Profiles search
Eric Lufkin PCIP, ISA
IT Security & Governance
Chicago, IL, United States
Details
Education:
Networking and Communications Management
DeVry University, Chicago, IL
2007 : 2008
Associate of Applied Science
Computer Networking Systems
ITT Technical Institute, Burr Ridge, IL
2005 : 2007
DeVry University, Chicago, IL
2007 : 2008
Associate of Applied Science
Computer Networking Systems
ITT Technical Institute, Burr Ridge, IL
2005 : 2007
Experience:
2022 : Present
Lowe's Companies, Inc.
Sr Analyst, Information Security
2015 : 2022
Cracker Barrel
Senior Information Security Analyst
2014 : 2015
U.S. Department of Veterans Affairs
Volunteer for Information Security Office
Information Security Officer (ISO) in support of a VA facility and four out based VA Clinics and all VISN 12 requests. Coordinate with other VA organizations as well as providing ongoing monitoring to ensure that security and operational procedures are working as designed and providing situational awareness to executive staff. Complete research protocol security reviews for proposed studies. Complete contract/acquisition security reviews to ensure compliance with VA/Federal statutory and regulatory requirements. Annotates Appendix A as part of the security review. Provide support for Public Key Infrastructure (PKI) soft certificates and PIV hard certificate requests daily. Successfully process and approve new Virtual Private Network (VPN) Citrix Access Gateway (CAG) Access Requests daily. Process and complete reports for” Access to Sensitive Patient Record”. Monitor and control sensitivity level designations for all staff. Provide security education for users on individual IT security responsibilities, and tracking IT security awareness training for facility users of VA networks and applications. Interact with a variety of internal and external customers and demonstrates sensitivity to and an understanding of their needs by actively participating in resolving identified issues. Participate in inspections and surveys of computer systems and provides inspection results and reports violations. Write policies and procedures for contingency planning. System access monitoring. Conduct vulnerability analysis and risk assessment studies of planned and installed information systems to assure that local AIS security plans and policies established are adequate for protection needs and are in compliance by statute. Develop and implement training and education programs. Develop Automated Information Systems (AIS) security contingency plans and disaster recovery procedures. Conduct systems security evaluations, audits, and reviews.
2012 : 2014
Department of Veterans Affairs
Information Security Officer
Provided Tier I & II support for cyber security related issues, network events, privacy related issues, and call center duties to the VA nationwide. Field Tier I issues and solved basic technical problems for end-users associated with the VA. Provided daily, weekly, monthly reports to higher management summarizing key points of all incidents. Responded to network traffic and system logs to determine corrective actions and implementing countermeasures. As a specialist, I monitored log files, malicious codes, scans, viruses, worms, Trojans, host status, buffer overflows, probes, attempted access, brute force attempts, Harris Stat Scans, Denial of Services, ping sweeps and anomalous port activity. Tracked the progress of a security event trouble tickets and perform all necessary documentation of incident progress. Communicated with Information Security Officers (ISO) and Privacy Officers (PO) to resolve remedy tickets determine the category, severity level, escalation procedures and remediation effort for each incident. Assisted employees with all Public Key Infrastructure (PKI) related issues. Talent Management System (TMS) Administrator. Conducted follow-up on previously opened service requests. Assisted with VPN account management. Assigned shift lead over contractors and performed other duties as assigned.
2008 : 2012
Department of Veterans Affairs
Information Technology Specialist (NSOC)
Lowe's Companies, Inc.
Sr Analyst, Information Security
2015 : 2022
Cracker Barrel
Senior Information Security Analyst
2014 : 2015
U.S. Department of Veterans Affairs
Volunteer for Information Security Office
Information Security Officer (ISO) in support of a VA facility and four out based VA Clinics and all VISN 12 requests. Coordinate with other VA organizations as well as providing ongoing monitoring to ensure that security and operational procedures are working as designed and providing situational awareness to executive staff. Complete research protocol security reviews for proposed studies. Complete contract/acquisition security reviews to ensure compliance with VA/Federal statutory and regulatory requirements. Annotates Appendix A as part of the security review. Provide support for Public Key Infrastructure (PKI) soft certificates and PIV hard certificate requests daily. Successfully process and approve new Virtual Private Network (VPN) Citrix Access Gateway (CAG) Access Requests daily. Process and complete reports for” Access to Sensitive Patient Record”. Monitor and control sensitivity level designations for all staff. Provide security education for users on individual IT security responsibilities, and tracking IT security awareness training for facility users of VA networks and applications. Interact with a variety of internal and external customers and demonstrates sensitivity to and an understanding of their needs by actively participating in resolving identified issues. Participate in inspections and surveys of computer systems and provides inspection results and reports violations. Write policies and procedures for contingency planning. System access monitoring. Conduct vulnerability analysis and risk assessment studies of planned and installed information systems to assure that local AIS security plans and policies established are adequate for protection needs and are in compliance by statute. Develop and implement training and education programs. Develop Automated Information Systems (AIS) security contingency plans and disaster recovery procedures. Conduct systems security evaluations, audits, and reviews.
2012 : 2014
Department of Veterans Affairs
Information Security Officer
Provided Tier I & II support for cyber security related issues, network events, privacy related issues, and call center duties to the VA nationwide. Field Tier I issues and solved basic technical problems for end-users associated with the VA. Provided daily, weekly, monthly reports to higher management summarizing key points of all incidents. Responded to network traffic and system logs to determine corrective actions and implementing countermeasures. As a specialist, I monitored log files, malicious codes, scans, viruses, worms, Trojans, host status, buffer overflows, probes, attempted access, brute force attempts, Harris Stat Scans, Denial of Services, ping sweeps and anomalous port activity. Tracked the progress of a security event trouble tickets and perform all necessary documentation of incident progress. Communicated with Information Security Officers (ISO) and Privacy Officers (PO) to resolve remedy tickets determine the category, severity level, escalation procedures and remediation effort for each incident. Assisted employees with all Public Key Infrastructure (PKI) related issues. Talent Management System (TMS) Administrator. Conducted follow-up on previously opened service requests. Assisted with VPN account management. Assigned shift lead over contractors and performed other duties as assigned.
2008 : 2012
Department of Veterans Affairs
Information Technology Specialist (NSOC)
Company:
Lowe's Companies, Inc.
Years of Experience:
22
Skills
Network Security, Federal Government, Vulnerability Assessment, NIST, Information Assurance, FISMA, Software Documentation, CRISP, FISCAM, Information Security Awareness, Customer Service, VPN, Help Desk Support, Computer Security, Military, Disaster Recovery, Information Security, Security Clearance, Training, Information Security Management, CISSP, DoD, Information Technology, Leadership, Networking, System Administration, Veterans, Policy
Profile Photo
