Abstract image of a woman sitting on books and studying on a laptop

Martin_Leroux_2014

Download as DOC, PDF
M
Martin Leroux

Martin Leroux has over 18 years of experience in network and IT security roles. He is currently a Senior IT Security Specialist at Shared Services Canada, where he provides advice on security policies and procedures, investigates security incidents, and maintains knowledge of emerging threats. Prior to his current role, he held several senior security positions at Entrust, Industry Canada, and the Department of National Defence, where he was responsible for securing networks, conducting vulnerability assessments, and responding to security incidents.

1 of 10
Download to read offline
1
2
3
4
5
6
7
8
9
10
Martin Leroux CD (bilingual) Secret Clearance mleroux007@gmail.com RESUME CAREER OBJECTIVES As a dependable and skilled Network/Security manager/Supervisory, with more than 18 years of experience, and a consistent record of excellence in IT, I wish to express my strong interest in seeking a position within your organization CAREER BACKGROUND Responsible for securing corporate and Government wired and wireless networks, offsite storage, acceptable use policies, proper usage of hardware, protecting the network from hackers and maintaining corporate network security. This is a position that requires continual vigilance and keeping informed of new security vulnerabilities as they are discovered. PROFESSIONAL EXPERIENCE Shared Services Canada FIPC 2014 Feb– Present 11 Laurier St Gatineau, Que Canada, Shared Services Canada Senior IT Security Specialist Provides specialized advice and guidance to management, program specialists to facilitate the delivery of IT security and Secure Electronic Service Delivery (SESD) infrastructure, processes and tools; advise on IT Security policies, procedures and standards; provide advice and promotes communication by interpreting and disseminating departmental, central agency policies, standard and guidelines. Lead the development of security directives. Provides specialized advice and guidance in the investigation of security incidents/violations and implementation of corrective actions; Advises on the analysis, selection and delivery of SESD initiatives. Occasionally leads multi-disciplinary SESD project teams in conducting threat/risk assessments of IT and voice/data systems; in proposing, planning, designing and testing procedures and mechanisms to address security problems and issues.
Consults with suppliers and stakeholders to investigate new IT technology trends and lead studies on best practices and current trends in IT security. Conducts researches and analysis in the resolution of complex IT security issues/problems; acts as a subject matter specialist on the development of IT risk and security, and SESD processes and tools. Negotiates and participates in discussion with managers and administrative/technical staff and stakeholders to persuade or obtain agreement on the requirements for services or the resolution of technical issues. Maintain knowledge of trends and development in IT security threats, vulnerabilities, security standards, policies and directions. - Working with IT Security controls, technology (ie Firewall, VPN, IDS/IPS/HIDS/HIPS, Content Filtering, DDOS,). - Working in a Security Incident Response team. - Supporting LAN's/WANS and zoning protocols. - Computer Forensics. - Working with Canadian Government IT Security related standards and policies (e.g. Government Security Policy, Management of Information Technology Security (MITS) Standards, etc.). - Conducting technical research and analysis of cyber threats and IT security incidents. - Implementing, supporting or testing IT security solutions within multi-zoned data centre environments. - Contributing to the development and management of an IT security program, including: security awareness, policies, standards, procedures, processes, monitoring, risk management, and activities surrounding the Certification and Accreditation (C&A) of IT infrastructure. - Working with Malware/Anti-virus tools and processes performing installation, configuration, and/or support. - working on IT security projects. - Mentoring a team of IT specialists or personnel. - Planning, architecting, migrating and/or providing IT Security services.
- Developing and/or leading the development of solutions for Identity, Credential and Access Management. - Development of IT Security strategic plans. - Performing Security Assessment & Authorization for IT and complex IT Security system/services. - with data security and/or Data Lost Prevention services and technology. - Knowledge of Government of Canada Security Policy suite. - Knowledge of the mandate of Shared services Canada (SSC) as it pertains to IT Security. 2013 Dec – 2014 Feb 11 Laurier St Gatineau, Que Canada, Shared Services Canada Provides specialized advice and guidance to management, program specialists to facilitate the delivery of IT security and Secure Electronic Service Delivery (SESD) infrastructure, processes and tools; advise on IT Security policies, procedures and standards; provide advice and promotes communication by interpreting and disseminating departmental, central agency policies, standard and guidelines. Lead the development of security directives. Provides specialized advice and guidance in the investigation of security incidents/violations and implementation of corrective actions; Advises on the analysis, selection and delivery of SESD initiatives. Occasionally leads multi-disciplinary SESD project teams in conducting threat/risk assessments of IT and voice/data systems; in proposing, planning, designing and testing procedures and mechanisms to address security problems and issues. Consults with suppliers and stakeholders to investigate new IT technology trends and lead studies on best practices and current trends in IT security. Conducts researches and analysis in the resolution of complex IT security issues/problems; acts as a subject matter specialist on the development of IT risk and security, and SESD processes and tools. Negotiates and participates in discussion with managers and administrative/technical staff and stakeholders to persuade or obtain agreement on the requirements for services or the resolution of technical issues.
