Profiles search
Paul Stark
Sr. Cybersecurity Engineer
Denver, CO, United States
Details
Experience:
Perform security assessments of company products that may include vulnerability and risk assessments, threat analysis, and security code reviews to identify potential design and implementation vulnerabilities. Design and develop security features for products including systems, applications and/or solutions. Integrate new security features and updates into existing products and ensures the security of all products is maintained throughout the product lifecycle. Provide product security engineering recommendations and resolve integration and testing issues. Build standardized set of security product requirements and produce metrics to report performance against those requirements. Review and define security diagnostics and tools to facilitate the analysis and reporting of security events. Detects and mitigate security risks, responds to product security incidents, and works with customers regarding product security related issues. Lead/participate in security architecture and design review meetings.
Lead technical engineer/architect and team mentor for 50TB/day Splunk data ingest environment. Supporting a global security operations center and several business use cases. Performed baseline data ingest for two separate mergers for PEC compliance. Designed and implemented system expansion in AWS via infrastructure as code utilizing Terraform.
Detection Engineer creating, maintaining, retiring correlation rules for Cyber Security Operations. Obtaining data to address risk/compliance use cases and creating use cases from existing data for corporate and customer facing infrastructure. Implemented a version controlled rules repository and automated rule deployment which included MITRE content mapping. Maintained multi-tenant SOAR automation platform.
2019 : Present
Workday
Sr. Cybersecurity Engineer
2018 : 2019
Optiv Inc
Principal Consultant
Currently providing expert level Splunk Professional Services. Backed by 6 years core architecture/install, and 4 years advanced ES configuration experience.
2017 : 2019
Optiv Inc
Senior Consultant
Extensive product integrations, use case development, and research. Consisting of multi vendor distributed architecture virtual image builds on Vmware server and workstation. Operating system, application installation, database installation, user interface and the configuration of the component communications used to support multiple developers and product demonstrations.
Professional Services Consultant, Splunk. One to five week engagements performing distributed and multi-site installations, search head clustering, deployment server, data retention/planning, volume management, upgrades, health checks, data model creation, App integrations, Enterprise Security Suite, Mobile Access Server, Splunk Cloud migrations, user training, best practice recommendations, and dashboard development. Mentor for new PS Consultants. Author of Splunk App for Tivoli Netcool.
Consultant Expedia, Inc. Installation, configuration, and documentation of high availability IBM Tivoli Netcool, Tivoli Common Reporting, Impact, and WebGUI deployment. Integration with Splunk, SCOM, Service Now, SAN hardware, Dell servers, HP Servers, App Dynamics, Keynote and custom applications via REST API.
Consultant AT&T Mobility. Lead Architect and Developer for massively scaled IBM Tivoli Netcool implementation. Responsible for delivering UNIX packages containing rule set modifications, triggers, Impact policies, Virtual operator resolutions, perl and shell scripts. Operating within a control release management tool, the team is required to improve functionality of the software to include, trouble ticket creation, technician dispatch, event archives, root cause analysis, and event correlation. Processing of thirty million events per day made possible by a three tiered display/aggregation/collection high availability architecture. Support of hundreds of device probes running thousands of instances. Impact, WebGui, TBSM, and ITNM.
2006 : 2016
OSS Integrators, Inc.
Senior Operation Management Consultant
Implemented a city wide wi-fi network.
2005 : 2006
Azulstar
Network Manager
Lead technical engineer/architect and team mentor for 50TB/day Splunk data ingest environment. Supporting a global security operations center and several business use cases. Performed baseline data ingest for two separate mergers for PEC compliance. Designed and implemented system expansion in AWS via infrastructure as code utilizing Terraform.
Detection Engineer creating, maintaining, retiring correlation rules for Cyber Security Operations. Obtaining data to address risk/compliance use cases and creating use cases from existing data for corporate and customer facing infrastructure. Implemented a version controlled rules repository and automated rule deployment which included MITRE content mapping. Maintained multi-tenant SOAR automation platform.
2019 : Present
Workday
Sr. Cybersecurity Engineer
2018 : 2019
Optiv Inc
Principal Consultant
Currently providing expert level Splunk Professional Services. Backed by 6 years core architecture/install, and 4 years advanced ES configuration experience.
2017 : 2019
Optiv Inc
Senior Consultant
Extensive product integrations, use case development, and research. Consisting of multi vendor distributed architecture virtual image builds on Vmware server and workstation. Operating system, application installation, database installation, user interface and the configuration of the component communications used to support multiple developers and product demonstrations.
Professional Services Consultant, Splunk. One to five week engagements performing distributed and multi-site installations, search head clustering, deployment server, data retention/planning, volume management, upgrades, health checks, data model creation, App integrations, Enterprise Security Suite, Mobile Access Server, Splunk Cloud migrations, user training, best practice recommendations, and dashboard development. Mentor for new PS Consultants. Author of Splunk App for Tivoli Netcool.
Consultant Expedia, Inc. Installation, configuration, and documentation of high availability IBM Tivoli Netcool, Tivoli Common Reporting, Impact, and WebGUI deployment. Integration with Splunk, SCOM, Service Now, SAN hardware, Dell servers, HP Servers, App Dynamics, Keynote and custom applications via REST API.
Consultant AT&T Mobility. Lead Architect and Developer for massively scaled IBM Tivoli Netcool implementation. Responsible for delivering UNIX packages containing rule set modifications, triggers, Impact policies, Virtual operator resolutions, perl and shell scripts. Operating within a control release management tool, the team is required to improve functionality of the software to include, trouble ticket creation, technician dispatch, event archives, root cause analysis, and event correlation. Processing of thirty million events per day made possible by a three tiered display/aggregation/collection high availability architecture. Support of hundreds of device probes running thousands of instances. Impact, WebGui, TBSM, and ITNM.
2006 : 2016
OSS Integrators, Inc.
Senior Operation Management Consultant
Implemented a city wide wi-fi network.
2005 : 2006
Azulstar
Network Manager
Company:
Workday
About
Extensive 30 year background in all facets of Information Technology, as we know it. from cable creation to software creation. I have self-studied and obtained certifications from the industries leaders: GIAC, IBM, Novell, Microsoft, Cisco, Sun, ExtraHop, and Splunk.
Specialties: SIEM, Network management, security, and configuration
Profile Photo
