Leo Vang 4950 Westham Way

Elk Grove, CA. 95758Phone: 484-336-3393

Email: leo.vaaj@gmail.com

Objective To obtain a position that will promote professional growth while utilizing my skills as a Senior Security Engineer or a Senior Security Architectural Engineer

Education

ITT Tech 2010 to 2011 Online -Bachelors of Science, Information Systems Security Build a foundation with government policies, controls, laws, known standards and how to apply them within Information Technology.

Received honors Member of National Technical Honor Society (NTHS)

ITT Tech 2004 to 2007 King of Prussia, PA -Associate, Information Technology Degree in Computer Networking Systems Architected a centralized 3-site infrastructure from ground up with 5 servers; DC/Active Directory, mail, web, ftp, & VoIP server

Received honors

Experience

CENTENE-HealthNet 03/21/2016 to PresentRancho Cordova, CASecurity ArchitectDuties & Administration

Project Managemento Security Assessmento Engaging and working with IS Risk Management (ISRM) to determine risks

Mitigation of Risk Rejection of Risk Acceptance & Sign-off of Risk

o Engaging other departments utilizing Security Access Controls, Policies and Regulations to assure compliance Support, Administration, Troubleshoot, Testing, Evaluation, & technical documentation of the CENTENE-HealthNet environment Project Development Life Cycle (PDLC)

o Initiate & Review Solutiono Gather requirementso Present to the boardo Project Initiation, Analysis, Design, Build & Test

Security Controlso Implement Security Controlso Review Security Controlso Set Security Standards

Develop Security Standards, Policies, and Requirements Develop and Implement Security Procedures to Respond to and Report Security Incidents

o Security Incident Identificationo Determine Security Incident Response processo Establish a way to report on a security incident responseo Develop documented responsibilities and response procedures

Develop and Deploy the System Activity Review Processo Procedures that regularly review records

Audit logs Access Management Security Incidents

Develop Appropriate Standard Operating Procedures

o Audit Trail Trackingo Setting a proper review process and logging

Implement the Information Review and Audit Process Compliance, Rules, Regulations & Law Reviews

o HIPAAo FISMAo NISTo Corporate Complianceo Protected Health Information (PHI)/Personally Identifiable Information (PII)

Protected Data Assuranceo Follow compliance, Rules, Regulations & Laws to implement controlso Encryption of datao Security Transmissiono Secure Accessibilityo Role-based Accessibility of datao Principle of Least Privilege (POLP) implementation

SIEM Designing and Architectureo Evaluation of current McAfee Nitro and LogRhythm productso Designing the integration for LogRhythm for CENTENE-HealthNet

Request for Proposal (RFP) writing and reviewo Review and re-write the Request for Proposal (RFP) to buildout the SOC and transition to internal personnelo Engage with Contract specialists and internal departments

Security Operations Center Buildout with Vendoro Plan, build and design of the Security Operations Centero Security Tool evaluationo Build custom Security Toolso Integration of Security Toolso Develop controls, policies and processeso Operations trainingo Documentation

Automationo Creating scripts to automate and replace PHI/PII data

Developmento Create Webapp to help expedite the Security Requirements deliveryo This Webapp has a series of questions relating to certain required functionso The questions then return Company, HIPAA, NIST and Federal regulations, laws, policies and etc. for delivery

Chevron 11/30/2015 to 02/26/2016Remote / San Ramon, CASenior Security Architect – Security ConsultantDuties & Administration

Head up the design, deployment/implementation of Security Analytics Packets & Bluecoat SSL-Vo Deployment to over 30 sites across the world

Support, Administration, Troubleshoot, Testing, Evaluation, & technical documentation of Security Analytics Packet Capturing Appliances

Packet Analysis, Malware Analysis & Portable Executable Analysis Full Network Traffic Capture, evaluation, traffic shaping, network monitoring, system & service trending and analysis Penetration Testing & Packet Analysis

o Network Sniffing, nmap port scanning, service checks, wireshark utilization CVE Mitigation and Control Policy Control, Assessment, and Documentation Hardware troubleshooting

o DAC, JBOD,& VNX Troubleshooting Security Analytics / NetWitness Packets Bluecoat SSL-V Design, Deployment/Implementation, Configuration, Testing, troubleshooting and evaluation Help customers identify traffic, anomalies & threats by creating custom rules, parsers, feeds and help analyze environment

Architectural Design, Implementation & Support Calculated needed appliances for customer environment across the globe

Storage retention evaluation, design, deployment/implementation and documentation Design, Deploy and Implement

o Design & Implement over 100 Security Analytics & NetWitness Appliances & DAE’s (storage) & Bluecoat SSL-Vo Deploy & Integrate

SA AD Authentication OU & User privileges

o Custom Installation & deployment documentationo Remote Virtual Media installationo Virtualization Appliance installation documentationo Configurations & Tuningo Troubleshooting & Support

Customer Environment NW appliances, DAC’s, JBOD’s &VNX Service/processes

o Feeds, parsers, app rules, network rules & BPF deploymento Custom Meta/Language Key buildo Reporting & Alert creation