Maintain knowledge of trends and development in IT security threats, vulnerabilities, security standards, policies and directions. - Working with IT Security controls, technology (ie Firewall, VPN, IDS/IPS/HIDS/HIPS, Content Filtering, DDOS,). - Working in a Security Incident Response team. - Supporting LAN's/WANS and zoning protocols. - Computer Forensics. - Working with Canadian Government IT Security related standards and policies (e.g. Government Security Policy, Management of Information Technology Security (MITS) Standards, etc.). - Conducting technical research and analysis of cyber threats and IT security incidents. - Implementing, supporting or testing IT security solutions within multi-zoned data centre environments. - Contributing to the development and management of an IT security program, including: security awareness, policies, standards, procedures, processes, monitoring, risk management, and activities surrounding the Certification and Accreditation (C&A) of IT infrastructure. - Working with Malware/Anti-virus tools and processes performing installation, configuration, and/or support. - working on IT security projects. - Mentoring a team of IT specialists or personnel. - Planning, architecting, migrating and/or providing IT Security services. - Developing and/or leading the development of solutions for Identity, Credential and Access Management. - Development of IT Security strategic plans. - Performing Security Assessment & Authorization for IT and complex IT Security system/services. - with data security and/or Data Lost Prevention services and technology. - Knowledge of Government of Canada Security Policy suite.
- Knowledge of the mandate of Shared services Canada (SSC) as it pertains to IT Security. 2011 – 2014 1000 Innovation Drive Ottawa, Ontario Canada K2K 3E7 Entrust, Inc. 1 Senior It Security Analyst, Incident Handler, Forensics analyst, VA, AV, Spam, Phishing, Tech Watch, Content Filtering. Considered critical infrastructure for the US Government. Responsible for developing, deploying, managing, and operating the Information Security Management System (ISMS), the security related processes and technologies to ensure the safety of organization information assets. Advisor to the organization's business units, providing recommendations/remediation strategies to enhance overall security for the organization. Responsibilities included: − Developing the global Entrust Cyber Security Incident Response Team − Performing ongoing security control assessments in accordance with the organizational continuous monitoring strategy − Performing security investigations, intrusion verifications, analyzing cyber data and producing intelligence reports and investigative and operational leads, and responding to cyber security incidents − Reporting the security state of the information system to appropriate stakeholders including status regarding the performance of security scans, analysis of alerts, tuning of signatures and report development, review and analysis − Performing security incident response activities, recognizes potential, successful and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information − Ensuring the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies and through monitoring of vulnerability scanning devices − Performing periodic and on-demand system audits, penetration testing and vulnerability assessments − Researching, evaluating, and recommending the implementation of changes to information security technologies. 2009 – 2011 Industry Canada IT Security Officer, Incident Handler, Forensics analyst, VA, AV, Spam, Phishing and Tech watch. Responsible for providing security services for Industry Canada. This includes, but is not limited to, Incident handling, Forensics, Vulnerability assessment,
threat risk analysis, architecture & design, security policies, recommendations & reports, promoting a security philosophy of risk mitigation through proactive security awareness training, cost-effective security countermeasures, host-level security, and security planning/integration; ensuring that all systems are safeguarded against all forms of malicious intrusions; assisting other groups within the firm in developing secure systems. - Incident response and incident management - Review detection and analysis activities through review of large volumes of summary data via various tools and software; SIEM, Data Base, Scripts. - Provide the Client Technical Authority or his designated representative technical and operational support in the analysis of incidents, vulnerabilities and malicious code; - Issue alerts and advisories according to the internal warning procedure. - Syslogs analysis - participate in regular and event-based teleconferences with national constituents; - Review Intrusion Detections System (IDS) logs daily and investigate alarms; - Call Management System (HEAT & Infoweb); - Monitor and report on Internet acceptable usage; - Member of the Change Advisory Board (CAB); - Knowledge expert on IT trends for GOC and private sector; - Anti Virus, Spam, Phishing analysis; Mar 2007 to 2008 Manager Security of Operations NUVO Reporting to the Vice President of Operations; responsible for providing security services for customers and company, as well promoting security services to current and potential customers through networking and partnering with sales. This includes, but is not limited to, vulnerability assessment, threat risk analysis, architecture & design, security policies, recommendations & reports, promoting a security philosophy of risk mitigation through proactive security awareness training, cost-effective security countermeasures, host-level security, and security planning/integration; ensuring that all systems are safeguarded against all forms of malicious intrusions; assisting other groups within the firm in developing secure systems. • IP Network architecture and technology, protocols, routing, Wireless Networking; • Monitoring Software: • Coordinate Firewall configuration and rule maintenance; • NIDS/NIPS, HIDS/HIPS ISS RealSecure, Snort, Enterasys, Juniper, Mcafee etc;
