| Contact Information | |
| Name: | David Harlow |
| Email: | dave.harlow (at) gmail (dot) com [email concealed] |
| Location: | Hampstead, Maryland, United States |
| Resume | |
| Position/Title: | Information Assurance Engineer |
| Resume: |
David L. Harlow Jr., M.C.S.E, CISSP 1402 Burnside Drive Hampstead, Maryland 21074 H: 443-277-7862 dave.harlow (at) gmail (dot) com [email concealed] SUMMARY OF QUALIFICATIONS 15 years of experience in information technology. Worked on multi-platform, multi-software application systems. Good understanding of IT Internal control / IS Risk Assessment / Security Assessment. IT Audit Tools: Hyena, CAAT SQL / TOAD, Nessus, EyeRetina, ISS, SiteProtector, Nmap, Net / wireless Penetration Testing Operating Systems: HP UNIX, VAX VMS, IBM AS/400, Windows NT/XP and IIS, Cisco Routers, Cisco IDS/IPS, Cisco CSA, Cisco PIX, ISS Proventia / SiteProtector, Cyberguard, Sonicwall, Mcafee EPO Server, Lumeta IPSonar, Arcsight. Programming Languages: C++, Perl, Basic and Shell Scripts CERTIFICATIONS Certified Information Systems Security Professional (CISSP) July, 2004 Microsoft Certified Systems Engineer February 2001 Clearance Active Top Secret / SCI With Full Scope Polygraph -Active PROFESSIONAL EXPERIENCE November 2007 – Present Northrop Grumman IT (TASC) 2701 Technology Drive, Annapolis Junction, MD 20755 Information Systems Security Engineer / TTO Lead Senior member, and lead designer of an Information Assurance and Network Development team, within the National Security Agency, that provides Information Assurance, Intrusion Detection and Prevention, Computer Network Defense, Enterprise Audit Management.. a recognized Intrusion Detection & Prevention architecture industry expert and specialized in Enterprise Security Architectures (Management, Auditing, and Disaster Recovery). I also used information security best practices and boundary security controls. Utilizing DCID 6/3, NISCAP and DITSCAP to assist in performing testing on network security products and information systems for possible inclusion into an NSA environment. This testing and product research can also assist in possible information systems certification and accreditation. October 2005 – November 2007 Computer Sciences Corp / Eagle Alliance . 2711 Technology Drive, Annapolis Junction, MD 20755 Information Systems Security Engineer (Lead) Configured software loads for Windows 2000 servers, workstations and Unix/Linux machines. Configured networks, scanned for vulnerabilities associated with microcomputer operating systems and performed corrective actions to ensure maximum systems uptime. Created, configured and mated user/group accounts across multiple operating systems. Network security experience with Cisco 4235/4250 Intrusion detection systems, Cisco Works network management console, NAI Sniffer Professional, ISS Security Scanner, Veritas Netbackup and Snort. Used various COTS products to perform scans for viruses, protection and detection, system backups data recovery and auditing functions. Experience with the acquisition process including planning, coordinating, managing and acting as a liaison between internal and external organizations. Project liaison for several major projects, which includes attending meetings and training others on equipment operations. Worked heavily on creating standard operating procedures and training material for new coworkers. April 2003 – January 2007 Pangia Technologies, LLC Marriottsville, Maryland 21104 Information Systems Security Consultant Configured software loads for Windows 2000 servers, workstations and Unix/Linux machines. Configured networks, scanned for vulnerabilities associated with microcomputer operating systems and performed corrective actions to ensure maximum systems uptime. Created, configured and mated user/group accounts across multiple operating systems. Network security experience with Cisco 4235/4250 Intrusion detection systems, CiscoWorks network management console, NAI Sniffer Professional, ISS Security Scanner, Veritas Netbackup and Snort. Used various COTS products to perform scans for viruses, protection and detection, system backups data recovery and auditing functions. Experience with the acquisition process including planning, coordinating, managing and acting as a liaison between internal and external organizations. Project liaison for several major projects, which includes attending meetings and training others on equipment operations. Worked heavily on creating standard operating procedures and training material for new coworkers. Systems Administrator III Senior Level Technician, Providing technical insight and expertise to other systems administrators. Extensively involved in the development and analysis of new systems architecture before and during implementation into the current environments. Support multiple WANs and Global area networks by performing installs, problem analysis, and upgrades in the Windows environment. Install, configure and support security tools such as Classification tool and PKI. Configure, Build, Repair and upgrade hardware to include desktops, laptops, printers, scanners and other peripherals. Manage user accounts, to include roaming and local accounts, E-mail accounts, and Unix display back accounts. Train and support new trainees in troubleshooting system and or network problems. Troubleshoot workstation problems. Systems Administrator II Support Windows NT/2000 systems. Provide Problem Resolution and Service Request actions for desktop workstations, laptops and peripherals. Fix, install, move, add and change 2000 and NT systems, files and directories. Installing and troubleshooting various end user problems with various office applications, including MS Office, etc. Support hardware and software requests to include set up and configuration of systems. Load baseline software, and support user accounts and access configurations. January 2002 - April 2003: Cogent Communications, Washington, DC, 202-295-4200 Network Abuse Specialist Network Security administrator responsibilities included: Responsible for reporting, tracking and resolving all cases of network abuse on or across the Cogent network. Enforcing the Acceptable Use Policy and Terms and Conditions for the customer base. Responsible for setting up relationships with security teams from other Internet service providers. Creating response policies, Standard Operating Procedures and plans of action for how investigations of abuse (child pornography, SPAM, security and other legal issues) would be handled. Determine steps necessary to bring customer into compliance and create a plan to bring that customer into compliance with minimal downtime to customer. In cases where customers do not come into compliance or continued violations occur, removal of customer’s