Cyber Security Help Desk
Resume:
BRENT K. JESMER
Seneca South Carolina ***********@*****.***
Cell: 864-***-****
CYBER SECURITY THREAT RESEARCH ENGINEER
McAfee / Crowdsrike / EDR
Offensive Security Information Professional (OSIP) / Certified Information Security Manager
(CISM)
Security-focused, IT professional with 20+ years’ experience leading network systems administration and security initiatives, help desk functions, and IT projects for military and commercial organizations. Impressive record of achievement in designing, building, implementing, maintaining, troubleshooting, repairing, and updating state-of-the-art secure networks. Proven ability to harness the power of systems, applications, and client-server technologies to precisely meet organizational needs. Outstanding communication skills; interface effectively with senior management, staff, peers, and users. Core Leadership Competencies / Technical Proficiencies:
● McAfee Advanced
Protection
● Crowdsrike
Administrator
● Troubleshooting /
Support
● Project Coordination
/ Execution
● Network
Migration
● Vulnerability
testing/ Assessment
● Network
Exploitation and
Mitigation Strategies
and Operations
● Amazon AWS
Secure
Infrastructure
● Systems Security
Mitigation
Key Words:
Software: Netskope, Axonius, Aqua Security, MimeCast, Valimail, McAfee Advanced Protection Suite, Fortinet UTM, BlueCoat SG, WebSense Triton, Remedy, Exchange, Microsoft Office Suite, FrontPage, Publisher, MS Project, Access, Visio, Core Impact, Nessus, Retina Security Suite, Kali Linux, Crowdsrike, EDR, Threat Hunting. Hardware: UNIX, PC, Mac.
Operating Systems: All Microsoft Operating Systems, *NIX, IOS and Andriod, Amazon Web Services (AWS), Google Cloud Platform (GCP)
PROFESSIONAL EXPERIENCE
Lead Cyber Security Engineer, Volvo 07/24-01/25
Tasked with improving the security posture of Volvo's IT environment through the cleanup and configuration of security product installations. Leveraged expertise in multiple security tools to enhance system protections, ensure compliance, and reduce vulnerabilities. Played a critical role in configuring advanced cybersecurity solutions to meet organizational objectives.
Selected Highlights:
Conducted comprehensive cleanups and configurations of security tools, including NetSkope, Tenable Nessus, and the CrowdStrike suite (Endpoint Protection, SIEM, Device Control, and Threat Hunting).
Configured Aqua Cloud Security to enhance cloud environment protections.
Implemented security measures using the Microsoft O365 Security Suite to safeguard email, collaboration, and productivity tools.
Optimized the Axonius inventory management system for improved visibility and asset tracking.
Collaborated with cross-functional teams to address configuration issues and ensure adherence to security best practices.
Provided strategic input and operational support for strengthening Volvo's overall cybersecurity framework. Staff Systems Engineer (Endpoint Cyber Security, Home Depot 10/16 – 01/24 Worked as a Staff Systems Engineer on the Endpoint Security team reviewing the current threat landscape and evaluating it against the current endpoint security architecture for risks and vulnerabilities, Taking the vulnerability information and designing an appropriate mitigation strategy using current and prospective security partner products and services.
Selected Highlights:
Planned and executed Blue Team operations to mitigate risks and vulnerabilities Engineered and executed a plan to implement IPSec for vulnerable protocols with in the environment. Utilized red team methodology to validate network and host vulnerabilities Designed, documented and implemented the McAfee Host Intrusion Prevention solution for all of Home Depot architecture
Deployed the McAfee Optimized for Virtual Environments with SVM Auto Scaling to all supported VDI devices
Sr. Cyber Security Engineer, OIFhax Security Services 12/14 – 09/16 Started OIFhax Security services in the Upstate SC with clients from coast to coast. Utilized the relationships formed over years of security services with Intel Security (formerly McAfee), Fortinet and the open source community in efforts to secure customer data and keep ahead of the threats. Selected Highlights:
Planned and executed Blue Team operations with multiple clients in the financial and healthcare environments Used industry leading strategies and techniques to assist fortune 500 organizations in establishing or updating their current network and endpoint security policies, procedures and fiscal roadmap Engaged C level officers with planning and executing multiple security efforts and projects to a high degree of success
Researched the latest threats to web, database and endpoint hardware and software in efforts to reduce the exposure time of our clients
Architected and implemented the McAfee Content Security Suite (CSS web proxy) in a multi-tiered and managed environment with over 65 MWG devices over a diverse geographical location. Designed and implemented enterprise McAfee IPS/NSP architectures for multiple Fortune 500 companies. Sr. Network Security Consultant, Fishnet Security Inc. 05/12 – 12/15 Added value to the network security team by designing, implementing and configuring solutions to include McAfee Advanced Protection Suite, Websense Triton, Fortinet Solutions, Web and Email Security, IPS/IDS and DLP solutions as well as BlueCoat SG and McAfee Content Security Suite proxy devices (McAfee Email and Web Gateways) to a diverse customer base including federal/local government agencies as well as private corporations.
