Sr. Security Analyst / Technical Project Manager- Retail Business services / Global IT Health & Readiness Initiative (M&A effort)
• Global Security Compliance program / Identity & Access Access Management & Compliance
• Partner with CISO, Global Security, Network Operations and IBM team members to translate pain points & non-technical requirements to technical user stories, develop schema and technology process roadmap. Undertake corrective actions to remediate outstanding auditor compliance issues.
• Perform (analysis, risk assessment review of audit findings from Master Observations), HIPAA, SOX, PCI, PII data.
• Align with program managers to obtain support, socialize plans, track, document approvals and report via (Archer).
• Implement IBM toolset - (IGI) Identity Governance & Intelligence, ISIM Security Identity Manager and ISAM Security Access Manager systematic integration of existing hardware / software with current security platforms.
• Financial reporting - Continual refinement of ERP forecasted hours in Demand Estimator pertaining to over allocated internal and external resources, verify Actuals and Accruals against SOW's and PO's.
• Operational Log Management (Syslog) / Splunk Infrastructure Implementation Project
• Analyze and demonstrate current state for application Logging and Monitoring associated to the corporate SIEM Qradar tool and show what needs exist for future state next generation tool Splunk.
• Coordinate Implement the Splunk solution to provide a centralized network log repository that offers trending capability and offloads non-security operations logs from SIEM. Spin up VM'S, install Splunk on servers, Refresh EOL SEIM head unit, replace supervisor module in the magistrate.
• Data Center Infrastructure build, management server configuration of Isilon EMC storage container (Splunk Log Archiving). Manage engineering and architecture team members / vendor, procure, build, test and deploy a completed backup solution.
• Streamline redesign of current Qradar front end architecture (log forwarders / indexers). Manage IBM SOW's for deliverables relating to plan development, analysis, capacity assessment, (Address licensing concern with 2TB daily ingestion limit), solution and functional architecture documentation and deployment planning.
• Vendor Management, Splunk, EMC, IBM Architects / Engineering / Network and Operations teams.
• Password Self Service Enhancement (Develop / Test / Deploy New Forgot Password Page)
• Technical review of existing forgot password page to determine the current security requirements and then apply appropriate options from available MFA solutions.
• Facilitate Agile / Scrum team sprint planning meetings, daily stand up & retrospective meetings, monitor / track / report Web Development team progress, remove roadblocks, develop & QA code.
• Develop Google Captcha / identity verification / challenge responses / 2 Factor Authentication, Entrust / Centrify.
• Custom build in house API connections, Centrify for PAM, 3rd party penetration testing, application hardening, verify, configure and QA functionality, create user profile enrollment page / craft the business availability notification, schedule production release and phase rollout to the user community.
• Restricting Passwords for More Privileged Accounts
• Run a Big Fix report against each domain to identify / document / scrub bad data from existing AD / LDAP accounts. Verify / Restrict admin privileged accounts to network resources, review and document compliance relating to new policy access and procedures with stakeholders, engineers and operations teams.
• Automation of Role Based Access Vendor Management (IBM)
• Vendor Procurement initiative Identify knowledge gaps, products and service offerings where IAM can be utilized to enhance, new business needs / processes / workflows / role mining / policy definition / configuration and automation (Service Now) across various internal and external systems and databases for account provisioning, updates, maintenance and terminations to user accounts.
• VMO, PMO, Enterprise Architecture, Global Security office project to fully vet out proposals, award contract & onboard vendor resources to assist with IGI platform integration install and configuration.
• Define vendor roadmap, timeline, configuration strategy, testing, identify pilot group and define rollout strategy. (DTCC) Depository Trust & Clearing Corporation (Jersey City, NJ)