Technology Strategist

Document Sample
Technology Strategist Powered By Docstoc
					                                                                                                                         Revision 3.25

                                               Carlos A. Barbet                                                             11.24.2009

                                                 12617 Longcrest Dr., Riverview, FL 33579
                                                Phone: 813.672.7716(h) or 813.957.6388(m)

       To obtain a position within twenty / thirty miles of my home focusing on security (especially forensics/auditing), network
       and systems architecture, and open source solutions.

Summary of Qualifications
    Over thirteen years experience in the Information Technology sector with over seven years in the Information Security and Open
    Source space.
    Linux Professional Institute ID – LPI000140420
    CISSP #356886
    Cisco ID CSCO10076752


Graduated (12/2005)                         University of South Florida                           Tampa, FL
Bachelors of Arts

       Certified: Comp TIA Security+, Microsoft (MCP), Cisco (CCNA-407), Linux (LPIC-1), CISSP

         Network traffic analysis (Wireshark, tcpdump, any packet capture tool)
         Firewall / perimeter architecture (including IPS/IDS deployments)
         Data logging and auditing (SEIM/SIM tools, SNMP, syslog, etc)
         PKI architecture (X.509 certs and the OpenSSL library)
       OSes: OpenBSD; Linux; VMWare; Microsoft Windows 2000, XP, 2003, Win CE/Mobile, Windows 7, Mac OS X
       Languages: Perl, batch and shell scripting
       Trouble shooting and problem determination (root cause analysis)
       Research and deployment (system discovery, development and documentation)

Professional Experience

12/2007 – Present                  Grow Financial Federal Credit Union                                     Tampa, FL
Information Security Specialist
          Member of the Information Security team responsible for evaluating the risks associated with the information systems of a 1.8
billion dollar organization with over 550 employees servicing over 180,000 members. Duties include: performing penetration testing on
internal systems, network security assessments (Active Directory included), application security assessments, verifying that systems are
patched, as well as preventing data leaks.

     Incident Response – investigating system anomalies such as viruses, non-compliant machines and devices, IDS alerts, and
forensic discovery.
     Customer Service – act as a security analyst for software and technology the credit union is purchasing as well as providing
third/fourth tier end user support.
     Systems Integration – coordinate with potential vendors and business partners to accomplish project goals while insuring the
design, development, and production of software meets credit union objectives
     Systems Integration – creating department budget, project list, setting departmental goals and priorities, reporting on the state
of information security to the Board of Directors, and attending departmental management staff meetings

   Established PKI framework for internal sites using OpenSSL libraries and bash scripts.
   Responsible for numerous end user protection mechanisms such as SPAM filtering (IronMail), Antivirus ( McAfee ToPS), Firewall
    management (SideWinder) and VPN connectivity(Nortel).
   Establish Public WiFi infrastructure using FortiNet 60B WiFi devices.
   Configuration and management of Trigeo SIEM system for event correlation and alerting.
   McAfee Antivirus deployment to all credit union machines (servers and workstations) using ePO 4.0 server.                 – Technology Strategist                                                                 Page 1 of
Visit for current resume revisions
                                                                                                                           Revision 3.25

   Established log server (using rsyslog) used for long term archival of device logs.
   Windows Domain Administration
11/2004 – 12/2007                   Fortress Technologies, Inc.                                              Oldsmar, FL
Quality Assurance and Integration Engineering
         Provide analytical feedback and market research to aide in product development and product functionality modifications.
Design and implement wireless environments (802.11abg) to determine product compliance with USG WLAN Protection Profiles.
Primary responsibilities required managing time lines related to validating the Secure Client on Linux distributions, Mac OS X, Win32 and
WinCE OSes; in addition to validation of the gateway appliances for FIPS/Common Criteria re-certification.

     Systems Integration – insuring the design, development, and production of software meets or exceeds marketing and Common
Criteria requirements
     Project Management (Quality Assurance) – provide information and analysis of testing results to software engineers and
management teams; in addition to performing manufacturer device evaluations and market research for new product development.
     Infrastructure Architect – Visualize and implement lab domain infrastructures

   Provide authentication mechanisms : deployed various authentication servers for validating company product (OpenLDAP,
    FreeRadius, RSA Server)
   Participate in Soft Development Life Cycle of products: providing input on new market areas which the product may be suited
   Established mail relay system (smtp/pop3) using sendmail
   Introduced alternative servers for QA use (NTPv4, bind 9.2, FTP, DHCP)
   Develop, maintain and enhance the MS Active Directory network environment (Windows 2003 Enterprise)
   Configure and deploy system management solutions to provide data collection via SNMP (OpenNMS and HP OV NNM) and Syslog-
   Wireless and wired environment packet capturing and security analysis (Wireshark, Layer 2 analysis)
   Identity Management: PKI deployment using Smart Cards (openssl)
   Maintain a lab environment made up of various Linux distributions, Mac OS X, Win32, and Windows CE PDAs
   Extensive use of encryption algorithms and key exchange protocols to include: NSA Suite-B set, DES, and 3DES

2/2000 – 10/2003                    Danka Office Imaging, Inc.                                               St. Petersburg, FL
Senior Systems Engineer
         Worked with a team of engineers supporting a global company with over 11,000 employees throughout twenty-four countries.
This incorporated evaluating, designing, hardening, tuning, deploying, and maintaining over 180 Microsoft Windows based systems. In
addition, responsibilities also included disaster recovery and business continuity planning. Utilizing IBM Servers.

