- Perform network vulnerability scans across the globe using Nexpose.- Perform external vulnerability scans to FIS assets using Qualys.- Install and manage over 400 Linux and Unix system for Nexpose scanners, including Ubuntu, RedHat and CentOS. - Perform risk assessments to determine false positives and risk acceptance from scan data. - Perform vulnerability remediation on systems when deemed necessary. - Provides vulnerability reporting to management and clients when requested.- Use MySQL Workbench and dbForge to query databases for investigation. - Perform in-depth log analysis on vulnerability scans when needed. - Perform NMAP scans and other connectivity methods for unreachable networks.

- Performed risk assessments on request for firewall rule changes on the network.- Engineered, configured, managed and upgraded various firewall platforms.- Performed firewall rule analysis and remediation.- Filed Risk Acceptance and False Positives for security devices.- Worked on security related projects engineering new solutions for infrastructure.- Used SIEM tools troubleshoot outages, anomalies and connectivity. - Developed, implemented, and maintained Security solutions for Acxiom and customer networks.- Engineered, installed and managed Checkpoint, and Cisco firewalls. - Migrated Cisco Pix firewalls to Cisco ASA firewalls.- Worked projects from start to finish building and implementing security solutions to include VLANS, VRFs, NATs, Spoof Groups, etc.- Interacted and consulted with Acxiom customers to collect required solution information.

- Performed risk assessments on request for firewall rule changes on the network.- Enhanced network and systems security internally and at all points of egress.- Engineered, installed and managed Checkpoint, Juniper, and Cisco firewalls.- Lead the development of testing, migration, integration, and implementation plans for deployment projects and operational support.- Engineered, installed, configured, and managed IBM ISS Network sensors (IDP/IPS solution)- Executed in a methodical manner to gather, document, and present specific customer requirements.- Solved critical infrastructure security issues using risk and mitigation strategies.

- Participated and lead projects for new network connectivity efforts and provide documentation and process where none exist.- Interconnecting networks at Western for the SCADA and Business systems including LAN/WAN and serial communications.- Built Virtual Private Networks (VPN) using IPSec between substations throughout Arizona, California, and Nevada for the Smart Grid.- Provided strategic planning, developing, evaluating, and implementing systems for SCADA controls and data/video communications access paths through Western-wide collaborations.- Reviewed, evaluated, and advised on the effectiveness, technical adequacy, and suitability of work and proposals of others pertaining to cyber-security, networking, and related systems.- Installed and ensured efficient and effective operation of cyber security assets such as firewalls, intrusion detection, intrusion prevention systems and other security systems that protect both SCADA and Business systems.- Engineered Smart Meter & Relay solution at 7 substations for Transmission and Generation networks.- Designed and implemented the segmentation of Transmission's process networks from the corporate network using reverse proxies and firewalls.- Segmented new customers requiring ICCP and Pi data from the process LAN using firewalls and VRFs, and VPN solutions.- Made ACL modifications and or additions to Juniper and Cisco firewalls, intrusion detection systems, intrusion prevention systems and network equipment.- Developed policies and procedures for the configuration, operation, administration, and management of Western's interconnected network, including hardware and software.- Developed and maintained guidelines, standards, and instructions for cyber-security and networking systems.- Designed, installed, configured, and maintained the wireless network at Western Area Power Administration.- Provided Packet and Dataflow analysis when needed to troubleshoot the network.