Information and Network Security Auditor
Reynolds & Reynolds
- Perform and create procedures for system security audits, network penetration tests, and infrastructure vulnerability assessments to ensure compliance with federal regulations (SOX, FDIC, PCI DSS, and FISMA).
- Monitored and investigated alerts created by email filters, firewalls, anti-virus systems, internet filtering, and IDS including malicious file uploads, compromised servers, SQL injections, DDoS attacks, and port scanning.
- Researched, performed, and wrote procedural documentation outlining effective means for the forensic analysis of malware, and basic data recovery principles, in response to potential and identified threats.
- Designed and implemented framework for in-house created SIEM monitoring AV events, AD change logs, IDS alerts, internet filtering thresholds, and internet access requests.