Stephen H. Email & Phone Number
@bcbstx.com
LinkedIn matched
Who is Stephen H.? Overview
A concise factual answer block for searchers comparing this professional profile.
Stephen H. is listed as Cyber Event Incident Consultant, Team Lead, Incident Response Team at Health Care Service Corporation, a with 595 employees, based in Rockwall, Texas, United States. AeroLeads shows a work email signal at bcbstx.com and a matched LinkedIn profile for Stephen H..
Stephen H. previously worked as Senior Cyber Event Incident Specialist, Incident Response Team at Blue Cross And Blue Shield Of Illinois, Montana, New Mexico, Oklahoma & Texas and Cyber Event Incident Specialist, Incident Response Team at Blue Cross And Blue Shield Of Illinois, Montana, New Mexico, Oklahoma & Texas. Stephen H. studied at Ohlone College.
Email format at Health Care Service Corporation
This section adds company-level context without repeating Stephen H.'s masked contact details.
AeroLeads found 1 current-domain work email signal for Stephen H.. Compare company email patterns before reaching out.
About Stephen H.
Stephen H. is a Cyber Event Incident Consultant, Team Lead, Incident Response Team at Health Care Service Corporation. He possess expertise in servers, troubleshooting, systems management, security, active directory and 45 more skills.
Listed skills include Servers, Troubleshooting, Systems Management, Security, and 46 others.
Stephen H.'s current company
Company context helps verify the profile and gives searchers a useful next step.
Stephen H. work experience
A career timeline built from the work history available for this profile.
Senior Cyber Event Incident Specialist, Incident Response Team
Current
Cyber Event Incident Specialist, Incident Response Team
Security Specialist
Responsible for providing continued Security management, across 26,000+ AT&T Windows hosts, and supporting the transition to outsourced vendor IBM. Responsibilities include enterprise wide security automation, GPO updates, mitigating passive vulnerability scan results, incident response, patching, identity and access management, audit evidence collection, architecture and design updates, identity segmentation, least privilege enforcement, and legal reviews.
Professional-Technology Security
(Cleared for Government Systems Management) Responsible for providing security management across 26,000 Windows Server hosts, spanning multiple domains, network zones, and geographic boundaries. Primary security responsibilities include: incident response, domain hardening, MFA implementation, lateral movement and privilege escalation prevention, log aggregation, vulnerability scan mitigation to include protocol and cypher assessment, Identity & Access Management to include least privilege by design. Secondary security responsibilities include: red team / blue team activities varied by directive and authorization, firewall requests, patching, producing audit evidence on request (PCI Flexware, PCI Merchant, SOX etc.), crafting server access policies and application support methodology documents, architectural design of tools and working with developers on design realization, quarterly audit policy review with AT&T Legal, log analysis and investigations.Operations responsibilities include: domain policy management, access and O/S troubleshooting, script and c# writing as needed, security consultations, asset and build drift management, Experience Highlights• Member of a tiger team focused on penetration testing with MimiKatz, pass-the-hash, golden ticket, kerberoasting, John the Ripper, hashcat, bloodhound, and metasploit.• Worked with Active Directory and Engineering on Domain hardening - Analysis and removal of weak protocols (NTLMV1, WDigest, SSL, TLS 1.0/1.1, LLMNR) - UNC Path hardening - MFA implementation- Prevention of lateral movement and privilege escalation (identity segmentation, configurations, and PAW provisioning). - FIPs settings for government compliance - High encryption protocols for RDS on both servers and desktops • Operating System Vulnerability scan mitigation• Worked with Active Directory team to implement GMSA credentialing for service accounts, the Microsoft Tiered access model, and credential hygiene techniques.
Systems Manager - Systems Management & Security Services
I was the architect that designed from the ground up our current access provisioning systems. These systems provide evidence artifact collection for external auditors, provisioning regular access based on server state and emergency access using a Just in Time (JIT) style automated solution for authorized parties. Automation is central to the design, as are data validation and audit control pointsI wrote and maintain the Server Access Documentation and the website it resides on. This documentation explains access and security policies, configuration policies and guidelines, identity management and more. It further explains how to perform specific application administrative actions and configurations necessary to work with less than administrative rights. It contains job aids for the tools, as well as how to acquire elements not provisioned by the Security team (such as acquiring a company issues ID, acquiring a non-expiring password, or creating a group in the domain).I’m a member of both the council that reviews proposed group policy changes, and the Virtual Build team that reviews all proposed changes to builds. In this role we review the proposed changes against corporate policy, and also against needs of the business, value add, and risk, and then determine if the change will be implemented. Several audit controls are in my care, and during audits I’m required to collect artifacts. On a quarterly basis I perform an audit policy review with the AT&T Legal department, and when AT&T Security Governance requests audit data of my team, a large portion of those requests come to me for evidence production. I’m the SPOC for Windows System Hosting with regard to Enterprise Security Manager. I work with the Chief Security Office in determining what should be changed in the scan templates, applying suppressions, risk mitigation, decommissioned agents removals, fixing broken agents, and assisting the System Deployment teams when they have agent installation issues.
Systems Manager - At&T Server Security & Compliance Team
Primary areas of responsibility include rights management, monthly security patching, GPO sub team, Server DB sub team, Antivirus remediation, audit evidence collections, VPMO consultations, troubleshooting, break/fix and various other SA functions as needed.
