 |  |  |  |
Ross Daniel
28431 N 51st Street Cave Creek, Arizona 85331
Home: 480-361-2509 Cell: 602-791-5263
Sun Microsystems Certified CCSA/CCSE
CheckpointFirewall1 Certified System Administrator
CheckpointFirewall1 Certified Security Expert
Professional Summary
Participate in a highly skilled security and networking team to develop
secure network solutions for large corporations and assist in a secure
network architecture deployment and system monitoring. Design,
implement & analyze corporate security needs and infrastructures,
server capacity.
Technical Skills
Information Security: Designing Information Security Policies · Incident
Handling · Analyzing Network, System and operating system security ·
UNIX Security · Intrusion Detection (SNORT, ISS RealSecure Intrusion
Detection) · Secure Shell (SSH/SSL) · StoneBeat · Virtual Private
Networks (VPN) with IPSEC · Authentication and Authorization
Technologies (Security Dynamics RSA) (Kerberos, RADIUS, TACACS+)
· Checkpoint Firewalls · PIX Firewalls · Netscreen Firewall
Network and Internet: TCP/IP · Ethernet · OSI Model · DNS · DHCP ·
SNMP · HTTP · SSL
Operating Systems: UNIX (Sun Solaris 2.4 2.5 2.6, 2.7, 2.8 and 2.9,
Compaq Tru64 5.0 and HP-UX AIX, Dec-Unix, SCO-Unix), Red Hat Linux
7.3 – 9.0 and Advanced Server · Windows NT/2000/XP/2003
Programming Languages: UNIX Shell Scripting (Bourne, C, Korn and
Bash shells)
Professional Experience
NEUROCOM AXIANS, FRANCE (http://www.axians.com/)
SECURITY CONSULTANT APRIL 2001 – JUNE 2004
Implement, verify and test security rules for La Caisse des Depot in
France and all of their locations (65000 users at all branches and 1800
in the computer site at Arcuiel, France.).
Mandate was to upgrade all Solaris UNIX systems from Solaris 6 to
Solaris 7, 8, 9. This included all firewalls, proxies, web servers,
intrusion serves with RealSecure sensors, Virus servers with Interscan
Viruswall, all Checkpoint Firewall installations, upgrades, rule
modifications and patches from Checkpoint, Netscreen appliances,
Sun Microsystems Sunscreen and Nokia’s appliances. Install, monitor
and tune sensors and intrusion detection sensors in the network. Take
care of Volume Manager for virtual disk partitions. Upgrade ssl/ssh,
Strip all Unix operating systems (hardening) and services to include
only the services needed for a secured system. Install all the new Sun
servers from blades to Enterprise 15000k servers. Take care of a park
of 300 Unix (IBM, HP, SUN Intel and Dell) servers and NT or Windows
2000. Implement Bloomberg protocols, Websphere protocols,
Weblogic protocols, Citrix protocols, and all other protocols to establish
communication for all financial clients of the bank. Secure all extranets,
intranets, DMZ’s and Internet connections for professional clients
(lawyers, financial advisors, government officials and notaries).
Review and approve access needs of users and their privileges,
implement needs to Firewalls and proxies. Website optimization, tuning
Solaris kernel and load balancing. Virus detection and hourly updates
to Interscan Viruswall (FTP HTTP SMTP CVP), Consulting and
integration for the Direction of Security at La Caisse des Depots et de
Consignation.
In charge of all Intranets, Internet and Extranet accesses, vpn’s and rule
implementation and daily network activity in a Unix (Solaris, AIX, HP-
Unix) and NT environment. Backups (Tivoli Backup Manager), new
hardware implementation. DNS SOCKS, TCP/IP tuning at the network
stack.
Verify and test redundancy with Checkpoint Firewalls and Solaris
servers, Internet connections, and Realsecure Intrusion detection.
Document security policies and procedures incase of disaster recovery.
Manage Raid 0,1,2,3 with Volume Manager or Disk Suite.
This contract dealt with every level of managing a complex WAN and
LAN and all the security aspects of dealing with very sensitive
information on extranets, intranets, DMZ and Internet. All proxies,
firewalls, UNIX servers, cacheflow appliances, Radware appliances,
databases, routers and NT servers were patched daily and the
operating systems were upgraded yearly. This organization is
completely redundant with multiple Internet connections and suppliers.
