Brian Whelan's Resume (Last updated September 12th 2008)

Resume builder

Brian Whelan

1530 Pine St.
Apt 1-R
Philadephia, PA 19102 USA

610-413-7010

-

Objective 
Security engineer with over eight years experience in the field. Experience working in diverse cultural environment, with multiple client needs and concerns. Possess extensive, hands-on knowledge of security systems such as: firewalls, vulnerability assessment applications, intrusion detection software and web page development with database back ends.

-

Work Experience 

IT Security Engineer

King of Prussia, PA

GSI Commerce Inc.

Feb 2008 - Current

  • Updated Corporate Security Compliance Policy, and Procedures
  • Ensure the compliance to Standards, policies procedures for SAS70 audit.
  • Log Analyzer Manger - Project manager, lead technician for centralized Log correlation
  • Norton Anti-virus Manager - Project manager, developed and managed project for corporate migration of new anti-virus solution.
  • Asset Management - Project manager, developed and managed project for central tracking of all corporate servers.
  • Forensic Management - Project manager, lead R&D for implementing tools for forensic investigation

-

IT Security Compliance Engineer

Wayne, PA

Metavante Lending Solutions

July 2007 - November 2007

  • Policy, Procedure and Standards review - Project manager and lead technician
  • Updated controls, policies and procedures for compliance with SAS70 audit.
  • Auditing - Conducted audits to ensure the compliance to Standards, policies procedures, and implemented controls to maintain compliance.
  • Norton Anti-virus - Project manager, lead technician lead for corporate deployment of reporting server, automated report delivery, reconfiguration and central application server.
  • McAfee EPO - Project manager, project lead for implementation of New McAfee EPO console, repositories, and reporting capabilities to comply with new corporate roll-out initiatives.
  • SurfControl - Project manager, lead technician, Installation of AD agents to enable reporting of user-based web traffic. Configuration of custom reports and blocks.
  • Vulnerability Remediation - Project manger and engineer in remediation of vulnerabilities that were identified in PCI scans
  • RSA - Project Manager, engineer in implementation of two-factor authentication for VPN
  • Physical Security Audit - Project manager and lead for physical security audit
  • Systems Engineering - Built and hardened servers as required
  • Client FTP - Project manager, engineer for redistributing a secured https application solution to address security risks of legacy solution
  • Systems support - Troubleshoot a number of system issues that users encountered with remote access to servers.
  • SAS70 - Project manager for moving company into compliance for SAS70
  • DMZ Restructuring - Project manager for the restructuring of DMZ for the implementation of transparent, internal and external firewall installations and upgrades
  • Recommended and implemented additional security controls and evaluations on new security tools like nessus, ssh and Microsoft Operations Manager
  • Composed a number of documents highlighting our security gaps, outlining steps to remediate

-

Sr. Unix Security Admin

Philadelphia, PA

Sungard

May 2005 - April 2007

  • Administration - Unix, VPN, ACE/RSA, Portal and Tacacs user administration
  • Implemented AD environment for Firepass VPN Solution and configured it to talk with ACE server for two-factor authentication.
  • Configured Firepass VPN Solution and worked with multiple engineers and groups to solve multiple authentication and route issues encountered with the device.
  • Wrote shell scripts for User administration on multiple Unix platforms
  • Work with multiple customers for secure user provisioning and role-based access.
  • Implemented clientless SSL/VPN solutions, troubleshot multiple client network, VLAN, VNET solutions including talking to Cytrix servers
  • Established Exchange environment in lab
  • Performed device evaluations, offering recommendations based on features and performance in a hosting environment.
  • Managed multiple client configurations and changes as needed
  • Windows 2000/2003 and active directory administration.
  • Developed procedural and standards documents for supporting security solutions.

-

IT Security Analyst

Camden, NJ

Campbell Soup Company

May 2002 - May 2005

  • Wireless LAN - Project manager for 802.11x PEAP based technology and WPA for monitoring WiFi communications, development of security standards, policies and procedures
  • McAfee EPO - Project lead for global deployment of repositories and reconfiguration of remote sites to central application server.
  • Vulnerability assessment - Project manager and lead for installation/administration of central application sever and remote sensors used in global vulnerability assessments
  • Penetration Testing - Project manager and executer of penetration tests of systems and devices on network, vulnerability testing and remediation
  • Host-based intrusion detection - Installed and configured HIDS central application server, remote sensors using detect component to ensure compliance with corporate policies
  • IDS installation - Project manager for IDS architecture solution, installation, network configuration of IDS devices and RFP development for IDS Managed Services.
  • IPS installation - Project manager for IPS architecture conversion solution, installation, network configuration of IPS devices
  • Verisign relationship management - Project manager for requesting and distributing SSL certificates and code signing certificates
  • Security service web master - Web master for Security awareness site. Developed web application for tracking operation issues around vulnerability assessment remote agents
  • Sarbanes-Oxley - Controls, policy and procedural documentation development for Wireless, Antivirus, HIDS, IDS, and Vulnerability Assessment.
  • Responded to various security incidents such as: Slammer, Nachii, Blaster, Server configuration issues, IDS incident response, documentation of standards and procedures for various security compliance and monitoring applications tools.
  • Performed change control for server management for installation and configuration of remote agents.
  • Forensic investigation - project lead and analyst in multiple investigations. Included log gathering, analysis, reporting and HDD analysis for legal prosecution
  • Member of incident response team - evaluated incidents, developed response plan and addressed multiple threats to systems and networks.
  • Preformed multiple compliance checks for the hardening of servers, patch management, via mmc and update expert.

