Profiles search
Christan V.
Information Security Governance Analyst
East Lansing, MI, United States
Details
Education:
Bachelor of Science (B.S.)
Information Technology Management
Herzing University-Madison
2012 : 2014
Associate of Science (AS)
Computer Network and Security Technology
Herzing University
2008 : 2011
Information Technology Management
Herzing University-Madison
2012 : 2014
Associate of Science (AS)
Computer Network and Security Technology
Herzing University
2008 : 2011
Experience:
2023 : Present
AF - Group
Information Security Governance Analyst II
•Conduct security assessments, security frameworks for Industrial Control Systems using RMF, NIST Cybersecurity Framework and MITRE Attack Framework.
•Work with Threat Intelligence and Vulnerability Management to monitor emerging threat patterns and vulnerabilities.
• Assist as an internal information security advisor and subject matter expert on network security infrastructure.
• Introduce best practices and principles to enable consistent delivery and enable alignment with long term direction.
• Review network infrastructure, identify gaps, and develop solutions to reduce the threat profile.
• Proactively research and provide recommendation for continuous improvement of security posture
• Maintain documentation on residual risk, along with assignment of leadership owners and
recommended steps for remediation.
•Advanced understanding of information security, border protection, incident handling & response,
endpoint protection & encryption.
•Excellent knowledge in; Firewalls, VPN, Intrusion detection and prevention systems, anti-virus and
content filtering, URL filtering, authentication solutions, switches, routers, and DMZ.
•Document and communicate findings with customers.
•Improve and challenge existing processes and procedures in a very agile and fast paced information security environment.
•Maintains knowledge of information security policies and goals.
•Keeps current on the current IT threat landscape and upcoming trends in security.
•Ability to adapt to fluid client infrastructures, scopes and to learn/support new technologies.
•Construct and review security policies and procedures.
•Demonstrate problem solving, critical thinking and logical structuring skills.
•Experience with cybersecurity standards and practices in multiple industries
•Identify and participate in risk remediation efforts and validation for the control systems.
•Knowledge of design, implementation, or life cycle support of process automation and control systems.
2021 : 2023
Accenture
Security Consulting Senior Analyst
•Experience in Cyber Security industry best practices and the NERC CIP standards as it relates to Operational Technology (OT) systems within a utility environment.
•Experience working with mock audits/audits of utility operations and OT systems.
•Knowledge of Cyber Security CIP tools, such as Security Information Event Monitoring, configuration monitoring, patch management, Malicious Code Prevention, account management, firewall protections, and intrusion systems.
•Collaborate with business units and corporate partners to ensure solutions are built in consistent with the organizations polices, programs, architectural recommendations, and information security standards.
•Designing and developing high impact security architecture using modern security technologies within a highly complex trading environment.
•Prepare overall network architecture designs documents.
•Prepare phased network architecture transformation roadmap plans.
•Create and maintain technical process documentation.
•Analyze, escalate and assist in remediation of critical information security incidents.
•Support incident response functions including leading network efforts to investigate security incidents, participating in tabletop exercise, development of playbooks and technical runbooks.
•Review security policies across multiple systems and network for risk and compliance.
•Perform network risk assessment and design remediation options.
•Assist in evaluating, designing and successfully accomplishing changes, upgrades and implementations.
•Participate in strategic planning for the deployment of ICS technologies and program enhancements.
•Knowledge of LAN, WAN, and Data Centers including routing and communication protocols and Network Architecture such as MPLS, VPN and routing protocols like OSPF/EIGRP/BGP; TCP/UDP IPV4, IP addressing techniques (NAT/PAT), VLANs, L2 & L3 Switching, DHCP and DNS.
•Knowledge of Cisco, Checkpoint, VMware product implementation and troubleshooting.
2018 : 2021
Lansing Board of Water & Light
OT NERC-CIP Network Engineer
• Logging into switches with SecureCRT/Putty and reviewing and adding Access Control Lists (ACL)
• Categorizing network traffic on layer 2/3 Switches
• Assigning bandwidth based on priority
• Configuring Cisco 2960, 3750, 3850 and 4500 Switches
• Managing Voice and Video traffic on Network
• Work with Cisco TAC to resolve network issue.
• Implementing Skype for Business.
• Using Netflow to Manage QoS within the Network
• QoS project
2018 : 2018
Dart Container
Associate Network Engineer
• Monitors, coordinate, and completes move, add, and change requests for voice and/or data technologies according to department and facilities standards.
