James B. Email and Phone Number

Working within the DevSecOps team, 100% focused on improving the security of systems that are hosted at AWS. Including day to day vulnerability management and on-boarding and off-boarding of users. Organisation and management of penetration testing and the remediation of any found vulnerabilities. Patch management including preprod and production EC2 and Openshift servers.Key Achievements: -Improved the CIS Benchmark score, using AWS WAF, Cloudwatch, GuardDuty, Security Hub and IAM alongside other solutions including Elastic Search, Kibana and Slack. set up cross account access and monitor for unusual activity and threats on 350+ EC2 servers. Ran a POC for Cloud Security Posture Management which included Dome9 and Prisma Cloud which the latter was chosen as a group solution.Ran a POV from inception to Production for a cloud based anti-scraping solution to stop rate-raiders and bots from reverse engineering the insurance rates.Deployed and used both InsightVM and Qualys in AWS

As a Windows Server administrator my role includes:• Responsible for Active directory, DNS, DHCP, group policies• Maintaining all domain controllers, patching via WSUS• Antivirus deployment and security updates via Lumension Endpoint Management and Security Suite• Application white-listing via McAfee HIP’s.As a Linux systems administrator:• Responsible for the choice of distribution, application choices, QA and security patching.As an email administrator I’m responsible for:• Designed and maintain an 8 server Exchange 2010 cluster (4 CAS and 4 MBX) and migrated from 2003.• We also utilise virtual load balancers, Clearswift Secure Gateway• Migrated our email security solution including extracting and transferring over 26 million archived emails from Messagelabs (Proofpoint) to Mimecast. • Use Mimecast for external security, business continuity and archiving for 7 years.As a security analyst:• I have researched potential vendors and arranged annual external penetration tests. • I’m responsible to research and understand each vulnerability, assign to the appropriate team and ensure swift remediation. • The above are tracked and reported on weekly via an internal security report. Other duties include:• Checkpoint firewalls and Scansafe web security and regularly make changes to the external policies.• Blackberry Enterprise Server, Citrix, • Windows desktops (XP, Vista and Windows 7) including office and everyday desktop applications• Backup Exec.• Computer Associates RHA SQL Replication. • VMware infrastructure, management of hosts and guests.

All aspects of technical support including Exchange Server, Checkpoint firewalls and the day to day support of office and remote staff.