-

Security Consultant

Columbia, MD

Network Security Consultants

Sept 2001 - November 2001

  • Gathered information for a Vulnerability Assessment.
  • Performed product evaluation for web blocking device and e-mail content filtering device.
  • Gathered all the user rights in the environment to be used for role based access deployment.
  • Increased overall security awareness in a move towards HIPAA compliancy.
  • Reviewed and strengthened the policies on PIX firewall.

-

Security Engineer

New York, NY

Federal Reserve Bank of New York

July 2001 - August 2001

  • Installed configured Checkpoint Firewall.
  • Developed Security policies for Iplanet web server installation and management, sendmail pop, SMTP server setup, Checkpoint NG, installation and configuration.
  • Headed R&D project based on the Code Red II worm. Developed procedural documents on how to rid servers of the trojan horse and to prevent future infection of servers.

-

Security Engineer

Annapolis MD

USInternetworking

Oct 2000 - May 2001

  • Provided Incident and Event reporting for USi Intrusion Detection analysis and monitoring.
  • Headed and developed web-based application project for security scan requests and alert trend analysis using CGI with static back-end database PostgresSQL.
  • Performed Security Scans.
  • Hardened both production and pre-production servers running Unix, NT 4.0, Windows 2000
  • Helped to maintain vulnerability assessment penetration testing tools.
  • Actively assessed vulnerabilities on production servers.
  • Evaluated and implemented hard drive bit writing application.
  • Participated in Windows 2000 roll out over existing NT environment.
  • Constructed several backup scripts for databases run by cron-tabs and written is bash script.
  • Configured Samba server to allow users to backup their files on a Linux server

-

Web Designer

Mahwah NJ.

Ramapo College of New Jersey

Sept 1997 - Feb 2000

  • Developed College web site.
  • Developed Internship and co-op database for communication department with a web UI, and Access back-end.
  • Fixed computer errors in lab desktop support, and troubleshot environment

-

-

Skills 

Operating Systems: Sun Solaris, Windows 2003/2000/XP/NT, Linux, HPUX, Mac OS, Cygwin, and AIX

Network Management: Server setup and hardening, Samba, DMZ installation and configuration, Microsoft Terminal Server, PC Anywhere, IDS architecture, Airsnort , firewall architecture

Web, Database & Email Servers: Apache Web Server Microsoft IIS, Postgres, DB2, Oracle, Microsoft SQL Server, Websense, Surf Control, Ethreal, nmap

Firewalls: CheckPoint Firewall, Real Secure Firewall, PIX, and McAfee Desktop Firewall

Intrusion Detection and Prevention Systems: ISS SiteProtector, Dragon Fire IDS, Netranger IDS, Web Whisker Scanner, TCPWrappers, McAfee ePolicy Orchestrator, Vigilent HIDS, AirDefense, Content Engines, Ethereal, nessus, Verisign SSL, RSA SSL.

Wireless Security: WEP, 802.11b, 802.11x, LEAP, PEAP

Programming Knowledge: Visual Java, Java, cgi/perl, Visual Basic 6.0, C++, HTML, XML, ASP, JSP, Javascript, Unix Shell scripting

Office Productivity tools: ESM/ITA, MS Office Pro 2003, QIP,VmWare, Visio, MS Project, Change control, Service Center, ACE/RSA, F5 Firepass, and Crystal Reports, Exchange Server
Web Development tools: Adobe GoLive, Front Page, Dreamweaver MX, and Flash MX.
Graphic Programs: Fireworks, Adobe Photoshop, Gimp, 3D Studio Max, Poser, and Bryce

-

Certifications 
  • Developed College web site.
  • Developed Internship and co-op database for communication department with a web UI and Access
  • Addressed computer errors in lab desktop support and troubleshot environment

-

Education 

Bachelor of Science

Sept 1997 - Feb 2000

Ramapo College of New Jersey, Mahwah, NJ
Information Systems
3.0 Grade Point Average

 

-

Awards and Honors 
Life Scout, Boy Scouts of America.

-

Clubs and Organizations 
Member of Tau Epsilon Phi Fraternity.

-

Community Involvement 
Ramapo EMS

-

Interests 
Computer programming, web design, 3D graphics, Guitar, sailing, skiing

-

References 
References are available upon request

-