Team Lead, Responsible for the administration, configuring and creating Tripwire Rules and security policies for Suse Linux, Windows 2003 & 2008 servers/Nodes that are similar to Symantec ESM and meet information security compliance regulations with MAS(Monetary Authority of Singapore) TRM guidelines. Created documentation/spreadsheets that mapped the workflow of the Tripwire rules and security policies to source enterprise IT security controls. Created custom PowerShell scripts and RegEx code that pulled data and matched conditions to be met for a pass or fail condition for the policy tests. Provided guidance for the project to help meet time lines and project goals. Worked closely with management to recommended strategies and ideas that would be submitted to the steering committee. Uncovered deficiencies in the way resources were being used and recommended management address separation of duties issues. • Installed/configured TEST/DEV/Repository, Tripwire Enterprise Console environments• Created Rules for File Integrity Monitoring• Develop and reviewed KOP documentation for Consoles, Agents, MAS Relevant Server’s, Project Scope and all documentation relevant to the DB-SIT / TW project• Create, implement and documented the White List exception process for all environments.• Created Policy Tests that monitored key security controls and configurations.• Created new method to identify “In Scope” servers/asset inventory based on hosting of MAS critical applications• Interact with L1 operations team/Neutral Control Team• Lead for documenting Application Penetration Test Findings• Lead for coordinating integration between Tripwire with ArcSight,• Configured ArcSight Active channel, filters for monitoring Tripwire events• Hosted vulnerability focus meetings centering around Java JRE 6 issues• Created rules for monitoring critical system files list.( Applications, SuSe 11-(Unix), Windows 2003 & Windows 2008)

Security Analyst IIResponsible for configuring, maintaining and implementing the File Integrity Monitoring (FIM) system, Tripwire, across a variety of multi-tiered platforms in PCI-DSS and eCommerce environments. Created Tripwire console structure based on specific site requirements. Initiate contact with management and facilitate informative meetings with external sites to gather site specific details for multiple lines of business and multiple applications. Identify server structure, and plan agent install schedule. Performed daily administration of the Tripwire consoles, moving agents to staging groups, conducted baseline scans, and linking nodes to business units. Communicated overall project progress to management. Designed technical documentation for Tripwire maintenance and troubleshooting. Provided Tripwire training to local site administrators to insure a successful roll out of the Tripwire agent install across the enterprise. Developed rule checks and task scheduling, created custom rules, performance tuned OS, resolved errors and deleted obsolete nodes, produced and managed reports, reconciled changes, promoted elements, and troubleshot network connectivity/rule check errors. General Application Maintenance such as software upgrades, installation/configuration of new agents, managing reports and alertsCollaborate with various lines of business and application teams, on an on-going basis, to identify and configure the critical files to the FIM solutionManage the policies established for monitoring the critical files/logs on the IT infrastructureMonitor changes to the critical files and escalate any malicious/unauthorized changes to the senior leadership for risk assessment and mitigationGenerate metrics reports presenting results and recommendationsEnsure the implemented solutions meet the PCI DSS compliance requirementsDocumenting FIM program, procedures, and other supporting information

Contracted through Jacobs Technology to evaluate Information Assurance Vulnerability Alerts (IAVA) and determined proper course of action to take to establish and validate compliance for Sec-Lee systems. Some of the technical tools used in this position included the e-Retina and SCAP to scan the Army Gold Master images for security vulnerabilities, group policies and all patches were up to date and in line with the NIST, USGCB. While in this position, I achieved the e-Retina certification.Additional duties included:Work closely with Senior Information Assurance Security Specialist to complete Information Assurance related tasks for SEC-Lee STAMISDevelop and implement information assurance/security standards and proceduresCoordinate, develop, and evaluate security programs for an organizationRecommend information assurance/security solutions to support customers’ requirementsIdentify, report, and resolve security violationsEstablish and satisfy information assurance and security requirements based on the analysis of user, policy, regulatory, and resource demandsSupport customers at the highest levels in the development and implementation of doctrine and policiesApply know-how to Government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and proceduresPerform analysis, design, and development of security features for system architecturesAnalyze and define security requirements for computer systems, which may include enterprise systems, workstations, and personal computersDesign, develop, engineer, and implement solutions that meet security requirementsAnalyze general information assurance-related technical problems and provide basic engineering and technical support in solving these problemsPerform vulnerability/risk analyses of computer systems and applications during all phases of the system development life cycle

Team Lead on a special project responsible for Information Security Compliance Enforcement on an Enterprise, Federal Reserve system level. Created the initial Project Charter & Scope. Utilized IBM's vulnerability assessment tool,TEM BigFix to scan all devices on the network for non compliant GPO's and security controls that were not up to NIST standards relating to Information Security control settings. Analyzed Group Policies that were being deployed to servers and client desktops. The operating systems included Windows Server 2003, Windows Server 2008, Windows XP, Windows 7, Solaris 10, Red Hat Enterprise Linux 4 & 5. Created a matrix that outlined which controls were in or out of compliance.

MCITP-SA & Full Active Secret Security ClearanceWorking on location at Fort Lee Army Base, CASCOM. Responsible for monitoring, patching, supporting and maintaining an Oracle 11g based web site, BASE4D. System was based on 4 HP web and database servers running in a RAID 10, Windows Server 2008 environment. Applications are Oracle 11g, Oracle SQL Developer 3.1, Symantec Backup Exec 2010 R3. Duties include scanning servers for vulnerabilities with Army Gold Master utilities. Patching servers with the latest updates. Monitoring Audit, System and Application logs for security System and Application issues. Secondary duties involve supporting the Special application, Oracle Database. Routinely deploying updates to the database, after hours and supporting the clients that use the application.Administer & document disk space allocation Administered database created in Oracle 11g. Created accounts, edited accounts, created levels of access for users of the database (BASE4D)Performed regular maintenance to the database, data pumps, added patches, features & updates.Administer system resources, servers, IP infrastructure & virtual environments Develop detailed documentation for all windows servers monitored Management backup solution for all Windows servers Research new security threats & maintain security standards on Windows servers Provide routine Windows server administration support on existing servers.Monitor logs for anomalous activity (hack attempts, service, failures, systems outages, etc…) Monitor Storage Area Networks (SAN) switches and subsystems for hardware and performance related issues Installing and upgrading, applying service packs and patches Monitoring health, tuning, storage, backup and recovery -Managing database users and securityWindows 2003/2008 R2, Server supportSAN management including VCB with backup exec 2010 -Support of all SQL 2000/2005 databases