© 2002-2008 IT-Careernet.com Reproduction, retrieval, copying or transmission of the content of this site is not permitted without the publisher's prior consent. Last changed: 18 Nov 2008 Home SiteMap Terms & Privacy
-start of code- -end of code- &n
|
Professional Profiles |
IT-CAREERNET
.
|
Desired_Title: Information Security Professional - CISSP
Work_Experience: Over 10 years
Career_Level: Two year college degree
Current_State: WI
Country: USA
Job_Type: Full-time
Willing_to_relocate: Yes
Target_Locations: Idaho, Illinois, Tennessee
Salary_Range:
Date: Saturday, August 13, 2005
Time: 12:55 AM
I am a dependable and responsible information security professional who offers a proven track record of building and organizing information security initiatives, aligning these initiatives with business goals, and determining the appropriate levels of security needed for a company based on business need. I offer in-depth technical experience in network and host security, systems administration, administrative and technical control development, and business process analysis and auditing in large, multi-platform corporate environments.
Current Employer (2001 – Present) A leading Internet marketer with a large and established direct marketing catalog. A wholly owned subsidiary of a Fortune 50 corporation with over 6,000 employees worldwide. Technical Specialist, Security: Lead role responsible to the Information Security Manager for executing internal compliance audits, business risk analysis, design and administration of security infrastructure, incident response, and developing remediation requirements based on business goals and needs. * Designed and maintaining a high-security infrastructure for company’s world-class e-commerce sites, protecting more than $300 million in yearly revenue. * Protect business interests by providing consultation to project teams and ensuring that security is addressed in all project phases. * Conduct application, operating system, and network risk assessments. Design or recommend corrective and preventative controls based on data sensitivity and business requirements. * Developed a vulnerability classification and communication strategy. Responsible for the analysis of newly published vulnerabilities and for the verification of vulnerability remediation. * Implemented and maintaining a worldwide security infrastructure consisting of intrusion detection sensors, firewalls, vulnerability scanners, and network taps deployed on high traffic LAN and WAN links. * Responsible for maintenance of RACF on z/OS using Vanguard Administrator and Advisor. * Perform internal compliance audits; design and implement remediation controls for Sarbanes-Oxley, VISA International’s CISP, and Mastercard’s SDP (PCIDSS).
GE Medical Systems (1999 – 2001) Waukesha, Wisconsin Market leading provider of high-quality medical technology, services, and productivity solutions. A General Electric company with over 30,000 employees worldwide. Senior Security Technologist: Responsible to the Corporate Security Officer for the design and administration of GEMS' global network and host security infrastructure, incident response, and internal project security consulting. * Planned and executed security projects to create a sustainable, redundant, and secure high-speed, global Internet infrastructure for electronic commerce activities. * Designed, implemented, and maintained a global infrastructure of intrusion detection sensors and firewalls for a world-class data center and WAN spanning multiple states and seven countries. * Proposed, implemented and maintained a security infrastructure enabling the rapid connection of networks between GE and newly acquired companies using VPN and leased lines. Decreased median connection time from six weeks to two weeks resulting in a faster realization of acquisition ROI due to reduced integration lead-time. * Designed and implemented GEMS' site-to-site VPN infrastructure resulting in significantly reduced telecommunications costs. Administered SecurID deployment of over 8,000 tokens for remote employee access. * Perform penetration testing and vulnerability assessment of network and host systems. Create, and validate the implementation of, hardening plans for UNIX and Windows based systems.
Mercury Marine (1995 – 1999) Fond du Lac, Wisconsin Market leading manufacturer of consumer, commercial and government marine propulsion engines. A wholly owned division of Brunswick Corporation with over 5,000 employees worldwide. Senior Technologist: Responsible to the Infrastructure Technology Manager for network and host security, systems software development, and AIX administration in a large, multi-user environment.
Professional Certification ========================== * Certified Information Systems Security Professional (CISSP) * Six Sigma Quality Greenbelt, General Electric Medical Systems Professional Associations ========================== * Information Systems Security Association (ISSA) * Information Systems Audit and Control Association (ISACA)
Professional Skills ========================== * Network and host security design, firewalls, intrusion detection, authentication systems, VPN, Wireless LAN security, vulnerability testing and remediation management, technical control development. Host and network traffic forensics. * Administrative control creation, business process analysis, security awareness and education, security auditing, incident response. Auditing and remediation against VISA CISP (PCIDSS), Sarbanes-Oxley 404 and ISO 17799. * AIX, Linux, SCO UnixWare, Solaris and Windows NT/2000/XP. Extensive experience with C, Perl, shell scripting, HTML/CGI and TCP/IP. Java. RACF and Vanguard tools. Experience with system and application development. Education ========================== Bachelors Degree Candidate – Computer Science Lakeland College, Sheboygan, Wisconsin A.S. Degree - Computer Science College of DuPage, Glen Ellyn, Illinois, 1990 Introduction to RACF and MVS MVS Training, Inc., Madison, Wisconsin, 2004 Computer Forensics and Investigations SANS, Tysons Corner, Virginia, 2002 Firewall and Security Administration Cyberguard Corporation, Fort Lauderdale, Florida, 1999 Basic AIX Administration IBM Educational Services, Milwaukee, Wisconsin, 1995
|
|
|||
|
|
|||
|
© 2002-2008 IT-Careernet.com Reproduction, retrieval, copying or transmission of the content of this site is not permitted without the publisher's prior consent. Last changed: 18 Nov 2008 Home SiteMap Terms & Privacy |
|||
|
-start of code- -end of code- &n |
|
||