access through null routing of the IP responsible or disconnection of their circuit. Troubleshoot latency issues, setting up customer DNS records, IP allocations request and general technical support issues. Monitoring customer connections and backbone network hardware/devices with Micromuse Netcool/Omnibus network monitoring software and various other end user support issues. Working with the remedy ticketing system to follow the progress of ongoing and past investigations, provided detailed reports for possible legal action and upper management. Worked with law enforcement agencies in response to subpoenas and summons. Responsible for the deployment of biometric hand readers to access all Hub sites and Collocation/Hosting Facilities. Responsible for coordinating the companies membership with the Internet Security Alliance / CERT. Network Systems Engineering responsibilities included: Designing and implementing network security solutions including Virtual Private Networks (VPN’s), Firewall installations (Cisco Pix, Sonic Wall, Watchguard Firebox) and intrusion detection systems (IDS)(Cisco IDS 4250, 4235), on customer networks. Creating and upgrading IOS versions, BGP, OSPF, CEF and ISIS protocols. Creating and updating customer Access Control Lists (ACL’s) on customers managed Firewalls/ Routers. Responsible for informing customers how to properly setup their firewalls, IDS’s and how to properly setup their DMZ to protect their LAN environment while allowing their public resources to remain secure yet visible to the public. Tracking DOS/DDOS attacks using IP Source Track. Performing network vulnerability and assessments using Nmap, Nessus, L0pht crack and various other security and vulnerability testing software of both our corporate LAN and customers network which consists of over 20 million globally routed IP addresses. Informing customers of how to properly secure their network, How to read firewall and IDS logs. Informing customers and internal IT staff of new security threats, vulnerabilities and worms and providing them a plan of action to resolution. With the Acquisition of PSINet responsibility of the security of the C. Root-server.net (C-Root internet DNS server). November 1994 -January 2002: T-Netix, Inc., Baltimore, Maryland, 410-799-9588 Systems Administrator / Team lead Verizon South region -Team Lead Verizon South Region Team Lead for 17 System Administrators in the Maryland, Delaware, Washington D.C., and Northern Virginia region supporting 27 Windows NT LAN/WAN networks ( Windows NT Server, Windows 2000 server, Microsoft IIS server, Windows NT and 200 workstation) Designed Microsoft Active Directory services for Windows NT to Windows 2000 Migration. Wrote troubleshooting Guidelines for Systems administrators for both company proprietary and non-proprietary equipment and software. Provided level III support for System Administrators with technical problems and upgrades. Responsible for troubleshooting and repairing computers and peripherals including motherboards, NIC cards, video cards, memory, hard drives (SCSI/IDE), CD drives, Routers (Netgear and Cisco 2600 Series routers), and Multiplexers. Responsible for implementing network Firewalls for the Various LAN’s (Check Point Firewall and Cisco Pix) monitoring and updating rule sets and access lists (DMZ’s, user policies, etc) for these devices identify threats and vulnerabilities within our network. Reported directly to company CTO on all network security issues. Assisted System Administrators in daily network administration duties, moving equipment, and installing new software (operating systems, software updates, patches, service packs). Member of the team that was responsible for writing and implementing System Administrator's Job Profile Manual. Responsible for training new employees on company software, policies and procedures, customer service, and troubleshooting skills. Performed multiple installations of thin-net, CAT 5 and UTP LAN systems. Performed all phases of installations including running and terminating cable, installing racks, loading and configuring network operating systems, and configuring user accounts and workstations throughout the region. While still maintaining five facilities in a Systems Administrator roll. -Systems Administrator Point of contact for million-dollar contract between the company and the state of Maryland. Represented the company at meetings with clients to discuss contract negotiation, estimates on system moves and changes etc. Was responsible for day-to-day administration of five separate LAN networks, in a Windows NT environment (Microsoft IIS Server, Windows NT/2000 Server, Microsoft Proxy Server, and Microsoft Exchange email servers). Configuring and troubleshooting Cisco 2600 series routers and Netgear/Linksys routers. Maintained the inmate collect call system in Maryland Division of Corrections Jails, which included running weekly usage and statistical reports. Ran investigative reports for the Internal Investigative Unit and other law enforcement agencies. Was in charge of the installation of watchdog timers, and rebooter boxes in key systems in the region to reduce downtime due to lockups. Member of the cost reduction committee that implemented remote administration software and line share devices which resulted in a reduction of 50% of telephone lines needed for daily operations and cut mileage expenses to remote facilities. Was in charge of the Maryland Region Y2K Testing and compliance project to ensure Y2K compatibility in all systems, software, and hardware. EDUCATION October 2006 Defense Computer Investigation Training Academy (DCITA) Linthicum, Maryland Completed: Online Undercover Techniques (OUT) Combination of lecture, instructor-led demonstrations, and practical exercises that focus on the techniques used to conduct online undercover investigations. Online communications and their roles in investigations. What online information constitutes evidence and how to preserve that evidence. Key legal Concepts of conducting online undercover investigations. January 2006 Defense Computer Investigations Training Program (DCITP) Linthicum, Maryland Completed: Introduction to Networks and Computer Hardware (INCH) (Prerequisite course for all Forensic courses) July 2000 Advanced Computer Technology Training (ACTT) Timonium, Maryland Completed the Microsoft Certified Systems Engineer classes and obtained my M.C.S.E. (electives were Proxy Server and Internet Information Server (IIS)) August 1994 R.E.T.S Technical Training Center Baltimore, Maryland Completed the Electronics, Engineering and Technology course consisting of the following courses; Basic electronics, Solid State, Digital Electronics, Micro-computers, Industrial I, Industrial II, Communications I, and Communications II. |