Senior Consultant resume example

• I was responsible for building the information security program and the strategic plan for security. I was in a unique position of being a technical contributor as well as a security leader for the bank.
• Managed organization's security posture by monitoring networks for potential threats, including cyber espionage, malware and internal sabotage.
• Analyzed system risk to identify and implement appropriate security countermeasures.
• Audited networks and security systems to identify vulnerabilities.
• Analyzed security procedure violations and developed plans to prevent recurrence.
• Designed, implemented and maintained security systems and controls.
• Designed and implemented plans to secure computer files against breach, destruction or accidental modification.
• Built firewalls and encrypted data to secure confidential information.
• Researched and designed advanced computer forensic tools.
• Performed annual risk assessment and FFIEC CAT assessment and reported results to the board.
• Work with Fed auditors during the annual audits.
• Worked with 3rd party auditors and penetration testing firms.

• Managing the network security from the endpoint, perimeter, DMZ, and shadow IT services. I also perform forensic investigations, reverse engineering malware, security planning, and end user training.
• Incident response and investigation - This includes threat isolation and performing forensics to determine the source and cause of the infection/intrusion, and determining what data was compromised or leaked if any.
• Network troubleshooting - switches, routing, DDOS mitigation, and encryption.
• Administration of Check Point firewalls and Check Point Endpoint Protection.
• Administration of Rapid 7 Insight IDR and Nexpose.

Network and infrastructure security
• Vulnerability scanning with Nessus, Nexpose and Metasploit
• Penetration testing to ensure patches and fixes secure the vulnerability
• Patch and update management
• Log analysis with HIDS and NIDS using Snort and OSSEC
• Making sure web servers and web site are PCI compliant
• Firewall and VPN configuration and support
• PKI and authentication
• RADIUS and wireless authentication support
• End user education and security awareness training
• Data encryption and decryption
• Network switching and routing

Managing the hardware and infrastructure team who provide end user support, workstation break fix and server configuration tasks.
• Workflow
• Support ticket priority
• End user satisfaction and SLA’s
• Root cause determination
• QC verification
• Ensuring issues are tracked and fixes are documented
• Recurring issue trending and elimination

System and Server Administration –Including everyday tasks, troubleshooting and configuration.
• IBM AIX 5.3
• Windows Server 200x
• Linux (includes Red Hat, CentOS, Fedora, and Ubuntu)
• Windows XP through Windows 8 / Mac OS X
• Email server configuration and support
• Google Apps support
• Network services support

Change Management
• Ensure change impact is properly assessed
• Ensure changes are scheduled to minimize impact
• Ensure changes can be rolled back if needed
• Ensure changes are relayed to the company and expectations are managed
• Document and track all changes in the event future related issues occur

Business Continuity and Disaster Planning
• Ensure back ups are available and functional
• Ensure servers have fail-overs and test quarterly
• Assess and maintain redundant power in NOC
• Offsite backup storage and management
• Maintain on call rotation
• Assess and maintain recovery time objectives and recovery point objectives