Description :

1. Managed Network and Application Security ensuring compliance with PCI standards.
2. Designed and implemented encryption solutions for sensitive data in line with PA-DSS compliance.
3. Conducted log reviews and developed correlation rules to enhance application access security.
4. Analyzed and implemented firewall configurations for optimal security posture.
5. Identified patterns to improve email security through filtering solutions.
6. Monitored PCI device compliance using CiscoWorks Network Compliance tools.
7. Led project management efforts for NAC Solution deployment, ensuring seamless integration.

Experience

0-2 Years

Level

Entry Level

Education

B.S. Cybersecurity

Description :

1. Developed and maintained security architecture plans that address emerging threats and align with business strategies.
2. Acted as a security consultant for enterprise initiatives, providing expertise on best practices.
3. Led the deployment of advanced endpoint protection solutions, enhancing overall security posture.
4. Managed risk assessment processes to ensure transparency and effective mitigation strategies.
5. Contributed to budget planning and performance monitoring to optimize security investments.
6. Designed and implemented a Public Key Infrastructure (PKI) to support secure communications.
7. Conducted vulnerability scans and coordinated remediation efforts to address identified risks.

Experience

2-5 Years

Level

Junior

Education

B.S. Cybersecurity

Description :

1. Provided oversight and guidance on IT projects, ensuring security compliance and architectural integrity from an InfoSec perspective.
2. Reviewed and approved all network, firewall, system, and application changes presented to the Change Advisory Board.
3. Served as the sole administrator for the Governance, Risk, and Compliance Management application, enhancing risk visibility and management.
4. Led the baseline assessment of corporate data center assets, prioritizing remediation efforts on critical vulnerabilities.
5. Directed a complete OS transition for production systems, achieving independent security validation.
6. Collaborated with software architects to design a web-based POS system, focusing on security and performance improvements.
7. Analyzed penetration tests and vulnerability assessments, providing actionable insights for remediation strategies.

Experience

5-7 Years

Level

Senior

Education

M.S. InfoSec

Description :

1. Updated the Incident Response Policy, conducting user training on security best practices.
2. Established a security architecture vision aligned with business and IT strategies.
3. Served as a subject matter expert in information security.
4. Provided consulting services to IT departments and management on security practices.
5. Collaborated with Enterprise Architecture to enhance security for systems and applications.
6. Designed security architecture and evaluated risks for system implementations.
7. Assessed the information security program using the NIST Cybersecurity Framework to identify and remediate gaps.

Experience

2-5 Years

Level

Consultant

Education

M.S.

Description :

1. Designed and executed security architectures that mitigated risks across all organizational platforms, ensuring data integrity and compliance.
2. Conducted vulnerability assessments and penetration testing, identifying critical weaknesses and implementing effective remediation strategies.
3. Managed security incidents and events, safeguarding over 35,000 corporate IT assets and maintaining organizational reputation.
4. Created detailed reports on system vulnerabilities and security incidents for executive leadership, facilitating informed decision-making.
5. Oversaw the administration of security solutions, including McAfee ePolicy Orchestrator and SIEM systems, ensuring optimal performance and compliance.
6. Implemented technical security controls, such as access management and log management, to enhance overall security posture.
7. Collaborated with cross-functional teams to develop and enforce information security policies and procedures.

Experience

7-10 Years

Level

Management

Education

MSIS

Description :

1. Designed and implemented a comprehensive Identity and Access Management system, enhancing user provisioning and access control.
2. Conducted gap analyses to improve role assignment processes, integrating automation tools to enhance efficiency.
3. Developed and executed advanced red team assessments to test organizational defenses against sophisticated threats.
4. Identified and mitigated critical vulnerabilities that posed risks to sensitive data and organizational assets.
5. Performed network and application penetration testing, delivering actionable insights to strengthen security measures.
6. Achieved a high level of client satisfaction, resulting in numerous repeat business opportunities.
7. Collaborated with cross-functional teams to ensure alignment on security initiatives and best practices.

Experience

2-5 Years

Level

Junior

Education

B.S. Info Sec

Description :

1. Develop and implement security architectures for enterprise systems and applications.
2. Developed migration plans and assisted with risk measurement using tools such as Tripwire, Nessus, and Splunk.
3. Engineered and implemented HIDS for NOAA SCADA systems using OSSEC, achieving full compliance.
4. Managed network and security administration, including RBAC and firewall provisioning for NOAA SCADA systems following NIST standards.
5. Created enterprise architecture products to communicate current and future architecture, aligning with organizational goals.
6. Conduct risk assessments to identify vulnerabilities and recommend mitigation strategies.
7. Conducted security control assessments in accordance with DOC, NOAA, and NESDIS policies, ensuring adherence to the Risk Management Framework.

Experience

10+ Years

Level

Executive

Education

M.S. Cybersecurity

Description :

1. Led forensic investigations for security incidents, collaborating with internal and external teams to develop remediation strategies.
2. Partnered with executive teams from HR and Legal to ensure alignment on security policies and compliance requirements.
3. Established a certificate management standard, streamlining internal processes and enhancing security posture.
4. Directed responses to security incidents, coordinating with stakeholders to mitigate risks effectively.
5. Implemented security architectural components such as web security gateways and vulnerability management solutions.
6. Developed and deployed incident response plans, significantly improving response times and effectiveness.
7. Created and maintained documentation for security protocols and compliance standards.

Experience

5-7 Years

Level

Senior

Education

M.S. InfoSec

Description :

1. Acted as the technical architect for information security across multiple hospital networks, enhancing system integrity.
2. Oversaw security for two hospitals and numerous satellite facilities, ensuring compliance with healthcare regulations.
3. Troubleshot issues during the rollout of Forescout Network Access Control, improving network security.
4. Facilitated third-party PCI assessments and internal penetration tests, strengthening security posture.
5. Collaborated with network, server, and application support teams to address assessment findings effectively.
6. Implemented an internal vulnerability assessment management platform, reducing potential threats.
7. Partnered with the Director of Information Security to develop and enforce security policies and compliance reporting.

Experience

0-2 Years

Level

Fresher

Education

B.S. IT

Description :

1. Served as the primary Information Assurance Manager, ensuring compliance with security requirements for new product releases.
2. Led a team of Information Assurance Officers to streamline security protocols and enhance data protection.
3. Acted as a liaison between local teams and program management to address and resolve cybersecurity issues.
4. Achieved Authority to Operate (ATO) for new software packages through successful completion of rigorous testing.
5. Implemented the Assured Compliance Assessment Solution (ACAS) to improve security assessments.
6. Conducted comprehensive vulnerability scans using industry-standard tools, enhancing system security.
7. Validated and updated DIACAP artifacts, facilitating smooth transitions to the Risk Management Framework (RMF).

Experience

7-10 Years

Level

Management

Education

M.S. Cybersecurity