Stephen Horton
Details
Computer Science
St. Ambrose University
2001 : 2006
Fiserv
Senior Information Security Advisor
Supported incident management processes and security monitoring alerts in preventing internal / external hackers from compromising Fiserv's data and assets.
Supported new and existing security solutions and partner with the security engineering team for the implementation and integration of any new enhancements made to existing security solutions in support of improving overall enterprise security.
Ensured security tools and solutions hardware/software/devices are operating effectively and updated in a timely manner.
Developed and maintain operating guidelines and procedures in support of Fiserv s policies, standards and guidelines.
Used appropriate and effective measures to respond to network security alerts.
Ensured the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise networks.
Performed ticket queue monitoring, resolution and prioritization, maintain diagrams and documentation as appropriate and support firewall rule set reviews, auditing and maintenance activities
Management Information Systems or Risk Management
Crossbeam experience
Palo Alto /Panorama experience
VMWare NSX experience
Cisco ASA experience / Juniper Firewall experience
Scripting Bash or Python
VPN troubleshooting
Imperva Database, Web Application firewall and XML firewall exposure
Arcsight exposure
Splunk exposure
Solid grasp of OSI layers 2, 3, & 4
SSL Certificate experience
Proxy / Threat Management Gateway experience
Experience with PCI, FFIEC, and/or SSAE 16/18 audits/examinations
IT/Information Security framework knowledge (i.e. NIST CSF, ISO2700x, COBIT, etc.)
Working knowledge of standard security systems, applications and protocols : firewalls, proxies, endpoint controls, IDS/IPS, DLP, SIEM, TLS, File Integrity Monitoring, vulnerability assessment tools
Excellent written and verbal communication skills
2018 : 2020
Fiserv
Senior Information Security Analyst/Engineer
The Information Security Analyst is responsible for the management and administration of security perimeter and internal network devices, security applications, and related hardware. This role is responsible for supporting the daily security operations and administration of the enterprise firewalls across the organization’s various global locations. The role involves planning, designing, and implementing new security technologies. This role will provide hands-on technical leadership and will manage enterprise-wide projects from initiation to completion
2017 : 2018
The Master Lock Company
Lead Information Security Analyst
IT Senior Security Analyst is responsible for monitoring the IT security infrastructure in a corporate network, articulating technical security requirements, monitoring the effectiveness of the existing IT security controls framework, and raising the level of security awareness and policy compliance among Foot Locker Associates.
• Assist in the continuous review, evaluation, and rollout of security tools
• Governance, monitoring, and supporting security software/systems that will help ensure compliance with regulatory, industry, and corporate policies and procedures. This includes but is not limited to IDS/IPS (Host/Network/Wireless), secure file transfer, data loss prevention, full disk encryption, firewalls, log management/correlation (SIEM), application whitelisting, and vulnerability management.
• Define and implement appropriate security requirements for IT projects
• Identifying, responding to, investigating, and remediating potential breaches and issues surrounding data security
• Participate in security incident response efforts to include remediation with an appropriate sense of urgency and criticality
• Providing notification, input, or research for issues of actual or suspected security fraud, violations, or abuses
• Participate in security team workflow and process improvement initiative.
• Examines the results of penetration testing, and assists with the remediation as necessary
• Enforce infrastructure security including Microsoft, Linux/Unix, Workstations, POS terminals, etc.
• Assist with the definition, creation, and documentation of information security-related policies, procedures, standards, guidelines and metrics
2016 : 2017
Footlocker.com, Inc / Eastbay, Inc
IT Senior Security Analyst
The IT Cyber Security Engineer participates in the identification, tracking, and monitoring of information security threats and service operations. Engineer utilizes established processes and tools to focus on threat identification, analysis, and remediation. Engineer supports the processes for technical risk management to protect company’s information assets.
• Business Analyst Responsibilities
o Provides Subject Matter Expert performance of engineering, operations and maintenance of all Information Security related systems architecture to include : Domain Structures, Host-based Malware Defense and Management, Patch Management and OS hardening.
o Operates security-related software and firmware (e.g., endpoint security, encryption, assessment scan tools) to maintain security and service continuity.
o Monitors multiple security technologies to detect potential IT security events.
o Assists with investigations of security events (e.g., unauthorized access, non-compliance with company policies, fraud, service exploitation, etc.) to determine malfunctions, breaches, and remediation steps.
o Responds to service issues, problems, and critical situations to support resolution and minimize downtime.
o Assists in development and implementation of security process and procedures.
o Generate security metrics and reports and provide remediation actions as needed.
o OS Patching & Maintenance
o Develop flow diagrams with Visio
2016 : 2016
Fidelity National Financial
Cyber Security Analyst
Skills
.NET, Active Directory, Active Directory Experience, Application Control, Bluecoat, Bluecoat Proxies, Carbon Black, Cloud Security, Computer Networking, Dashboard Metrics, Disaster Recovery, DLP, DNS, EDR, Email Content Filtering, Email Security, Endpoint Security, Firewalls, Information Security, Information Technology, Infrastructure, Intelligence Analysis, LogRhythm, Managed File Transfer, Mcafee, MySQL, Nessus, Network Design, NextGen, Perl, PMP, Project Management, ProofPoint, Proof Point Email Security, SCCM, Security, Security Incident Response, Servers, Service Delivery, SIEM, Symantec Security, System Administration, Technical Support, Threat & Vulnerability Management, Virtualization, VMware, VoIP, Vulnerability Assessment, Windows Server
About
Threat Intelligence Analyst - Provide indicators and warnings of attack on company confidential and its critical partners in order to facilitate defense and mitigation measures.
High quality intelligence collector and analyst possessing the drive, determination and innovation to discover
many sources of information and always striving to find new sources, even in the most barren
information wilderness.
Ability to analyze large volumes of information rapidly, making informed decisions on the critical of such
information and communicating to the appropriate departments, allowing them to mitigate any security
concerns to the infrastructure.
Document and prepare detail, focused reports on suspected threats to the environment and communicate and
collaborate across the team, ensuring accurate and timely intelligence delivery.
IT professional with experience implementing, managing and supporting IT Security systems within an Enterprise Environment. Sound understanding in Vulnerability assessment, threat and packet analysis, Product Evaluation & Recommendation, Project Management, Patch management, logs analysis, regulatory compliance, Customer Service and end User Training.
Other areas of expertise include: Antivirus infrastructure monitoring and maintenance ( McAfee ePO 4.0/5/6,MDE 7, HIP 8, VSE, DEEP, Symantec endpoint protection 11/12), IDS/IPS, Websense URL Filtering, Blue Coat Proxy, Retina CS nessus Vulnerability Scanner tool, Mcafee SIEM, Mcafee ATD, CROWDSTRIKE, Tripwire File Integrity Monitoring, Symantec Brightmail gateway, Cisco Wireless Control System (Cisco WCS), Forensic Investigations, ITILv3, HIPAA.
IBM Malware Defense Specialist - IBM Integrated Technology Delivery, Security & Risk Mgmt. (Mcafee Technical Expert)
Sedona Technologies (Sedonatek) - Infrastructure Analyst) for John Deere Corporate. A computer programmer UNIX/AIX administrator with software including Mercator (IBM ) Data StageTX Transformation Extender), UNIX Scripting, Java, and PERL.
Profile Photo
