MISSION
Apply principles and tools of information security to the rapidly evolving technological environment of today’s businesses, nonprofits and government organizations. Provide insight into the threats and risks to personal and business success from the misuse and abuse of technology. Develop and provide actionable strategy though available countermeasures to remediate and manage those risks.
Value proposition
· Veteran – USMC
· Experienced Security Architect/Engineer with CISSP and multiple industry certifications
· Significant experience in post-secondary education
· Played key technical roles for InfoSec and technology in Banking, Retail, and technical sales
o Areas of competence
CURRENT CERTIFICATIONS
CERTIFICATION WORK IN PROGRESS
RELEVANT SKILLS/EXPERIENCES
EDUCATION ·
LEGACY INDUSTRY CERTIFICATIONS (all of these have now lapsed) · Juniper JNCIA ER – July 2009
PROFESSIONAL EXPERIENCE
MyNetWiz.com, Inc.—Feb 2009 – Present Security Evangelist and Mentor (Principal)
· Recent Technology Implementations
· Offer the following services to selected clients
Yadkin Valley Bank – November 2010 to April 2013 Senior Security Engineer · Set tactical and strategic direction for newly formed Information Security Office (ISO)
· Assessed risks and identified gaps where Bank was exposed. Specified security requirements and brought in products to remediate several areas, including the following:
· Built multi-disciplinary incident response team to simplify event identification and improve ability to respond to security, fraud or identity theft incidents should they occur
· Represented information security interests in a number of areas including ATM upfit and refresh project, on-line banking conversion from S1 to Fiserv and a number of other high impact projects
· Worked with senior management to build ISO team strength from 0 to 3 members in 3 years. Developed work allocation strategy to manage load according to team strengths and develop training/collaboration strategy to ensure cross training between members
· Built security awareness training package to provide timely content and counsel to both bank employees and customers on matters of concern related to information security
· Developed and maintained working relationships with employees throughout the Bank as evidenced by the improvement in reporting and communications regarding potential security events
ACRO Services – Mar 2009 – Feb 2010 Security Engineer — Transformation Team
· Report to project manager for TR072 effort on Northrop Grumman Contract with VITA.
· Provide consultative services to Northrop Grumman and VITA employees and management regarding best practices in information security and the application of Bluecoat and Juniper technology to agency requirements.
· Design, engineer and implement solutions required to support transformation of Virginia state agencies from ATM based, legacy network to MPLS network.
· As required, participate in incident management and response activities including the development of root cause analysis documentation
Breach Security, Inc. -- Aug 2008 – Jan 2009 Manager, Security Services – Jan 2009 to Jan 2009
· Report to the Director, Security Services.
· Technical training on the Breach Security product line to customers and channel partners. Conduct security assessments of customers’ web application environments using Breach WebDefend and the ModSecurity products.
· Implement complex deployments of Breach WebDefend and ModSecurity products as a team member or project member.
· Work with Breach account executives, regional managers, and partner account teams to identify additional opportunities discovered in the course of professional services.
Systems Engineer, North American Channel – Aug 2008 – Dec 2008
· Report to the Director of Systems Engineering and the Director of Channel Sales.
· Served as Channel Systems Engineer for North America for Breach WebDefend (a Web Application Firewall)
· Develop technical relationships and serve as technical resource/mentor for Partner Systems Engineers and Solutions Architects to enable them to be effective technical representatives for Breach WebDefend and ModSecurity products.
· Provide technical and sales training to Partner account teams.
· Provide architectural leadership in designing perimeter security for complex networks that provide web services as part of the business model
· Use open source tools such as Nessus and Snort to identify security issues in the network to support the business case for Breach products
Solunet, Inc., W. Melbourne, Fl. – June 2007 – June 2008 Sales Engineer for Eastern Region
· Report to the Chief Technical Officer
· Use partner technologies such as Juniper, Blue Coat, Tipping Point, IronPort, Foundry and Aruba to design and implement complex networks that address specific customer requirements
· Provide post-sales support in complex environments including deployment, troubleshooting, and management of security products
· Provide consultative support in information security including design services, scope development, and implementation of complex, heterogeneous networks
· Develop proposals, scopes of work and plans for the design and implementation of large, complex networks
· Build trust relationships with technical teams of partners and customers.
igxglobal, Inc., Rocky Hill, Ct. – AUG 2006-MAY 2007
Solutions Architect for Southeast Sales Team
· Report to VP of Sales
· Use partner technologies such as Juniper, Mazu, Tipping Point, Blue Coat, ProofPoint and IronPort to design and implement complex networks that address specific customer requirements
· Provide post-sales support in complex environments including deployment, troubleshooting, and management of security products such as Juniper, Blue coat, Tipping Point, and IronPort for various customers.
