| Contact Information | |
| Name: | Peter Blanchfield |
| Email: | Michael_Blanchfield (at) yahoo (dot) com [email concealed] |
| Location: | Houston, Texas, United States |
| Resume | |
| Position/Title: | Security Engineer |
| Resume: |
PROFESSIONAL OVERVIEW Security Clearance: Top Secret SCI with counter-intelligence polygraph Six Years experience in Network Security in addition to two years experience in System Administration Expert knowledge of Federal Information Security Management Act of 2002 (FISMA) process, Information Assurance document writing and procedures, Vulnerability Assessments, IG audits and NIST/FIPS Skills Client OS: Windows XP, 2000, 9X Windows Server 2000, 2003 Windows Server Update Services Security Management Network Security/Management: Network Scanning (Nmap, Nessus), Network Protocol Analysis (Ethereal), Network Monitoring (What’s up Gold), IDS (Snort), Microsoft Baseline Security Analyzer EXPERIENCE FISMA SECURITY ENGINEER MILLENNIUM CHALLENGE CORPORATION, WASHINGTON D.C. — JUNE 2007-PRESENT Writing of FISMA and Network Security information and documentation. Documentation encompassed weekly status reports for Information System Security Plans, change requests, Plan of Actions and Milestones (POA&M), IA Certification and Accreditation and final report of network scans. Constructed Intrusion Detection System (IDS) and modified the existing Pix Firewall to passively monitor company network. Server was built to the specification of client need and their unique enterprise architecture. As as result of this, Millennium Challenge Corporation is able to defend its network against intrusions and vulnerabilities. Installed and maintained client workstations and network servers at on-site locations and through remote services via Tivoli. Trouble shooting client issues such as drops in e-mail service, slow computer processing time, and installing software update patches. Security Engineer during 2007 FISMA inspection. In charge of reviewing, testing, and implementing new and existing security measures in a large, complex enterprise environment. Prior to the FISMA inspection, duties included repairing previously existing security vulnerabilities in the network in addition to network gap analysis. The company was previously a three year old government agency in danger of losing federal funding due to lack of FISMA compliance. To bring the company up to standard, wrote policies and procedures, implemented patch management, reconfigured Cisco network routers and switches, and conducted an IG audit within three months. These actions resulted in the agency improving their score to failing to government compliance. Disaster Recovery site. Agency previously did not have a disaster recovery plan incase of catastrophic network failure. Wrote and implemented test disaster recovery test plan. Work preformed included mirroring and migrating servers to recovery site in Dallas, Texas. Also network communications were set up between Virginia, Washington D.C. and Dallas. After set up of back up system, simulated network failure at Washington D.C. site. Fail over network in Dallas immediately came online with 0% loss of communication and data. Enforcement of security controls using Microsoft standards in accordance with FIPS 199, NIST 800-53 and NIST 800-68. Duties included checking current network standards against IA documentation to ensure that the network could maintain confidentiality, integrity, and availability without interfering with daily operations across the network, Network monitoring with Ethereal, nmap and Nessus to locate, verify and take action on any anomalies that occurred on the network. Lead task to enforce network policies on client PC’s. These duties included correcting Group Policy Objects (GPO) for Windows XP Professional computers to remove admin rights, unauthorized programs, removing unused servers, and configuring security controls via Active Directory. This lead to a decrease in unnecessary bandwidth usage and increased workplace productivity. Corrected over 100 critical security issues on Windows Server 2003 across a multi location network. These fixes included testing and installing patches on 41 servers. Duties also included removing vulnerable programs and unauthorized programs from client computers and the network. These efforts directly lead to high marks that were received from the office of the inspector general. INFORMATION SECURITY ANALYST NATIONAL SECURITY AGENCY (US NAVY) FORT MEADE, MARYLAND — MARCH 2005-JUNE 2007 Network Administrator duties included installing and maintaining equipment, ensuring that communications to remote sites were constantly connected via remote access, High Frequency, and Super High Frequency, and landline communications. Systems used include UNIX, Open-VMS, and Microsoft Windows Server 2003. Asset management of budget and repair parts for two critical computer systems. The budget of these systems exceed $500,000 a quarter. Through careful management of funds, both systems were returned to full operational capacity within four months, despite the money required to repair these systems was inadequate by over $1,000,000. Network Management duties included and centralized network control of government systems, maintaining connectivity with over 60 worldwide sites, maintaining hardware operability, system troubleshooting, system quality assurance and control. Other tasks at network management included skillfully managing over $100,000 worth of network equipment and training new personnel that were unfamiliar with system. Through personal initiative, all personal were trained passed initial qualifications for the system two weeks faster than rest of work center. Strong interpersonal communication skills working with private industry contractors. These activities included assisting in over a dozen upgrades in system security hardware and software. During these upgrades, man hours were reduced by 30%. Additionally installation errors from the previous contractors were noted and cor rected. These actions saved the contracting team over $5,000.00 equipment and travel cost. Extensive knowledge of software, hardware and internet based network security tools. Experience with these software items has been used to ensure employment and usage. Programs include port scanners, protocol analyzers, and wireless encryption and associated programs. Responsible for conducting access control, network security and physical security, conducting annual vulnerability assessments. Also repairing and management of securing network hardware, and custodial duties on sensitive data, software, and documents. INFORMATION SECURITY ANALYST CTR INTELLIGENCE ANALYST (US NAVY) SASEBO, JAPAN — JANUARY 2002-MARCH 2005 Interviewed, researched and processed certification documentation, providing recommendations of final accreditation for IS computers and networks, classified and unclassified. Provided research information for software products, virus information and signature updates, hacking tools and newest hacking capabilities from the WWW, then updating the command website. Responsible for the education of the department of users as to the risks associated with different features and functions of external hardware and software installed on personal computers. Shift supervisor, leading personnel and managing resources of on the USS Essex. Supported the ships Commanding Officer during special Signal Intelligence (SIGINT) assignments. Identified, coordinated, distributed and resolved technical problems of operational issues, at the same time managing intelligence, and provided advice on related intelligence policies, procedures, and directives. Maintained documentation on projects in progress, performed in depth research analysis, and evaluation of intelligence missions through an extensive knowledge of analysis principles, techniques and methodologies. Primary duties include securing network connectivity and maintaining communications of worldwide sites, testing networks for security as well as assisting over 30 clients daily with network problems and general questions. EDUCATION University of Maryland, College Park, Maryland — MARCH 2005-PRESENT Focus in Information Technology, current GPA 3.57 of 4.0 Classes taken in occupation field: CMIT 265 Networking Essentials CMIT 320 Networking Security CompTIA Network+ Training Course(December 2006) CompTIA Security+ Training Course(May 2007) Network Essentials School (April 2002-November 2002) Pensacola, Florida Total College Credits: 52 |