• Troubleshoots and maintains records, and completes requests regarding circuits, telephones, cellular phones, pagers, and/or data center cabling.
• Participates in various integrated network systems projects and information gathering to upgrade and improve technologies.
• Assists with contractor resource scheduling and invoice processing.
• Experience with Cisco Identity Services Engine (ISE).
• Create and maintain Standard Operating Procedures (SOP) of routine changes, problems and resolution.
• Troubleshoot and configure Cisco network equipment and devices.
• Facilitate the resolution of escalated technical issues by troubleshooting and collaborating with other IT departments.
• Implementation and support of secured network, wireless, and data/voice communication technologies and systems within the organization.
• Support the operational strength of the global network team by participating in capacity planning, resource management and performance enhancement activities.
• Participate in various projects intended to continually improve/upgrade network infrastructures.
• Participate in rotating on-call schedule.
• Extensive knowledge of data center technologies, infrastructure and methodologies.
• Extensive knowledge of Cisco routers and switches and related network hardware.
• Enterprise knowledge of wireless technology, standards and industry trends.
• In-depth knowledge of IP routing and routing protocols (OSPF,EIGRP,BGP).
• Strong background with LAN and WAN protocols (Spanning Tree,HSRP, DSL, Ethernet, 802.1q).
• Knowledge of ACL's.
• Extensive experience with network management platforms and protocols such as SNMP, RMON, Solar Winds, NetFlow.
• Proactively monitor and manage Networks for faults and performance exceptions.
2014 : 2018
Alliant Energy
Integrated Network Services Analyst
AF - Group
Information Security Governance Analyst II
•Conduct security assessments, security frameworks for Industrial Control Systems using RMF, NIST Cybersecurity Framework and MITRE Attack Framework.
•Work with Threat Intelligence and Vulnerability Management to monitor emerging threat patterns and vulnerabilities.
• Assist as an internal information security advisor and subject matter expert on network security infrastructure.
• Introduce best practices and principles to enable consistent delivery and enable alignment with long term direction.
• Review network infrastructure, identify gaps, and develop solutions to reduce the threat profile.
• Proactively research and provide recommendation for continuous improvement of security posture
• Maintain documentation on residual risk, along with assignment of leadership owners and
recommended steps for remediation.
•Advanced understanding of information security, border protection, incident handling & response,
endpoint protection & encryption.
•Excellent knowledge in; Firewalls, VPN, Intrusion detection and prevention systems, anti-virus and
content filtering, URL filtering, authentication solutions, switches, routers, and DMZ.
•Document and communicate findings with customers.
•Improve and challenge existing processes and procedures in a very agile and fast paced information security environment.
•Maintains knowledge of information security policies and goals.
•Keeps current on the current IT threat landscape and upcoming trends in security.
•Ability to adapt to fluid client infrastructures, scopes and to learn/support new technologies.
•Construct and review security policies and procedures.
•Demonstrate problem solving, critical thinking and logical structuring skills.
•Experience with cybersecurity standards and practices in multiple industries
•Identify and participate in risk remediation efforts and validation for the control systems.
•Knowledge of design, implementation, or life cycle support of process automation and control systems.
2021 : 2023
Accenture
Security Consulting Senior Analyst
•Experience in Cyber Security industry best practices and the NERC CIP standards as it relates to Operational Technology (OT) systems within a utility environment.
•Experience working with mock audits/audits of utility operations and OT systems.
•Knowledge of Cyber Security CIP tools, such as Security Information Event Monitoring, configuration monitoring, patch management, Malicious Code Prevention, account management, firewall protections, and intrusion systems.
•Collaborate with business units and corporate partners to ensure solutions are built in consistent with the organizations polices, programs, architectural recommendations, and information security standards.
•Designing and developing high impact security architecture using modern security technologies within a highly complex trading environment.
•Prepare overall network architecture designs documents.
•Prepare phased network architecture transformation roadmap plans.
•Create and maintain technical process documentation.
•Analyze, escalate and assist in remediation of critical information security incidents.
•Support incident response functions including leading network efforts to investigate security incidents, participating in tabletop exercise, development of playbooks and technical runbooks.
•Review security policies across multiple systems and network for risk and compliance.
•Perform network risk assessment and design remediation options.
•Assist in evaluating, designing and successfully accomplishing changes, upgrades and implementations.