• VPN Communication Protocols and Remote access facilities; VPN, RAS, thin- client; • Syslogs analysis from a number of tools; SIEM, scripts, command line; • Call Management System (Remedy); • Responsible to meet SLA’s and HA Anti Virus, Spam, Phishing analysis; Jul 2005 to Dec 2005 Cyber Duty Officer PSEPC Ottawa CANADA • Prepare both technical and cyber risk briefs as required; • Chair/participate in regular and event-based teleconferences with national constituents; • Monitor and analyze information and data on cyber threats. This involves research and investigation of new or up coming threats, vulnerabilities or malicious code; • Review daily information from the international community; • Review Intrusion Detections System (IDS) logs daily and investigate alarms; • Support detection and analysis activities through review of large volumes of summary data; • Provide the Client Technical Authority or his designated representative technical and operational support in the analysis of incidents, vulnerabilities and malicious code; • Intake incident reports from Government of Canada, provincial and territorial governments, and private sector and report to management on the impact and risk; • Coordinate a response to cyber incidents of a national interest and function as the operational lead within the National Emergency Response System; and • Issue alerts and advisories according to the internal warning procedure. Nov 2004 to Dec 2005 Network Security Consultant As an independent consultant, I provided a vast range of technical advice and expertise to Public Safety and Emergency Preparedness Canada and IPSS. This work involved the preparation of technical and cyber risk briefs and monitoring and analyzing information and data on cyber threats. I was also responsible for network security analysis, vulnerability assessments and penetration testing. I directed the research and investigation of new and upcoming threats, vulnerabilities and malicious code. I also participated in the IPS study for CSE / Government of Canada where I compiled information, vendor interactions, researched, reviewed and corrected discrepancies.
Jan 2002 to Jan 2004 CIRT Team Leader (private sector) CGI Information Systems Management Consultants Inc Ottawa CANADA CGI Information Systems Management Consultants Inc. As the senior technical advisor / team leader / analyst, reporting to the Director of Corporate IT, I monitored network security, researched and investigated threats, vulnerabilities and malicious code and conducted vulnerability assessments IAW SLAs. I also directed various security projects in the initial design and implementation of intrusion and recommended options for strengthening the client's relationship with operations. I provided guidance to the team lead and analysts, and provided leadership at weekly corporate conference calls pertaining to projects incident handling and future security projects. Jan 2000 Jan 2002 CIRT Computer Response Team Supervisor Department of National Defence Ottawa CANADA Department of National Defence, Canada Computer Incident Response Team Supervisor • CIRT Supervisor; • Involved with network security monitoring, research and investigations of threats, vulnerabilities and malicious code; • Researched and analyzed open source information for emerging threats, vulnerabilities and tools. Responsible for supervising and training the new network security analysts to be able to operationally met the goals set by the Team Manager to provide security and protection services to the Department of National Defence information systems against intrusions/attacks; • Was responsible for providing operational support and guidance in incident investigation, analysis and response and follow up as well as quality control of reports prior to their release to large audience in the department. Ensured that all incidents were logged, vulnerabilities were identified, incident database was updated as and when required, and that incidents were followed up; • Current knowledge of Intrusion Detection Systems (IDS), anti virus, firewalls, routers and security policies; • Liaison with various government and allied agencies to coordinate response to threats; • Compiled virus statistics, prepared and wrote reports on new malicious code that was detected in the wild with a level of impact regarding possible infection within DND; • Supported the day-to-day administration of the DND CIRT networking assets; • Utilized PGP and Entrust PKI encrypted email for secure intra and inter- department communications; and • Pre-Y2K threat analysis for the department on malicious code and possible cyber attacks daily.
1998 - 2000 Department of National Defence Network Vulnerability Analysis Team Leader (NVAT) • Used and managed various UNIX (Solaris 2.X) and Linux (Slackware) workstations on a daily basis to conduct system audits using UNIX based security scanners; • Supported and help build a mixed environment test network to support NVAT operating system vulnerability testing; • Analyst and a Team Supervisor responsible for auditing DND’s network with CyberCop (formally Ballista) as well as using non- commercial tools to ensure system integrity; • Evaluated the integrity of the various networking Internet protocols using tools such as SAINT (formally SATAN), Cheops, and Nmap as well as other tools; • Responsible for the evaluation of new scanners (commercial and freeware) to be used by the NVAT Team; • Regularly analyzed the data obtained from vulnerability scanners to detect signs of systems vulnerabilities. Used tools such as TCPDump or snoop to gather the necessary information to be used later in post analysis; and • Responsible for supervising and training new analysts to operationally met the goals set by the Team Manager to provide security and protection services to the Department of National Defence information systems against intrusions/attacks. Education and Credentials 2009 FTK Tool Kit Forensic training, Ottawa, On 2007 Net Forensics training 2003 Enterasys Specialist Dragon Intrusion Detection System course 2002 Forensic, Ottawa Police College 2001 Foundstone Computer Forensic Course, Washington, D.C. 2000 Interconnecting Cisco Network Devices, Ottawa 1999 Information System Security Fundamentals, Algonquin College, Ottawa 1998 Solaris Sys Admin II Learnix, Ottawa 1996 Linked Ops-Intel Centers Europe Workstation User, Sarajevo, Bosnia 1993 Trade qualified 6A, Canadian Forces School of Communications and Electronics, Kingston 1988 Russian Language Course, Canadian Forces Language School, Ottawa 1981 Communicator Research Qualifications, Kingston Miscellaneous References Available upon request
Martin_Leroux_2014

