Summary


efax Executive Summary
14 years IT infrastructure and security design, implementation and project management. Excellent understanding of Compliance Regulations, especially PCI DSS and HIPAA and the measures required to comply and protect confidential data. Thorough analytical, organizational and problem solving skills
Excellent interpersonal, communication and leadership skills. Proven project management and technical information system skills. Strong security assessment, vulnerability and penetration testing skills


Employment

June, 2008 -  December, 2008
Work Experience Director

Direct report to CISO. Management of 2 direct reports Security Architecture Manager and IAM Manager and 6 indirect reports. Responsible for strategy, design and development of security architectures and the oversight of the day to day operations of the Identity and Access Management IAM group. SME for major PCI project by auditing various business units against the PCI Data Security Standard. Consultation with all business units for security needs on new and existing projects to aide with proper inclusion of security controls during the initial build of the projects. Laid off die to reduction in force because of economy.

October, 2006 -  April, 2008
Director

Direct report to CIO. Responsible for strategy, design, implementation and day to day operations of IT Security group. Ensured Confidentiality, Integrity and Security of all corporate information assets and customer data. Implemented and Completed a PCI Level 1 compliance project for an infrastructure of 1500 locations throughout North America from HQ to retail locations. Managed several security infrastructure roll-out projects, ISS IPS SiteProtector, ADS and Enterprise scanner, Imperva SecureSphere, Ingrian and RSA enVision. Work in a collaborative fashion with Corporate Risk Management, Internal Audit and the business unit's leadership. Preformed numerous vulnerability and penetration tests against Unix/Linux/Microsoft platforms. Left due to company acquisition by Enterprise Rent a Car and subsequent position elimination. Managed, upgraded and monitored the SiteProtector console on a daily basis.

November, 2005 -  October, 2006
Senior Security Consultant

Consultant to provide security and vulnerability assessments for regulatory compliance, like HIPAA and PCI. Perform Gap Analyses, PCI and HIPAA audits, Policies and Procedures for Fortune 100 companies. Completed penetration tests and required documentation for executive and engineer level reports.

August, 2004 -  November, 2005

Developed a Professional Services division of established Network Integrator and VAR to provide Networking and Security resources for medium to large corporations. Practice areas included penetration testing, internal security assessments, wireless assessments, web application assessments and assess, design and implement security programs. Most common open source and commercial products included Check Point, Cisco, ISS, SPI Dynamic s WebInspect, Nessus, nMap, Kismet, AirSnort, Snort, Adtran, etc. Provided pre-sales support for staff ; lab demonstrations, vendor product evaluation, internal and external vulnerability assessments ; Intrusion Detection System IDS design, implementation and training ; security policy review and creation ; security issue remediation ; project management. Technical PM for complete redesign and implementation of new network and security measures at Tuskegee University. Left due to Company re-focus away from Security Practice.

August, 2003 -  August, 2004
Senior Security Consultant

Primary duties included security vulnerability testing and penetration testing, the use of numerous open source and commercial tools, nMap, Nessus, WebInspect, PhoneSweeper, ISS Internet Scanner and metasploit. Designed and implemented networking and security solutions. Projects entailed Check Point, Cisco firewalls, routers and switches, ISS products, RSA solutions.

US Army Called to Active Duty Combat Zone tour in Bosnia

December, 2002 -  August, 2003

Assigned additional duties as Unit ISO

November, 2001 -  November, 2003
Security Team Lead

Responsible for the protection of Office Depots global information. Designed and deployed numerous security tools, like Check Point FW, ISS Internet Scanner, RealSecure IDS and SafeSuite Decisions. Augmented these tools with Open Source tools like Snort, AirSnort, NetStumbler, Nessus, Nmap, ACID, DEMARC and more. Performed scheduled and ad-hoc vulnerability scanning and penetration tests. Developed automated reporting, remediation and rescanning methods to eliminate security weaknesses. Assist with infrastructure design to ensure the global security posture is not compromised. Responsible for all perimeter protection, ie firewalls and appliances. Day to Day operations of Checkpoint 4.1 and NG, Provider-1 and The Nokia IPSO platforms. Provided forensic analysis of attacks and worked with law enforcement to apprehend and prosecute. Upon returning from Active Military duty, my job had been filled out of necessity and there wasn t a new position available for me.

June, 2000 -  November, 2001
Manager

Responsible for entire WAN domestic and international for a Fortune 100 equivalent company. Managed all security, EDI and some data center operations and projects. Platforms include Sun Solaris, Compaq Tru64, Linux various flavors, Windows NT, Cisco routers and switches ranging from 800 series to 7500 series routers and from 2900 series up to the 6500 series switches. Design and implement all routing and routed protocols, TCP/IP, IPX, SNA, OSPF, RIP, EIGRP, DLSW+ and STUN. Responsible for all security, Checkpoint Firewall-1 and VPN-1 running on NT, Solaris and Nokia platform and the entire ISS SafeSuite of products. Support Data Center operations which supports an Oracle ERP rollout to over 6000 users. Data Center consists of 5 enterprise level SUN machines, 40 Compaq Alpha machines and 36 Dell and Compaq NT servers. Maintain HP OpenView Network Node Manager NNM on Solaris and Cisco CWSI 2000 for entire WAN. Utilize various sniffer technologies to troubleshoot LAN and WAN segments. Left to pursue unique opportunity at Office Depot.

March, 1998 -  June, 2000
Networking and Security Practice Manager

March, 1996 -  March, 1998
Network Engineering Manager

March, 1995 -  March, 1996
Information Technology IT Systems Manager

September, 1993 -  March, 1995
Service Manager

Training

Certified Information Systems Security Professional CISSP
Visa PCI Certified QSA QDSP
GIAC Certified Forensic Analysis GCFA

Vendor Specific Education or Certifications
Aladdin eSafe Certified eSCE enVision Vendor Training
Check Point Certified Security Engineer CCSA or CCSE
Microsoft Certified Systems Engineer 4.0 MCSE
Imperva Web/Database Application Firewall
ISS Certified on all ISS Product Suites
RSA Authentication Manager or SecurID
SUN Competency 2000 Technical Certification , Ultra Enterprise 10000 UE10K
WebInspect WebApp Security Assessment and WebInspect attending DeVry University for completion of my Bachelors Degree in Technical Management
TS/BI/CNWDI Security Clearance granted in 1991 , reapproved in 2003
Vendor or Application Experience
Perimeter Protection and Security Solutions Check Point FW-1/VPN-1 3.x,4.x, NG , NGX , ISS full suite , Netscreen VPN and Firewalls , Snort NIDS , Tripwire HIDS , Imperva Application and Database Firewalls , Ingrian Database Encryption , RSA SecurID , McAfee Anti-Virus and ePO , Websense URL Filtering , enVision SIEM , SPI Dynamics now HP WebInspect
Routing/Switching Equipment Cisco IOS , Catalyst OS , Cisco PIX , 3Com routers firewalls and switches , Adtran CSU/DSU s
Operating Systems Windows/NT/2000/XP , Solaris , Linux RedHat and SuSE , NetWare 2345 .
Networking Token Ring , ISDN , T1/E1 , ATM , Frame Relay , Ethernet , xDSL , DNS , DHCP , VPN , SMTP/Sendmail , TCP/IP , IPX/SPX , Exchange , GroupWise , HP OpenView , CiscoWorks and RME