Requests
0
Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app
Work Background
General Dynamics Information TechnologySr Cyber Security Engineer
Aug. 2019Rockville, Maryland• Security Analytics Program Lead Manage Cylance Endpoint Antivirus Solution.
• Integral member of the Vulnerability management program. Manage Executive mandated vulnerability management program and reporting.
• Administer SIEM environment to include correlation rule creation and routing to parent agencies. • Manage network firewalls and IDS (Checkpoint, Cisco, Juniper, Palo Alto)
• Design IPS/firewall solutions for the agency to enhance application visibility and network segmentation.
• Manage NAC Environment (Forescout)
• Facilitate effective and efficient management and operations in the cloud environment to support business requirements
• Complete Cloud Security risk assessments on existing Resources in AWS.
• Introduce cloud security/analytics tools to Cloud resources (Prisma, Sumo Logic, Cylance)
PRA Group (Nasdaq: PRAA)IT Security Engineer
Oct. 2018 - Aug. 2019Norfolk, Virginia AreaServes as the Vulnerability Program Lead, overseeing vulnerability scans in a globally distributed environment while commanding vulnerability scan schedules and reporting. Enhances operations and fosters a highly productive environment by engineering custom rules for event correlation as well as parsers for non-standard log sources.
Guides modernization and service-level enhancement initiatives spanning multiple facets of information systems, including data center operations, disaster recovery, cloud computing, and telecommunications.
Improves functionality by coordinating with other IT teams to support with vulnerability remediation.
Successfully and strategically responds to security incidents in a timely manner by meticulously researching and assessing offenses. Manages multiple processes, hardware, and software such as: globally distributed L7 firewalls (Palo-Alto), log source connections, tenable.io, tenable.sc, tenable Nessus scanners, and IBM QRadar.
Designed a global vulnerability dashboard that meticulously tracks vulnerabilities.
Generates comprehensive reports on zero-day vulnerabilities that summarizes and alerts management of potential impacts.
Researches vulnerabilities to assess potential environmental concerns and determine potential exploit as well as security patches to determine the impact to the environment.
Internal Revenue ServiceCyber security Engineer
Mar. 2017 - Oct. 2018Lanham, MarylandMaximized department processes by handling Tripwire Vulnerability, utilizing Exposure Manager SME, and operating the VNE system and other components.
Optimized functions by examining and verifying Symantec Enterprise Protections Alerts, observing and analyzing email alerts from Cisco ESA, monitoring IPS events, and scrutinizing security events from ArcSight.
Managed Sourcefire IPS signatures.
Formalized all phases and processes related to vulnerability scans including, but not limited to: running AdHoc vulnerability scans, verifying scheduled vulnerability scans, and assembling detailed reports based on scans and provide to business units.
Skillfully processed proxy exception requests for Mcafee Web Gateway.
Ensured enterprise compliance by offering tactical guidance on vulnerability remediation.
Consilium 1 (General Electric)Network Security Engineer
Nov. 2015 - Feb. 2017Virginia Beach, VADrove organizational effectiveness and precision by strategically troubleshooting issues including, connecting all internet facing applications such as Amazon Web services, leading triage calls to resolve ISE related matters, monitoring company-wide trouble ticket queues and serving as the SME and last escalation point for all incidents related to Cisco Identity Services Engine (ISE).
Influenced organizational improvement initiatives by conducting audits for 400 sites as part of a global network migration and IP migration project.
Skillfully applied raw traffic data to analyze and audit firewall rules, ensuring that there was no cross VLAN communication.
Instituted procedures that supported third party initiatives including, migrating third party companies from independent networks to GE’s environment, creating firewall rulesets and network objects that warranted third party companies network communication with GE, and configuring IPSEC Tunnels on Global Hub VPN Routers to allow acquired companies to communicate within the GE environment.
Identified security requirements for computer systems including mainframe, workstations, and personal computers.
Employed and preserved firewalls, series switches, and security appliances.
Worked extensively with Lancope Stealthwatch to schedule and store reports, ensuring that traffic flowed through the correct routes, configuring host groups, running reports, and providing raw audit data to the containment team.
Dell SecureWorksNetwork Security Senior Advisor
Jul. 2015 - Oct. 2015Providence, Rhode Island AreaOptimized productivity by engineering and systematizing daily workflow procedures, supervising engineers, maximizing uptime by monitoring system logs for all company computers and devices.