· Provide consultative support in information security to current and targeted clients including design services, scope development, and implementation of complex, heterogeneous networks
· Develop proposals, scopes of work and plans for the design and implementation of large, complex networks that require multidisciplinary teams for implementation and deployment
· Build trust relationships with technical teams of partners and customers.
Lowe’s Companies, Inc., North Wilkesboro, NC JAN 2004-JUNE 2006 Security Consultant, Information Security Group
· Report to the Director, Information Security
· Senior technical information security resource for the enterprise
· Domain architect for Information Security on Enterprise Architecture team
· Solutions architect for simplified sign-on and identity management initiatives to support multiple enterprise portal projects.
· Risk evaluator for firewall and VPN rule changes. Audited firewall and VPN rules in Cisco environment and represented Director of Information Security in approving changes for firewall rules and VPN configuration.
· Consultant and solutions architect for remediating PCI and Sarbanes Oxley issues. Worked with internal and external auditors to identify gaps and remediate issues for PCI compliance throughout the enterprise.
· Risk assessment and management for 3rd party connectivity and projects bringing new technology into Lowes
High Point University, High Point, NC AUG 2001- DEC 2003 Instructor, CIS Department
· Develop courses in Ethics and Privacy, Information security, Business networking, Database technologies (Access and Oracle), Microsoft Office, Web development, Data mining and Ecommerce.
· Instruct High Point University students in the areas of Microsoft Office, networking, web design and development, information security and topics in eCommerce.
Wachovia Bank, Winston-Salem, NC NOV 1994- JUNE 2001
Senior Business Architect, eBusiness Division, 1997 – 2001
· Provide technical leadership and internal consulting to eBusiness Division and lines of business within Wachovia Bank on emerging trends in technology affecting Wachovia’s initiatives in the area of eCommerce.
· Represent the eBusiness Division on technology/solution evaluation teams in such areas as Internet banking and stock trading, SSO solutions (e.g. Netegrity), access to banking services through wireless carriers (e.g. Cingular , Sprint) and PKI solutions (e.g. VeriSign, PGP, and Entrust).
Network/Information Security Engineer, Information Services, 1994 – 1997
· Developed and implemented security architecture for Internet Banking, Internet Investing and employee remote access. Evaluated, recommended and deployed first firewall to connect Wachovia network to the Internet
Grumman Data Systems Herndon, VA, SEPT 1988-NOV 1994 Senior Systems Designer
Apply principles and tools of information security to the rapidly evolving technological environment of today’s businesses, nonprofits and government organizations. Provide insight into the threats and risks to personal and business success from the misuse and abuse of technology. Develop and provide actionable strategy though available countermeasures to remediate and manage those risks.
Value proposition
· Veteran – USMC
· Experienced Security Architect/Engineer with CISSP and multiple industry certifications
· Significant experience in post-secondary education
· Played key technical roles for InfoSec and technology in Banking, Retail, and technical sales
o Areas of competence
- o Architecture and strategy
- o Compliance and risk assessment/management
- o Threat and vulnerability assessment/management
- o Governance, policy development and standards,
- o Strategic planning and thought leadership
- o Information assurance
- o Data loss prevention
- o Oral and written communications
CURRENT CERTIFICATIONS
- InfoSec Assessment Methodology – June 2005
- InfoSec Evaluation Methodology – June 2005
- Certified Information Systems Security Professional (CISSP) -- June 2004
- Graduate Certificate in Information Security and Privacy -- August 2003
- Security+ from CompTIA – Nov., 2002
CERTIFICATION WORK IN PROGRESS
- CEH, CFHI, VCP
RELEVANT SKILLS/EXPERIENCES
- Regulatory/Compliance – FFIEC, GLBA, PCI-DSS V2 and V3, Sarbanes Oxley, State privacy legislation, risk analysis and compliance
- Architecture/GRC -- Security policies and standards, networking standards, client server architectures, Ethernet, WAN technologies, TCP/IP networking, HTML, XML, HTTP, SSL, Allgress
- Network Security/Access Control -- LDAP, Active Directory DHCP, DNS, data encryption, , secure remote access, ,Web Application Firewalls, network firewalls including Fortinet, Cisco, and Juniper, and Raptor (currently studying Checkpoint technologies for certification exam), Virtual Vault (Trusted Web server based on HP/UX)
