutions.
Provide recommendations to Net-Eng for hardening edge and transit router configurations.
Develop log management system for faster TTR ( Looking at Splunk ).
Keep enterprise aware of all emerging threats and provide environment relevant guidance.
Reconfigured Arbor Networks DDoS solution to best practices.
Develop internal processes for mitigation and reporting to DDoS client.
Develop run-books for new internal SOC.
Provide guidance to clients on security/cyber related events and issues.
Develop additional security products for client offerings.
Assess current config on all critical systems to provide security best practice recommendations.
Perform vulnerability scans against web facing infrastructure and provide remediation.
Select products for future monetization in new Security Offering's and validate solution.
Sr. Network Engineer / Network Security June 2012 to June 2014Arise Virtual Solutions
Support, administer and maintain network switching and routing infrastructure ( Cat 4500's,
6500's, ASR's, 3750's, 3850's, 2600's and more ).
Support, administer and maintain VPN endpoint devices ( Juniper SA 6000's - 4 A/A Clusters).
Support, administer and maintain firewalls and ACLs, NAT pools and routing protocols ( Cisco ASA
5545's, Cisco FWSM- 25 virtual contexts, Palo Alto VM-100/VM-300, Palo Alto500, Palo Alto3050.
Support, administer and maintain Internet content filtering systems ( Websense - PA Internet
Content filtering ).
Support, administer and maintain network monitoring systems ( Solarwinds and open source).
Manage day-to-day relationships with data carriers and network equipment vendors.
Architect, implement and administer solutions that support and enhance business objectives.
Work as part of the Technical Operations team in support of business objectives, troubleshooting
issues and outages, program implementations and client requests.
Manage trouble ticket queue, adhering to ITIL change and incident management processes.
Lead on Load-Balancing migration from Cisco ACE's to F5 LTM's( 4200-V's )for all Enterprise farms.
Manage and configure enterprise to client connectivity via IPSec or Private Circuit.
Support, administer and maintain SSL-VPN concentrators (multi-site, Concentrators- Juniper SA).
Participate in external audits for PCI-DSS,SSAE-16 by providing supporting evidence
compliance as well as remediation if/when needed.
SOC Supervisor/Network Security Analyst January 2012 to June 2012Cipher Security
Leading initial team in charge of designing and managing a new Operations Center focused on
delivering security alerts, monitoring, and incident analysis to global Enterprise level clients
including but not limited to leading global financial institutions.
Designing and managing Company and customer SIEM solutions (Arcsight) for the Security
Operation Center in Miami - Custom Correlations, tuning as well as PCI specific baselining.
Build and provide guidance to the SOC on improvements to reports and correlation based on
client needs as defined by Security requirements and practices.
Providing guidance and suggestion on initial incident response for the customer on the event of
an alert or suspected security incident.
Managing escalation procedures with internal personnel and providing remediation guidance to
clients in the event of Security issues.
Providing guidance to create secure transmission methods between Company and Client.
Security Engineer October 2010 to January 2012Prolexic Technologies
Detect ,identify and mitigate malicious traffic patterns using Network Analysis tools.
Configure secure p2p BGP sessions for client traffic pass-through via BGP and GRE.
Configure and maintain IPS/IDS zones on Cisco ADM + AGM for client Network protection.
Monitor client Network presence as pushed upstream to our infrastructure ( BGP ).
Configured proxy based mitigation zones for inbound client web traffic protection.
Work with Sr Network Engineering team for optimal traffic shaping under volumetric attacks.
Perform day to day monitoring and mitigating duties relevant to SOC global presence/SLA.
Mentor new recruits in monitoring, mitigating and verification of Network Presence via BGP.
Consultant April 2010 to October 2010ShuaTEK
Varied technology builds from Network systems to infrastructure support and design
Network Engineer April 2007 to February 2010VENALI
Assisted in implementing VPN auth server, RADIUS, including RSA two-factor auth.
Managed all Switches and VLAN's in corporate office and Primary and Secondary DC's.
Configured and installed Enterprise Firewalls, VPN endpoints and RADIUS authentication.
Implemented WUG for operational visibility and uptime across all sites and PoP's.
Assisted in the infrastructure design for a new DC.
Assisted in the migration process of all inter-workings of proprietary processing systems.
Managed Routing between DC's and globally dispersed PoP's.
Evaluated security logs to respond to threats and keep configuration at best practice levels.
On call 24x7x365 for all Network related issues, maintenances and/or critical conference calls.
Network Operations Center Manager Tech Lead
Personally managed and monitored staff of 9 technicians in a 24/7 environment consisting of
200+ servers spread across 9 WAN points globally.
Implemented new policies and streamlined interdepartmental communications to bring
NOC's uptime from 97% to 99.99%.
Cross trained other staff in all NOC functions to allow redundancy.
Designed Sharepoint site to centralize all documentation for department.
Retrained NOC staff to achieve higher TTR , uptime and improve business support.
Led troubleshooting with Telecommunications Carriers to resolve issues affecting WAN points
Network Operations - Tier 3 Support.
Provide specialized technical maintenance and resolution of all critical Network issues.
Monitor all points of LAN/WAN environments via SNMP monitoring tools and troubleshoot.
Respond to and resolve all Tier 3 tickets within timely manner and interface with engineering.