Cyber Security
As a Security Engineer, I have worked with and/or deployed an array of security suite products, including Symantec’s VIP Manager for multi-factor authentication, NetIQ iManager and Designer, CyberArk Password Vault, Microsoft Active Directory, and Apache eDirectory for LDAP/identity vault management. I have also served as a liaison between security teams and other technical towers and stakeholders to provide insight on identifying deficiencies, providing support and triage during outages, and improving services.
Identity Access Management, Southwest Airlines
- Manage eDirectory server health, patches, and LDAP connection strings.
- Write and deploy new driver code through NetIQ Designer, and troubleshoot any failed connections or user updates between master identity vault. (iManager/eDirectory) and connected services.
- Manage identity vault health and updates, including LDAP schema extensions and attribute indexing.
- Evaluated access and permissions based on group membership, roles, or entitlements.
- Work with various application teams during upgrades to ensure continuity of service between identity vault sources and the end application.
- Create and manage accounts, safes, policies, AppID, and hosted machines within CyberArk Password Vault for connected applications.
- Create and manage dynamic iManager & Active Directory members/groups using LDAP filter strings and custom group expansion scripts.
- Wrote and edited user control flows for permissions, role, entitlements, and group memberships for on/off-boarding with Aveska and feeding data to identity vault.
- Managed SecureAuth two-factor authentication and single sign-on services.
Two-Factor Authentication, Thomson Reuters Corporation
- Implemented and configured multiple environments utilizing Symantec Enterprise Gateway, Self-Service Portal, LDAP Sync, and Radius Validation servers for multi-factor authentication with Symantec’s VIP.
- Configured Radius integrations with custom corporate applications, as well as Office 365, OWA, Juniper VPN, and Cisco AnyConnect.
- Created data-flow diagrams for server build requests, with additional respect to geographical primary and secondary failover configurations.
Key Technical Areas of Expertise
- Aveska
- Symantec VIP
- Symantec Enterprise Gateway
- NetIQ iManager & Designer
- Apache eDirectory
- Active Directory
- ServiceNow
- SecureAuth
- Netskope (CASB)
- CyberArk Enterprise Password Vault