Resume

PDF Version

PROFILE

  • IT Professional with 15+ years System Administration experience in financial and insurance industries
  • Technical lead for penetration testing, vulnerability scanning, and remediation efforts
  • Certifications: GSEC (Security Essentials), GCIA (Intrusion Analyst)
  • SANS Advisory Board Member

EMPLOYMENT HISTORY

IT Security Analyst
University of North Carolina School of Medicine, Chapel Hill, NC (September 2017 – current)

  • Risk assessments
  • Security Audits
  • Incident Response
  • Digital Forensic Investigations

IT Administrator
Alliant Insurance Services, New York, NY (January 2015 – July 2017)
Alliant acquired American Benefits Consulting

  • Reviewed monthly penetration testing/vulnerability scanning (Trustwave) results. Prepared risk analysis reports for senior management. Prioritized issues and researched remediation options for discussion.
  • Tested, implemented, and confirmed technical remediation efforts.
  • Performed quarterly IT audits of access controls, firewalls, encryption keys, and equipment inventory.
  • Prepared IT controls documentation for our annual SOC 1 and SOC 2 audits for our VP of Operations.
  • Tested and deployed new security initiatives arising from internal business team or client requirements. Key projects include at-rest file encryption, internet connection redundancy, and encryption key management system.
  • Planned and coordinated network migration with Alliant IT. Replaced all networking equipment, workstations, setup Active Directory domain trust, deployed VOIP phones, and migrated email and office file data to Alliant Data Center.

IT Administrator
American Benefits Consulting LLC, New York, NY (May 2007 – December 2014)

  • Monitor and support our production WWW environment on daily basis. Cisco ASA firewall, Brocade vTM load balancer, Alertlogic IDS/IPS, IIS web servers, SQL server back-end. Our in-house developed Voluntary Benefits platform supports over 50 Fortune 500 companies and their employees.
  • Led effort to implement CIS Top 20 Controls. Improved security posture from 10 controls to 16.
  • Technical Lead for project moving production and development WWW environments from NY office to Managed Service Provider datacenter with minimal service interruption and no data loss.
  • Setup and manage Google Analytics tracking and reporting for our client sites.
  • Deploy and manage automated secure file transfer solution for exchanging data with clients and vendors to support our Voluntary Benefits Platform.
  • Designed Group Policies for new Windows Server Active Directory domain. Tested policies and migrated workstations to the new domain with new servers.
  • Deployed Windows 7 on all desktops and laptops. Secured laptops with Bitlocker Drive Encryption.
  • Installed and configured new Microsoft Exchange 2007 solution. Migrated mailboxes from Microsoft Small Business Server.
  • Administer 20 server/75 workstation network and provide support for 50 users.
  • Document network infrastructure and software configurations.
  • Schedule backups, monitor network status, review security logs, and assist users daily.

IT Administrator
Mellon Ventures Inc., New York, NY (August 2000 – February 2007)

  • Planned annual IT budget and maintained expense records each year in conjunction with CFO.
  • Reviewed annual penetration testing/vulnerability scanning results. Prepared risk analysis reports for senior management. Prioritized issues and researched remediation options for discussion.
  • Tested, implemented, and confirmed technical remediation efforts.
  • Developed and tested disaster recovery/business resumption plans with VP Operations.
  • Reviewed and updated the company’s IT policies and procedures annually to keep current with business needs, security requirements and employee workflow.
  • Planned, tested, implemented, and documented IT infrastructure upgrade projects including: Windows Server, Microsoft Exchange, and Checkpoint Firewall.
  • Performed successful 48-hour emergency disaster recovery of Microsoft Exchange 2000 server after RAID hardware failure. 
  • Administered 10 server/50 workstation network and provided support for 50 users in 5 locations.


TECHNICAL EXPERIENCE

Hardware: Familiar with installation, maintenance and upgrades for: desktops, laptops, servers, routers, switches, wireless access points, SAN, NAS, printers, UPS, smartphones, tablets, RAID controllers, and KVM switches

Software: Familiar with installation, configuration, and usage of Microsoft Windows 10 and earlier, Windows Server, Mac OS X, Linux (Ubuntu, RedHat), VMWare ESXi, Hyper-V, Azure Cloud Services, Cisco IOS, Microsoft Office, Remote Desktop Protocol, Internet Information Server, Exchange Server, ActiveSync, Windows Software Update Services, LANDesk, SQL Server, Brocade, Alertlogic, LogRhythm, Checkpoint, Sonicwall, Palo Alto, pfSense, Google Analytics, Meraki Cloud,  Security Onion, SNORT, Bro, Wireshark, tcpdump, Kali Linux, Metasploit, Nessus, Mimecast, Qualys, Splunk, Nagios, and Backup Exec.

EDUCATION

York College of Pennsylvania, York, PA
Bachelor of Science: Business Marketing
Academic Minor: Business Management
Activities: WVYC Radio (FM Programming Manager), Ice Hockey Team

Advertisements