EMC 06/11/2012 to 01/29/2016 Reston, VA / RemoteSenior Security Engineer – Global Security Organization – Cyber SecurityDuties & Administration

Support, Administration, Troubleshoot, Testing, Evaluation, & technical documentation of NetWitness Products Packet Analysis, Malware Analysis & Portable Executable Analysis Full Network Traffic Capture, evaluation, traffic shaping, network monitoring, system & service trending and analysis Penetration Testing & Packet Analysis

o Network Sniffing, nmap port scanning, service checks, wireshark utilization CVE Tracking, Searching & Submission

o Utilizing mitre & NVD databaseo Working with SECOps to submit vulnerabilities and or problems

CVE Mitigation & Control Policy Control, Assessment, and Documentation Hardware troubleshooting

o DAC, JBOD,& VNX Troubleshooting (storage)o EMC Unisphere Integration

Security Analytics Logging & Packets NetWitness Packets SourceFire Support & Administration RShield Support & Administration Ironport Support & Administration Archer Support & Administration Greenplum cluster support & Administration Mapr Hadoop cluster support & Administration VSS, Gigamon, Network Critical - TAP Configuration, Troubleshooting, testing and evaluation Netronome SSL Configuration, Testing, troubleshooting and evaluation Help customers identify traffic, anomalies & threats by creating custom rules, parsers, feeds and help analyze environment VMWare Virtualization - ESX ESXi 4.0, 4.1 & 5

o Deployment, Administration and Troubleshooting Linux Administration

o Securingo Vulnerability Assessment & Mitigation of the Linux Operating Systemo Securing of Redhat/CentOS Operating systemo RPM distribution & Controlo YUM Administration and Control

Utilized internal patching server

Architectural Design, Implementation & Support Dedicated Engineering Accounts

o USBank, VISA, Johnson and Johnson, Boeing, DHS, CSC, ADPo Calculated needed appliances for customer environment across the globeo Design & Implement over 100 Security Analytics & NetWitness Appliances & DAE’s (storage)o Deploy & Integrate

SA AD Authenticationo Custom Installation & deployment documentationo Remote Virtual Media installationo Virtualization Appliance installation documentationo Configurations & Tuningo Troubleshooting & Support

Customer Environment NW appliances, DAC’s, JBOD’s &VNX (storage) Service/processes

o Feeds, parsers, app rules, network rules & BPF deploymento Custom Meta/Language Key buildo Reporting & Alert creationo Security Information & Event Management (SIEM)

SA AD Authentication, WinRM Event Collection, SDEE, & log file collectionSoftware QA

Product Software Quality Assurance, testing and code debuggingo NetWitness

Investigatoro NetWitness

Administratoro NetWitness

LiveManagero NetWitness

Spectrum/Malware

o NetWitness Informer/Reporter

o NetWitnesso Security Analyticso Security Analytics

Reports

o Security Analytics Malware

o Security Analytics Investigation

o Security Analytics Alerts

Code debugging & revisions Flex-parser and Custom Feed development

Development Bash Scripting

o NwTech Script Modification, maintenance, & addition of code Gives the ability to obtain logs, stats, system & service information

o Search & Destroy Script Finds files with specified date in folders and deletes Mainly used to on older systems when there is corruption on database files

o Retention Script Shows decoder packetdb retention

o Active & verify port connection Calls a curl & wget command to check if the port is opened Specific to rest for NW appliances

USATODAY 11/15/2010 to 06/01/2012 Mclean, VA – Corporate HeadquartersSenior Business/Systems Analyst - LeadDuties & Administration

Maintaining Windows 2003, 2008 Servers and RedHat Enterprise Linux Servers o Windows 2000, 2k3, 2k8, and RedHat Enterprise 4 & 5 o Building & Managing OU’s, Group Policy Object Editing (GPO), & Permissions Settings

Server Configuration, Administration, Management, and troubleshooting Single & Multiple internal/intranet based LAMP Stack setups, configurations and administration

o Departmental designs, configurations, implementations and administration IBM Blade Center HT 8740

o 4 Blade - VMware Private Cloud Infrastructure ESX ESXi 4.0 & 4.1

o 4 Blade - Citrix XenAPP Support Newsgate Citrix Application Support Monitoring, Management, Administration & Support

o 3 Blade - Redhat Cluster support, High Availability configuration with Heartbeat and or Round robin dns iptables & SELinux labeling support

o Newsgate Infrastructure – Hybrid of Services for over 88 news media/print/production/circulation clusters and sub clusters sites around the world

Monitoring and Administrating over 6000 Servers/Services, WAN & Print Sites & branch offices McAfee ePO version 4.5

o Management and Administration Editorial, Content, Online, Production, Print, Circulation and branch office support WAN uptime verification & troubleshooting Penetration Testing & Packet Analysis

o nmap port scanning, service checks, wireshark utilization

Project Management Project Management

o OpenNMS and SolarWinds Monitoring Services for WAN/LAN devices Implementation Test & Review Documentation & Support Service Control Review & Implementation Escalation Procedural summarization

