Juan R. Reyes, CISSP Kelly Drive, Point Venture, TX

Transcription

1 Juan R. Reyes, CISSP Kelly Drive, Point Venture, TX EDUCATION M.S. Computer Information Systems, 3.77 GPA - St. Edward s University, MCIS Intellectual Property & Cyber Law MGMT Managing the Organization MCIS Database Systems MCIS Strategic & IT Management MCIS Internet & Network Technologies MCIS Data Security Management MCIS Modern Methods Software Engineering MCIS Business Intelligence Methods MCIS Project & Change Management MCIS Operating Systems MCIS 6350 Capstone: Proposal for Master of Science in Information Security Degree MCIS Business Continuity & Disaster Recovery B.A. English, 3.14 GPA - University of Maryland University College, PROFESSIONAL CERTIFICATIONS CISSP certified in January ISC 2 Certified Information Systems Security Professional CISM certified in August ISACA Certified Information Systems Manager CISA certified in February ISACA Certified Information Systems Auditor GCIA certified in February GIAC Certified Intrusion Analyst GCIH certified in February GIAC Certified Incident Handler CEH certified in March EC-Council Certified Ethical Hacker CCNA Security certified in March 2010 TippingPoint Certified Security Expert - TCSE certified in June 2010 ARTICLES, PUBLICATIONS, AND PRESENTATIONS Developing Secure Software A Project Manager's Approach A_Project_Mana ger%27s_approach Tuning IPS, A Vendor Platform Agnostic Guide

2 EXPERIENCE AT&T Senior Security Analyst 08/12 - Present Staffed through Genesis Networks. Perform security analysis, security posture assessment, and security policy development consultation as part of the State of Texas Department of Information Resources (DIR) Network Security Operations Center (NSOC) and for more than 120 state government agencies. Analyze events generated by security appliances and alert the appropriate agency with security event information and resolution consultation. Run scans and vulnerability assessments on single hosts and full networks and provide findings in reports and recommendations on how to fix vulnerabilities. Prepare daily and weekly security activity reports for senior management viewing. Consult on internal teams that work to improve administrative and technical security processes. Manage the installation, testing, and evaluation of security technologies as part of proof-ofconcept evaluations. Serve as the NSOC technical liaison for two external MSSP vendors. Create and present security training material to State of Texas government agency Information Security Officers (ISOs). Hewlett-Packard Technical Solutions Consultant IV 07/09-08/12 Provided Tier III support in the HP TippingPoint Technical Assistance Center. Troubleshoot complex configurations on HP TippingPoint Intrusion Prevention Systems (IPS) and give design and configuration recommendations to users improving their posture against application, infrastructure, and performance threats. Identify issues related to IPS hardware, TippingPoint Operating System, and IPS configurations. Analyze packet captures in Wireshark to identify traffic anomalies and potential security threats. Accept escalations from management, customers, and Tier II engineers and drive to resolution effectively and expeditiously. Coordinate troubleshooting activities between HP TippingPoint development engineers and customer users. Document processes on internal wiki and mentor Tier II engineers to improve their troubleshooting skills. Cisco Systems, Inc. Customer Support Engineer II 10/01-07/09 Provide Tier III support for national and international customer enterprise networks as a member of the Quality Engineering Team.

