/*======================= NAME: XXXXXX PHONE: XXXXXXXXXX EMAIL: [EMAIL PROTECTED] http://www.crypt0.org/ ========================*/ Education --------- CISSP (Certified Information Systems Security Professional) CCSA (Check Point Certified Security Administrator NG) 12/2003 Manhattan College New York Master of Science in Computer Engineering GPA 4.0/4.0 5/2000 Manhattan College New York Bachelor of Science majoring COMPUTER INFORMATION SYSTEMS GPA 3.6/4.0. Dean List 5/1999 WCC New York A.A.S in Computer Information Systems. 3.6/4.0 GPA. President List. Skills ------ Programming C/C++, Java , Visual Basic , HTML, Perl, Python. Software MS Office, MS project, Visual studio6, OpenSSH, F-Secure SSH & Anti- virus, SoftICE, X server, TextPad, EMACS, VI/ VIM, Lotus, PCanyWhere, Terminal Services, Visio, Exchange server, SQL7, Apache web server, Microsoft IIS, SAMBA, StarOffice, photoshop, Adobe Acrobat, XPDF. Operating Systems RedHat Linux, Debian Linux, Slakware Linux, SuSE Linux, AIX, Solaris, OpenBSD, FreeBSD, Windows 3.1/95/98/me/professional/ 2000 server/ NT server, MS-DOS, DOS, OS/2, MVS, OpenVMS. Security Software ISS Real-Secure 6, Check point firewall/VPN NG, ISS Internet Scanner, PGP Cyber-Cop, @stake LC3, @stake Anti-Sniff, ISS Black ICE, Symantec Internet Security, Encryption Algorithms (IKE), Digital Certificates, neo- trace, NMAP, Nessus, Ettercap, Net Cat (Hobbit), Hunt, Frag-router, fire- walk, nbt-ADM, Nemesis, Xprobe, fping, Sniffer Pro, EEYE Retina, Iris, EtherPEEK, Kismet Wireless, AIRsnort, SNORT, Tripwire, ethereal, Stealth, GNUPG, NT-NetCat, TCPdump, Saint (SATAN), FWZ Encryption, RSA SecureID/ACE server/Radius, JackTheRipper, Brutus, Crack, SonicWall firewall/VPN, IIS ISAPI filters, Shadow Security Scanner, BindView hackershield, Typhon, ToneLOC, PhoneSweep, BO, Sub7, PCAP/WINPCAP, NetStumbler, Whisker, TSweb, HTTPS, SSH, SCP, TFTP, CISCO VPN MacOSX/LINUX, FreeSWAN VPN, Access Control hardware/software, CA eTrust., Cyfin, NetIQ security analyzer, WebSense, Symantec Raptor, DSS hacking, Metrics, Network and System administration Web servers configuration (IIS and Apache), FTP servers configuration on both UNIX and Microsoft platforms, SMTP configuration, Client/Server Architecture, Network Topologies, Computer Architecture, Data Communication, and NT/UNIX administration. Communications Bilingual in Arabic and English, understand little French. Understand both eastern and western cultures and traditions (born and raised in Jordan). Experience ---------- Consulting Company (12/20/2001 � 6/15/2002) Senior Security Engineer * Manage & supervise projects. * Deliver Statement of work, status, and finalize reports to customers and management. * Deliver documentation on procedures, guidelines, and standards to customers. * Document installation, configuration, and administration procedures to clients and to Bit by Bit employees. * Install, configure, test, and administer: > Check Point Firewalls/VPN. > SonicWall Firewalls/VPN. > NetScreen Firewalls/VPN. > RSA SecureID. > ISS RealSecure Network IDS. > ISS System Scanner HIDS. > CISCO routers. > CYFIN to monitor internal users. > WebSense to block URL�s. > CISCO VPN on MAC OS X, LINUX, FreeBSD, and Solaris. > Windows 2000 Servers. > Red hat Linux Servers. > Exchange 5.5/ 2000 servers. > Active Directory and IIS services. > Apache and Netscape enterprise web servers. > MAC OS X workstations. * Conduct vulnerability assessment and system penetration audits utilizing security tools such as NMAP, NESSUS, ETTERCAP, ISS INETRNET SCANNER, CYBERCOP, HUNT, NBTDUMP, LC3 (L0PHTCRACK), PWDUMP, SUPERSCANNER, RETINA, ETHEREAL, SNIFFER, DSNIFF, NETCAT, HFNETCHK, HACKERSHEILD (BINDVIEW). * Document finding from the security audits, generate reports, then present them to the client. * Conduct Backup, Recovery, and Data continuity audits on clients sites. * Lockdown and secure Web servers, FTP servers, Mail servers, Telnet server, SQL servers, and SSH servers. * Responsible for designing and architecting