Zscaler’s Security Cloud is a comprehensive, carrier-grade internet security and compliance platform running in more than 150 data centers distributed around the globe. Zscaler acts as a series of checkposts in between your organization and the public internet, scanning all incoming and outgoing traffic between any device, anywhere in the world, and the internet to identify and block potential threats and to protect your intellectual property.

• Technical Advisor and Senior Liaison between Security Solutions and the Security Operations Center (SOC).• Leading the design and management of critical SOC technologies (intrusion detection and protection, host based protection, 0-day and APT technologies (sandboxing, behavioral monitoring, etc.), packet capture and metadata analytic systems, DLP technologies, email hygiene systems, Security Orchestration Automation and Response (SOAR), and Data Forensics/Incident Response (DFIR).)• Developing strategies and tactical action procedures to respond to and recover from security breach including steps to minimize the impact.• Collaborating with security staff in conducting penetration testing and simulating attacks on critical systems.• Managing external engagement including scheduling, project management, and coordination with technical staff across CDT and customer departments to assess any indicators of compromise.• Participating in the procurement and engagement of outsourced security resources.• Participating/leading security incident response teams.• Participating in the development and maintenance of all necessary SOC policies, procedures, documents, and other artifacts as needed to operate and grow a successful security operations function.• Participating in post-incident reviews and develop action plans to reduce exposure to similar incidents.

• Lead engineer for the development, implementation, maintenance, and operations of the CSLB network and server infrastructure, including Hyperconverged Systems, virtualization platforms, Next Generation Firewalls, VPN, custom workflow and imaging system (IWAS), Interactive Voice Response (IVR) System, Office365/Azure, and L2/3 switches.• Security architect and principal for the implementation of secure, modern, and efficient enterprise solutions in alignment with State security policies, standards, and procedures. Primary point of contact for remediation of audit findings by external control agencies.

• Responsible for the development, implementation, maintenance, and operations of the Department’s information security program (Policy and Security Operations), including key strategic projects in direct support of the Department’s Strategic Plan and IT Strategic Plan.• Manage and mentor ISO staff by providing leadership in communicating the vision for excellent customer service and technical guidance in achieving short and long-term professional goals that benefit the employee and the Department.• Lead technology and security related design sessions, system walkthroughs, checkpoint reviews, testing, implementation activities, and oversight functions. Implement IT security policies, standards, and guidelines. Review current and relevant security related federal, state, and legislative mandates, and audit report findings.• Work closely with other sections of the Technology Services Division (TSD), business partners, and vendors, to ensure compliance with security, architectural principles and standards, system and software quality requirements, infrastructure management, performance factors, data management, and systems management.

Subject matter expert and lead for enterprise security vulnerability auditing, compliance, and remediation. This includes auditing Information Technology (IT) infrastructure, auditing compliance with security policies and regulations, identifying points of risk to CDPH information, and recommending specific preventative security measures. Installs, maintains, and utilizes several complex IT security systems such as nCircle IP360 and CORE Impact (to identify security vulnerabilities in web applications). Utilizes the highest level of expertise to analyze firewall configurations, system change requests, audit reports, and State/Federal guidance documents. Provides technical and project leadership to ensure compliance with State and Federal security policies (such as the Health Insurance Portability and Accountability Act (HIPAA)), and to protect Departmental information. Requires an in-depth knowledge of IT security best practices, the latest IT security tools and techniques, guidance documents from security organizations such as SANS, and the current Departmental enterprise software and hardware environment. Serves at the highest level of expertise in security compliance software systems and will have involvement in research, design, installation, maintenance, troubleshooting, and documentation of operating systems, application design, network changes and upgrades, and systems integration. Knowledge of forensic analysis and investigation of computers, using forensic software and hardware tools, including EnCase.

Eclipse Security Consulting, Inc. provides Information Security and Information Technology consulting services, to include security and infrastructure assessments, hardware and software implementations, disaster recovery and business continuity planning, and various compliance offerings for pre- and post-audit. What sets us apart from the rest is our honest approach to the overall project management. Our customers know when we will meet their milestones, how much it will cost, their ultimate ROI, and they will be involved every step of the way. Eclipse provides value to public government and private sector companies by offering efficient, experienced, professional services. We have the resources to complete any project securely, on-time, and within budget. Our team of experts is made up of bright, energetic professionals motivated by nurturing long-term relationships with our clients. We focus on building and maintaining strong relationships with our clients and our associates alike.

Reviewed and enforced State of California and US Department of Homeland Security (DHS) system security policies for bio-terrorism program integration with State agency infrastructure, through monitoring and auditing.Conducted security assessment overview of DHS systems and their integration with State agency infrastructure. Provided security and technical consulting for current project implementations.

Performed equipment and system repairs on behalf of multiple vendors at various hospital and military locations abiding by military procedures and policies. Performed security assessment for company wireless network and enabled security protocols to protect classified customer records and health information. Built, security hardened, and maintained external web services for customers.

Provided technical expertise within one or more core technologies, to customers and other team members in a 24x7x365 HP managed Qwest Hosting facility. Included installation and management of customer networks, servers, workstations, applications and databases. Worked with management and lead staff to make procedural changes that benefited the customer and/or company.

•Directed, established, and implemented the policies and procedures to support the organization's global security. Worked closely with corporate security personnel to apply policies to network areas in preparation of Sarbanes-Oxley audits.•Responsible for WAN/LAN merger, security implementation, maintenance, and procedures as recommended by the Center for Internet Security for entire WAN, VPN sites, and customer IPSEC tunnels.•Maintained Web, FTP, DNS, and DMZ networks.•Designed, installed, and connected data center.•Provided support for all company standard applications. Installed, upgraded, and configured workstations with new software releases, patches and resolved software related problems.•Ensured network (LAN/WAN) security access and protected against unauthorized access, modification, or destruction. Maintained data files and monitored system configuration to ensure data integrity.•Directed senior management in all aspects of infrastructure and security decisions.

•Designed, installed, and maintained existing new sites for global network including remote access as recommended by the Center for Internet Security. Connectivity included Frame Relay, ISDN, and IPSEC/GRE VPN.•Installation, configuration, and support of Cisco routers, switches, and PIX.•Generated documentation of system and device configurations as well as processes and procedures.•Implementation of a structured project methodology including well-defined and documented deliverables, documented designs, bill of material documents, and detailed task lists.•Maintained internal and external Solaris based DNS, FTP, and RADIUS systems.•Implemented EIGRP for global WAN.•Implemented IDS, network monitoring, and bandwidth monitoring solutions.•Performed technical and objective analysis of new security technologies and ensured implementation positively enhanced security posture of organization.