Chris Carpenter Email and Phone Number

Senior Network Security Engineer for the Texas Department of Public Safety. Primarily responsible for all aspects of Network Security for the Texas Department of Public Safety, the Texas Department of Emergency Management and the Texas Fusion Center. Duties include planning, designing, installing and maintaining the network security equipment for the main DPS campus and over 400 office locations across the State of Texas.• Team lead for the installation and integration of the Cisco Ironport Web Security installation project. Designed and executed the installation of 2 Ironport Web Security proxies using both WCCP redirection and explicit proxy configurations.• Team lead for the redesign and configuration of the Agencies network security infrastructure in order to provide better protection. Through strategic placement of different Cisco firewall products we were able to establish a layered security infrastructure to get better visibility on all inbound and outbound traffic for the agency.• Team lead for the selection, installation and integration of the Q1Labs Security Incident and Event Management (SIEM) Qradar appliance. The integration of the Agencies security, server and router device logging and netflow information provided invaluable insight and alerting on what was truly going on inside and outside the network.• Team lead engineer for the selection, configuration and integration of the Sophos Endpoint Security and Encryption suites for 12000 plus endpoints. The drive behind this project was to provide complete endpoint security by installing an anti-virus, firewall, host based IPS and application, DLP, device Control and Network Access Control (NAC). By successfully completing we have ensured all endpoints are protected and the data is encrypted.

Senior Network Security Engineer for the U S Army Medical Network Operations Security Center (MEDNOSC). Primarily responsible for supporting the U S Army Medical Commands (MEDCOM) network security infrastructure. Duties include planning, designing, installing and maintaining the network security equipment for six messaging centers and 65 plus medical facilities located all around the world.• Project lead for the network wide DISA directed installation of the Host Based Security System. Responsibilities include the coordination and configuration of site DMZ interfaces, software push and troubleshooting each installation. Once complete the HBSS system will protect over 50,000 workstations and 2000 servers.• Sought after for questions and problems related to the installation, management and troubleshooting of all network wide Bluecoat Proxy devices. Responsible for writing the Web Access policy for the MEDCOM users. Provided guidance to the U S Army Medical Information Technology Center (USAMITC) Commander regarding DoD policy on access restrictions and potentially harmful traffic that was traversing the MEDCOM network.• Spearheaded the Department of the Army Information Assurance STIG inspections. Provided guidance to supervisors on effective ways to perform the STIG inspections in order to become compliant with the DISA standards. The team completed STIG inspections of 80+ devices that were directly controlled by our office and was completed before our two week deadline.• Team lead for six Nortel contractors within the MEDNOSC, responsible for weekly update reports to the regional manager. Also responsible for reporting pay issues and other benefit related problems to the regional manager.

Senior Systems Engineer for the Counter-IED Operations and Integration Center (COIC) in Iraq. Primarily responsible for maintaining network connectivity and information availability for the Multi-National Forces – West (MNF-W). Additional duties include establishing and maintaining a network security infrastructure for the COIC enterprise.• Assisted with the restructure of the COIC Enterprise into Single Resource Forest. Migrating two domain controllersand five member servers and all COIC users in the MNF-W area of responsibility. By doing this we have establishedarchitecture standards and migration guidelines for Active Directory 2003 and Exchange 2003 for the COICenterprise.• Planned and implemented new security measures into the COIC network to help in the authentication, authorizationand accounting of network access and traffic. By installing a redundant ACS network we ensured that activity andaccess were logged and regulated in accordance with Department of Defense guidelines and regulations.• Project lead for implementing the Cisco Adaptive Security Appliance (ASA) into the COIC enterprise network. Formulated the installation plan for installing the ASA in the seven local and remote locations across Iraq and Afghanistan. Provided technical phone support and remote access support to team members making the project a complete success.

Deputy Theater Network Security Engineer for DRS Technologies in support of Multi-National Forces Iraq (MNF-I). Assigned to the Joint Network Operations Control Center, involved in making highly technical decisions affecting the entire Coalition Network in Iraq. Responsible for enforcing and maintaining a network security posture in-line with Department of Defense rules and regulations.•Deputy Theater Network Security Engineer responsible for managing 15 security engineers and 23 local and remote locations. Maintain overall responsibility for the uninterrupted operation of the Multi-National Forces Iraq network security communications systems. Provide daily and weekly status reports on all systems.Instrumental in the planning, configuration and overall implementation of the Cisco Adaptive Security Appliance(ASA). Created an implementation plan that was used as the installation standard throughout Iraq. Completed theASA upgrade three months ahead of schedule ultimately increasing network security, speed and thru-put.• Spearheaded the project to remove the Cisco Cache engines and install the Blue Coat Proxy SG 8000. Integrated theBlue Coat Anti Virus device into the network in order to mitigate virus, malware and malicious traffic using the ICAPprotocol. By upgrading the infrastructure bandwidth utilization was reduced by 28 percent and embedded maliciouscode and unauthorized traffic was intercepted inline and mediated.• Project lead for the theater wide upgrade of all SYSLOG servers. Wrote a thorough and detailed implementation planused by all regional security engineers as a template for installation. Used Kiwi Syslog and Kiwi CatTools to captureand archive firewall logs and configurations.

Senior Network Engineer for a Government Contractor in support of the U. S. Army’s Headquarters 3rd Armored Corps. Responsible for all aspects of network function for three tactical headquarters, including voice services, network services and Microsoft and user services.• Instrumental in the planning, design and implementation of LAN and WAN connectivity infrastructures based primarily on Cisco technologies. Provides technical and operational assistance for Information Assurance platforms to include firewall, IDS, accounting systems and network analysis.• Responsible for all aspects of LAN connectivity with special emphasis on the following equipment: Cisco 3800 series routers, 3500 switches, 3700 switches, PIX firewalls, Cisco Intrusion Detection System (IDS) and Cisco Access Control Servers (ACS).