clients� networks, utilizing DMZ, VPN, Proxy serves, ACL filters, and Statefull inspection firewalls. * Provide ANTI-VIRUS solutions on an enterprise level. ISP (11/1997 � 12/19/2001) Network & System security architect (5/2000 � 12/19/2001) [EMAIL PROTECTED] * Managed Security projects (planning, organizing, analyzing, testing, deploying, and maintenance). * Reported to top management, providing them with weekly status reports. * Responsible for system, network, and data integrity within the enterprise. * Managed security in remote sites (Austin Texas). * Communicated with Law enforcement agencies such as the FBI computer crime squad. * Evaluated, installed, and tested SonicWall and Check Point firewalls and VPN�s. * Evaluated, installed, and tested RSA SecureID/ ACE server. * Installed and configured Terminal services on some production servers. * Installed, configured, and locked up terminal services PC and Web clients on administrators PC�s. * Installed, managed, and monitored the Network Intrusion Detection System (ISS Real Secure). * Created a web-based database using Java script for all the IDS events to keep track of all the intruders. * Analyzed system logs after a system intrusion. Contact the ISP to report the intruder. * Analyzed intruder�s fingerprints; reported them to the law enforcement agencies if necessary. * Conducted vulnerability assessment and penetration tests on pre- production systems using ISS internet scanner, Nessus and PGP Cybercop. * Evaluated Operation tools on various platforms (LINUX, NT, Solaris, Open BSD, AIX). (I.E eTRUST (computer associates SSO), Netcool, Altiris, SecureID, Cyfin � etc). * Created and enforced policies and guidelines for system administrators administrating NT, Linux, AIX, MVS, TPF, Solaris, and Oracle. * Coded programs and scripts in Java, Visual Basic, C, and C++ to automated processes running on UNIX / NT systems. * Locked up and secured production and pre-production systems (systems running various services and applications such as DNS�s, Web servers, RadiusD, SendmailD, WFPOPD, SMTPD, NNTP, and Oracle). * Performed vulnerability assessment on production servers without encountering any down time. * Wide experience with commercial and noncommercial security products such as Cybercop, Ineternet scanner, System Scanner, Nessus, Snort, Nmap, Nemesis, Netcat, Firewalk, Fragrouter, Ettercap, Ntop, snifit, Squid, Tripwire, LC3, PGP, Bindview, NetIQ. * Built an Inventory Database that gathered information on systems running on both public, DMZ, and private networks. Operations Analyst (9/1998 - 5/2000) * Operated a 24 hours online production environment. * Monitored and administered large Ethernet/ Token ring Networks. * Handled problems in a fast and efficient fashion within a 99.9% required availability production environment. * Managed, controlled, and administered machines (AIX, Solaris, Linux, NT). * Upgraded security patches on the platforms motioned above (scheduled outage window in most cases). * Provided System availability reports to upper management. * Managed, controlled, presented, and handled the migration for the DSL services (Digital subscriber line) in the operations department. * Created, managed, and implemented the Operations websites using Microsoft IIS web server, and Lotus Notes. * Provided system administrators with help in administrating servers (DNS, WEB, MAIL, PROFILE, RADIUS, INBOUND/OUTBOUND MAILERS, RADIUS, SAN (EMC DASD), and NEWS). * Created and edited Unix scripts (Shell, Java, Perl, C, and C++) to automate different processes. MainFrame ( MVS) & TPF operator(11/1997 -9/1998) * In charge of the backend data processing. * Monitor and manage MVS mainframes. * Implement and fix JCL batch jobs in SAS, assembly, and COBOL. * Monitor and manage DB2 and CICS on MVS mainframes * Monitor and manage data processing on TPF (running on OS2 / ACE server). * Handle and maintained uptime for NCP�s and Gateways on MVS and TPF. References ---------- Will Be Furnished Upon Request.
