I enjoy working on every IT project. Whenever possible, I strive to build security into projects to reduce future costs.” |
My first interesting cybersecurity project was to implement a firewall for a small Class C network (an CIDR /24). This required working with enterprise network engineers and establishing an inside/outside port to the firewall. This had not been done at our organization at the time and so it was a learning experience for everyone. Today that same organization uses that experience and requires that every network who utilizes a firewall to protect their environment.
Hardening operating systems became another interesting project. I learned to harden Linux systems such as OpenBSD, Windows, Microsoft Exchange, Active Directory, DNS, and DHCP. Additionally, I learned to deploy and harden wireless networks as well as Kiosk workstations. Later projects included implementing cybersecurity frameworks from material available from NIST, PCI-DSS, FERPA, ISO, DOD, SOX, HIPAA, etc. More importantly, these projects included automating the gathering of evidence and documenting organizational efforts for compliance. Eventually, I moved into a formal cybersecurity role and began writing policies for organizations, business units. I also wrote procedures for system administrators, software developers, and network engineers. I obtained my Certified Information Systems Security Professional (CISSP) certification in 2016 and my Cloud Certified Security Professional (CCSP) certification in 2017. I continue to pursue professional development certifications and remain active in the field of cybersecurity. I follow cybersecurity news and industry trends so I remain aware of threats and risks to the organizations I serve. Expertise
Backup and Disaster Recovery Planning, IT Security representative for UC Davis’ DRP and BCP enterprise programs. Expert knowledge of technical, administrative, and physical requirements. IT Consultant, worked with private companies to create a secure e-commerce sites using a variety of programming languages. Performed auditing of systems enforcing PCI-DSS, HIPAA, and other standards. Vulnerability Management, Experienced with Qualys, Rapid7, Nessus, OpenVAS, and Tenable products for vulnerability discovery and threat assessments. Information Security, Performed risk assessments and wrote and implemented policies, standards, and guidelines. Performed certificate management and renewals, anti-virus/anti-malware management, incident response, and penetration testing. Implemented and managed intrusion detection and prevention (IDS/IPS) systems, file integrity monitoring, networking monitoring, SIEM development, and web/application security testing. Experienced with hundreds of cybersecurity tools such as MetaSploit, Snort, Tripwire, Damballa, TippingPoint, Palo Alto, Burp Suite, Net Forensics, Splunk, ArcSight, OSSEC, Nessus, Security Center (now Tenable.sc), McAfee, Big Fix, tcpdump, WireShark, netcat, McAfee IPS, Cisco StealthWatch, and many other industry tools and products. Unix/Linux/Windows Server Administrator, Extensive Experience working with Microsoft Windows Servers, Linux/Unix, Solaris, and straight BSD Unix builds such as OpenBSD, FreeBSD, and OSX Database Administrator, Planned and maintained complex relational databases schemas. Used DDL and DML to manipulate schemas and extrapolate meaningful data in reports. Managed and maintained and created databases with Microsoft SQL Server, MySQL, Oracle, Microsoft Access, MongoDB, NoSQL, and PostgreSQL, etc. Exchange Server Administrator, Extensive knowledge administering and setting up local MS Exchange mail servers as well as administering Office 365 and secure cloud email solutions. Help Desk Technician, troubleshot printers and other peripherals on Macintosh, Windows, and Unix platforms. Experienced troubleshooting issues with programs such as Adobe products, Microsoft Office Suite, Citrix, Stata, SPSS, and many more. Information Technology Security Standards, Experienced with Federal security programs FISMA, NIST/FIPS. Additionally, experienced working with HIPAA, FERPA, SOX, and PCI-DSS, GDPR, ISO 27000 series, DOD standards, and CERT practices. Experienced with all CISSP domains. Network Engineering, Designed and implemented secure Wireless LANs/WANs, ethernet WANs/LANs, VoIP, proxy’s, sniffers, and VPNs. Installed and managed enterprise firewalls including OpenBSD PF, Cisco, SonicWall, Juniper, Palo Alto, PIX Firewalls and client firewalls. Extensive knowledge of switches, routers, VLANs, DMZs, DHCP, DNS, and Active Directory as well as TCP/UDP/IP and all its sub-protocols. Programmer/Software Engineer, Experienced with VB/C# .Net, C, C++,, Assembly, Python, Perl, Java, and JavaScript languages. Project Management, Planned projects from concept to implementation including establishing project scopes and coordinating milestones, deliverables, and resource planning using MS Project, OmniPlan and other project software. Virtual Server Administrator, Experienced managing and securing VMware/ESXi/VSphere and HyperV. Web Application Programmer, Experienced with secure coding for Java, PHP, ColdFusion, .NET (VB, C#), common HTML, XHTML, CSS, XML, and all modern web programming platforms. Web Site Administrator, Extensive knowledge developing sites and securing and working with web servers using Apache, Apache/Tomcat, IIS, Plone, NGINX, Node.js, and Microsoft SharePoint. |
Get In Touch
If you have questions about my work, please contact me.
|