- Vulnerability Assessment and Management/Risk Assessment and Management -- network trace analysis, performance analysis, network capacity planning, Nessus, SAINT
- Identity and Privilege Management – multifactor authentication, PKI (including PGP, VeriSign, Entrust), identity management, RBAC, Single Sign-On
- Data loss prevention – WebSense, Varonis
- Logging and Monitoring -- SIEM including Trigeo (now SolarWinds LEM) and RSA enVision, IDP?IPS including Deep Security, TripWire, Tipping Point, Juniper IDP, and SourceFire
EDUCATION ·
- Graduate coursework UNC Charlotte, Charlotte, NC
- MBA University of Maryland, College Park, Md
- BA East Carolina University, Greenville, NC
LEGACY INDUSTRY CERTIFICATIONS (all of these have now lapsed) · Juniper JNCIA ER – July 2009
- Juniper JNCIA IDP – July 2008
- Juniper JNCIA SSL – Aug 2007
- IronPort Certified Security Associate -- August 2007
- Juniper JNCIA FW/VPN – July 2007
- Blue Coat Mach 5 Certified – April 2007
- ProofPoint Demo Certified – March 2007
- Mazu Sales Engineer – February 2007
- Tipping Point Advanced Technical Security Products – December 2006
- Blue Coat Blue Net Certified – November 2006
- Microsoft Certified Professional – Windows 2000 Sept. 2002
PROFESSIONAL EXPERIENCE
MyNetWiz.com, Inc.—Feb 2009 – Present Security Evangelist and Mentor (Principal)
· Recent Technology Implementations
- o RSA enVision
- o SourceFire
- o FireEye
- o Trend Deep Security
· Offer the following services to selected clients
- o Provide security architecture, strategy and design services
- o Conduct risk assessments and provide risk management services
- § Use PCI-DSS framework, ISO 27001, COBIT, SANS 20 Critical Security Controls and OWASP Top 10 to frame risk assessments
- o Assist in meeting compliance requirements such as PCI-DSS, GLBA, Sarbanes Oxley, and HIPAA
- o Evaluate security products for support of PCI-DSS, HIPAA, FFIEC and Sarbanes Oxley requirements
- o Provide information assurance services for systems and infrastructure
- o Provide professional services for Bluecoat, Cisco, IronPort, Juniper, Tipping Point and Breach
Yadkin Valley Bank – November 2010 to April 2013 Senior Security Engineer · Set tactical and strategic direction for newly formed Information Security Office (ISO)
· Assessed risks and identified gaps where Bank was exposed. Specified security requirements and brought in products to remediate several areas, including the following:
- o File access management – Varonis
- o Data Loss Prevention – Websense
- o Vulnerability Scanning and Management – SAINT
- o Advanced Malware Detection – Wetstone
- o Employee Monitoring -- ObserveIT
- o Whole Disk Encryption – PGP
- o USB Device Control and Application White listing – Lumension
- o Two Factor Authentication – Phone Factor
- o Network Segmentation and Wireless – Fortinet
- o Mobile Device Management – Mobile Iron
- o On-line banking customer security – IronKey/Marble Security
· Built multi-disciplinary incident response team to simplify event identification and improve ability to respond to security, fraud or identity theft incidents should they occur
· Represented information security interests in a number of areas including ATM upfit and refresh project, on-line banking conversion from S1 to Fiserv and a number of other high impact projects
· Worked with senior management to build ISO team strength from 0 to 3 members in 3 years. Developed work allocation strategy to manage load according to team strengths and develop training/collaboration strategy to ensure cross training between members
· Built security awareness training package to provide timely content and counsel to both bank employees and customers on matters of concern related to information security
· Developed and maintained working relationships with employees throughout the Bank as evidenced by the improvement in reporting and communications regarding potential security events
ACRO Services – Mar 2009 – Feb 2010 Security Engineer — Transformation Team
· Report to project manager for TR072 effort on Northrop Grumman Contract with VITA.
· Provide consultative services to Northrop Grumman and VITA employees and management regarding best practices in information security and the application of Bluecoat and Juniper technology to agency requirements.
· Design, engineer and implement solutions required to support transformation of Virginia state agencies from ATM based, legacy network to MPLS network.
· As required, participate in incident management and response activities including the development of root cause analysis documentation
Breach Security, Inc. -- Aug 2008 – Jan 2009 Manager, Security Services – Jan 2009 to Jan 2009
· Report to the Director, Security Services.