More Related Content

PDF
Business cases internet 30 use cases
Priyanka Aash
 
PDF
Mash f43
SelectedPresentations
 
PDF
Irfan Ur Rehman
Irfan Ur Rehman
 
PPTX
Cybersecurity Priorities and Roadmap: Recommendations to DHS
John Gilligan
 
PDF
Cybersecurity Roadmap Development for Executives
Krist Davood - Principal - CIO
 
PDF
Finto InfoSec ExIBM- CISSP ITIL CCSP CCIE JNCIS MCP 8.5 Yrs
Finto Thomas , CISSP, TOGAF, CCSP, ITIL. JNCIS
 
PDF
Chapter 12 iso 27001 awareness
newbie2019
 
PDF
Ise viii-information and network security [10 is835]-solution
Vivek Maurya
 
Business cases internet 30 use cases
Priyanka Aash
 
Mash f43
SelectedPresentations
 
Irfan Ur Rehman
Irfan Ur Rehman
 
Cybersecurity Priorities and Roadmap: Recommendations to DHS
John Gilligan
 
Cybersecurity Roadmap Development for Executives
Krist Davood - Principal - CIO
 
Finto InfoSec ExIBM- CISSP ITIL CCSP CCIE JNCIS MCP 8.5 Yrs
Finto Thomas , CISSP, TOGAF, CCSP, ITIL. JNCIS
 
Chapter 12 iso 27001 awareness
newbie2019
 
Ise viii-information and network security [10 is835]-solution
Vivek Maurya
 

What's hot (20)

PDF
IT Information Security Management Principles, 28 February - 02 March 2016 Du...
360 BSI
 
PDF
Security Audits & Cyber
Paul Andrews
 
PPT
Lesson 3- Effectiveness of IDPS
MLG College of Learning, Inc
 
PDF
IT Information Security Management Principles, 15 - 18 May 2016 Dubai UAE
360 BSI
 
PPTX
Cyber incident response or how to avoid long hours of testimony
David Sweigert
 
PPT
Lesson 3
MLG College of Learning, Inc
 
PDF
ISO 27001 2013 Introduction Study Case IGN Mantra, 2nd Day, 3rd Session.
IGN MANTRA
 
PDF
IT Information Security Management Principles, 23 - 26 November 2015 Dubai UAE
360 BSI
 
PPT
Lesson 1- Intrusion Detection
MLG College of Learning, Inc
 
PDF
Darryl T. Smith Resume (1)
Darryl Smith, CISSP
 
PPT
Lesson 1- Risk Managment
MLG College of Learning, Inc
 
PPT
Ia 124 1621324143 ia_124_lecture_01
ITNet
 
PDF
Technology Issues and Cybersecurity Strategies
Jack Pringle
 
DOCX
Final Exam Case Study (3)
Kathy_67
 
PPT
Lesson 1
MLG College of Learning, Inc
 
PDF
Specialist Security Engineer
Mark Long
 
PPTX
Build an Information Security Strategy
Andrew Byers
 
PDF
Specialist security enigneer
Mark Long
 
PPT
Lesson 1
MLG College of Learning, Inc
 
PPTX
Cybersecurity Frameworks and You: The Perfect Match
McKonly & Asbury, LLP
 
IT Information Security Management Principles, 28 February - 02 March 2016 Du...
360 BSI
 
Security Audits & Cyber
Paul Andrews
 
Lesson 3- Effectiveness of IDPS
MLG College of Learning, Inc
 
IT Information Security Management Principles, 15 - 18 May 2016 Dubai UAE
360 BSI
 
Cyber incident response or how to avoid long hours of testimony
David Sweigert
 
Lesson 3
MLG College of Learning, Inc
 
ISO 27001 2013 Introduction Study Case IGN Mantra, 2nd Day, 3rd Session.
IGN MANTRA
 
IT Information Security Management Principles, 23 - 26 November 2015 Dubai UAE
360 BSI
 
Lesson 1- Intrusion Detection
MLG College of Learning, Inc
 
Darryl T. Smith Resume (1)
Darryl Smith, CISSP
 
Lesson 1- Risk Managment
MLG College of Learning, Inc
 
Ia 124 1621324143 ia_124_lecture_01
ITNet
 
Technology Issues and Cybersecurity Strategies
Jack Pringle
 
Final Exam Case Study (3)
Kathy_67
 
Lesson 1
MLG College of Learning, Inc
 
Specialist Security Engineer
Mark Long
 
Build an Information Security Strategy
Andrew Byers
 
Specialist security enigneer
Mark Long
 
Lesson 1
MLG College of Learning, Inc
 
Cybersecurity Frameworks and You: The Perfect Match
McKonly & Asbury, LLP
 
Ad

Viewers also liked (12)

