Architect, engineer, plan and deploy information security solutions, compliance requirements and security remediation efforts. Address enterprise security needs, compliance and cloud migration to AWS. Report to the Director of IT Security.

• Architect enterprise application, information security, and business transformation to AWS: Provide infrastructure and application security architecture and design for enterprise transformation and migration to Amazon Web Services (AWS).
• Remediate identified risks, missing controls, and needed protections for applications: Utilize cloud-native and industry leaders’ tools and methods to enforce policy and compliance adherence and ensure the required security posture. Recommend cloud-native and best of breed tools for IAM, FIM, IPS, IDS, SIEM, CEKM, vulnerability and policy scanning, micro segmentation, application whitelisting and endpoint protection.
• Execute proof of concept projects and determine the best solutions for business requirements: Work extensively with AWS EC2, S3, IAM, RDS and Container services to engineer technical solutions. Develop automation utilizing AWS API and CLI in python and bash scripts. Work closely with compliance, internal audit and senior management to craft the enterprise approach to cloud migration and transformation.
• Provide OS and application forensics and analysis: Working with the technology team, discover and provide forensic information when resolving any enterprise information security breach. Work directly with vendors and operations teams to provide forensic data needed and assist with analyzing the information.
• Analyze environment and propose controls and remediation: Review existing information security controls, identify gaps, and propose solutions. Work closely with Internal Audit, SOX, and PCI compliance teams and network security to design, engineer, and deploy end-to-end solutions. Utilize RSA Data Protection Manager (DPM) for enterprise CEKM and strong encryption requirements.
• Design, engineer and deploy bastion services: Provide enterprise standard solution for protecting high-value security zones by developing and deploying a bastion solution using Microsoft Secure RDS Gateway and native Linux ssh proxy. Integrate CyberArk into this solution for IAM.
• Design, engineer and deploy PCI logging services: Design, engineer and deploy syslog-ng solution coupled with Splunk as the solution for centralized PCI logging requirements.
• SME for Linux and UNIX solutions: The environment is 75% non-Windows and demand for architecture and operating system expertise creates a need for consultative services to architect effective solutions.

Manage operating systems support teams, day-to-day operational activities, and client requests in a 6000+ server environment. Resolve security, application, and environmental issues. Mentor and train team members. Report to the Director of Technology.

• Manage system administration staff: Responsible for a team of ten members to support open-source cloud, Linux/UNIX, and HP/AIX/AS400 in a 24 by 7 environment. Manage service requests from the client base and guarantee resources to drive to successful completion. Manage production support major efforts by providing coordination of activities and resources.
• Project manager for multiple enterprise projects including Sun platform migration/elimination and Puppet deployment: Work in a collaborative and blended Agile/SDLC environment to eliminate legacy platforms and migrate applications to the private cloud. Successfully manage the deployment of Puppet infrastructure and client agents by the Distributed Systems team. The Puppet environment supports 4,000 servers

Implemented 24x7 monitoring and infrastructure operations of the SpringCM cloud services platform. Provided leadership, vision, strategy, and operational excellence to internal and external customers during an aggressive growth period. Highly focused on systems performance and delivery. Reported to the CIO.

• Devised and delivered infrastructure and application operations, incident and problem management, and customer and technology support in an Agile environment: Delivered application, infrastructure, and operations support and engineered and deployed system performance and health monitoring. Initiated a new incident and problem management process to contribute input for application improvement.
• Implemented a comprehensive monitoring architecture to provide real-time performance metrics to a global customer base: Used best of breed tools to gather system performance metrics to measure SLA and ensure the best possible end-user experience.
• Lead a cross-functional RCA (root cause analysis) initiative that analyzed problem areas of the platform and required corrective actions focused on improving SLAs: Lead a cross-team initiative to identify and resolve system operational and performance issues.
• Provided operations reporting, management dashboards, and continuous improvement of the environment: Designed and produced management dashboards and system performance reports. This data was used for performance tuning of the platform.
• Architected Open Systems environment: Defined an open-source architecture that included various tools such as Hadoop, Puppet, TeamCity, MongoDB, MySQL, Open Source SAN, and server virtualization in a RedHat/Suse environment.

Provided strategies to advance structure and process for a large data center in a managed services company. Implemented organizational structure and staffing for continued customer satisfaction and continued growth. Reported to the COO.

• Managed the enterprise-critical project stream and day-to-day data center and field operations: Managed staff, operations, and field technicians. Delivered new service offerings and business-critical applications. Initiated a SAS70 certification project.
• Re-engineered internal processes to provide a solid basis for a growing technology services delivery company: Focused on engineering standards and ITIL framework to ensure delivery of projects as well as operations deliverables.

Restored organization and provided enhanced organizational structure and enterprise strategies for successful growth. Managed staff, staffing levels and capital budget. Reported to Director of Technology.

• Lead engineering effort and implementation project to enhance, maintain and consolidate production server and storage infrastructure: Managed and architected the deployment and support of VMware and EMC enterprise storage solutions. Worked closely with Litigation Support practice to provide storage for their high-demand practice. Lead the team that provided data protection for the Firm’s mission-critical data.
• Provided management and strategic planning for growth and engineering of Exchange, Citrix, AD, RSA, ISA, VMware, and other support infrastructure: Established a team structure that focused engineers on project delivery and enterprise enhancements. Developed and instituted processes that aid engineers in focusing on all facets of project delivery, technical excellence, and expertise. Developed engineering standards using the ITIL framework to ensure project delivery as well as operations activities.
• Managed teams that provide network, server, and storage infrastructure to the global Firm: Hired and assembled a team of engineers and operators capable of taking the organization to the next level of technical excellence.
• Managed the on-going project stream and annual departmental budget: Managed day-to-day operational, engineering and technology services. Developed the annual capital budget for the department.