CV
Professional Experience
Objective # 1
CREATE A NETWORK INFRASTRUCTURE DESIGN...
communications document that includes identified hardware components, connections to outside world, identified physical layer connectivity (media), and addressing.
Exemplary work: The network diagram document that describes secure network architecture is complete and describes in detail all aspects of the network architecture. The network infrastructure design is realistic and takes into account both major and minor security considerations with accurate threat assessments. Most hardware components, connections, and interactions are identified and described.
Objective # 2
INSTALL, CONFIGURE AND TEST...
security hardware and software tools with supporting documentation such as port scanners, vulnerability detection systems, intrusion detection systems, firewalls, system hardening, anti-virus tools, patch management, auditing and assessment.
Exemplary work: Several software or hardware security tools are properly installed. The tools are optimally configured, and the security tools are designed to work together to form a professional quality security architecture. The tools are extensively tested, and detailed documentation is provided.
Objective # 3
CONSTRUCT, IMPLEMENT AND DOCUMENT...
a script or a program to automate a security-related process or other task such as installation, administration, management, mapping resources, logon scripts, patch management, updates, auditing, analysis and assessment.
Exemplary work: Works include multiple original scripts or programs that automate security-related processes. The scripts are fully functional and optimized. The tasks to be completed by the scripts or programs are well defined and documented. The code contains detailed comments.
Objective #Â 4
CREATE A POLICY OR PROCEDURE...
that addresses events such as: a disaster recovery plan, a business continuity plan, incident response policy, acceptable usage document, information security policy, physical security policy, assessments or troubleshooting procedures.
Exemplary work: One or more policies or procedures are created that are realistic and fully address the specified events. The industries that are targeted by the policies or procedures are specified in detail, and the policies or procedures accounts for most contingencies. All mandatory regulations for the specified industries are addressed, and proactively go beyond the required regulations.
CV
Professional Experience
Objective # 5
DEVELOP A RESEARCH REPORT OR IMPLEMENTATION PLAN...
concerning legal and ethical best practices and mandated requirements that pertain to information security.
Exemplary work: Works include a college level research report that describes in detail the legal and ethical considerations and best practices of the information security field. The report references the leading works in the information security field, and citations are correct. The analysis, input, and guidance of the report are professional quality.
Objective # 6
RESEARCH, DOCUMENT, TEST AND EVALUATE...
several current industry information security based threats, risks, malicious activities, covert methodology, encryption technologies, mitigation techniques or unconventional tactics to prevent loss of sensitive information and data confidentiality, integrity and availability.
Exemplary work: Works include a thorough, professional level research report which provides full, detailed documentation on a security threat, risk, methodology, technique, or other attacker tactic. The research report describes in detail how data is impacted in terms of confidentiality, integrity, and availability. The report gives specific guidance as to how these threats can be mitigated and how security issues can be addressed.