Aaron Barnes
Kansas City,MO
Summary
Dynamic individual with hands-on experience in Certificate Lifecycle Management and talent for navigating challenges. Brings strong problem-solving skills and proactive approach to new tasks. Known for adaptability, creativity, and results-oriented mindset. Committed to making meaningful contributions and advancing organizational goals.
Overview
13
13
years of professional experience
1
1
Certification
Work History
Sr Information Security Engineer
Shook, Hardy & Bacon
02.2021 - Current
- Provides advanced technical-level computer security support to protect the firm's overall information assets
- Responsible for equipment hardware, appliances, and software
- Conducting, coordinating, testing, implementing, deploying, and operationally maintaining all information security systems, applications, appliances, and related devices throughout the firm
- Installs, tests, configures, monitors, maintains, and upgrades malicious code detection applications/tools to ensure malware is blocked or eradicated when detected
- Configures multiple hardware and software products to interact with each other; devises solutions to a changing threat landscape as it evolves
- Responsible for assessing, recommending, developing, implementing, and maintaining the computer security infrastructure and security standards
- Provides technical engineering expertise in selecting, testing, implementing, and deploying information security systems
- Provides technical support and direction in information security monitoring, assessment, configuration, maintenance, auditing, and testing
- Performs security event and intrusion analysis daily and mitigates any medium-to-critical incidents
- This may include troubleshooting non-security-related equipment at the network layer level
- Performs penetration testing, including wired and wireless, social engineering, and application security vulnerability assessments as management requires
- Provides guidance and input to technical reviews of proposed security projects and the certification and accreditation process
- Independently and as a team member, plan, execute, and document security tests and evaluations
- Performs engineering and analysis of in-place technical and non-technical security controls protecting information and information systems
- Manages information security aspects of IT projects, ensuring security protocols are in place and compliance with other applicable information security policies
- Guides non-senior security staff on information security and any security-related projects
- Lead for security risk assessments and penetration studies of networks for both security and non-security equipment
- Recommends solutions for security vulnerabilities, takes corrective measures, and applies security patches when appropriate
- Analyzes problematic security log entries from infrastructure systems and provides technical solutions to issues and security breaches.
Security Systems Engineer
Cerner Corporation
02.2017 - 02.2021
- Provide subject matter expertise on security architecture and operations
- Maintain global enterprise security solutions and infrastructure
- Responsible for equipment hardware, appliances, and software
- Conducting, coordinating, testing, implementing, deploying, and operational maintenance of all information security systems, applications, appliances, and related devices
- Participate in architectural and topology design, new technology evaluation, and integration planning activities
- Perform routine maintenance activities
- Participate in the development of business continuity and disaster recovery plans, processes, and procedures
- Manage assigned projects, ensuring a high-quality and timely result
- Perform periodic quality assurance to ensure that system, network, and application configurations meet security standards
- Participate in release management activities for security solutions and infrastructure
- Assess new software releases and patches, assist with development of test plans, and develop implementation procedures and guidelines
- Participate in the proactive management and augmentation of critical capacities
- Assist in the design and development of solution performance data collection, alarm and performance criteria, and reporting capabilities.
Information Security Engineer
YRC Freight
04.2014 - 10.2016
- Research, evaluate, and recommend information security-related hardware and software
- Help to define security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems
- Works with information security leadership to develop strategies and plans to enforce security requirements and address identified risks
- Worked with business units and with other risk functions to identify security requirements, using methods that may include risk and business impact assessments
- Assists in the coordination and completion of information security standards, process, and procedure documentation
- Performs periodic quality assurance to ensure that system, network, and application configurations meet security standards
- Developed and delivered security awareness training and materials
- Participates in security investigations and compliance reviews, as requested by internal or external auditors
- Reports to management concerning residual risk, vulnerabilities, and other security exposures, including misuse of information assets and noncompliance.
Data Security Administrator
Waddell & Reed
10.2011 - 04.2014
- Day-to-day administration of IAM using Active Directory, which includes creation, deletion, modification, resets, or extensions
- Confer with users to discuss issues such as computer data access needs, security violations, and programming changes
- Train users and promote security awareness
- Mentor junior staff in cyber security techniques and processes
- Modify computer security files to incorporate new software, correct errors, or change individual access status
- Monitor current reports of computer malware
- Manage security issue remediation efforts across the organization
- Review violations of computer security procedures and discuss procedures with violators to ensure violations are not repeated.
Education
Bachelor of Science - Computer And Information Systems Security
ITT Technical Institute
Kansas City, MO04.2011
Skills
- Cloud Security
- Security Training
- Patch management
- Vulnerability Assessment
- Active Directory knowledge
- Certificate Lifecycle Management
- Intrusion Detection
- Data Protection
Certification
- ISC2 CISSP
- CompTIA Cloud+
- CompTIA CySA+
- CompTIA Security+
- CompTIA Project+
- CompTIA Server+
- CompTIA Network+
- CompTIA A+
Technology Skills
- Microsoft PKI Certificate Authority
- Venafi TLS Cloud / Certificate Lifecycle Management
- Entrust, DigiCert, Global Sign Certificates
- Cloud Security Architecture and Implementation
- Active Directory / Azure Active Directory
- Endpoint Protection
- Microsoft 365 Defender
- Microsoft Email Security
- Microsoft Defender for Endpoint / Identity
- CrowdStrike Falcon
- Windows Server Administration
- Cloudflare
- Citrix NetScaler
- Carbon Black Cloud Standard / App Control
- Netskope Web Gateway / CASB
- CyberArk Privilege Access Management
- Tenable Nessus Professional
- Tenable.io Vulnerability Management
- Vulnerability Management & Remediation
- Ivanti Security Controls
- LogRhythm SIEM
- NIST, DISA STIG
Timeline
Sr Information Security Engineer
Shook, Hardy & Bacon
02.2021 - Current
Security Systems Engineer
Cerner Corporation
02.2017 - 02.2021
Information Security Engineer
YRC Freight
04.2014 - 10.2016
Data Security Administrator
Waddell & Reed
10.2011 - 04.2014
- ISC2 CISSP
- CompTIA Cloud+
- CompTIA CySA+
- CompTIA Security+
- CompTIA Project+
- CompTIA Server+
- CompTIA Network+
- CompTIA A+
Bachelor of Science - Computer And Information Systems Security
ITT Technical Institute
Similar Profiles
Jonathan BatisteJonathan Batiste
Senior Litigation Data Analyst at Shook, Hardy,& Bacon Law FirmSenior Litigation Data Analyst at Shook, Hardy,& Bacon Law Firm
Stephanie AnspachStephanie Anspach
Legal Operations Specialist at Shook, Hardy & Bacon LLPLegal Operations Specialist at Shook, Hardy & Bacon LLP
Blair EganBlair Egan
Temporary Project Assistant at Shook Hardy & Bacon L.L.PTemporary Project Assistant at Shook Hardy & Bacon L.L.P