InitialOne LLC focuses their business on Managed IT Services and Managed Security Services to small and medium sized businesses as well as mid-sized enterprise businesses. They focus on the technical aspects so that the business can focus on growing and bringing in revenue. As a Technical Consultant for InitialOne LLC, I provide a variety of Managed Services for the InitialOne LLC clients. We perform many aspects from basic support, preventative maintenance, implement detection/defensive measures, analysis and more. Where no tools are available, we customize and craft tools to perform the job, research and enable services for our clients.Some key responsibilities:Technical Project ManagementAdministration & SupportPreventative MaintenanceSIEM - Design, Deploy, & ManagementNetwork Packet CapturingIntrusion Detection System(IDS)/Intrusion Prevention System(IPS)Network-based Security design & ImplementationCloud SecurityLinux Engineering & OS SecuritySecurity AuditingRisk Assessment & ManagementDevelop/Implement Security Controls & Policies

CyberHiive Inc provides more than just IT Managed Services and Cloud Solutions to small medium businesses and emerging enterprises in central / northern Califronia. Cyberhiive Inc is a CyberSecurity, CyberHiive's Managed Security Services not only monitors and manages the issues and concerns, we provide mitigation procedures and solutions to prevent breaches. With that being said, having the tools does not mean you're protected, but also having a trained staff that can utilize the tools, decipher the information and put measures in place is a key component.As a Security Solutions Engineer for CyberHiive Inc, I hold some key responsibilities in the following:Technical Project ManagementAdministration, Testing & SupportSIEM - Design, Deploy, & ManagementNetwork Packet CapturingNetwork Intrusion Detection (NIDs)/Network Intrusion Prevention (NIPs)Cloud SecurityLinux Engineering & SecuritySecurity AuditingRisk Assessment & ManagementDevelop Security ControlsEvaluate Security Policies

Linux AdministrationTerrform Coding and AdministrationAWS VPC AdministrationAWS EC2 AdministrationAWS S3 AdministrationAWS Security Group AdministrationAWS RDS Administration

Splunk Design, Build, Administration & EngineeringCreate Alerts, Dashboards, and ReportsUniversal Forwarder Deploy/ManagementApp configuration, deployment and managementInputs/outputs file configurationCisco Firewall Rule AdministrationPalo Alto Firewall Rule AdministrationFortigate Firewall Rule AdministrationTenable Security Center AdministrationTenable Log Correlation Administration

Nexpose Rapid7 Vulnerability scanning and reviewCylance AdministrationForcepoint Implementation & AdministrationZscaler Administration & SupportCisco Firepower AdministrationSecurity Policy reviewSecurity Tool Gap AnalysisCisco Firewall ACL reviewNIST STIG Review – Windows 2008, 2012, Cisco Perimeter Router, Cisco Infrastructure Router, Cisco Firewall)

Lead Technical ConsultantDuties & AdministrationDesign and build Security Operations Center (SOC)Design and build open source Security Information and Event Management (SIEM) system- Open Source Graylog SIEMDevelop Standard Operating Procedures (SOP’s)Develop Security Operations Center RunbookWork through Change Management and Standard Operating ProceduresWork on client projectsProject Development Life Cycle (PDLC)- Initiate & Review Solution -- Requirements Gathering & Presentation -- Analysis, Design, Build & TestDevelop & Implement Security Controls - Review Security ControlsOversee all client networking infrastructure- Cisco ASA Firewalls- Cisco Switches- Juniper Firewalls- Juniper Switches- Manage and create site-to-site VPN- Manage and create VPN tunnels- Create Access-lists rules- Create NAT-rules- SonicwallDesign and build integration tools for NagiosDesign and build integration tools forAdminister puppetAdminister NagiosAdminister Linux CentOS and Oracle Linux serversAdminister Windows ServersWork on Nessus Vulnerability

HealthNet, now CENTENE Coporation as the name implies is a network that provides health and medical services to the people. They make it easy for the people to interface with medical providers, pharmacies, medical billing, and everything medical related. With health in mind, HealthNet is there to help people be healthy and comfortable in a secured way.With security in mind, they employ teams of skilled Infomation Security experts to protect the peoples sensitive information.Here is a listed summary of my daily duties:-- Global Security Operations Center (GSOC) logical design and implementation-- SIEM Designing and Architecture-- Project Management Project Development Life Cycle (PDLC)-- Security Controls Access Management-- Develop Security Standards, Policies, and Requirements-- Develop Standard Operating Procedures-- Compliance, Rules, Regulations & Law Reviews HIPAA, FISMA, NIST, Corporate Compliance Protected Health Information (PHI)/Personally Identifiable Information (PII)-- Protected Data Assurance Encryption of data Security Transmission Secure Accessibility-- Request for Proposal (RFP) development and review-- Contract Egagement Specialist

Chevron, as a leader in the oil industry, they provide energy that supplies the economy and the people.Duties & Administration-- Head up the design, deployment/implementation of Security Analytics Packets & Bluecoat SSL-V Deployment to over 30 sites across the world-- Support, Administration, Troubleshoot, Testing, Evaluation, & technical documentation of Security Analytics Packet Capturing Appliances -- Packet Analysis, Malware Analysis & Portable Executable Analysis-- Full Network Traffic Capture, evaluation, traffic shaping, network monitoring, system & service trending and analysis-- Penetration Testing & Packet Analysis Network Sniffing, nmap port scanning, service checks, wireshark utilization -- CVE Mitigation and Control-- Policy Control, Assessment, and Documentation-- Hardware troubleshooting DAC, JBOD,& VNX Troubleshooting-- Security Analytics / NetWitness Packets-- Bluecoat SSL-V Design, Deployment/Implementation, Configuration, Testing, troubleshooting and evaluation-- Help customers identify traffic, anomalies & threats by creating custom rules, parsers, feeds and help analyze environmentArchitectural Design, Implementation & Support-- Calculated needed appliances for customer environment across the globe-- Storage retention evaluation, design, deployment/implementation and documentation-- Design, Deploy and Implement

