○ Provided Training/documentation to additional support for Security In addition to IT and Hospital staff. ○ Life cycle management and review. ○ Team is solely responsible for our Palo Alto Appliance and future state network security including perimeter North South East West and GCP/Cloud vm Palos. ○ Hardware architecture and deployment. ○ URL decryption and expansion for egress traffic

Management of threats and vulnerabilities. Primary responsibilities Palo Alto network appliances network monitoring tools and logging. Auditing and reporting for multiple appliances. Providing our SOC with requested data feeds and creating workflows to allow actions for alerts from SIEM. ● Stealthwatch ○ Administration of application and users ○ Appliance software and lifecycle management. ○ Flow collector configuration. ● Palo Alto Firewall administration. ○ Traffic, usage, configuration and hardware reporting. ○ Policy audit configured to report on unapproved changes. ○ Reviewed all FW policies to ensure compliance and appropriate profiles were applied. ○ Country Code blocking ○ Performed UID agent server migration and configured appropriately to map user id to IP. ○ Installed and configured M500 appliances to report to SIEM○ Configured config exports to securely save the configuration. ○ Custom application and Profiles configured for various requirements.

Project-based role tasked with reviewing, securing, implementing, and documentation of new technologies and infrastructure. All projects are tracked and updated by utilizing Service Now. My responsibility includes creating Change requests and effectively communicating with any impacted location and approval from the change approval board while working closely with project managers to ensure deadlines are met. ● Palo Alto o Responsible for upgrades to PAN-OS on all corporate devices. o Implemented templates for device management. o Experience with High Availability Active/Passive & Active/Active configurations. o Configured custom roles for departments requiring different levels of access. o Documented processes and designs for operational turnover. o Provided tier 3 support for firewall related issues. ● Quest ARS o ARS administration role. o Created workflows and ACLs to govern AD objects and enforce compliance. o Utilized scripting for the creation of new facility OUs adhering to policy. o Utilized script library and policies to manage user and computer objects. o Initiated scheduled tasks to report on critical group modifications, domain trust reports, and additional object changes. ● Quest GPO Admin o CIS GPO for Windows 10 and server 2016.CIS compliant image created and deployed to each domain. o Policy administration and approval for any group policy edits. o Provided tier 3 support for GPO admin. o Documented new policies and procedures for production turnover and training. o ADMX template updates and continued policy governance.

Threat and Vulnerability Manag Duties included provisioning access to multiple applications HMS, Cerner, Active Directory, Credant encryption for corporate offices and 206 hospitals. ● Comodo o Ensured CSRs adhered to security policy. o Provided PS scripts to resources to simplify the creation of CSRs. o Applied Certificates to 200 AS400s ● Palo Alto Appliances o Implemented firewall policies while adhering to change management, corporate compliance, and state and federal regulations. o Utilized Panorama to manage and configure 83 firewalls. o Created security policies utilizing user identification. o Provided initial support for all firewall related issues. ● Provided on-call support on a rotational basis.● Quest Active Roles Server o Provisioned users to security groups. o Utilized workflows and dynamic groups to automate approvals and enforce object naming standards. o Used PowerShell snap in to manage objects in the directory to ensure changes were recorded. Worked with local IT staff to troubleshoot application connectivity and correct issues. Remediated incidents in BMC REMEDY to ensure all SLA’s were met as well as reducing ticket counts from over 600 to less than 100 as the top resolver on a consistent basis on a team of 8. Worked with local IS staff to train and ensure that best practices were followed when provisioning access. Utilized Wireshark to effectively troubleshoot connectivity issues while communicating with vendors to resolve incidents. Worked with Novell software and LDAP, Apache open directory studio to troubleshoot access and verify access is provisioning appropriately.

Ensured customer service while working 50-60 calls a day. Successfully troubleshooting hardware/software/network and infrastructure problems remotely. Created Remedy incidents to document issues and escalate items as required. Utilized various tools to troubleshoot issues including Citrix, AD, Dameware, command-line utilities, and various others Ensured password policy and end-user identity pertaining to password resets. Resolved common issues within HMS/I series