INetU Inc. 12/15/2008 to 11/12/2010 -Managed Hosting Company Allentown, PA Lead Systems EngineerProject Management

Citrix XenServer Virtualization o Setup, Configuration, Test and Troubleshooting Case Scenarios

Nagios introduction and deployment o Setup, Configuration, deployment and testing integration

Backup Project Design & Implementation o Backup Assist/open source Bacula

Documentation of setup, configuration, implementation and troubleshooting Duties

Maintaining Windows 2003, 2008 Servers and Linux Servers o Windows 2000, 2k3, 2k8, FreeBSD, and RedHat/CentOS/Fedora

Server Administration and management Monitoring and Administrating over 3000 servers and about 15,000 services VMWare Cloud Infrastructure

o EMC CX300, EMC CX4-120 and EMC CX4-240 support New server configurations, setup, install, administration & support

o IISo Apache o Tomcat o cPanel/WHM o Plesk o SSL Cert Installs

o Symantec Backup Exec 11d

o Backup Assist v.4 o VERITAS o Exchange 2k3/2k7 o SQL 2k5/2k8

o Bacula o Qmail o Postfix o Spamassassin o Nagios

Linux Apache MySQL & PHP/Perl (LAMP) Stack support - Single & Multiple setups o LAMP Stack configuration with Linux (Centos/Redhat), Apache, MySQL, and PHP. HA MySQL & Apache services

Setup, troubleshooting, management of Citrix XenServer and VMware Servers. o Install/Setup & Configuration o Management & Troubleshooting

Technical Support o Escalation Point

Backups and Providing Custom Backup Solutions o Backups via Disk & Tape

PowerAdmin/PowerDNSo DNS Management – A records, mx records, cnames, text and etc. Help customer point their domains to their IP’s

Cisco ASA 55XX o Adding/Removing Access List Controls o Object Groups – Separation of services & networks. Helps to group certain services or networks to create rules against

Analysis & Statistics o Cacti – mrtg & rrdtools o BWstats – Bandwidth trending and overview

Enersys Inc. 3/7/2005 to 12/15/08 Reading, PA - Corporate Headquarters Electrical Engineering Technician//Network Administrator

Maintaining Windows 2003 Server Domain Controllers Manage and Maintain the Active Directory infrastructure Setup and manage Group Policies File server and ftp server maintenance Software testing, troubleshooting, repair and maintenance VERITAS Backup Management and Administration Print Server Management and Administration RedHat LAMP server administration and maintenance Setting separate equipment Servers and standalone servers for data acquisition Supporting the Lab network, troubleshooting and repairing upon request (desktop support) Testing Batteries, build batteries, designing cost effective batteries

Documentation & Control Documenting and Reviewing Domain Security Control Network, Server & Application trending and analysis reportingPolicy Management and Overview Technical Writing

o Ticketing & Monitoring Policy Creation and Overview o Acknowledgement Policies & Change Management Policies o SLA Creation, Overview and Auditing o Escalation Procedures, Change-Management Documentation and Implementation

Security Control & Domain Security Assessment & Evaluation Business Continuity Planning (BCP) & Disaster Recovery Planning (DRP)

o Documentation, training, and overview o Executive Summary, Critical Process/Services Prioritization, Risk Mitigations & Cost Summarization

Log Analysis Building new servers, configurations, setup, and installs:

o IIS 6 & IIS 7, Active Directory o Apache o SSL Cert Installs o VERITAS Backups o SQL 2k5/2k8 installation (Mirror Failover setup & support) o Postfix o OpenNMS Monitoring Services

Setup, troubleshooting, management of Citrix Applications and VMware Servers. o Install & Configuration o Management & Troubleshooting

Skills Server Monitoring: Monitoring 4000 servers, processes, services, ports, sites, transaction logs, site mirrors, and etc. WAN Site Monitoring: Monitoring and troubleshooting over 88 sites across the globe Server Administration: Windows, Linux (RedHat, CentOS, Fedora, and FreeBSD Servers) Incident Management: Follow through, ownership, documentation, tracking, trending, and analysis Customer Relationship Management: Tracking, updating, opening, establishing, and maintaining. Mail Server Services: Troubleshooting, testing, maintaining and configuring qmail & postfix Tomcat: Setup, configuration, testing, maintaining and troubleshooting for Tomcat servers Resin: troubleshooting, monitoring and maintenance of resin/java services

LAN’s and WAN's: Implement and build centralized networks with Cisco from ground up Systems Administration: LAMP Stack Design, Configuration, Implementation, Troubleshooting & Administration. DNS, BIND, IIS,

APACHE, Active Directory services, FTP servers, NFS, File Servers, and doing monthly backups APACHE: Setting up web services and publishing content on the world wide web Cisco’s OSI model: Knowledge of the networking standards and it’s structures Microsoft Office Suite: MS Excel, MS Word, MS Power Point, MS Access, MS Project, MS FrontPage, and MS Visio Programming/Scripting Languages: Bash, MySQL, CSS, and html Snort & Elsa: Installation, setup, configuration & utilization Networking: switches, routers, and firewall configurations. 2950 switch, 2600/2800 router & PIX/ASA configuration and setup