Information Security Analyst

Solutions-oriented Information Security Analyst with distinguished record of success directing a broad range of corporate security initiatives managing the entire lifecycle (development, engineering, implementation, and support/maintenance) of information-security solutions in direct support of business objectives.

Track record of increasing responsibility in secure network design, systems analysis and development, and full lifecycle project management.

Demonstrated capacity to implement innovative security programs that drive awareness, decrease exposure, and strengthen organizations.

Hands-on experience leading all stages of system development efforts, including requirements definition, design, architecture, testing, and support.

Outstanding leadership abilities; able to coordinate and direct all phases of project-based efforts while managing, motivating, and leading project teams.

Adept at developing effective security policies and procedures, project documentation and milestones, and technical/business specifications.

Core Competencies: Network & Systems Security; Business Impact Analysis; Regulatory Adherence; Data Integrity/Recovery; Disaster Recovery Planning; Contingency Planning; Research & Development; Risk Assessment; Cost Benefits Analysis

* Platforms: UNIX, Cisco, Nokia, Crossbeam, Linux, Akonix.

* Networking: TCP/IP, VLAN, LDAP/RADIUS, Ethernet, FDDI, VPN, SSH, SecureID, PGP.

Professional Experience

AT&T Services, Atlanta, Georgia 2004 – Present

Principal Member of Tech Staff

Establish, manage, and maintain enterprise-wide information-security program. Design and implement security processes and procedures and perform cost benefit analysis on recommended strategies. Collaborate with external auditors to conduct in-depth compliance audits, presenting results to senior management. Develop curricula and facilitate awareness training for management and employees.

Key Contributions:

Spearheaded many high priority projects, including Secure Zones, New Firewall Design/Installation, Capacity Planning, and Contract Maintenance.

Created company policies and procedures governing corporate security, hardware and software upgrades, access control, and incident response.

Instrumental in developing and implementing Business Continuity and Disaster Recovery (BCP & DRP).

Integral part of developing the Crossbeam Systems, Inc. Advanced Expert Techniques class that is now the standard training class for all Crossbeam’s field engineers as well as the prerequisite class to gaining the new Crossbeam Certification.

Management Decisions Inc., Norcross, Georgia 2002 – 2004

Information Security Analyst

Contracted to Bellsouth Technologies to manage, support, maintain and implement corporate enterprise firewalls that provide perimeter and intranet protection for all Bellsouth and its affiliates. 

Supervised release testing for new applications; provided final approval for bug-free, fully functional commercial solutions. Oversaw recruiting and training, resource allocation, and employee assessment functions. Built and mentored cohesive, qualified teams committed to meeting schedule and budgetary needs.

Key Contributions:

Firewall configurations consisted of , Sun E220s or E420s loaded with Solaris 8, or Nokia IP440s running IPSO 3.6 FCS3, both configurations running Checkpoint NG or NG AI, and Cluster XL.

Consult with architects, project managers, end users and executive level management on security issues based on network environment changes, newly development projects, and emerging technologies.

Clear and concise communication, with technical and non-technical staff, was key in maintaining a remarkably stable environment.

Recognized for outstanding quality of customer service with a customer-support award and personal commendation from many clients

Lynk Systems inc., Norcross, Georgia 1999 – 2002

Security Engineer/Unix Administrator

24 x 7 production support position of support of mission critical applications, with rotational on-call duty. The job required incident management, problem and change management of applications to meet or exceed 99.99% availability. Maintain capability to frequently prioritize work and manage in a crisis while sustaining productivity..

Key Contributions:

Implementation and maintenance of Solaris E-Commerce solution consisting of E250 and E450 servers running Solaris 2.6, 7, and 8 in a 24x7 environment.

Provide Network Management support on a variety of platforms to support LAN and WAN operations for the network. Responsible for configuration and implementation of a variety of network management tools including, but not limited to CA Uni-Center, Checkpoint Firewall-1, CiscoWorks2000, Ethereal Sniffer and others. Participated in large-scale network changes including configuring routing on Solaris, Windows, and Cisco systems.

Network penetration tests run using Nessus, Nmap, and ISS Internet Scanner to analyze extranet/intranet environments

Develop security measures to safeguard information against accidental or unauthorized modification, destruction, or disclosure

Sterling Software, Atlanta, Georgia 1998 – 1999

Security Engineer/Unix Administrator

Support and maintain servers in a distributed environment. Responsible for problem resolution, performance tuning and analysis, proactive problem prevention, detection, circumvention and resolution to root cause. Provide application of software patches as well as release and version upgrades of operating systems and associated software to maintain currency and enhance reliability and supportability. Handle system security, integration, analysis, architecture, and network support.

Key Contributions:

Managed multiple versions of UNIX, to include: AIX, Alpha/VMS, DGUX, HP/UX, Linux, Sco, Sun/Solaris, and VAX/VMS.

United States marine Corps, Camp Pendleton, California 1993 – 1998

0231- Intelligence Specialist

Familiar with all phases and facets of intelligence operations. Typical duties of intelligence specialists involve the collection, recording, analysis, processing, and dissemination of information/ intelligence.

Key Contributions:

Graduated third in my class at the Navy and Marine Intelligence Training Center.

Immediately assigned to the command group of the 13th MEU (Marine Expeditionary Unit), a forward deployed quick-response team in hostile conditions, where I filled a position that rated a higher ranking Marine. 

Completed SSBI, access to TS/SCI+ granted 

As a Corporal I was assigned as the Chief Analyst for the Central Command Region for I MEF (First Marine Expeditionary Force) and stationed in the SCIF (Sensitive Compartmented Information Facility) at Camp Pendleton.

Promoted to Sergeant on first eligibility. Given responsibility of managing the daily activities of subordinate Marines, this position normally requires a Staff Sergeant

Responsible for administering HP/UX Servers, Sun/Solaris Servers, and Windows NT Workstations, including rapid redeployment.   These different computer systems were connected to the complete range of information classification levels available to the command.

Education and Credentials

Bachelor of Science Degree in Computer Science

Park University – Parkville, Missouri

Professional Training and Certifications

CISSP – Certified Systems Security Professional

CCSE - Checkpoint Certified Security Expert

CCSA - Checkpoint Certified Security Administrator

CCNA, Cisco Certified Network Associate

CCNP, Cisco Certified Network Professional

Web Washer System Administrator

Crossbeam Certified Expert

Professional Affiliations

Member – Information Systems Security Association

Security Clearance

Pending