PDF
Voting for reform
Jaanika Merilo
 
PPTX
品牌形象建立以及網路行銷
Ivan lin
 
PPTX
Slideshare
dany1103
 
PPTX
REDES SOCIALES
HEIDY ESCOBAR ZAMORA
 
PDF
blog dalam pendidikan
fidanrdhani21
 
PPTX
Aldous huxley
Yared HenriiQuez
 
PDF
Privé Travel Concierge
Elena Becker
 
PPS
eagle rebirth
UZMA AKHTAR
 
DOCX
Energy management.9901366442
NMIMS ASSIGNMENTS HELP
 
PPTX
Ventas de telemercadeo
kellygonzales
 
PPTX
Contoh RAPBM
Wandi Budiman
 
DOCX
resume 2014 copy
Jeff Sturges
 
Voting for reform
Jaanika Merilo
 
品牌形象建立以及網路行銷
Ivan lin
 
Slideshare
dany1103
 
REDES SOCIALES
HEIDY ESCOBAR ZAMORA
 
blog dalam pendidikan
fidanrdhani21
 
Aldous huxley
Yared HenriiQuez
 
Privé Travel Concierge
Elena Becker
 
eagle rebirth
UZMA AKHTAR
 
Energy management.9901366442
NMIMS ASSIGNMENTS HELP
 
Ventas de telemercadeo
kellygonzales
 
Contoh RAPBM
Wandi Budiman
 
resume 2014 copy
Jeff Sturges
 
Ad

Similar to Martin_Leroux_2014 (20)