3 Configured and troubleshot PKI, PAP, CHAP, IPSec, GRE, and DMVPN across various Cisco platforms for major customer accounts. Configured and troubleshot router access control lists. Performed security advisory analysis for the ROS business unit as a member of the Cisco Product Security Incident Response Team (PSIRT) by gathering affected hardware and software platforms supported by the business unit using SQL queries. Wrote detailed specifics about the impact of the pending Cisco security advisory public announcement for internal engineering team distribution. Resolved escalated outages and service degradation issues on T1, E1, T3, OC-3, multi-link, IMA, Metro Ethernet, PRI and BRI ISDN, DSL and Cable Modem access services. Resolved outages and service degradation on Frame Relay, ATM, MPLS, and HDLC circuits. Performed troubleshooting and configuration of BGP, EIGRP, RIP and OSPF routing protocols. Worked with inter-exchange carriers, local exchange carriers, Internet service providers, equipment vendors, cabling vendors and customers to resolve connectivity issues. Composed root cause analysis and post-mortem reports. MCI WorldCom, Inc. Telecom Technician III 11/00-10/01 Provided technical support in the Priority Clients Technical Services Center to meet availability SLAs. Performed remote troubleshooting and resolved customer outages and service degradation on Frame Relay circuits and DDS, T1, and T3 transport circuits. Accessed Frame Relay switches, DACs, and local loop test sets to identify network issues. Opened, tracked, and escalated trouble tickets with the LEC and internal support teams. Designed and taught a DSL training course. NorthPoint Communications Broadband Services Support Engineer 04/00-10/00 Staffed through Broadbay Networks. Isolated and resolved outage and degradation conditions on a national Digital Subscriber Line network to meet availability SLAs. Accessed network Frame Relay and ATM switches, DSLAMs, and local loop test sets to identify and resolve faults. Interfaced with the LEC to drive outages and service degradation to resolution. Dispatched technicians to sites for troubleshooting and replacement of equipment and wiring. Accepted escalations from customers and management and followed through to final resolution. Supervised 17 technicians for two Internet Service Provider teams.

4 Lucent Technologies, Inc. Engineering Lab Technician 01/00-04/00 Staffed through Applied Concepts, Inc. Performed fault isolation on Stratus Continuum redundant systems running HP-UX operating system. Identify and replace faulty components and peripherals. Install custom configurations of Ethernet and fiber-optic LAN cabling per specifications of the test engineers. ADAX, Inc Network Hardware Electronics Technician 04/99-01/00 Performed test, verification, and fault isolation to electronic component level on Frame Relay and ATM switching cards and T1/E1 CSU/DSU units using oscilloscope, schematics, and digital voltmeter. Performed solder repair and modification on surface-mount and through-hole electronic components. Acted as IT support for the production department by maintaining and troubleshooting test workstations running Windows NT and Solaris. Wrote equipment test scripts in Korn Shell on Solaris platform. Netscape Communications Information Systems Support Technician 11/96-09/98 Staffed through Endymion Systems, Inc. Performed installation and configuration of Microsoft 95/98/NT operating systems and MS Office suite on PC laptop and desktop systems. Performed custom hardware configuration per customer request. Supervised crews of 5-7 people on Moves, Adds, and Changes projects ranging in size from end users. Performed fault isolation on TCP/IP network identifying DHCP, DNS, routing, LAN cabling, and workstation configuration issues. U.S. Air Force Television and Intrusion Detection Systems Specialist 08/89-02/95 Performed installation, operational checks, inspection, troubleshooting, repair, calibration, modification, testing, and performance analysis of CCTV and physical intrusion detection systems. Provided maintenance support on pan and tilt cameras, coaxial cable, display monitors, infrared motion sensors, Doppler-Effect-based motion sensors, card access readers, buried seismic sensors, door and window balance magnetic switch sensors, hand geometry unit biometric readers, entry-point mantraps, access code keypads, low-voltage wiring, and annunciator consoles.

5 TRAINING Kepner-Tregoe Resolve troubleshooting methodology April 2009 TippingPoint Expert Technical Security Products - June 2010 TippingPoint Advanced Technical Security Products - August 2009 VMware Infrastructure vsphere 4.0 Ultimate Bootcamp - February 2010 H3C Comware v5 Switches Installation and Administration - April 2010 ArcSight Essentials - June 2012 SANS 503 Intrusion Detection In-Depth - January 2013 SANS 504 Hacker Techniques, Exploits & Incident Handling December 2013 SKILLS Packet analysis, TCP/IP, routing, switching, penetration testing, network design, security architecture design, network diagramming in MS Visio, anti-virus administration, system patching, SIEM rule correlation design, NetWitness forensics tool, Cisco IPS, TippingPoint IPS, FireEye MPS, Snort IDS, 21CT Lynxeon Network Analysis, Security Onion, nmap, Nessus, Metasploit, Splunk, BackTrack Linux, ArcSight SIEM, QRadar SIEM, McAfee Nitro SIEM, AlienVault SIEM, Wireshark, tcpdump, VMware vsphere.