* Serving as the State’s IT Security policy expert; designing and/or reviewing all new and changing state agency applications where data is accessible outside of the internal network.* Primary facilitator for Security Design Review meetings - a formal setting where business, security, management, and vendor representatives come together to discuss a solution. * Ensuring compliance with all applicable state and federal IT Security Policies. * Providing consultation to customers who need assistance designing IT solutions. * Developing and improving policies to maintain a current and relevant security program. * I have also volunteered on two committees with objectives to improve workplace atmosphere and team building.

* Served as the technical expert for new IT Security programs that will benefit all state agencies at the enterprise level. * Developed the Washington Application Certification and Accreditation Program (WACAP) from the ground up. * Program goals were to provide developer training in secure application coding and provide a tool for scanning code for vulnerabilities at various stages of the development lifecycle.

* Researched new IT Security solutions to meet immediate and future data protection needs.* Led risk and security assessments on systems and applications throughout the agency.* Led agency wide deployments of new security services and upgrades. These included adding multi-factor authentication to Citrix (New), SIEM via RSA Security Analytics (New) and F5 SSL VPN (Upgrade).* Maintained and improved user administration processes such as SSL VPN, RSA Secure ID, and Secure File Transport.* Provided expert level knowledge, maintained & executed web application and host vulnerability scanning using Qualys and Tripwire IP360.

* When IBM sold Enterprise level Identity and Access Management or Malware services to a customer, I was tasked with developing a solution that will define how IBM provided the contracted services to the customer. This included the hardware, software, and network requirements.* Supported McAfee and Symantec products by implementing environment upgrades, new installations, 3rd level troubleshooting, critical support of malware outbreaks, policy management, and reporting.* Completed projects required that all customer needs were met and global security standards were followed.* Audit readiness was fulfilled by following transition guidelines and documenting important artifacts during my time with a customer account.* Excellent communication skills were required on a daily basis to network with project managers, account executives, customer contacts and technical support teams.* In my final year of this position I provided these services to the Identity and Access Management service line. Deliverables included identification management, password management, and identification re-validations (quarterly employment verification, privilege re-validation and continued business need).

* Account Focal, Lead, and Subject Matter Expert for Desktop Firewall Products on a team of 40+.* Client to server support of enterprise class malware prevention products.* Subject Matter Expert for desktop firewall products.* Customer lead for a global account. Traveled to London to design and deploy an enterprise wide Symantec environment. * Member of the critical incident response team; traveling to customer sites within 24 hours of discovery.