•Participate in strategic planning for the deployment of ICS technologies and program enhancements.
•Knowledge of LAN, WAN, and Data Centers including routing and communication protocols and Network Architecture such as MPLS, VPN and routing protocols like OSPF/EIGRP/BGP; TCP/UDP IPV4, IP addressing techniques (NAT/PAT), VLANs, L2 & L3 Switching, DHCP and DNS.
•Knowledge of Cisco, Checkpoint, VMware product implementation and troubleshooting.
2018 : 2021
Lansing Board of Water & Light
OT NERC-CIP Network Engineer
• Logging into switches with SecureCRT/Putty and reviewing and adding Access Control Lists (ACL)
• Categorizing network traffic on layer 2/3 Switches
• Assigning bandwidth based on priority
• Configuring Cisco 2960, 3750, 3850 and 4500 Switches
• Managing Voice and Video traffic on Network
• Work with Cisco TAC to resolve network issue.
• Implementing Skype for Business.
• Using Netflow to Manage QoS within the Network
• QoS project
2018 : 2018
Dart Container
Associate Network Engineer
• Monitors, coordinate, and completes move, add, and change requests for voice and/or data technologies according to department and facilities standards.
• Troubleshoots and maintains records, and completes requests regarding circuits, telephones, cellular phones, pagers, and/or data center cabling.
• Participates in various integrated network systems projects and information gathering to upgrade and improve technologies.
• Assists with contractor resource scheduling and invoice processing.
• Experience with Cisco Identity Services Engine (ISE).
• Create and maintain Standard Operating Procedures (SOP) of routine changes, problems and resolution.
• Troubleshoot and configure Cisco network equipment and devices.
• Facilitate the resolution of escalated technical issues by troubleshooting and collaborating with other IT departments.
• Implementation and support of secured network, wireless, and data/voice communication technologies and systems within the organization.
• Support the operational strength of the global network team by participating in capacity planning, resource management and performance enhancement activities.
• Participate in various projects intended to continually improve/upgrade network infrastructures.
• Participate in rotating on-call schedule.
• Extensive knowledge of data center technologies, infrastructure and methodologies.
• Extensive knowledge of Cisco routers and switches and related network hardware.
• Enterprise knowledge of wireless technology, standards and industry trends.
• In-depth knowledge of IP routing and routing protocols (OSPF,EIGRP,BGP).
• Strong background with LAN and WAN protocols (Spanning Tree,HSRP, DSL, Ethernet, 802.1q).
• Knowledge of ACL's.
• Extensive experience with network management platforms and protocols such as SNMP, RMON, Solar Winds, NetFlow.
• Proactively monitor and manage Networks for faults and performance exceptions.
2014 : 2018
Alliant Energy
Integrated Network Services Analyst
Company:
AF - Group
Years of Experience:
13
Spoken Language:
English, Hmong
Skills
Active Directory, Checkpoint, Cisco Routers, Cisco Technologies, Computer Hardware, Cybersecurity, DHCP, DNS, Group Policy, Hardware, Help Desk Support, Information Technology, IT Management, LAN-WAN, Laptops, Microsoft Exchange, Microsoft Office, NERC, Network Administration, Network Engineering, Networking, Network Security, Outlook, Printers, Process Improvement, Routers, Servers, Service Desk, Software Documentation, Software Installation, Switches, System Administration, Technical Support, Testing, Virtualization, VMware, VMware ESX, VoIP, VPN, Windows, Windows 7, Windows Server, Windows Vista, Windows XP, Workstations
About
Experienced IT/OT Network and Security Engineer with a demonstrated history of working in the Utility and Financial Industry. Knowledge of security industry standards and best practices (NERC and NIST) and various attack frameworks (MITRE ATT&CK) and threat actors. Experience with next generation firewalls (Cisco, Checkpoint, Fortinet), intrusion detection/prevention systems. Experience in threat hunting, security investigations and incident response. Strong information technology professional with a Bachelor of Science (B.S.) focused in Information Technology.
•Design and implement Purdue model for OT Network Infrastructure.
•Experience with Cyber Security tools such as SIEM, Monitoring, Patch Management, Malicious Code
Prevention, Account Management, Firewall Protections, and Intrusion Systems.
•Document process and procedures for NERC CIP Assets.
•Extensive knowledge of Data Center Technologies, Infrastructure and Methodologies.
Profile Photo
