Dr. Michael G. Mathews Phone: (972) 393-4129 Mobile: (469) 360-2200 E-Mail: [EMAIL PROTECTED]
Technical Base Security Site security reviews, access control (physical and logical), network security (architecture, firewalls, and intrusion detection), security management (corporate/network policies, awareness, and risk management), operating system security (system services, OS hardening, AAA services), application security, cryptography (technology, principles, and implementation), disaster recovery planning, incident response planning (preparation, detection, and investigation). Network Design/Architecture Local, Storage Area, Campus, Enterprise, Metropolitan, and Global; Multi-Router, Multi-Platform, Multi-Vendor, Multi-OS Networks. Secure e-commerce, policy enforcement, VPN, secure PKI use, design, and deployment for Entrust and Verisign. Network management, change management, intrusion detection, remote access, trouble ticketing, large-scale secure email systems, dynamic DNS/DHCP design and management. Internet Services Firewall architecture, management, and troubleshooting, DMZ/secure zone architecture, back-end database connectivity, DNS architecture, deployment, and management, secure e-mail solutions, strong authentication design, secured remote server administration, site-to-site and client-server VPN architecture. Industry Specific Security Experience GLB Act, HIPPA, BS7799/ISO17799, Wrote VISA's Third Party CISP Requirements, Privacy Act Select Customer List Financials (VISA, Deutsche Bank, Merrill Lynch, Charles Schwab, State Street), Healthcare (United Health Group, Global Health Exchange, Medtronic), Transportation (Boeing, American Airlines, Orbitz), Insurance (Nationwide, MetLife), Pharmaceutical (Johnson & Johnson), Publishing (Oxford University Press), Communication (Exodus, Nokia), Internet (Yahoo, eBay, buy.com, eTrue, egghead.com) Current Position Master Network/Security Architect - InfoSec Consulting, Inc.: Dallas, Texas (2001 - Present) Provide security and networking consulting services at customer locations worldwide, and deliver detailed reports with recommendations for strategic and tactical enterprise security planning Design and present customized network security training within Exodus, at information technology expositions, and at customer locations Develop network security architecture plans for many of the Fortune 500 and the U.S. Government Conduct on-site computer and network security architecture assessments and develop information systems security policy framework documents for customers. Provide risk analysis audits and develop disaster recovery plans Design and direct implementation of the security infrastructure within the Exodus global network Design, configure and implement secure network facilities such as firewalls for Internet, intranet, and extranet connections to support and protect e-commerce applications as well as enterprise and process control networks Produce comprehensive reports for customers on LAN traffic analysis, site security, network configuration and specify recommendations for improvements to global, metropolitan, enterprise, campus, and LAN designs with business critical recommendations for strategic and tactical planning Train and mentor junior level security personnel Certifications Cisco Certified Internetworking Expert (CCIE), Cisco Systems, Inc. Cisco Certified Design Professional (CCDP), Cisco Systems, Inc. Cisco Certified Network Professional (CCNP), Cisco Systems, Inc. Certified Information System Security Professional (CISSP), (ISC)2, Inc. Microsoft Certified Systems Engineer (MCSE Win2K), Microsoft Corporation RedHat Certified Engineer (RHCE), RedHat, Inc. Education PhD Chemical Physics, May 1995, Tulane University, New Orleans, Louisiana. BS Chemistry and Philosophy, May 1990, Spring Hill College, Mobile, Alabama.