EMC Corporation, now DELL, a world leader in data Storage. Promoting data backup and recovery along with providing solutions for cloud computing.As part of the Global Security Organization, I had the opportunity to design, implement and manage the network packet capture tool for the Critical Incident Response team (CIRT). The opportunity to help the CIRT grow and build the Security Operations Center (SOC). I evaluated the CIRT needs, network traffic, network design, data retention, business functionality needs, requirements and etc. With that information I architect'd the whole packet capture infrastructure from ground up. The tool of choice, obviously was RSA Security Analytics Packet (NetWitness) which I was very familiar with.I spent the 2 years, designing, procuring, deploying, configuring, testing, documenting, troubleshooting and training the operations engineer on the product. It was a great feat as it was world-wide.Along with RSA Security Analytics Packet, I also helped design, build and manage the SIEM which was RSA Security Analytics Logging (aka enVision re-platformed). Since I was very familiar with the RSA Security Analytics platform which was based off of Linux (CentOS).A short list here at EMC:-- Packet Analysis, Malware Analysis & Portable Executable Analysis-- Traffic evaluation, traffic shaping, network monitoring, system & service trending and analysis-- Architectural Design, Implementation & Support USBank, VISA, Johnson and Johnson, Boeing, DHS, CSC, ADP-- DAC, JBOD,& VNX Troubleshooting (storage)-- SourceFire Support & Administration-- Ironport Support & Administration-- Archer Support & Administration-- Mapr Hadoop cluster support & Administration-- VSS, Gigamon, Network Critical - Configuration, Troubleshooting, testing and evaluation-- Netronome SSL Configuration, Testing, troubleshooting and evaluation-- VMWare Virtualization - ESX ESXi 4.0, 4.1 & 5-- Policy Control, Assessment, and Documentation

Maintaining Windows 2003, 2008 Servers and RedHat Enterprise Linux ServersWindows 2000, 2k3, 2k8, and RedHat Enterprise 4 & 5Building & Managing OU’s, Group Policy Object Editing (GPO), & Permissions SettingsServer Administration and managementInstallation, Configuration, maintenance & migrationsIBM Blade CenterVMware Private Cloud InfrastructureESX ESXi 4.0 & 4.1Citrix XenAPP SupportNewsgate Citrix Application SupportMonitoring, Management, Administration & SupportRedHatCluster supportHigh Availability configuration with Heartbeat or Round robin dnsIptables & SELinux labeling supportNewsgate InfrastructureServices for over 88 news media/print/production/circulation clusters and sub clusters around the worldMonitoring and Administrating over 6000 Servers/Services, WAN & Print Sites & branch officesMcAfee ePO version 4.5Management and AdministrationEditorial, Content, Online, Production, Print, Circulation and branch office supportWAN uptime verification & troubleshootingWriting and Reviewing Domain Security Control SheetsPolicy Management and OverviewBuilding new servers, configurations, setup, and installs:IIS 6 & IIS 7, Active DirectoryApacheSSL Cert InstallsVERITAS BackupsSQL 2k5/2k8 installation (Mirror Failover setup & support)PostfixSolarWinds & OpenNMS Monitoring Services

INetU Managed Hosting, a small quaint datacenter with a full staff all in a single location. They provided not only managed hosting but also dedicated servers, SaaS Hosting, PCI Compliant hosting, cloud computing and more. Some of the big names such as, Crayola, Toyota Americas, Paper.com, EVESTMENT.com and some others were hosted here at one time when I worked here.I worked here in support with providing tier 1 to tier 3 support, building, troubleshooting, monitoring, engineering, prevention and more.Here are some of the things I've done here:Citrix XenServer Virtualization Project ManagementNagios introduction and deployment Project ManagementBackup Project ManagementBackup Exec and Backup Assist/open source BaculaDocumentation of setup, configuration, implementation and troubleshootingWindows 2000, 2k3, 2k8, FreeBSD, and RedHat/CentOS/FedoraMicrosoft Exchange 2k3/2k7 & SQL 2k5/2k8Server Administration and managementMonitoring and Administrating over 3000 servers and about 15,000 servicesVMWare Cloud InfrastructureEMC CX300, EMC CX4-120 and EMC CX4-240 supportPolicy Management and OverviewBusiness Continuity Planning (BCP) & Disaster Recovery Planning (DRP)Log AnalysisDNS ManagementHandling Tickets tier 3 tickets & Phone supportSAS70 Compliance and PCI compliances AuditorTicketing, monitoring, & Server Login Exceptions & Control Audits

Maintaining Windows 2003 Server Domain ControllersManage and Maintain the Active Directory infrastructureSetup and manage Group PoliciesFile server and ftp server maintenanceSoftware testing, troubleshooting, repair and maintenanceVERITAS Backup Management and AdministrationPrint Server Management and AdministrationRedHat LAMP server administration and maintenanceSetting separate equipment Servers and standalone servers for data acquisitionSupporting the Lab network, troubleshooting and repairing upon request (desktop support)Testing Batteries, build batteries, designing cost effective batteries