Resume of Information Security Analyst

Title
Information Security Analyst

Primary Skills
Security Analysis, Incident Response, Systems Administration, Network Administration, Risk Analysis, Linux/Unix, Wintel.

Location
US-NJ-Madison

Posted
Jan-30-07

OBJECTIVE

I am an enthusiastic, highly-motivated information technology professional ready to apply over 15 years of experience and knowledge of information security, networking, and systems administration to a long-term, full time, permanent or contract opportunity.

SKILLS AND ABILITIES SUMMARY

Security-Relevant Skills:

Configuring, deploying, managing and monitoring intrusion detection and prevention systems such as ISS RealSecure, Sourcefire, Snort, and Toplayer, and firewalls such as Checkpoint, IPCop and Smoothwall. Extensive operational experience using Guarded/Micromuse NeuSECURE Security Information Manager (SIM). Performing vulnerability/penetration testing through use of security testing tools such as ISS SafeSuite, nmap and Nessus. Experience in conducting ethical hacking, data forensics and recovery, and use of protocol analyzers such as Ethereal/Wireshark and Network General Sniffer. Familiarity with security policy/procedure development and risk analysis with focus on HIPAA. Experience configuring and managing VPNs, PKI, Utimaco hard disk encryption, and secure protocols (SSH, SCP, SFTP, etc) based on both open-source and commercial packages.

Networking Skills:

Strong knowledge of TCP/IP and related applications (HTTP, SMTP, DNS, SNMP, etc.) Operational experience configuring Cisco routers, switches, load balancers and VPNs. Experience configuring WAN circuits and protocols (T1, xDSL, Frame Relay, etc.) Other experience configuring LANs (VLANs, QoS, spanning, etc) and wireless networks with emphasis on security. Additional experience configuring Nortel, HP, Ascend/Lucent, Efficient/Siemens, and Netopia networking products.

Systems Administration Skills:

Multiplatform experience installing and administering various Linux distributions (Red Hat, Gentoo, Debian, SuSE) with emphasis on implementing complete turnkey Linux-based email, web and file servers. Strong knowledge of UNIX, Solaris, xBSD, and Wintel workstation and server OSes (NT, 2000, 2003, XP.) Experience managing Microsoft Exchange, Active Directory, and related components. Experience in NOC and data center environments, including operations, infrastructure changes, and monitoring via HPOV, EMC Smarts, basic SNMP, and Cisco Network Registrar.

Expert knowledge building, maintaining and troubleshooting Intel-based PC workstations and servers. Additional platform experience with HP Alpha, SGI and Sun systems.

Familiarity with C, C++, Unix shell scripting, HTML, Perl, and PHP.

Strong technical writing skills. Fluent in Italian.

EMPLOYMENT HISTORY

Employer: Horizon Blue Cross Blue Shield of NJ
Title: Infrastructure Engineer
Location: Newark, NJ
Duration: 09/2006 - 12/2006
Type: 3-month Contract

Assisted in first phase implementation of SIM project; Prepared HP Linux servers and SAN devices for installation of ArcSight ESM; Revised and updated scripts to send existing event logs to the ESM; Installed and configured syslog servers to collect Cisco router and switch logs for ESM; Interfaced with asset owners and custodians to ensure assets correctly transferring data to ESM.

Employer: Ernst & Young LLP
Title: Information Security Analyst
Location: Lyndhurst, NJ
Duration: 01/2005 - 07/2006
Type: Direct Hire

Monitored a security response infrastructure of over 150 globally deployed Sourcefire IDS & TopLayer IPS security devices; Tracked and resolved global intranet security events and incidents via Remedy; Helped ensure compliance of corporate global security policies and procedures; Assisted in development and deployment of operational incident response processes and procedures; Managed and maintained the global IDS/IPS devices including Linux OS updates, software patches, and signature updates; Made operational infrastructure changes to Cisco routers, switches, load balancers, VPNs and DNS servers using ITIL change management standards; Interfaced with managed vendors (IDS, IPS, VoIP, WAN) to identify and resolve global LAN and WAN incidents; Four-time recipient of “Rewards and Recognitions” awards for providing excellent service and solutions.

Employer: Netspectations/3rdData LLC
Title: Managing Partner / Owner
Location: Boonton, NJ
Duration: 01/2004 - 01/2005
Type: Self-Employed

Contracted to perform complete corporate location move - including data and voice cabling, circuit migration, server moves, data center and network design - for a medical management client with over 100 employees and over 30 medical practices; Offered customized file, mail and web server solutions based on Red Hat and Debian Linux; Provided PC and server installation, troubleshooting, and repair services; Engaged in complete network design and installation, including cabling and wiring; Security consulting; Provided web, email hosting and co-location services based on Linux and Windows platforms.

Employer: Inter-Com, Inc.
Title: Systems Engineer
Location: West Caldwell, NJ
Duration: 01/2002 -12/2003
Type: Direct Hire

Established information security division responsible for designing, implementing and monitoring firewalls and intrusion detection systems, policies, procedures and HIPAA initiatives; Configured, deployed and maintained small-to-medium business servers, workstations and networks running Windows 2000/2003 Server and Linux; Provided on-site and telephone technical support to over 20 major clients.

Employer: Nortel Networks
Title: Pre-sales Engineer
Location: Parsippany, NJ
Duration: 09/2000 - 02/2001
Type: Direct Hire

Provided technical support to sales teams during product demos, client meetings, and trade shows; Assisted sales teams in designing customer networks and solutions; Conducted client training and certification seminars for products and solutions. Left due to major corporate layoffs resulting from telecom bust of 2000.

Employer: AT&T
Title: Information Security Analyst
Location: Florham Park, NJ
Duration: 03/1997 - 09/2000
Type: Direct Hire

Performed network and host vulnerability testing and analysis on a major US airline and within AT&T's own customer networks; Assisted in prototyping a security management and event correlation proof-of-concept system using COTS and open source software (Linux, Perl, Oracle, etc); Implemented and monitored ISS and NFR intrusion detection systems, Checkpoint firewalls, and Cisco routers; Acted as subject matter expert and team leader for AT&T Frame Relay risk assessment project. Designed secure network and host infrastructures using VPNs, firewalls, and PKI tools; Obtained training and experience in information security theory, frame relay networking, Unix security, and network management systems.

EDUCATION

Degree: Bachelor of Science / Computer Science
GPA: 3.76 / Magna Cum Laude
School: Fairleigh Dickinson University
Location: Madison, NJ
Completion Date: 09/2003

Degree: Associate of Applied Science / Computer Information Systems
GPA: 3.4 / Achievement Award in Networking
School: Raritan Valley Community College
Location: Branchburg, NJ
Completion Date: 05/1994

ACTIVITIES AND CERTIFICATIONS

Certified Information Security Systems Professional (CISSP) since December 2001 -- Certificate# 27438

Global Knowledge certificates in Unix Security, Network Security and Frame Relay.

Co-authored paper: Local Area Detection of Incoming War Dial Activity (from the Symposium on Reliable Distributed Systems, 1998, pp: 486-491.)

Certifications
CISSP - December 2001


You must be logged in and have a current resume access subscription. Login or Register »

View all resumes in US-NJ-Madison »
View all resumes in US-NJ »

View other Information Security Analyst resumes, System / Network Administrator resumes