Gavin Mcdaniel Email & Phone Number

St. Louis, MO, US

• Security architect for multiple, concurrent projects.
• Develop and oversee security design and implementation for several projects from the planning phase through implementation.
• Ensure projects adhere to Ameren and regulatory standards, guidelines, patterns, and industry best practices
• Implement new, automated process for project intake and tracking.
• Developed a new template for projects to use as the primary security deliverable.
• Regularly discuss and explain complex security topics, processes and issues with a variety of business partners who may have limited technical knowledge.

St. Louis, MO, US

• Implemented and configured a new Endpoint Protection/EDR tool in coordination with the Server, Workstation, MacOS, Citrix, and Patch Management teams to approximately 4,500 devices.
• Implemented a new File Integrity Monitoring tool for the PCI environment. Worked with the Server and ServiceNow team to develop and implement a new, streamlined process for generating tickets for File Integrity alerts.
• Implemented and maintained a new SOAR tool. Worked with the Security Operations Center to gather requirements and implement custom workflows with the SOAR to enhance their response capabilities.
• Implemented and configured a new SIEM solution.
• Implemented and configured a new Vulnerability Management tool.
• Extensive experience in automation using Python 3 and PowerShell with various tools/APIs (CrowdStrike, Carbon Black, Cimtrak, Rapid7, ServiceNow, Cylance, QRadar, Signal Sciences, Microsoft Graph API, JAMF, Active.

Arlington, Virginia, US

• Participate in Cyber Shield as Blue Team Member. Cyber Shield is the Army National Guard’s annual response exercise involving participants from 42 U.S. states and territories.
• Ensure the successful implementation, operation, and maintenance of all communication systems 2/130 Infantry Battalion to include, but not limited to, satellite, VoIP, data, and HF radios.
• Serve as the assistant communication security (COMSEC) custodian. Manage encryption keys distributed to units within the 33rd Infantry Brigade Combat Team (IBCT). Load encryption keys onto various military equipment.
• Command Post Node (CPN) team chief – Supervise and configure both secure and non-secure VoIP and data traffic within the Brigade Special Troops Battalion (BSTB) headquarters using Cisco routers and switches as well as.
• Served as Brigade Information Management Officer - Managed classified information, ensuring the operational security of the network on Camp Phoenix in Kabul, Afghanistan, and installing network infrastructure to.
• Team lead for Cyber Network Defense (CND) team for 33rd IBCT.

• Coordinate across several teams and departments to gather and synthesize requirements to find solutions that are able to meet all requirements therefore reducing cost.
• Keep up with new and emerging threats to ensure currently implemented security solutions and architecture can mitigate threats and suggest solutions that can counter current and future threats.
• Conduct regular market research on industry products and solutions that could fill identified gaps, automate processes and procedures, and improve overall security posture of the agency.
• Identify best solutions for requirements, draft proposals, and oversee implementation.
• Provide guidance for migration of on premise resources to a cloud environment.
• Work to integrate existing security solutions to further enhance capabilities.

Bloomington, Illinois, US

• Lead security analyst for multiple (between ten and fifteen) concurrent projects with multiple production implementation dates.
• Develop and oversee security design and implementation for several projects from the planning phase through implementation.
• Create and maintain necessary security documentation to include role-based access matrixes, network security topologies, vendor security audits, and both static and dynamic code scan results.
• Ensure input validation is adequate on both user interface and web service calls.
• Facilitate and analyze Criticality and Information Risk Assessments using the FAIR methodology. These assessments are used to determine any risk State Farm will incur once the solution is implemented.
• Advise the business area on State Farm’s Enterprise Information Security Policy and assist them in filing for any exceptions to the policy when they are not in compliance. Explain mitigating security controls that are.

• Installed and configured new equipment necessary for business expansion.
• Implemented new backup plan for all company data.
• First line of support for user technical issues.
• Created accounts and provisioned access for new users.