PDF
Mark_Koehler_Resume_JUN2015_v1.1
Mark Koehler
 
DOCX
Dhishant -Latest Resume
Dhishant Abrol
 
DOCX
Dl Cowan Resume July 2012
WillowWind
 
DOCX
Lancy-Curriculum Vitae
Lancy Menezes
 
PDF
Highly Adaptive Cybersecurity Services (HACS) -- Cyber Hunt
David Sweigert
 
DOC
Resume_STrofimov
Silviu Trofimov
 
PDF
Erwin (Chris) Carrow resume Brief 10-23-2015
Erwin Carrow
 
DOC
Brenden Brown Resume
Brenden Brown
 
DOCX
Harris_Resume_2016_ITS_gmail
Ronald (RON) Ray Harris
 
DOCX
Resume -Resume -continous monitoring
Tony Kenny
 
DOCX
Resume -Resume -continous monitoring
Tony Kenny
 
PDF
Resume-DPITVlinkedin
Deep Consulting
 
PDF
Super CISO 2020: How to Keep Your Job
Priyanka Aash
 
DOCX
Steve alameda burlingame ca
Steve Alameda
 
DOCX
Albert G Info systems resume
Albert Gonzales
 
PDF
CV_A-Barakat
Ahmed Barakat CISSP,CISM,PMP,CEH,CHFI
 
DOC
Knowedge Skills Ability
Joseph Lynn
 
DOCX
Jenkins_ Carlasha 2016 v1
Carlasha Jenkins
 
DOC
Pramod Yadav_Security Operations Center Manager
Pramod Yadav
 
DOC
GraceCV2
Grace Adedotun-Ogundeji
 
Mark_Koehler_Resume_JUN2015_v1.1
Mark Koehler
 
Dhishant -Latest Resume
Dhishant Abrol
 
Dl Cowan Resume July 2012
WillowWind
 
Lancy-Curriculum Vitae
Lancy Menezes
 
Highly Adaptive Cybersecurity Services (HACS) -- Cyber Hunt
David Sweigert
 
Resume_STrofimov
Silviu Trofimov
 
Erwin (Chris) Carrow resume Brief 10-23-2015
Erwin Carrow
 
Brenden Brown Resume
Brenden Brown
 
Harris_Resume_2016_ITS_gmail
Ronald (RON) Ray Harris
 
Resume -Resume -continous monitoring
Tony Kenny
 
Resume -Resume -continous monitoring
Tony Kenny
 
Resume-DPITVlinkedin
Deep Consulting
 
Super CISO 2020: How to Keep Your Job
Priyanka Aash
 
Steve alameda burlingame ca
Steve Alameda
 
Albert G Info systems resume
Albert Gonzales
 
CV_A-Barakat
Ahmed Barakat CISSP,CISM,PMP,CEH,CHFI
 
Knowedge Skills Ability
Joseph Lynn
 
Jenkins_ Carlasha 2016 v1
Carlasha Jenkins
 
Pramod Yadav_Security Operations Center Manager
Pramod Yadav
 
GraceCV2
Grace Adedotun-Ogundeji
 

Martin_Leroux_2014

  • 1. Martin Leroux CD (bilingual) Secret Clearance mleroux007@gmail.com RESUME CAREER OBJECTIVES As a dependable and skilled Network/Security manager/Supervisory, with more than 18 years of experience, and a consistent record of excellence in IT, I wish to express my strong interest in seeking a position within your organization CAREER BACKGROUND Responsible for securing corporate and Government wired and wireless networks, offsite storage, acceptable use policies, proper usage of hardware, protecting the network from hackers and maintaining corporate network security. This is a position that requires continual vigilance and keeping informed of new security vulnerabilities as they are discovered. PROFESSIONAL EXPERIENCE Shared Services Canada FIPC 2014 Feb– Present 11 Laurier St Gatineau, Que Canada, Shared Services Canada Senior IT Security Specialist Provides specialized advice and guidance to management, program specialists to facilitate the delivery of IT security and Secure Electronic Service Delivery (SESD) infrastructure, processes and tools; advise on IT Security policies, procedures and standards; provide advice and promotes communication by interpreting and disseminating departmental, central agency policies, standard and guidelines. Lead the development of security directives. Provides specialized advice and guidance in the investigation of security incidents/violations and implementation of corrective actions; Advises on the analysis, selection and delivery of SESD initiatives. Occasionally leads multi-disciplinary SESD project teams in conducting threat/risk assessments of IT and voice/data systems; in proposing, planning, designing and testing procedures and mechanisms to address security problems and issues.
  • 2. Consults with suppliers and stakeholders to investigate new IT technology trends and lead studies on best practices and current trends in IT security. Conducts researches and analysis in the resolution of complex IT security issues/problems; acts as a subject matter specialist on the development of IT risk and security, and SESD processes and tools. Negotiates and participates in discussion with managers and administrative/technical staff and stakeholders to persuade or obtain agreement on the requirements for services or the resolution of technical issues. Maintain knowledge of trends and development in IT security threats, vulnerabilities, security standards, policies and directions. - Working with IT Security controls, technology (ie Firewall, VPN, IDS/IPS/HIDS/HIPS, Content Filtering, DDOS,). - Working in a Security Incident Response team. - Supporting LAN's/WANS and zoning protocols. - Computer Forensics. - Working with Canadian Government IT Security related standards and policies (e.g. Government Security Policy, Management of Information Technology Security (MITS) Standards, etc.). - Conducting technical research and analysis of cyber threats and IT security incidents. - Implementing, supporting or testing IT security solutions within multi-zoned data centre environments. - Contributing to the development and management of an IT security program, including: security awareness, policies, standards, procedures, processes, monitoring, risk management, and activities surrounding the Certification and Accreditation (C&A) of IT infrastructure. - Working with Malware/Anti-virus tools and processes performing installation, configuration, and/or support. - working on IT security projects. - Mentoring a team of IT specialists or personnel. - Planning, architecting, migrating and/or providing IT Security services.
  • 3. - Developing and/or leading the development of solutions for Identity, Credential and Access Management. - Development of IT Security strategic plans. - Performing Security Assessment & Authorization for IT and complex IT Security system/services. - with data security and/or Data Lost Prevention services and technology. - Knowledge of Government of Canada Security Policy suite. - Knowledge of the mandate of Shared services Canada (SSC) as it pertains to IT Security. 2013 Dec – 2014 Feb 11 Laurier St Gatineau, Que Canada, Shared Services Canada Provides specialized advice and guidance to management, program specialists to facilitate the delivery of IT security and Secure Electronic Service Delivery (SESD) infrastructure, processes and tools; advise on IT Security policies, procedures and standards; provide advice and promotes communication by interpreting and disseminating departmental, central agency policies, standard and guidelines. Lead the development of security directives. Provides specialized advice and guidance in the investigation of security incidents/violations and implementation of corrective actions; Advises on the analysis, selection and delivery of SESD initiatives. Occasionally leads multi-disciplinary SESD project teams in conducting threat/risk assessments of IT and voice/data systems; in proposing, planning, designing and testing procedures and mechanisms to address security problems and issues. Consults with suppliers and stakeholders to investigate new IT technology trends and lead studies on best practices and current trends in IT security. Conducts researches and analysis in the resolution of complex IT security issues/problems; acts as a subject matter specialist on the development of IT risk and security, and SESD processes and tools. Negotiates and participates in discussion with managers and administrative/technical staff and stakeholders to persuade or obtain agreement on the requirements for services or the resolution of technical issues.
