Operations Analyst Desktop Support

Mark V. Gregory

425-***-**** *********@*******.*** Everett Wa 98201

SECURITY OPERATIONS ANALYST

Seasoned security operations analyst with extensive experience in security assessments, project management, and risk management. Known as a process improvement Specialist with demonstrated expertise in various areas, including Active Directory management, PKI setup, security vulnerability mitigation, and SIEM configuration. Proven ability to manage projects from inception to delivery. Leverages troubleshooting skills, along with VMware management and PowerShell scripting to provide process improvements that enhance automation and reporting, in addition to providing secured server environments that comply with security requirements. AREAS OF EXPERTISE

Risk Management ServiceNow Network Support Splunk Windows Server PowerShell Network Security EXPERIENCE

Ericsson, Inc. 08/2016 - 08/2024

Security Operations Analyst - IDAM Security Ericsson Managed Services

• Successfully Designed, implemented and Managed lifecycle of CA Infrastructure in private domain ensuring secure and reliable issuance of digital certificates, with the creation of end-entity certificates.

• Implemented best practices for securing the CA server, including physical security measures, network isolation, and access control policies. Designed and utilized Certificates to create a domain trust for LDAPS, SSSD, server to server communications, internal websites along with regular key rotations to enhance security, meeting current industry standards of 4096 bit keys and SHA2 family of hashes (SHA256/SHA512) to provide enhanced security.

• Conducted regular monitoring and auditing of CA activities to ensure compliance with security policies and detect any anomalies. Established and maintained backup and disaster recovery procedures to ensure the availability and integrity of the CA infrastructure.

• Utilized Tenable to do non-credentialed scans to reveal what ports are open which provided information useful for vulnerability remediation. used Tenable credentialed scans to run a series of scans against the target, looking for specific plugins and other markers (o/s, access technologies (ssh\ wmi) or relevant installed applications.

• Provided Privileged Access Management via BeyondTrust, CyberArk and Active Directory through security groups utilizing RBAC compliant to customer requirements and policies, testing and reporting contractual SOC controls.

• Enhanced information gathering technique for RBAC via Excel spreadsheet. Spreadsheet method determined to be a useful tool for onboarding users as well as tracking for SOC attestations.

• Administered T-Mobile and AT&T Project Active Directory domains, including account management and ticket system updates.

• Implemented and managed McAfee SIEM, log retrieval to comply SOC compliance procedures.

• Develop and maintain PowerShell scripts for SOC compliance reporting and patching.

• Implemented Group Policy to archive required logs for SOC controls.

• Developed Windows server hardening to CIS Level 1 standards.

• Standardized Change Request MoP's for team use.

• Aggressively remediated vulnerabilities found by Nessus scans. Set up several scans for team members to utilize for pre and post patching analysis.

• Assisted in developing server build process and onboarding checklist so that naming conventions were properly used.

• Created procedural documents for PKI implementation utilizing both gui tools and PowerShell scripting.

• Troubleshooting connectivity issues for applications and servers when needed.

• Assisted in rollout of BMC ADDM Discovery and Outpost servers. Microsoft Corp. 10/2007 - 06/2016

Service Engineer - Routing and Remote Access Management (RRAS), 11/2013 – 06/2016

• Resolved escalated incidents and provided root cause analysis.

• Planned capacity expansion and configured physical and virtual servers.

• Created technical documentation and improved manual work processes using PowerShell.

• Vulnerability mitigation and compliance reporting. Identity Management Analyst 11/2007 – 10/2013

• Managed complex issues of access management and delegated access for Trusts, constrained delegation, and OUs across multiple forests and domains

• Processing of ticket-based work items related to the management of the Active Directory data layer

• Group Policy Deployments (selfhost, break fix issues, and recurring updates)

• Elevated Access project work to comply with SOX/HIPPA/PCI efforts

• Automate solutions to streamline operations work, creating quick tickets, email response templates, etc.

• Respond to access issues related to end-users and Identity Management Desktop Support Specialist - Managed Solutions Desktop Team (MMS), 10/2005 - 10/2007

• Provided remote desktop support, resolved migration-related issues, and improved ticket handling processes.

• Coordinated with multiple teams for issue resolution and performed software installations. Identity Management Analyst 4/2005 – 10/2005

• Managed complex issues of access management and delegated access for Trusts, constrained delegation, and OUs across multiple forests and domains

• Processing of ticket-based work items related to the management of the Active Directory data layer

• Group Policy Deployments (selfhost, break fix issues, and recurring updates)

• Elevated Access project work to comply with SOX/HIPPA/PCI efforts

• Automate solutions to streamline operations work, creating quick tickets, email response templates, etc.

• Respond to access issues related to end-users and Identity Management ADDITIONAL RELEVANT EXPERIENCE

Microsoft Corp.

Accounts Management Specialist - Managed Solutions Accounts Team (MMS) Managed Active Directory objects and security groups, in addition to providing Tier 2 support for email migrations. Incident Resolution Specialist - MSN Service Operations Center (SOC) Managed server and infrastructure health, ensured compliance with documentation standards, and prioritized incidents. Mark V. Gregory *********@*******.*** Page 2

ADDITIONAL RELEVANT EXPERIENCE (CONTINUED)

Microsoft Corp. (Continued)

Data Center Operations Specialist - Data Center Operations Team (DCOPS) Monitored and resolved server issues, tracked service level agreements, and communicated with various teams. Qwest

Team Lead Enterprise Server Team

Administered NT servers, trained technical staff, and handled backup and restoration. Microsoft Corp.

Data Center Operations Team Lead - Saturn Lab PPF

Led a team of 8 technicians, managed server builds, and provided escalation support. Build Team Lead - Saturn Lab PPF

Built and installed servers, trained staff, and maintained lab equipment. EDUCATION

B.A.S. in Business Administration with Technical Management Wayland Baptist University, Anchorage, Alaska

• Summa Cum Laude, GPA 3.97

• Presidents List, Who's Who Among College Students Computer Electronic Assistant & Specialist / Computer Networking Specialist Certificate Programs Charter College, Anchorage, Alaska

• Dean’s List, Scholastic Achievement Scholarship, GPA 3.99 CERTIFICATIONS

• A+ Certified (Current)

• Certified Netware Administrator

• Certified Netware Engineer

• Microsoft Certified Product Specialist

• Certified Novell Instructor

• Network+ Certified

• MCSE 4.0, MCSE Win2K

• Cluster Server 2000, ISA Server 2000

• CCNA, CCNP (BCMSN, BSCI, BCRAN, CIT)

Contact this candidate