Profiles search
Alan Belisario
CISSP
Miami Beach, FL, United States
Details
Experience:
Responsible for providing enterprise security solutions for business, regulatory, and legal requirements, and assuring the confidentiality, integrity, and availability of information assets. My role is responsible for :
- Privileged Account Security solution implementation and support.
- Endpoint Privilege Manager solution implementation and support.
- Vulnerability management solution implementation and support.
- SIEM implementation and support.
- Corporate Security Awareness program support.
2016 : Present
MasTec
Lead Information Security Engineer
Responsible for providing enterprise security solutions for business, regulatory, and legal requirements, and assuring the confidentiality, integrity, and availability of information assets. My role is responsible for Vendor Security Risk Management and conducting third party assessments to determine the overall security posture of a vendor and to determine whether that security posture is acceptable for the corporation to conduct business with such vendor. In addition, this role supports team leadership efforts for developing executive level metrics to highlight the state of vendor risk within the organization.
2015 : 2016
Anthem, Inc.
Security Analyst
Participated in planned information technology engagements, using the Control Objectives for Information and Related Technology (COBIT) framework, focusing on technical infrastructure, information security, disaster recovery, application controls, change management, data center security and systems development initiatives. Supported data analysis/testing requirements for information technology and operational audit engagements including but not limited to data extracts, sampling, data analysis and automated test procedures. Participated in Sarbanes-Oxley 404 compliance reviews.
2012 : 2015
Anthem, Inc.
IT Auditor
Specialist in information security, with participation in external, internal and web application penetration testings (ethical hacking), as well as auditing work and information technology consulting for the financial, pharmaceuticals and telecommunications industry. Extensive experience reviewing security best practices in platforms such as Solaris, AIX, HP-UX, Linux, Windows and AS/400, also in database managers such as SQLServer and Oracle.
Additionally, participated in the development and optimization of procedures to carry out backup and information recovery processes, exchange controls, access management, identity management and Disaster Recovery Plans. Participated in advisory projects towards the implementation of ITIL best practices and IT governance.
2008 : 2011
pwc Venezuela
Senior Associate
2007 : 2008
Models of the World
Junior Developer
- Privileged Account Security solution implementation and support.
- Endpoint Privilege Manager solution implementation and support.
- Vulnerability management solution implementation and support.
- SIEM implementation and support.
- Corporate Security Awareness program support.
2016 : Present
MasTec
Lead Information Security Engineer
Responsible for providing enterprise security solutions for business, regulatory, and legal requirements, and assuring the confidentiality, integrity, and availability of information assets. My role is responsible for Vendor Security Risk Management and conducting third party assessments to determine the overall security posture of a vendor and to determine whether that security posture is acceptable for the corporation to conduct business with such vendor. In addition, this role supports team leadership efforts for developing executive level metrics to highlight the state of vendor risk within the organization.
2015 : 2016
Anthem, Inc.
Security Analyst
Participated in planned information technology engagements, using the Control Objectives for Information and Related Technology (COBIT) framework, focusing on technical infrastructure, information security, disaster recovery, application controls, change management, data center security and systems development initiatives. Supported data analysis/testing requirements for information technology and operational audit engagements including but not limited to data extracts, sampling, data analysis and automated test procedures. Participated in Sarbanes-Oxley 404 compliance reviews.
2012 : 2015
Anthem, Inc.
IT Auditor
Specialist in information security, with participation in external, internal and web application penetration testings (ethical hacking), as well as auditing work and information technology consulting for the financial, pharmaceuticals and telecommunications industry. Extensive experience reviewing security best practices in platforms such as Solaris, AIX, HP-UX, Linux, Windows and AS/400, also in database managers such as SQLServer and Oracle.
Additionally, participated in the development and optimization of procedures to carry out backup and information recovery processes, exchange controls, access management, identity management and Disaster Recovery Plans. Participated in advisory projects towards the implementation of ITIL best practices and IT governance.
2008 : 2011
pwc Venezuela
Senior Associate
2007 : 2008
Models of the World
Junior Developer
Company:
MasTec
Spoken Language:
English, Spanish
About
Specialties: Extensive knowledge on Privileged Account Security solutions deployment, SIEM solutions deployment, ITGC reviews and Vendor Security Risk Management.
Profile Photo
