Categories
Recent Posts
Featured
Performance-driven Senior IT Security Executive with 30+ years of progressively increasing responsibility in driving IT vision and strategy to enable companies to grow, compete and optimize their operations. Solutions-oriented with proven success in directing a broad range of software development initiatives while building and maintaining an ever-changing complex architecture of network security systems and devices in direct support of targeted business objectives. Technical knowledge and experience of IT strategy, infrastructure, architecture, and turnaround projects in Agile-driven environments.
Devops/Continuous Development/Deployment
IT Infrastructure & Standardization
IT/Network Security
Software Development Lifecycle (SDLC)
Performance Management/Evaluation
Application Deployment
Technology Strategies and Forecasting
Multi Level Troubleshooting
Agile Methodologies
Business Continuity & Systems Security
Technical/Business Analysis
Global Vendor Management
Business Requirement Documentation
Performance & Process Improvement
User-Acceptance Testing
Full lifecycle experience in scoping, designing, developing, deploying, and supporting enterprise-scale business applications and business intelligence software
Recognized for delivering the most detailed insights available for improving operational efficiency and planning for changes to the IT security strategy
Full Stack Engineer from the packet level to the user interface; hands-on experience in Agile environments, application design, software development, and testing
Strong background in designing, building, supporting and maintaining new and existing enterprise-grade applications
A natural leader with a proven track record of successful IT project management, from concept to completion
Demonstrated ability to direct all phases of project-based efforts while initiating efficient customer support initiatives
Excellent knowledge of Networking Infrastructure and Security systems (Cisco infrastructure, authentication systems, firewalls, VPN/encryption, etc.)
Expert in network devices (e.g. routers, switches, load balancers, DNS, DHCP) with solid expertise in building highly complex network designs with advanced network technologies
Data-driven with exceptional problem solving, communication, organizational, and time management skills
Work with Public Cloud (AWS, Azure, Google Cloud, Alibaba Cloud, etc) and Private Cloud to set the security standards for the environments as well as the applications that reside in those environments
Created the Zero-Trust security strategy, an added layer of security to prevent data breaches
Set strategy and standards for Software as a Service (SaaS) solutions for Marriott
Work with different internal business partners to review proposed software designs and architecture for security risks and design standards
Integral part of the Software Design Lifecycle for security review
Set strategy, select vendors and set standards for cloud-based tools like CASB (Cloud Access Security Broker)
Set strategy, select vendors, technology and set standards for data protections like Digital Rights Management, Data Loss Prevention, etc
Set strategy and set standards for emerging technology like IoT
Set strategy and standards for the Mac Desktops within the Marriott environment
Work with Security Engineering on new and old solutions, and security settings and standards
Worked with cross-enterprise teams to develop and maintain network security policies, global firewall standards, and hardening guidelines for networks and technologies connected to Marriott environments
Evaluated, installed and managed advanced security tools like FireEye, IPS, Sandblast, etc.
Actively participated in the security initiatives around our first attempts to move into both Public and Private cloud
Achieved certification as a Reverse Engineering Analyst (CREA)
Designed and created a central malware logging and tracking system
Designed and created a compliance tracking dashboard to track the compliance status of devices on the Marriott network
Reverse engineered a new malware to determine the action and risks to Marriott
Created a security tool called MCA that can be deployed to potentially infected machines to gather forensic information and files for submission to AV vendors for new pattern creation
Engineered and installed new security solutions to ensure security, scalability, and reliability of networks systems
Managed the malware strategy for Marriott’s endpoints including servers, databases, laptops, and desktops
Set the security standards for Marriott’s Mobile Device Management (MDM) system
Led the project to move un-authenticated internal operations web sites to either behind the Tivoli Access Manager environment or implement local authentication
Achieved Ethical Hacking and Certified Penetration Tester Certifications
Created tools for S-NOC to automate regular forensic activities during the remediation of malware.
Created security tracking system within MOSIS
Performed technical escalation for GNOC Network
Created Pro-Active monitoring tools and processes (MOSIS)
Led the S-NOC transition from NGS Support to GNOC
Led the S-NOC team in daily day to day operations and development of new processes, procedures and tools
Responsible for Firewalls and Proxy Servers
Part of the Core team that designs the Marriott LAN and WAN core
Configured and maintained Cisco Routers and Switches, VPNs and Checkpoint Firewalls
Installed and maintained enterprise reporting tools for firewall rulebase compliance
Installed and maintain BPA (Business Partner Access) using Netsilica devices
Developed replacement solution for BPA with Checkpoint to replace the older Netsilica devices
Worked closely with DSNM and DSNM Tier II to keep the network security devices up to date and maintained
Collaborated with Enterprise Security to maintain the network security
Supported operational organizations as needed
Firewalls and Proxy Servers
IBM’s Tivoli Access Manager
Evaluated SIM tools and centralized logging options
Developed miscellaneous Unix applications
Performed miscellaneous security related tasks
Led the hosting center network design and installation team
Led backbone network engineering last year and a half until PSINet closed due to bankruptcy
Wrote custom customer portal for viewing IDS and security alarms
Led the team that built OC-192 backbone from Boston to Miami
Developed a custom application in Linux to save and restore configurations to routers and switches in the lab so that a test can be saved and restored quickly in an environment that can have many devices
Managed product designs, product roadmaps and 5 year plan
Investigated and developed with emerging technologies
Managed team of developers to continue the development of the TotalFleet product
Investigated new markets for existing products and new products for all markets
AWS Certified Solutions Architect
AWS Certified Developer
AWS Certified DevOps Engineer
AWS Certified Sysops Administrator
AWS Certified Advanced Networking
Certified Penetration Tester (CPT)
Certified Ethical Hacker (CEH)
Checkpoint Certified Security Expert (CCSE)
Cisco Certified Network Professional (CCNP)
Certified Reverse Engineering Analyst (CREA)
Operating Systems: Unix, Microsoft Windows, Mac OSX
Languages: Node.js, Javascript, Sencha ExtJS, Python, PHP, Shell Scripting, C/C++, Visual Basic, Objective C, C#, Swift, Ruby, Sencha Touch, Appcelerator, jQuery, Perl, ASP, XML, Java, MS-SQL, Oracle, MySQL, LDAP, Assembler, Xamiran
Hardware: Checkpoint, Juniper, Sonicwall, Cisco Routers/Switches, Cisco VOIP, Cisco Wireless, Firemon, Extreme Networks, F5, FireEye, SourceFire, RSA, Ubiquity
Networking: Micro Segmentation, Zero-Trust, Routing, Switching, OSPF, BGP, Cisco Nexus, WAN Wireless solutions
