Rob Gangemi Email & Phone Number

Pacifica, CA, US

California, United States

Stealth Security and AI software

San Francisco Bay Area

• Streamlined security integration into business processes while adhering to a minimal budget to enhance overall organizational efficiency.
• Engineered security policies and procedures across the company, ensuring robust protection of critical assets.
• Contributed to company securing $500K in new revenue from a targeted client by facilitating a successful audit.
• Drove the implementation of policies and procedures, which resulted in a $4M increase in company revenue.
• Deployed JumpCloud and established systematic backups on all laptops to elevate data security and integrity

• Pioneered as sole security expert by taking full responsibility for the organization's entire security infrastructure.
• Partitioned the internal network into distinct security zones which significantly reduced potential attack surfaces.
• Embedded security protocols within vehicle systems by participating in QA testing to sustain robust protection.
• Engaged with vendors to secure price quotes by optimizing security investments within budget constraints.
• Conducted comprehensive vulnerability scans on the network and AWS accounts to provide actionable recommendations for security enhancements.
• Established automated patching processes for Windows and Apple laptops using JumpCloud to attain timely updates and minimize vulnerabilities.

• Deployed web and content filtering solutions using Fortinet Firewalls in production environments to improve overall network security.
• Architected and enforced CIS standards enterprise-wide, leading to a successful IRS 4812 audit and bolstering regulatory compliance.
• Led a team of four to steer cybersecurity initiatives and attain high performance in adherence to security protocols.
• Delivered regular presentations on cybersecurity and cloud industry trends by effectively communicating complex information to both technical and non-technical leadership.
• Analyzed emerging zero-day threats to assess their potential impact, cost, and severity, and provide strategic recommendations for client protection.

• Collaborated closely with product management to define application roadmaps, craft system architecture, and translate technical requirements in line with product goals.
• Fortified and evaluated operating systems using STIG/SCAP protocols with Nessus and STIG Viewer to maintain compliance and security integrity.
• Conducted comprehensive Threat Modeling using the STRIDE methodology for databases, IoT devices, and operating systems to identify potential risks.
• Presented critical vulnerabilities to security architects and application development teams with aim of driving actionable remediation strategies.
• Empowered development teams with new skills by enhancing their execution of the product development strategy and improving overall project outcomes.

South San Francisco, CA

• Conducted comprehensive security assessments on external servers, desktops, and SCADA devices using Nmap and Rapid7 Insight VM to minimize potential threats.
• Executed critical security enhancements on SCADA devices, including password management, network segmentation, and ACL lockdowns to strengthen security posture.
• Established robust policies, procedures, and clearly defined roles for the organization’s cyber risk management practice to maintain a proactive security framework.
• Spearheaded the remediation of over 200 critical vulnerabilities discovered in Rapid7 across diverse applications and devices which reduced security risks.
• Partnered with development teams to foster a strong security culture, while enabling the shift of security practices “left” in the development lifecycle.
• Authored detailed security standards documentation for Windows Server 2016, Windows 10, and macOS to sustain consistent and secure configurations.

• Supported small to mid-sized software tech company clients, managing projects from concept through completion to ensure optimal quality and timely deliverables.
• Oversaw security projects for small to mid-sized software technology clients to facilitate the successful implementation of tailored security solutions.
• Investigated SQL injection attacks that targeted client web servers from various IP addresses to strengthen application security.
• Enhanced web server performance, dropping internet traffic issues by 75% through strategic optimizations.
• Developed a custom logging system using PsLogList for over 100 servers to improve monitoring and incident response capabilities.
• Deployed and maintained Windows and Linux servers on AWS to attain reliable and secure cloud infrastructure.

South San Francisco, CA

• Architect Read Only Domain Controllers (RODC) into the DMZ for LDAP Secure authentication across the internet.
• AWS – Amazon Web Services: Using Symantec Backup Exec, run HIPAA complaint backups to Amazon Glacier Storage. Setup servers on Amazon, with appropriate Firewall restrictions in place.
• Assisted client to pass HIPAA audit. Install new architecture per HIPAA audit requirements.
• Restore Great Plains accounting system and Active Directory off the network, and write documentation for the restore.
• Mentor help desk personnel on backup and restore.

Fremont, CA

• Directed a team of 8 network engineers in strategically managing CAPEX and OPEX budgets to optimize resources and project outcomes.
• Designed and deployed a robust 3-zone DMZ architecture for critical applications to enhance security and network segmentation.
• Configured authentication ports between Read-Only Domain Controllers (RODC) and Internal Active Directory Domain Controllers to maintain seamless and secure access.
• Streamlined firewall operations by overseeing the removal of over 2,000 lines of redundant code to significantly improve efficiency and security.
• Engineered the implementation of SolarWinds for comprehensive network monitoring and automated backup of network configurations.
• Facilitated professional development by organizing targeted training sessions and penetration tests, while empowering security engineers to advance their skills.

Mountain View, CA

• Spearheaded the M&A integration of multiple companies into the enterprise network to seamlessly incorporate security protocols, applications, and email systems.
• Directed the daily operations of the IT department to maintain efficient and uninterrupted service delivery across all functions.
• Deployed new WAN circuits and phone systems across enterprise office locations to elevate connectivity and communication capabilities.
• Acted as the key liaison between clients and repair specialists to maintain timely resolution of service requests and incidents through effective tracking.
• Crafted comprehensive Standard Operating Procedures and established infrastructure to streamline helpdesk request management and improve response times.

Palo Alto, CA

• Perform penetration testing of both internal and external resources using tools such as Nmap, Nessus, Saint, Acunetix and open source tools.
• Review of firewall rules and recommendations.
• Documentation and recommendations and of results to management and staff.
• Make recommendations on Exchange Servers performance issues.

Foster City, CA

• Responsible for day to day operations of IT Department. Manage Help Desk personnel.
• Implementation of new WAN circuits and phones in new office locations and trailers.
• Setup and maintenance of VPN and firewall
• Handle help desk requests, account setups, new laptops, backups and phone systems.
• Develop Desktop standard build document.

San Mateo, CA

• Responsible for all aspects of IT, including, Active Directory, Apple, Linux, Exchange, Firewalls and backups.
• Work with Engineering on some lab buildouts. Determine HVAC requirements for labs.
• Maintain WAN connections and firewalls.
• Setup new DMZ. Lock down existing firewall rules to the DMZ.

Master Of Science - Ms, Cybersecurity, 3.6 / 4.0

Graduated !

Bachelor Of Science (Bs), Computer Information Systems

Activities and Societies: Alpha Phi Omega

Cyber/Computer Forensics And Counterterrorism

Graduate Level Computer Science Classes, 3.0