Brian M. Thomas Email & Phone Number

California, United States

Alameda, California, US

• Founding leader of the internal IT Security Program and primary IT Security Engineer for on-prem and cloud.
• Responsibility of the security of all cloud and on-prem assets including network appliances, endpoints, SDLC pipeline tools, and OT/ICS assets.
• Responsible for bringing controls into compliance and certification under NIST 800-171.
• Identify and mitigate projects for fostering business relationships and performing regular meetings with global studio IT teams.
• Provide 24/7 NOC support for internal IT alerts and problem escalation.
• Design, architect, and recommend purchases for the vulnerability management program for cloud and on-prem endpoints, including OT/ICS systems. Brought in, configured, and managed Tenable Vulnerability Management and.

AU

• Determine the optimal approach for safeguarding the network, data, software, and information systems against potential breaches.
• Assessment of vulnerabilities, analysis of threats, and execution of security evaluations.
• Conduct investigation into cyber security standards, protective mechanisms, and validation protocols.
• Engage in dialogue with IT departments to address specific challenges pertaining to online safety.
• Compute precise cost approximations and classify integration challenges for IT project groups.
• Planning and crafting of robust security frameworks for any IT endeavor holds utmost significance.

Greenbrae, CA, US

• Three-month contract position, brought in to fill in for existing employee who was on FMLA.
• Automated scripting of alerts and logging for daily operations of Taegis VDR to scan for, compile, and submit Enterprise vulnerability reports.
• Automated scripting of alerts and logging for daily operations of Cynerio to scan for, compile, and submit medical device vulnerability reports.
• Architect and manage daily operations of Taegis XDR SIEM solution for endpoint EDR and SOAR operations. Create custom rulesets as required for monitoring and the escalation of suspected endpoint risks.
• Manage Cisco Umbrella for outbound proxy operations and defense against malicious software and threats.
• Manage Carbon Black for Endpoint and Malware Protection. Perform upgrade of the remote agent.

Chiyoda-ku, Tokyo, JP

• Fourteen-month contract position, brought in to assist Security Engineering during the sale of MUFG Union Bank to U.S. Bancorp.
• Proxy SME: Proxy engineering focusing on the User proxy, Application proxy, and proxy architecture duties for the global enterprise.
• Audit, review, approve, and work with the engineering team to implement web access request proxy changes, that are submitted by users, as required for business deliverables and projects.
• Troubleshoot proxy connectivity issues for internal customers as required to ensure fast turnaround of problem and customer satisfaction.
• Audit existing proxy changes and file change audit paperwork detailing approved web proxy changes for the business.
• Review, approve, and engineer changes as required for the enterprise Netskope CASB (Cloud Access Security Broker) configuration.

Novato, California, US

• Manage, configure, and operate Tenable VM. Submit weekly vulnerability reports for all production and enterprise Windows/Mac/Linux endpoints and assets. Work with Site Reliability Engineers to mitigate vulnerabilities.
• Configuration, management, and daily support of Palo Alto NGFW with Panorama Orchestrator.
• Configuration, modification, and daily support of edge & internal Palo Alto WAF providing access services for all local and remote locations.
• Deploy, configure, and manage nine global Security Onion forward nodes configured in TAP mode (a sensor that forwards all logs via Filebeat to Logstash on the manager node, where they are stored in Elasticsearch on the.
• Architecture/Technical lead for a 'Rip-n-Replace' strategy to move the enterprise from Sophos to Sentinel One EDR. Architect, deploy, configure, and manage Sentinel One EDR solution across multiple global sites for.
• Support daily operations and configuration of the enterprise Okta MFA platform

Midvale, Utah, US

• Architect, configure, and manage NetWitness clusters and optimize for network traffic ingestion.
• Manage IPAM platform for management of store DNS/DHCP; Configure and manage PCI payment systems across national stores.
• Architect, design and build-out GRC on-prem clusters. Wrote PowerShell and PowerShell scripts to automate various GRC back-end tasks.
• Manage operations of Splunk SIEM as required for security operations and enterprise troubleshooting.
• Configuration, modification, and daily support of edge & internal Palo Alto WAF providing access services for all local and remote locations.
• Perform weekly scans, research, and track known bugs and patch servers and applications to mitigate vulnerabilities.

Newport Beach, CA, US

• Perform weekly vulnerability scans of all external and internal corporate assets and work with IT engineers to mitigate vulnerabilities on sites containing HIPAA-protected data
• Designed, built, configured, and documented the MDM solution to manage all company-owned mobile devices.
• Configure and manage DLP gateways for HIPAA, PHI, and PII compliance.
• Leveraged EDR to identify rogue actors within the corporate network. Perform analysis of rogue actors and mitigate as needed.
• Conducted security audits of 3rd party vendor configurations. This resulted in stronger SSL and cipher suites on 3rd party sites containing PHI.

Culver City, CA, US

• Six-month contract position, brought in to harden and secure the cloud-hosted digital media product "Ci Media Cloud" https://cimediacloud.com
• Worked within a Scrum development methodology and conducted regular vulnerability audits to evaluate attack vectors and software/configuration vulnerabilities on cloud storage platform.
• Monitor CVE databases and identify open vulnerabilities on affected software.
• Document threat defense strategies for event escalation, triage and remediation. Write and publish SOC frameworks. Conduct ongoing assessments of the service infrastructure and application logic. Produce clear and.

US

• Build, configure and manage 21 International public gateways and tested, provided lead Project Management for secure connectivity of 20k global telecommuters and contractors providing 24/7 SSL VPN access
• Responsible for 24/7 troubleshooting of networking equipment across multiple global datacenters
• Proactively perform HIPAA compliant security best practice assessments to mitigate potential threats and risks to company data using IDS/IPS tools
• Support network connectivity, security monitoring and support for forward-facing customer PHI websites.
• Design, Build and document B2B VPN tunnels, using HIPAA compliant best practices, for 80+ offshore 3rd party vendors
• Write and maintain end-user documentation for VPN Telecommuters and 3rd party B2B Business Managers. Manage external vendor connectivity to meet required Business SLA & Security agreements

San Francisco, CA, US

• Managed department of 13 Windows and Mac desktop and printer engineers providing 24/7 deployment and triage to 1500 users in 3 locations. Duties included hiring, daily supervision, setting performance standards and.
• Perform daily Desktop/Server network security assessments and best practice evaluations to ensure strict CIA of all company data. Managed daily operations of two repair / R&D labs.
• Budgeted, licensed, and managed successful company-wide deployment of Windows 2000 / Office XP migration
• Identify configuration-level threats and risk exposure to specific attacks
• Identified IT goals and drafted capital budgets. Managed the accounting and controlling of IT assets
• Continuously connected with customers for systems and support evaluations. Acted as liaison between users, programmers, and external vendors for support services