Applied hardening standards that installed critical security upgrades, updated anti-virus signatures, and disabled unnecessary ports and services which prepared the system for production use and minimaxed attack surfaces.Helped enhance audit trail processes for the individual with approved access to company resources based on business justification and managerial approval which guaranteed the correct assignment of privileges.Provided / revoked rights, roles, and access to company resources. Submitted requests for users via the Service Station portal (which is part of the ServiceNow Platform) and/or Quest Active Roles application for membership to Active Directory groups. Viewed audit trails of submitted requests to verify the requestor, approver(s), what was requested, and approved time and date.Attended weekly/monthly meetings with stakeholders and supervisors discussing the evolution of the company. Discussions ranged from organizational changes to technical innovations and how security can be implemented to ensure that employees and sensitive data remain safe.Analyzed Power BI reports to verify if Windows servers contained scheduled jobs while integrating Service NOW (SNOW) ticketing system; prioritizing patch installations such that security patches for critical or at-risk systems are installed within 30 days.Provided IT Best Practices awareness session for employees that included guidance for Password complexity, how to report phishing, how to secure company issued resources (ie Laptops, smartphones), how to securely access company resources via BYOD (Being your own device).Assisted in creating policies, procedures, and guidelines on how to request roles for new hires and contractors, how to provide access to network resources and applications, and how to decommission accounts to revoke access.

Conducted a Payment Card Industry (PCI) compliance scoping assessment for an e-commerce client that included completing a Self-Assessment Questionnaire (SAQ-A) which helped validate the applied PCIDSS requirements.Performed an impactful validation of wireless access points (WAPs) as an Associate Qualified Security Assessor (AQSA). Analyzed quarterly scans for rogue access points and conducted departmental interviews to prevent malicious users to gain access to cardholder data (CHD).Provided consultation services for the Chief Security Officer (CSO) for a Fortune 500 on-prem client to conduct a risk assessment on application security systems to establish business impact analysis (BIA) scoring and enhance PCI program.Performed a gap analysis on wireless point-of-sale (POS) registers and web iFrames; identifying encryption levels and unsecured wireless protocols implemented by the organization, intending a high-level focus to remediation processes.

Implemented a virtual testing environment using VMWare and Hyper-V for application testing, to verify hardening standards, testing critical security/application vulnerability patches, and custom OS changes, which allowed customers to confidently implement suggestions and ideas into their environment due to the testing procedure. Assessed the completeness of SQL queries to establish database corruption by re-applying processes and procedures regarding correct settings for GUI access; quickly regaining access to the ticketing system to continue their business-as-usual (BAU) operations.Managed the processes of identity and access management by provisioning and/or revoking credentials based on access control policies, enforcing internal access to sensitive authentication data to respective parties.Evaluated the configuration of internal applications such as, Open Manage Server Administrator (OMSA) for clients which allow them to monitor the server’s processes and software development life cycle (SDLC) procedure, allowing a centralized process for remediating vulnerabilities. Identified internal issues, such as, storage area network availability, including encryption ciphers; assisting stakeholders to understand the effectiveness of their systems integrity.