Selected Highlights:
Designed and implemented a McAfee Host DLP proof of concept for one of the nation’s largest investment firms that resulted in an extension of the POC to a full deployment. Deployed the McAfee Advanced solution to multiple organizations with an average host count of over 50K. Deployed a multi-tenet redundant Fortinet Unified Threat Management (UTM) architecture to include the following protection measures; Next Generation Firewall, Data Loss Prevention, VPN and EndPoint Virus protection.
Scoped, architected and deployed McAfee Application/Change Control to a leading national department store chain point of sale (POS) systems.
Executed a full network security architecture review for a large financial organization with focus on firewall appliance configuration and log review, intrusion prevention and detection appliance log and event review and host based control measures (virus scan, host firewall and encryption). Implemented standard based policy and procedure documentation and efforts around the GBA, HIPPA and SOX standards.
Initiated service offering of the Amazon Web Services cloud service for secure cloud based services for new and existing architectures and applications thereby offloading IT cost to a platform as a service (PaaS) provider saving operation and maintenance costs for the company. Sr. Security Consultant, Platform Solutions Boston MA 04/11 – 05/12 Performed system, network and web application security assessments on both a non-invasive and invasive level. Responsible for the architecture, installation and routine maintenance of over 30 clients McAfee solutions. Served as the initial point of contact for new sales, installations and troubleshooting of clients McAfee solutions. Selected Highlights:
Installed and configured the McAfee Advanced Protection solution to include Anti-Virus, HIPs, Solid Core, Network Security Platform (IPS); Web and email Gateway. Conducted penetration tests using open source tools and code and the MetaSploit Pro framework to ensure all exposed vectors of attack were actively tested using “in the wild” and “zero day” exploits and techniques. Reviewed customer network disaster policies, suggested changes and additions to the policies to further the protection of the network and its assets to multiple organizations. Performed scheduled health checks on clients McAfee solutions to ensure flawless operation and enforce an industry standard security posture.
Initiated a companywide penetration testing effort using commercial and open source tools to identify and mitigate known vulnerabilities.
McAfee HBSS Engineer, McAfee/Dyntek, Colorado Springs Colorado 03/09 – 04/11 Selected Highlights:
Maintained the McAfee HBSS E Policy server on 3 VMware images. Deployed and maintained over 20K McAfee agents in conjunction with the local base SMS teams. Configured and deployed the Rogue System Sensors to all uncovered subnets. Installed, configured and maintained ePolicy 4.0 server and backend SQL servers for the Air Force SIPRnet.
System Administrator/Site Manager, ITT Systems – TAC-SWACAA, Iraq 10/07 – 03/09 Selected Highlights:
Deployed McAfee HBSS to over 1500 computer systems using E Policy Orchestrator. Deployed and configured McAfee E Policy Orchestrator Server on both classified and unclassified servers. Conducted physical and network vulnerability assessments to insure compliance with DISA Gold Disk Standards and Department of Defense standards using the Foundstone Vulnerability Assessment tool set. Designed, implemented and conducted training on recognition and reporting of social engineering attacks for Victory Base Complex help desk personnel.
EDUCATION / CERTIFICATIONS
HP Tipping Point Certified Professional, HP University F5 BigIP Local Traffic Manager Professional, F5 University WebSense Triton Gladiator, WebSense/Fishnet Security Microsoft Certified Systems Engineer (MCSE), New Horizons, Colorado Springs, CO Certified Information Security Manager (CISM), ISACA, Baghdad University- Camp Victory, Iraq Security+, New Horizons, Colorado Springs, CO
McAfee HBSS Administrator Certification, DISA, Department of Defense McAfee ACE ePO/NSP/CSS, McAfee, McAfee
Certified Ethical Hacker (CEH) Certification, New Horizons, Colorado Springs, CO Offensive Security Information Professional (OSIP), Offensive-Security Offensive Security Wireless Professional (OSWP), Offensive-Security Fortinet, Fortinet Network Security Expert (NSE Level 8)
Contact this candidate