  • 4. Maintain knowledge of trends and development in IT security threats, vulnerabilities, security standards, policies and directions. - Working with IT Security controls, technology (ie Firewall, VPN, IDS/IPS/HIDS/HIPS, Content Filtering, DDOS,). - Working in a Security Incident Response team. - Supporting LAN's/WANS and zoning protocols. - Computer Forensics. - Working with Canadian Government IT Security related standards and policies (e.g. Government Security Policy, Management of Information Technology Security (MITS) Standards, etc.). - Conducting technical research and analysis of cyber threats and IT security incidents. - Implementing, supporting or testing IT security solutions within multi-zoned data centre environments. - Contributing to the development and management of an IT security program, including: security awareness, policies, standards, procedures, processes, monitoring, risk management, and activities surrounding the Certification and Accreditation (C&A) of IT infrastructure. - Working with Malware/Anti-virus tools and processes performing installation, configuration, and/or support. - working on IT security projects. - Mentoring a team of IT specialists or personnel. - Planning, architecting, migrating and/or providing IT Security services. - Developing and/or leading the development of solutions for Identity, Credential and Access Management. - Development of IT Security strategic plans. - Performing Security Assessment & Authorization for IT and complex IT Security system/services. - with data security and/or Data Lost Prevention services and technology. - Knowledge of Government of Canada Security Policy suite.
  • 5. - Knowledge of the mandate of Shared services Canada (SSC) as it pertains to IT Security. 2011 – 2014 1000 Innovation Drive Ottawa, Ontario Canada K2K 3E7 Entrust, Inc. 1 Senior It Security Analyst, Incident Handler, Forensics analyst, VA, AV, Spam, Phishing, Tech Watch, Content Filtering. Considered critical infrastructure for the US Government. Responsible for developing, deploying, managing, and operating the Information Security Management System (ISMS), the security related processes and technologies to ensure the safety of organization information assets. Advisor to the organization's business units, providing recommendations/remediation strategies to enhance overall security for the organization. Responsibilities included: − Developing the global Entrust Cyber Security Incident Response Team − Performing ongoing security control assessments in accordance with the organizational continuous monitoring strategy − Performing security investigations, intrusion verifications, analyzing cyber data and producing intelligence reports and investigative and operational leads, and responding to cyber security incidents − Reporting the security state of the information system to appropriate stakeholders including status regarding the performance of security scans, analysis of alerts, tuning of signatures and report development, review and analysis − Performing security incident response activities, recognizes potential, successful and unsuccessful intrusion attempts and compromises through reviews and analyses of relevant event detail and summary information − Ensuring the integrity and protection of networks, systems, and applications by technical enforcement of organizational security policies and through monitoring of vulnerability scanning devices − Performing periodic and on-demand system audits, penetration testing and vulnerability assessments − Researching, evaluating, and recommending the implementation of changes to information security technologies. 2009 – 2011 Industry Canada IT Security Officer, Incident Handler, Forensics analyst, VA, AV, Spam, Phishing and Tech watch. Responsible for providing security services for Industry Canada. This includes, but is not limited to, Incident handling, Forensics, Vulnerability assessment,
  • 6. threat risk analysis, architecture & design, security policies, recommendations & reports, promoting a security philosophy of risk mitigation through proactive security awareness training, cost-effective security countermeasures, host-level security, and security planning/integration; ensuring that all systems are safeguarded against all forms of malicious intrusions; assisting other groups within the firm in developing secure systems. - Incident response and incident management - Review detection and analysis activities through review of large volumes of summary data via various tools and software; SIEM, Data Base, Scripts. - Provide the Client Technical Authority or his designated representative technical and operational support in the analysis of incidents, vulnerabilities and malicious code; - Issue alerts and advisories according to the internal warning procedure. - Syslogs analysis - participate in regular and event-based teleconferences with national constituents; - Review Intrusion Detections System (IDS) logs daily and investigate alarms; - Call Management System (HEAT & Infoweb); - Monitor and report on Internet acceptable usage; - Member of the Change Advisory Board (CAB); - Knowledge expert on IT trends for GOC and private sector; - Anti Virus, Spam, Phishing analysis; Mar 2007 to 2008 Manager Security of Operations NUVO Reporting to the Vice President of Operations; responsible for providing security services for customers and company, as well promoting security services to current and potential customers through networking and partnering with sales. This includes, but is not limited to, vulnerability assessment, threat risk analysis, architecture & design, security policies, recommendations & reports, promoting a security philosophy of risk mitigation through proactive security awareness training, cost-effective security countermeasures, host-level security, and security planning/integration; ensuring that all systems are safeguarded against all forms of malicious intrusions; assisting other groups within the firm in developing secure systems. • IP Network architecture and technology, protocols, routing, Wireless Networking; • Monitoring Software: • Coordinate Firewall configuration and rule maintenance; • NIDS/NIPS, HIDS/HIPS ISS RealSecure, Snort, Enterasys, Juniper, Mcafee etc;