Tests were done twice a year, this included shutting down the complete
network and bringing up the redundant site network to make sure all
systems and data were available and that no down time had a curd.
This was a one-year contract that La Caisse des Depot asked me to
extend to three and a half years.
MAXON SERVICES- ACQUIRED BY COGNICASE/CGI, MONTREAL
NOV 1997 TO MARCH 2001
Unix Security Consultant/Integrator
Take care of all the Unix clients and all aspects of Unix and NT
networking problems. This included all flavors of UNIX, I/O boards,
modems, backups (netbackup, Tivoli), iolans, and virtual disk partitions.
Upgrade Unix operating systems, patches and hardware. Debugging
LAN problems for various clients. Growing file systems and all other
network needs. Installing new software, configuring proxies, digital tape
backups, and fiber optic disk arrays and backups.
Keeping maintenance contracts up to date, this included hardware and
operating systems. Installing Internet connections, (internet, extranet,
intranets and DMZ’s) Unix servers and Unix Firewalls or NT for various
branches of several companies.
Help develop & Advise the Managed Security Services (MSS); Intrusion
Detection Team
Take care of all Firewall Unix installations, upgrades, patches and
stripping OS for security, Volume manager disk partitions and raid
technology, all aspects of Unix (AIX UNIX, DEC-UNIX, HP-UNIX, SCO
UNIX, and MOTOROLA UNIX for a secured network environment.
Ensure functionality of Intrusion attempts, alerting (smtp & snmp),
escalation procedures, reporting, firewall functionality, documentation
and customer satisfaction. Teach and train level 1 & 2 technicians on
Firewall techniques, RealSecure and the architecture in place of all our
clients.
Validate network & security policy changes for the Managed and non-
managed Security Service clients and onsite client demands.
Design, install and troubleshoot Check Point Firewall and the Managed
and non-managed Security Service clients.
Security Audits (Diagnorisk / Ethical Hacking), penetration testing,
validation & recommendations.
Validate technical network diagrams and new solutions.
Standardize security policies for corporate servers, firewalls and create
Intrusion Detection baselines & thresholds.
Analyze new products, service packs, beta testing & scheduling
upgrades of MSS clients and non-MSS clients.
Responsible for contacting vendors for technical assistance, follow-ups
& training needs.
Technologies frequently used; Firewalls (Check Point Firewall-1,
Netscreen, Intrusion.com & Nokia’s appliances, Real Secure, URL &
CVP Content Filters (WebSense, SurfControl & eSafe), Sun Solaris, AIX,
HP-Unix Trend Micro & StoneSoft.
7/24 level 3 pager & support responsibilities
Help develop telephone support team (level 1 & 2)
Such managed and non-managed Intrusion Detection and Firewall
clients included:
Loto-Québec hotel & casino, Cybenetique, Parmalat, Smart & Biggar,
Bell Technomedia, World Wide Internet Service Ratings Bureau &
CMPA (Canadian Medical Professional Association) Quebec police
force, Sympatico, Bell Mobility, National Bank of Canada, Sympatico
Internet supplier, all levels of the Quebec government, Rolls Royce of
Canada, various hospitals, Costco Retail…!
BRS Technologies JANUARY 1989 TO OCTOBER 1997
Head of Technical Staff and Sales (partner)
Migrating SCO XENIX and Cobol applications to SCO UNIX and ACU
COBOL
Provide user support on TDL (Aramis) accounting
package
Network communication with multiplexes and modems and dedicated
connections, I/O boards.
Configure client server computers to their preferences.
Unix Instructor for technical staff
Additional Information Technology Certifications
Sun Microsystems CCSA/CCSE
Checkpoint Firewall CCA/CCSE
SCO Certified Administrator (Expired)
Nokia Firewall Product Specialist
Electro technology Certified Technician
Sun Microsystems - Volume Manager (Storage array) Certified
Education
Massey Vanier High School
Academic High School diploma
Control Data Institute:
Electro technology Technician - College diploma computer science
RealSecure - Internet Security Systems Training
Sun Microsystems - Fault Analysis Workshop Certified
Institut des Technologies de L’information – Cisco Routing TCP/IP
CISCO NETWORKING
Ross Daniel
Cave Creek, Arizona USA
28431 N 51st street 85331
TEL : 480 361 2509 CELL : 602 791 5263
mailto:ross@stargateit.com