Exhibited leadership expertise while serving as the SME for assigned platforms (juniper SRX, Cisco ASA, Sourcefire IPS) and as the top escalation point for all other teams in the SOC.
Tested and certified new code versions for assigned platforms.
Executed vulnerability analyses of all available vendor provided code and diagnosed system hardware and software problems using advanced root-cause analysis.
Health Data & Management Solutions, Inc. (HDMS)Sr Network Engineer
Sep. 2014 - Jul. 2015Beachwood, OhioArranged and sustained Sourcefire IPS codes, permitting blocking by source destination and geographic location.
Eliminated intrusions quickly and effectively by blocking malicious source IPs.
Configured and upheld all properties of Juniper SRX Firewalls including, adding security zones and arranging redundant Ethernet, supporting source and destination NAT, and adding security policies to allow requested traffic entry to the destination zone.
Systematized hardware maintenance for Juniper SRX 550, 650, 3400, resulting in the design, planning, and implementation of one data center core and DMZ as well as one branch transition from legacy equipment to data center fabric.
Accomplished a complete wireless network overhaul in branch office by sustaining the Juniper EX 4200, 4300 Cisco 3560, 4948 hardware.
Eliminated network spillage from trusted to untrusted WLANs by upgrading from Cisco 2504WLC to 5508 and Cisco WAP 3602 3702, which enabled 1:1 physical interface to logical network. Configured the Cisco Identity Services Engine which authenticated the server for wired and wireless 802.1x clients, interacted with third-party switches, configured captive guest portal options in Cisco ISE, and created SSL certificate requests for client branded websites to preserve domain registrations.
Configured Wired Auto-Config GPO to force 802.1X NIC settings, resulting in the production of user and computer certificate templates.
Configured Cisco Secure access control server to allow administrative access to devices across the environment, including two branch offices and two data centers.
Certified that codes were not out of date and in response to security vulnerabilities by performing a full patch and upgrades on Cisco ACS.
Configured, controlled, and troubleshot issues related to Juniper VPN appliance. Retained access control lists to ensure that staff and management access to all internal resources throughout the environment.
NTT Data Federal ServicesNetwork Engineer
Nov. 2013 - Sep. 2014Newport News, VAImplemented and configured an .edu network infrastructure for an apprentice school.
Managed routers and switches such as Cisco 4500x/3700, cisco nexus 5000, and 1000v. Configured EIGRP, BGP, OSPF, HSRP STP, VTP, and VLAN to control the servers, virtual desktop (VDI), storage, applications, and security.
Troubleshot network system issues, network layer 1, 2 and 3 problems, and wireless systems.
Skillfully sustained the wireless infrastructure, up-to-date network drawings, diagrams and descriptions, and current network inventory.
Administer EMC VNX storage array migrated Microsoft exchange to office 365 setup systems in Microsoft
Maintained and troubleshoot connections to all internet facing applications.
Rendered network connectivity for contracted assets at the customer site and employed operative resolution support for all networking issues.
Installed and configured: data circuits, high availability firewalls intrusion detection systems (i.e., MacAfee Enterprise Firewall), properties of the wireless backbone (including the design of sub-netting and routing schema), switches and routers, wireless controllers, and all access points.
Conserved a detailed configuration library of all routers and switches.
Maintained and troubleshot internal and external DNS.
United States Tax CourtIT Specialist(Network)
Dec. 2012 - Nov. 2013Washington D.C. Metro Area
Metters IndustriesCenter Deployment Lead
May. 2012 - Dec. 2012
Bank of AmericaPC Technician
May. 2011 - Jan. 2012Norfolk, Virginia Area
US NavyIT Support Specialist
May. 2005 - May. 2009Various locations
Intch is a Professional Networking App for the Future of WorkSee more people like Earic on Intch
300k+ people
130+ countries
AI matching
Get Intch if you'd like to
451129 people
18
Technologist, Project/Program Manager
24
Data Scientist Intern @ Newell Brands
16
Program Manager @ DISH Network
33654 people
42
Senior Mining Engineer @ Riot blockchain
33
Investor Relations Manager @ ExxonMobil
43
Investor relations manager @ ExxonMobil