Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
BLAUVELT
26000 Ave Aeropuerto #216 * San Juan Capistrano, California 92675
951.746.6486 * rb886c58@westpost.net
PROFESSIONAL EXPERIENCE
WACHOVIA\ WELLS FARGO, Irvine, Ca *05\ 2007- 04\2009
One of the largest financial services companies in North America.
Senior Network Security Analyst: Performed detailed application and system asses
sments to determine vulnerabilities and ensure compliance with all security stan
dards and guidelines. Designed and managed targeted policies, procedures, and pr
ojects to enhance the overall security posture. Served as the point of contact f
or Symantec and Infosec to advance IT maintenance and administration. Conducted
security and use violation investigations and produced and analyzed reports and
documentation. Led Windows patch management. Created metrics to generate system
data.
*Cut Windows Enterprise patch-related vulnerabilities from 60% to 0% over the co
urse of 1 audit cycle.
*Created and implemented focused IIS 6.0 security standards and hardening proced
ures across the enterprise.
*Daily and ad-hoc review of Windows based security logs, Unix syslogs and Cisco
concentrator VPN logs to identify security violations in support of Company poli
cies
*Lead analyst on CIRT team to address both internal and external threats to Wan\
Lan in support of operations security. Utilized Symantec SII portal for signatur
e analysis, event triangulation and correlation to reduce attack vector\s.
*Provided on-call after-hours point of contact acting as liaison and threat inci
dent analyst between "Symantec Security Operations" Center experts and Wachovia,
providing response and incident\s methodology for presentation to upper managem
ent for de-brief.
*Performed minimum baseline host hardening standards assessment and certificatio
n sign off for pre production and release of Windows based servers.
*Assisted in bucket initiative Arcsight SIEM solution gathering requirements whi
le working with internal support teams to create connectors, define clipping lev
els, provide database integration, roll-up schedules and alerting methods.
*Lead analyst and project manager in support of annual security posture assessme
nt, including vulnerability scans of Network, Telecommunications, Intel and Appl
ications. Engaged vendor from inception of audit through remediation process wit
h asset owners as well as remediation solutions.
*Assisted lead security architect, performing Firewall audits to ensure that ing
ress and egress filtering were properly configured, up to date and aligned with
corporate standards of information flow.
*Authored and updated computer policies and procedures as requested to support B
usiness goals and objectives.
*Addressed Ad-hoc requests via ticket tracking system in support of accountabili
ty management requests, service account creation and access requests to ensure l
east privilege concept and proper label clearance.
*Lead analyst in support of Enterprise wide patch management committee for Windo
ws and Unix noc's. Analyzed ratings and ranking of patches, zero day threats, se
curity advisories and applicability to environments for alignment with corporate
policy concerning level of risk and patch rollout schedules.
*Authored and maintained corporate security policies, procedures, standards and
guidelines.
*Perform application impact analysis in support of SDLC.
*POC representing security operations team in change control process and provide
ISO17799: 2005 guidance to cross platform teams.