· Technical training on the Breach Security product line to customers and channel partners. Conduct security assessments of customers’ web application environments using Breach WebDefend and the ModSecurity products.
· Implement complex deployments of Breach WebDefend and ModSecurity products as a team member or project member.
· Work with Breach account executives, regional managers, and partner account teams to identify additional opportunities discovered in the course of professional services.
Systems Engineer, North American Channel – Aug 2008 – Dec 2008
· Report to the Director of Systems Engineering and the Director of Channel Sales.
· Served as Channel Systems Engineer for North America for Breach WebDefend (a Web Application Firewall)
· Develop technical relationships and serve as technical resource/mentor for Partner Systems Engineers and Solutions Architects to enable them to be effective technical representatives for Breach WebDefend and ModSecurity products.
· Provide technical and sales training to Partner account teams.
· Provide architectural leadership in designing perimeter security for complex networks that provide web services as part of the business model
· Use open source tools such as Nessus and Snort to identify security issues in the network to support the business case for Breach products
Solunet, Inc., W. Melbourne, Fl. – June 2007 – June 2008 Sales Engineer for Eastern Region
· Report to the Chief Technical Officer
· Use partner technologies such as Juniper, Blue Coat, Tipping Point, IronPort, Foundry and Aruba to design and implement complex networks that address specific customer requirements
· Provide post-sales support in complex environments including deployment, troubleshooting, and management of security products
· Provide consultative support in information security including design services, scope development, and implementation of complex, heterogeneous networks
· Develop proposals, scopes of work and plans for the design and implementation of large, complex networks
· Build trust relationships with technical teams of partners and customers.
igxglobal, Inc., Rocky Hill, Ct. – AUG 2006-MAY 2007
Solutions Architect for Southeast Sales Team
· Report to VP of Sales
· Use partner technologies such as Juniper, Mazu, Tipping Point, Blue Coat, ProofPoint and IronPort to design and implement complex networks that address specific customer requirements
· Provide post-sales support in complex environments including deployment, troubleshooting, and management of security products such as Juniper, Blue coat, Tipping Point, and IronPort for various customers.
· Provide consultative support in information security to current and targeted clients including design services, scope development, and implementation of complex, heterogeneous networks
· Develop proposals, scopes of work and plans for the design and implementation of large, complex networks that require multidisciplinary teams for implementation and deployment
· Build trust relationships with technical teams of partners and customers.
Lowe’s Companies, Inc., North Wilkesboro, NC JAN 2004-JUNE 2006 Security Consultant, Information Security Group
· Report to the Director, Information Security
· Senior technical information security resource for the enterprise
· Domain architect for Information Security on Enterprise Architecture team
· Solutions architect for simplified sign-on and identity management initiatives to support multiple enterprise portal projects.
· Risk evaluator for firewall and VPN rule changes. Audited firewall and VPN rules in Cisco environment and represented Director of Information Security in approving changes for firewall rules and VPN configuration.
· Consultant and solutions architect for remediating PCI and Sarbanes Oxley issues. Worked with internal and external auditors to identify gaps and remediate issues for PCI compliance throughout the enterprise.
· Risk assessment and management for 3rd party connectivity and projects bringing new technology into Lowes
High Point University, High Point, NC AUG 2001- DEC 2003 Instructor, CIS Department
· Develop courses in Ethics and Privacy, Information security, Business networking, Database technologies (Access and Oracle), Microsoft Office, Web development, Data mining and Ecommerce.
· Instruct High Point University students in the areas of Microsoft Office, networking, web design and development, information security and topics in eCommerce.
Wachovia Bank, Winston-Salem, NC NOV 1994- JUNE 2001
Senior Business Architect, eBusiness Division, 1997 – 2001
· Provide technical leadership and internal consulting to eBusiness Division and lines of business within Wachovia Bank on emerging trends in technology affecting Wachovia’s initiatives in the area of eCommerce.
· Represent the eBusiness Division on technology/solution evaluation teams in such areas as Internet banking and stock trading, SSO solutions (e.g. Netegrity), access to banking services through wireless carriers (e.g. Cingular , Sprint) and PKI solutions (e.g. VeriSign, PGP, and Entrust).
Network/Information Security Engineer, Information Services, 1994 – 1997
· Developed and implemented security architecture for Internet Banking, Internet Investing and employee remote access. Evaluated, recommended and deployed first firewall to connect Wachovia network to the Internet
Grumman Data Systems Herndon, VA, SEPT 1988-NOV 1994 Senior Systems Designer