Systems Manager - At&T Server Operations / Security Team
Primary areas of responsibility include granting and provisioning all west coast server access requests. Perform monthly security patching. Perform patch, Trend, content advisor, and Tier 2 monitoring remediation. Additionally, I am brought in on new and existing VPMO calls for security related issues. I am the team SME for issues with the server database, and SA critical reports. I am the SPOC that manages all affiliate servers (SBCLD, SBCIS, and PBIS) and backups.
Systems Manager - Sbc Server Operations
Systems Administrator (SA) team member managing a server base in excess of seven thousand servers, spanning multiple geographic boundaries. Responsibilities include upgrade, repair, maintenance, troubleshooting, and backup/recovery, lease roll, patching, and monitoring, as well as assisting application support teams with issue resolution. I served on the Server Database design team, and represented my organizations needs in the detailed designs. Special projects I lead included bringing non-supported / non-standard sites up to corporate standards and onboarding them into standard support. This included firewall activities, working with network for B2B circuits, and managing issues around DMZ and NAT requirements. Additionally, I wrote scripts to support user and machine account migrations, move data, and gather data in preparation of activities. I was responsible for collapsing several legacy NT4 domains after integrating the users, machines, and services into our active directory. I removed trusts, performed server consolidations, and cluster migrations.
Team Lead - Sbc Long Distance (Sbcld)
Responsible for managing the desktop, server and network teams, which are segregated from the corporate teams by government regulation. Lead various projects in areas of networking, server, and desktop initiatives. In addition to a lead role, I acted as the CEO’s personal executive support and the customer interface for the Chief of Staff, coordinating all activities and initiatives. Once government regulations (271/272) were eased, I was heavily involved in merging these existing teams into their corporate counterparts.
Systems Analyst
Initially contracted for desktop services, however I was quickly hired and promoted into a lead role. I identified various issues with the environment (lack of switching and a supernet that slowed down access, lack a central helpdesk and ticketing system, backup failures, exchange database hadn’t been compressed in years, rompaqs had not been updated in years, etc.). Based on my observations, a system was put into place. I was then promoted to acting team-lead until hired into that position permanently.
Systems Analyst
Responsibilities included support for Windows servers, VPN and SecurID administration, application, O/S, and hardware support. Contributed to central knowledge base and participated in software and infrastructure pilots.
Tier 2 Systems Analyst
Primary responsibilities included identity and access management across Windows and Novell environments, SecurID and Citrix Administration. Provided troubleshooting and support for remote access, desktop hardware, O/S, and network to users worldwide.
Technical Staff
Primary responsibilities include: desktop, server, and network support. Secondary responsibilities include: Profit Key database COBOL programmer.
It Specialist
TRESP contracting to the U. S. Department of Energy: Desktop Support Technician: Provided Windows and Novell account administration, as well as phone and on-site technical support to users.
Sailor
Duty Location: Recruit Training Command (RTC) Orlando Florida Duty Location: Naval Air Station (NAS) Meridian Mississippi Duty Location: NAVHOSP/NAVMEDCEN Oakland Duty Location: USNS Mercy TAH-19 – DEPMEDChemical Biological Radiological (CBR) decontamination team memberTAD Location: Naval Air Station (NAS) Alameda TAD Location: Naval Air Station (NAS) Lemoore Emergency underwater HELO egressIn service certifications• Certified Emergency Underwater Escape Trainer N8/9D5• Certified Nuclear Biological Chemical warfare decontamination HSETC class 95010• Certified Damage Control • Certified Firefighting • Certified Life Raft Commander • Certified BLSCommendations• Letter of Commendation from the Deputy Fleet Surgeon U.S. Pacific Fleet• 2 Letters of Commendation from Rear Admiral D. A. Snyder, Commander NAVMEDCEN Oakland • Letter of Appreciation from Admiral F. G. Sanford, Commander NAVHOSP Oakland • Letter of Appreciation from Admiral William D. Center, Commander Naval Base San Francisco / Combat Logistics Group 1Honorably discharged from Active Duty Oct. 1996.Honorably discharged from Reserve status Dec. 1999
Stephen H. education
Frequently asked questions about Stephen H.
Quick answers generated from the profile data available on this page.
What company does Stephen H. work for?
Stephen H. works for Health Care Service Corporation.
What is Stephen H.'s role at Health Care Service Corporation?
Stephen H. is listed as Cyber Event Incident Consultant, Team Lead, Incident Response Team at Health Care Service Corporation.
What is Stephen H.'s email address?
AeroLeads has found 1 work email signal at @bcbstx.com for Stephen H. at Health Care Service Corporation.
Where is Stephen H. based?
Stephen H. is based in Rockwall, Texas, United States while working with Health Care Service Corporation.
What companies has Stephen H. worked for?
Stephen H. has worked for Health Care Service Corporation, Blue Cross And Blue Shield Of Illinois, Montana, New Mexico, Oklahoma & Texas, Ibm, At&T, and Tek-Systems / South Western Bell Long Distance (Sbcld) Contract.
How can I contact Stephen H.?
You can use AeroLeads to view verified contact signals for Stephen H. at Health Care Service Corporation, including work email, phone, and LinkedIn data when available.
What schools did Stephen H. attend?
Stephen H. studied at Ohlone College.
What skills is Stephen H. known for?
Stephen H. is listed with skills including Servers, Troubleshooting, Systems Management, Security, Active Directory, Windows Server 2003, Wan, and Disaster Recovery.
Search by job title, company, industry, location, and seniority. Export verified B2B contact data when you need it.
Start free trialCheck these profiles if this is not the Stephen H. you were looking for.
View similar profiles