Specializes in developing tools that aid in establishing enterprise-wide security compliance across corporations with large networks, heterogeneous IT management tools, and diverse organizational roles. Provides and services security compliance and asset management portals. Develops and implements custom network access control solutions.

Establish security controls which comply with payment card industry (PCI) standards. Build and maintain a security compliance portal, enabling hotel property system managers to achieve PCI security compliance in the areas of security patch management, anti-virus management, security vulnerability scanning, network switch remediation, local account management, modem removal, and identification of unauthorized wireless access points. Provide executive management with an enterprise compliance dashboard to demonstrate improvements in security remediation. Automate security scans of credit card processing systems. Correlate Common Vulnerability and Exposure (CVE) identifiers between security scanning and patch management tools, identifying and eliminating false positive data. Deploy and maintain host-based intrusion detection software. Build web clients and services utilizing SOAP technologies. Author report tools which evaluate patch data using BigFix relevancy queries and the Red Hat Network API. Provide application support for data encryption API's and PKI certificate management. Develop and implement scripted applications which evaluate network security controls and configurations. Implement software version control and change management procedures. Perform peer review of source code and documentation. Document processes related to security monitoring and incident response. Perform property risk assessments. Coordinate security software remediation with hotel property system managers and application support teams. Assist in the implementation of centralized security logging. Build and maintain a comprehensive database of all Marriott International networked assets. Evaluate router and switch VLAN access control lists and firewall rulesets. Conduct security interviews. Evaluate physical access controls.

Managed a team of security professionals responsible for the logical security of all server and network infrastructure. Performed on-going risk assessments and responded to external third party security studies. Published customer security advisories and notifications regarding impending threats. Directed the deployment of host and network-based intrusion detection software. Provided customer sales support and training for company products and services. Administrated the corporate enterprise anti-virus solution. Conducted security investigations and provided executive summaries related to security incidents. Assisted in the development of SAS70 controlling objectives and facilitated a review with an external auditor. Published security best practices for Windows NT/2000. Developed corporate security policies pertaining to Active Directory domain trusts, the security of server infrastructure and standard build configurations, firewall ruleset approvals, and user workstation responsibility policies. Recommended solutions for securing Internet and Intranet resources through the implementation of firewalls, network ACL's, VLAN's, and VPN's. Analyzed exploit code to determine risk of exposure and mitigating factors. Utilized sniffers to develop network intrusion detection signatures. Developed ADSI scripting for administrative account auditing. Performed security awareness training. Engineered security software tools which assisted in the management of security patches, deployment of anti-virus, and intrusion detection. Created database applications using Oracle and MS SQL, PHP, and PERL. Consolidated alerts from COTS and open source monitoring tools to a central management console. Developed various shell scripts and utilities to remotely deploy and maintain software. Assisted in the development and testing of new security products. Administrated UNIX and Windows servers. Managed users and groups. Monitored and measured system performance and service availability.

Installed and configured local area networks. Built and repaired personal computers. Configured Internet dial-up services. Installed and tested a variety of Internet services to include HTTP, SMTP, POP, and DNS. Provided classroom instruction on various Microsoft Office applications, including Access and Excel. Provided sales and consulting support.