     Incident Response – providing quarterly status updates, root cause resolution documentation, coordination and management of
resolution effort with 1st and 2nd tier support staff, and documenting corrective action initiatives.
     Company Communication of Planned System Outages – change management documentation, system status reports,
assessment of business impact, ensuring system availability at the close of change window.
     Project Management (customer service) – designing deployment protocols and policies, providing training and supervision to
support staff (including proper escalation procedures), and harmonization between business units, in regards to application
requirements and system performance expectations.

   FileNET Content Services: security architecture and design, business deployment methods, and system administration (SQL
    Server/IIS)* – Company realized a thirty percent savings in business processes
   RightFAX Enterprise Server: designed and maintained network faxing solution for high availability in a clustered environment
    (NLB/PBX/Networking faxing)
   Automation scripting: archiving proxy log files, disk utilization reporting, data encryption using PGP e-Business Server* - assisted in
    winning two million dollar contract (PKI/Perl/Batch/SDLC)
   Remote Installation Services: designed RIS infrastructure and deployment server as part of Active Directory rollout (Windows 2003
    Server/Policies/Software distribution)
   Identified and mitigated security risks throughout the network infrastructure including virus propagation, auditing associate internet
    activities, and locating unauthorized servers brought online at remote locations (Network monitoring/Event Log/NAI AntiVirus/ISA
    Server/Web Trends/NAI e-Policy Orchestrator)
   HP OpenView Manage X: designed policies for monitoring of e-Commerce site (IIS 5.0 and SQL Server) and BlackBerry Server
   HP Openview Network Node Manager: implemented, configured and maintained corporate network management (SNMP/Perl)
   Quota Advisor: deployed for disk quota management and monitoring
   Terminal Services and Citrix: deployed as load balanced systems (using NLB) and clustered application farms (Windows

7/1998 – 1/2000            Bausch & Lomb Pharmaceuticals                                  Tampa, FL
Information Management & Technology (Consultant)                  – Technology Strategist                                                                  Page 2 of
Visit for current resume revisions
                                                                                                                            Revision 3.25

         Contracted systems analyst tasked with web enabling the email system, evaluating and recommending firewall products and
provide VPN access for the I.T. staff and to provide third level support, e.g. server deployments and configuration in a mixed Netware
and Windows environment. Utilizing Compaq servers.

    Incident Response – responsibilities included root cause and resolution documentation, providing corrective action plans, and
ensuring the completion of the corrective response.
    Customer Service – communicate with associate population to identify solutions and challenges, in addition to mitigating
associate disposition due to system performance.

   Configuration and implementation of firewall software, IIS 4.0 with SSL encryption, NT4 Workstations and Servers, Citrix
    MetaFrame Servers
   Configuring RS/6000 (AIX) and Linux for smtp-relay and DNS services (Linux/sendmail/bind DNS)
   Mail Systems administration (cc:Mail and sendmail)
   Implementation and deployment of ImageCast server for imaging desktop PCs
   Assisted in the design and deployment of a development / lab network (Cisco 1900 Switches)
   Supported Frame Relay access to corporate office (Cisco)
   Provided technology evaluation of warehouse point of sale RF equipment (POS/Wireless)

1/1998 – 6/1998             Inland Homebuilding Group, Inc.                                Tampa, FL
MIS Assistant
       Responsibilities included the daily operation of the I.T. network infrastructure, firewall, servers, back-ups, printers, and
computer supplies purchasing. Utilizing HP Servers running Windows NT 4.0.

    Incident Response – performed root cause and resolution determination and provided corrective action plan.
    Project Management – coordinated with vendors and business associates to accomplish project goals.

   Citrix WinFrame v1.7 and NT 4.0 administration, email using MS Outlook ’97 and ’98, MS Exchange v5 and supporting MS Office
   Motorola Vanguard router configuration, Bay Stack switch configuration, WatchGuard Firewall configuration
   Managed project to provide a point-to-point connection between corporate servers and remote finance office
   Automated anti-virus deployment to field offices (Batch scripting/Anti-Virus)
   Supported Frame Relay access to Internet (Motorola VanGuard)

11/1996 – 1/1998                     IBM Global Services / Computer Generated Solutions, Inc.       Tampa, FL
Help Desk Technical Representative
           Call center environment servicing over 40,000 Ernst & Young associates.

    Customer Service – Assisted associate population with any system issues, alerting 3rd level support regarding widespread system
outages, and managing (defusing) irate customers.

   Supported Windows 3.1, Windows 95, Lotus Notes 4.0 and 4.5, Internet Explorer, Netscape Navigator, MS Office Products, Dial-Up
    Networking, VPN, RSA Secure IDs and various internal software products
   Staff training and orientation, and researching and resolving persistent issues

                English – Fluent
            Spanish – Conversational, limited                  – Technology Strategist                                                                   Page 3 of
Visit for current resume revisions