Professional Profile

Highly-motivated, dedicated, and dependable security professional with strong enterprise software, operating system, and programming background. Looking for opportunity to learn, grow, and add value to a high-performance organization. Strong written and verbal skills.

Work Experience

April 2018 - Current

Principal Security Engineer

Red Team, FIS Global


July 2017 - March 2018

Senior Security Engineer

Red Team, Intercontinental Exchange


  • Manage multiple attack and penetration tests for regulatory compliance
  • Develop proof of concepts for exploitation of vulnerabilities and threat automation
  • Develop scripts and tools to automate and streamline Red Team processes
  • Collaborate with development and infrastructure teams to remediate vulnerabilities
  • Maintain vulnerability scanning platform, phishing, and bug bounty programs

June 2015 - June 2017

Senior Security Architect

Enterprise Security, Worldpay


  • Provide application security guidance to development and project teams
  • Work with various development and infrastructure teams to remediate vulnerabilities
  • Lead the internal Red Team
  • Develop proof of concepts for exploitation of vulnerabilities
  • Execute attack and penetration tests on new code releases
  • Manage multiple attack and penetration tests for PCI compliance
  • Develop automation software to improve security processes

Dec 2014 - June 2015

Lead Security Engineer

Security Operations, Worldpay


  • Performed incident response and threat hunting
  • Developed Red Team methodology and reporting
  • Executed attack and penetration tests
  • Examined threats including malware and phishing emails
  • Developed software to display live attacks and threats against the infrastructure

Nov 2014 - Dec 2014

Information Security Professional Services Engineer

Enterprise Information Security, EarthLink Inc.


  • Performed vulnerability assessments on customer networks and infrastructure
  • Researched and track security threats and vulnerabilities
  • Developed software to generate custom reports based on Nessus and Nmap scan results

Feb 2014 - Nov 2014

Information Security Analyst II

Enterprise Information Security, EarthLink Inc.


  • SIEM tuning and log analysis of alerts
  • Managed attack and penetration testing of enterprise systems
  • Developed a vulnerability management web application to centrally store, track, and provide metrics for enterprise vulnerabilities
  • Developed scripts to monitor and alert for potentially malicious DNS modifications
  • Web Application Vulnerability SME for the organization
  • Performed vulnerability assessments of new systems and applications
  • Developed Proof of Concepts of vulnerabilities for management
  • Incident response and on call responsibilities

Feb 2012 - Feb 2014

Information Security Analyst I

Enterprise Information Security, EarthLink Inc.


  • Maintained Web Application Security program
  • Scanned enterprise web portals and vulnerability management
  • Contributed to development of application security and SSL standards
  • Managed multiple attack and penetration audits of enterprise systems
  • Performed attack and penetration testing for compliance auditing
  • Conducted security assessments on new and existing software products
  • SIEM experience - Monitored and investigated system and network logs for indicators of compromise and security policy violations
  • Involved with implementation of distributed SIEM infrastructure within the enterprise network
  • Incident response and on call responsibilities
  • Enhanced fraud and abuse business processes by developing automation tools

Aug 2009 - Dec 2011

Infrastructure Team Lead / Technician

Eagle Computer Care, Georgia Southern University


  • Managed a team of technicians
  • Management of Windows and Linux servers and networking equipment
  • Built backup storage arrays utilizing RAID-1 and RAID-5 technologies
  • Implemented VMWare ESXi technology for virtualization of servers
  • Designed and implemented dual networks for safe and infected computers
  • Computer hardware repair of student and faculty computers
  • OS and software troubleshooting and reinstallation
  • Virus, malware, and spyware removal

Qualifications

Certifications


  • (ISC)2 SSCP, CEH, ECIH

Operating Systems


  • Windows XP, Vista, 7, 8, 10
  • Windows Server 2003, 2008, 2012
  • Debian, Ubuntu, Redhat and CentOS Linux

Software


  • Apache Web Server and Microsoft IIS 7
  • MySQL Server and Microsoft SQL Server
  • VMWare ESXI and Hyper-V Hypervisors

Toolsets


  • IBM QRadar
  • Ncircle IP360 and Nessus
  • HP WebInspect and Acunetix
  • BurpSuite
  • Nmap and Netcat
  • Wireshark
  • Metasploit
  • Kali/Backtrack

Programming Languages


  • HTML, CSS, and jQuery
  • PHP and SQL
  • Java
  • C# and Visual Basic.NET
  • Python

Projects

Home Lab


  • Implemented Snort IDS, Sophos UTM, and AlientVault OSSIM into home lab network
  • Custom built four high-end desktop computers
  • Colocate six 1u servers
  • Custom built a RAID-5 media server
  • Develop and host my own website

Education

Georgia Southern University

Information Techology Major — 3.4 GPA


  • Networking and Datacenter Administration Specialization
  • Computer Science Minor
  • Represented Georgia Southern University in the 2011 Southeast Collegiate Cyber Defense Competition