Information Technology Operations Manager
CurrentResponsibilities: Highly motivated cybersecurity professional with specialization in system administration. IT OperationsManager for the last three years. Very skilled with detection and mitigation of security issues. Work constructively with all levels of stakeholders, employees, and vendors. Protecting what matters most by securing sensitive data and critical assets from current and emerging threats, I practice defense in depth while using these basic principles – Confidentiality, Integrity, and Availability. Key Accomplishments: • Maintain multiple Windows domains offline VMware environment, enforcing security standards and governance.• Adjusted company policies and created procedures to adhere to SOC2 standards.• Implemented and tuned QRadar with IBM WinCollect agent for SIEM monitoring.• Implemented ADAudit Plus to track account lockouts, changes, user logins, FIM, and privileged users.• Implemented internal and external website monitoring to ensure maximum uptime for our CIS dashboard.• Periodic User Access Reviews per ISO-27001 and SOC2 requirements.• Setup Password Manager Pro Portal to centralize encrypted password storage per SOC2 requirement.• Encrypted backups with Veeam Backup and Replication on ExaGrid before copying to cloud storage.• Physical security logging and retention standards for SOC2 compliance.• Provide artifacts for SOC2 Type, HIPAA, and various third party risk management audits.• Threat Vulnerability Management including Qualys deployment, management, and remediation from findings.• Implemented ServiceDesk for Tickets and Changes including a digital Employee Change Portal.• Implemented patching using Ivanti and Endpoint Central ensuring compliance of Windows and third party apps.• Machine hardening by automating deployment of numerous agents through Endpoint Central, scripting, and GPO.• Sophos global policy enforcement for non-approved programs and deprecated protocols.• Much more...