  • 7. • VPN Communication Protocols and Remote access facilities; VPN, RAS, thin- client; • Syslogs analysis from a number of tools; SIEM, scripts, command line; • Call Management System (Remedy); • Responsible to meet SLA’s and HA Anti Virus, Spam, Phishing analysis; Jul 2005 to Dec 2005 Cyber Duty Officer PSEPC Ottawa CANADA • Prepare both technical and cyber risk briefs as required; • Chair/participate in regular and event-based teleconferences with national constituents; • Monitor and analyze information and data on cyber threats. This involves research and investigation of new or up coming threats, vulnerabilities or malicious code; • Review daily information from the international community; • Review Intrusion Detections System (IDS) logs daily and investigate alarms; • Support detection and analysis activities through review of large volumes of summary data; • Provide the Client Technical Authority or his designated representative technical and operational support in the analysis of incidents, vulnerabilities and malicious code; • Intake incident reports from Government of Canada, provincial and territorial governments, and private sector and report to management on the impact and risk; • Coordinate a response to cyber incidents of a national interest and function as the operational lead within the National Emergency Response System; and • Issue alerts and advisories according to the internal warning procedure. Nov 2004 to Dec 2005 Network Security Consultant As an independent consultant, I provided a vast range of technical advice and expertise to Public Safety and Emergency Preparedness Canada and IPSS. This work involved the preparation of technical and cyber risk briefs and monitoring and analyzing information and data on cyber threats. I was also responsible for network security analysis, vulnerability assessments and penetration testing. I directed the research and investigation of new and upcoming threats, vulnerabilities and malicious code. I also participated in the IPS study for CSE / Government of Canada where I compiled information, vendor interactions, researched, reviewed and corrected discrepancies.
  • 8. Jan 2002 to Jan 2004 CIRT Team Leader (private sector) CGI Information Systems Management Consultants Inc Ottawa CANADA CGI Information Systems Management Consultants Inc. As the senior technical advisor / team leader / analyst, reporting to the Director of Corporate IT, I monitored network security, researched and investigated threats, vulnerabilities and malicious code and conducted vulnerability assessments IAW SLAs. I also directed various security projects in the initial design and implementation of intrusion and recommended options for strengthening the client's relationship with operations. I provided guidance to the team lead and analysts, and provided leadership at weekly corporate conference calls pertaining to projects incident handling and future security projects. Jan 2000 Jan 2002 CIRT Computer Response Team Supervisor Department of National Defence Ottawa CANADA Department of National Defence, Canada Computer Incident Response Team Supervisor • CIRT Supervisor; • Involved with network security monitoring, research and investigations of threats, vulnerabilities and malicious code; • Researched and analyzed open source information for emerging threats, vulnerabilities and tools. Responsible for supervising and training the new network security analysts to be able to operationally met the goals set by the Team Manager to provide security and protection services to the Department of National Defence information systems against intrusions/attacks; • Was responsible for providing operational support and guidance in incident investigation, analysis and response and follow up as well as quality control of reports prior to their release to large audience in the department. Ensured that all incidents were logged, vulnerabilities were identified, incident database was updated as and when required, and that incidents were followed up; • Current knowledge of Intrusion Detection Systems (IDS), anti virus, firewalls, routers and security policies; • Liaison with various government and allied agencies to coordinate response to threats; • Compiled virus statistics, prepared and wrote reports on new malicious code that was detected in the wild with a level of impact regarding possible infection within DND; • Supported the day-to-day administration of the DND CIRT networking assets; • Utilized PGP and Entrust PKI encrypted email for secure intra and inter- department communications; and • Pre-Y2K threat analysis for the department on malicious code and possible cyber attacks daily.
  • 9. 1998 - 2000 Department of National Defence Network Vulnerability Analysis Team Leader (NVAT) • Used and managed various UNIX (Solaris 2.X) and Linux (Slackware) workstations on a daily basis to conduct system audits using UNIX based security scanners; • Supported and help build a mixed environment test network to support NVAT operating system vulnerability testing; • Analyst and a Team Supervisor responsible for auditing DND’s network with CyberCop (formally Ballista) as well as using non- commercial tools to ensure system integrity; • Evaluated the integrity of the various networking Internet protocols using tools such as SAINT (formally SATAN), Cheops, and Nmap as well as other tools; • Responsible for the evaluation of new scanners (commercial and freeware) to be used by the NVAT Team; • Regularly analyzed the data obtained from vulnerability scanners to detect signs of systems vulnerabilities. Used tools such as TCPDump or snoop to gather the necessary information to be used later in post analysis; and • Responsible for supervising and training new analysts to operationally met the goals set by the Team Manager to provide security and protection services to the Department of National Defence information systems against intrusions/attacks. Education and Credentials 2009 FTK Tool Kit Forensic training, Ottawa, On 2007 Net Forensics training 2003 Enterasys Specialist Dragon Intrusion Detection System course 2002 Forensic, Ottawa Police College 2001 Foundstone Computer Forensic Course, Washington, D.C. 2000 Interconnecting Cisco Network Devices, Ottawa 1999 Information System Security Fundamentals, Algonquin College, Ottawa 1998 Solaris Sys Admin II Learnix, Ottawa 1996 Linked Ops-Intel Centers Europe Workstation User, Sarajevo, Bosnia 1993 Trade qualified 6A, Canadian Forces School of Communications and Electronics, Kingston 1988 Russian Language Course, Canadian Forces Language School, Ottawa 1981 Communicator Research Qualifications, Kingston Miscellaneous References Available upon request