Profiles search
Mike Poverud
Information Security Analyst at State of Oregon
United States
Details
Education:
USAF
1996 : 1996
1996 : 1996
Experience:
Security Operations Center Analyst
SIEM administration including upgrades, alert creation
Event triage and security incident handling
Information Security liaison to application security program
2019 : Present
State of Oregon
Information Security Analyst
• Senior analyst responsible for enterprise vulnerability management initiative that resulted in a 75% decrease in critical vulnerabilities across Oregon’s executive branch of government
• Developed core enterprise vulnerability management program metrics
• Wrote interim enterprise vulnerability management standards and program plan
• Senior administrator for 50,000+ host Tenable SecurityCenter instance, including use of Tenable API for reporting
• Co-developed enterprise cyberassessment program based on CIS Controls
• Developed Linux-based remote security platform, centrally managed with Ansible
2015 : 2019
State of Oregon
Sr. Security Analyst (Information Systems Specialist 8)
• Oversaw and coordinated implementation of ISO 27000-based information security program
• Authored agency incident response plan and procedures
• Led successful project to select and implement encrypted email solution
• Implemented centralized logging and HIDS solution with OSSEC and ELK (Elasticsearch) stack
2013 : 2015
Oregon State Police
Information Security Officer (Information Systems Specialist 8)
• Statewide security point of contact for FBI CJIS division, including technical compliance with CJIS security policy and incident response
• Spoke at conferences and training events as SME on CJIS security policy
2012 : 2012
Oregon State Police
CJIS Information Security Officer (Information Systems Specialist 6)
- Lead security administrator for critical, statewide law enforcement system. Responsible for firewalls, IPSEC and SSL VPNs, vulnerability self-assessments, host intrusion detection system (HIDS), network intrusion detection system (NIDS), tiered web architecture, filtering web proxies and antivirus/anti-malware.
- Extensive utilization of open-source software allowed LEDS to expand services during unprecedented budget conditions.
- Engineered virtualization strategy and infrastructure from scratch.
- Administered multiple Active Directory domains, high availability services with MS Cluster Services, HP SANs and automated patching with WSUS.
2006 : 2012
Oregon State Police
Network Administrator (Information Systems Specialist 6)
SIEM administration including upgrades, alert creation
Event triage and security incident handling
Information Security liaison to application security program
2019 : Present
State of Oregon
Information Security Analyst
• Senior analyst responsible for enterprise vulnerability management initiative that resulted in a 75% decrease in critical vulnerabilities across Oregon’s executive branch of government
• Developed core enterprise vulnerability management program metrics
• Wrote interim enterprise vulnerability management standards and program plan
• Senior administrator for 50,000+ host Tenable SecurityCenter instance, including use of Tenable API for reporting
• Co-developed enterprise cyberassessment program based on CIS Controls
• Developed Linux-based remote security platform, centrally managed with Ansible
2015 : 2019
State of Oregon
Sr. Security Analyst (Information Systems Specialist 8)
• Oversaw and coordinated implementation of ISO 27000-based information security program
• Authored agency incident response plan and procedures
• Led successful project to select and implement encrypted email solution
• Implemented centralized logging and HIDS solution with OSSEC and ELK (Elasticsearch) stack
2013 : 2015
Oregon State Police
Information Security Officer (Information Systems Specialist 8)
• Statewide security point of contact for FBI CJIS division, including technical compliance with CJIS security policy and incident response
• Spoke at conferences and training events as SME on CJIS security policy
2012 : 2012
Oregon State Police
CJIS Information Security Officer (Information Systems Specialist 6)
- Lead security administrator for critical, statewide law enforcement system. Responsible for firewalls, IPSEC and SSL VPNs, vulnerability self-assessments, host intrusion detection system (HIDS), network intrusion detection system (NIDS), tiered web architecture, filtering web proxies and antivirus/anti-malware.
- Extensive utilization of open-source software allowed LEDS to expand services during unprecedented budget conditions.
- Engineered virtualization strategy and infrastructure from scratch.
- Administered multiple Active Directory domains, high availability services with MS Cluster Services, HP SANs and automated patching with WSUS.
2006 : 2012
Oregon State Police
Network Administrator (Information Systems Specialist 6)
Company:
State of Oregon
Years of Experience:
26
About
Specialties: Vulnerability Management, Technical Information Security Assessments
Profile Photo
