Ray V. Email & Phone Number

Placentia, CA, US

Fountain Valley, CA, US

• Lead the incident response process, organizing bridge calls with relevant stakeholders. Tracking and assigning tasks across multiple teams.
• Automated triggers and playbooks within Red Canary to alert on and remediate threats.
• Converted enterprise EDR solution to behavioral AI protection by replacing VMware Carbon Black with SentinelOne Singularity XDR.
• Established procedures for incident response using opensource tools like DFIR-IRIS. Allowing case management collaboration across response teams.
• Setup log ingestion from multiple solutions into Splunk Cloud.
• Developed alerts and timed reports from Splunk Cloud apps/applications and dashboards.

Walnut, CA, US

• Deployed Rapid7 InsightVM to detect and manage endpoint common vulnerabilities and exposures (CVE).
• Integrated Rapid7 InsightIDR with multiple event sources for SIEM data collection.
• Created filtering rules for Microsoft Office365 to filter SPAM and phishing threats.
• Regularly scheduled enterprise security awareness training using KnowBe4.
• Identified email threats with KnowBe4 PhishER.
• Audited infrastructure to meet CIS workbench baselines.

Los Angeles, CA, US

• Identify risks across the enterprise with Rapid7 InsightVM.
• Created Security Baselines to keep critical hosts up to date.
• Integrated Two Factor Authentication (2FA) utilizing RSA in conjunction with Group Policy.
• Implemented threat detection with Kroll and Red Canary. Enabling the IT team to perform potential threat investigations.
• Deployed Carbon Black Defense to compliment Carbon Black Response and Carbon Black Protection, therefore hardening endpoints.
• Deployed SSL certificates for internal websites.

Los Angeles, CA, US

• Identified risks across enterprise with Rapid7 InsightVM.
• Integrated Two Factor Authentication (2FA) utilizing RSA in conjunction with Group Policy.
• Implemented threat detection with Kroll and Red Canary. Enabling the IT team to perform potential threat investigations.
• Deployed Carbon Black Defense to compliment Carbon Black Response and Carbon Black Protection, therefore hardening end-points.
• Integrated SSO between Jobvite and internal Active Directory.
• Migrated virtual environment from Microsoft Hyper-V to VMware ESXi hypervisors.

Los Angeles, California, US

• Conducted internal audits and assessments to meet Payment Card Industry (PCI) Security Standard compliance.
• Upgrade VMware vSphere environment to v5.5
• Improved VMware environment performance and efficiency using data from VMTurbo and vCenter Operations Manager.
• Expanded virtual environment capacity by adding chassis and blades to Cisco UCS.
• Migrated over 3000 mail user from Microsoft Exchange 2010 to Microsoft Exchange 2013.
• Replaced EMC Clariion SAN at two data centers with PureStorage. Moving to a full SSD implementation for SAN.

• Managed the server, network and developer teams.
• Achieved 100% systems compliance with the Information Assurance Vulnerability Management system set by the Defense Information Systems Agency (DISA).
• Coordinates with MCTOG command to implement network outages in support of network maintenance.
• Receive, process, and execute mitigation for Information Assurance Vulnerability Alerts to include network elements, encryption devices, operating system, application server software, hardware updates, and patches.
• Identify and develop network requirements in support of unit training, develop logical network diagrams from requirements, validate and update physical network diagrams as required.
• Designed and setup tactical and garrison networks using Cisco Catalyst 3750 switches.

Washington, DC, US

• Responsible for conducting internal audits and assessments in classified and unclassified computing environments through standards including Security Technical Implementation Guides (STIGs)
• Increased availability of resources by implementing and managing network area storage.
• Supervised the installation of a high-speed (OC-192) dual SONET ring utilizing Cisco 15454 Optical Network Systems providing 100% core network uptime.
• Used Windows Server Update Services and Symantec Endpoint Protection Server to maintain and patch servers and workstation.
• Restored and maintain backups of all corporate e-mail, Windows and UNIX servers and SQL databases, minimizing down time.
• Experience with DHCP, DNS, WINS, TCP/IP sub netting and routing.

Electronics

Education record