• Design and deployment of ZScaler’s Internet Access (ZIA) solution.• Integration of ZIA with Fortinet Routers to Enable SD-WAN on our remote locations• Zscaler Private Access (ZPA) deployment for access to internal corporate assets, applications, and resources. • Palo Alto firewalls - management across 4 data centers, multiple distribution centers to ensure security best practices remain compliant, disaster recovery redundancy exist, and proper PCI network segmentation is in place and effective. • PCI 4.0 Compliance and Class 1/Class 2 network segmentation meets requirements for existing technologies and any future technologies or business processes brought online remain compliant as well. • Fortinet SD-WAN devices/routers deployed, configured, and integrated with Zscaler’s platform for proper content filtering and SSL inspection of all traffic leaving remote offices via the local ISP routes. • Managed Aruba’s ClearPass platform for all Network Access Control, Authentication, and controls for devices types, network access, etc. • Operated and managed Skybox Security’s continuous exposure management platform to ensure policy compliance, attack surface mapping, security policy management, and asset inventory across our 6000+ multi-vendor firewalls, SD-WAN appliances, and Azure firewalls.

>Configuration, tuning, and operating several Cybersecurity tools such as: McAfee/Trellix, CrowdStrike, and Zscaler.>Lead planning and implementation of security related technologies in multiple environments.>Operate endpoint and network security tools for internal use and customer environments that reside on premises and in the cloud.>Provide administration and operationally support adopted endpoint security technology covering EDR (Endpoint Detection and Response) and Next-Gen Anti-virus solution.>Support investigations and contribute to large and small-scale cyber breaches.>Understand the business need of web security and be able to brief customer on its importance and implementation requirements.>Deployment and maintenance of web security and endpoint applications.>Document, maintain, and improve standard operation procedures (SOPs) and processes regarding web security and endpoint management.>Web security and endpoint security best practices, active threats and mitigation strategies.>Consistently create, tune, review and analyze policies.>Leading, guiding, designing, and developing security strategies and solutions for cybersecurity across a hybrid, multi-cloud environment.

• Design and deployment of ZScaler Internet Access (ZIA) product• Integration of ZIA with Aruba Silver-Peak SD-WAN solution• Configuration of integrated ZScaler services such as SSL inspection, Advanced Threat Protection, Zscaler Client connector, etc.• Generating Standard Operating Procedures for cross-functional teams and support• Creating KBAs which reference internal processes and procedures within General Dynamics for configuration, modification, and/or change request related to deployment standards.• Zscaler Private Access deployment and feature support• SIPA (Source IP Anchoring) configuration and implementation

Responsible for vulnerability management and remediation, owning and driving the company’sinformation security process, relating to cybersecurity, regulatory compliance, and audits• Organize and manage the risk management and mitigation activities• Establish the security capabilities including monitoring, pervasive detection, coordinated response,efficient remediation, tools engineering, regular testing, and hardened provisioning• Collaborate with senior management across the company to prioritize security initiatives.• Liaise with external agencies and advisory bodies as necessary, to ensure organization maintains a strongsecurity posture• Work with application and system owners to help implement and monitor security controls toproactively identify risk issues and ensure adequate security solutions are in place throughout all systems• Establish control-related process/procedures and while working towards building relevant securitymetrics and dashboards• Identify potential threats and subsequent remediation of vulnerabilities in the environment• Work closely with various business and support teams to identify and establish key risk indicators andwork towards operationalizing relevant use cases• Provide periodic reports to management team and key stakeholders

SkillsPrimary role consist of team lead/ Sr. Security Systems Analyst to function as supervisor for SecOps and management of the vulnerability management platforms such as Qualys and Rapid7 InsightVM for all vulnerability identification, tracking, remediation plans, risk assessment, and trending information. I report all remediation and mitigation recommendations as needed.• As a MSSP functioning bank, I was also responsible to work directly with 20 additional associations to perform accurate scans, reporting, mitigation strategies, support for resolutions, and training.• Ensured that AgFirst SLA timeframes for remediation of Severity 4 & 5 vulnerabilities were met for each of the 19 farm credit associations as well as AgFirst resources. This included working with 19 separate CIO, ISO, and Support staff as needed.• Managed and leveraged Palo Alto Firewalls, various open source tools, Triton APX web proxy filters, and Riverbed appliances, among others to perform threat hunting based off the accepted and ingested threat intelligence.• Responsible for reviewing threat intel feeds, integrating those with our products to provide robust defense and response capabilities.• I worked to schedule, design, and fully carry out our annual IR exercises following the approved and documented procedures, processes which included C-level, legal, 3rd party risk management, GRC, audit, along with the necessary infrastructure and security analyst.• Reviews to enhance controls, security postures, and integration of controls/products to ensure a high level of trust/visibility, while ensuring objectives and initiatives aligned with business goals.• Managed our vendors and also provided the architectural and technical guidance for implementation or replacement of security tools or product suites.• SOC 2, NIST/CST Framework/Maturity Models, FFIEC• Implementation and continuous improvement of XDR Platforms.• ZScaler ZIA Implementation, monitoring, and product maturity

This position serves as a technical security analyst for projects and implementations. Develops, evaluates, and manages systems security and technologies across the enterprise. Intrusion detection, security system scanning, password auditing, and network based and Web application based vulnerability scanning. Requires technical expertise in systems administration of industry standard security tools, combined with the knowledge of security practices and procedures. Assists in the development and implementation of security policies and procedures (e.g., user log-on and authentication rules, security breach escalation procedures, security auditing procedures and use of firewalls and encryption routines). Analyzes the results from security scans and provides technical insight and support of remediation of said findings and recommendations. Monitors, identifies, investigates, and resolves issues related to security breaches, unauthorized access, or potential security risks. Implements software fixes (patches) to address system vulnerabilities such as malicious code, cross site scripting, SQL injection, and other known exploits. Manages, deploys, and configures endpoint antivirus and anti-malware solutions. Also advises management on effective operating procedures and policies.