Summary
Overview
Work History
Education
Skills
Certification
Work Availability
Timeline
Generic

Collin James Barnett

Sewickley,PA

Summary

Results-driven IT professional with notable success in planning, analysis and implementation of security initiatives. Strengths in aligning security architecture plans and processes with security standards and business goals.

Overview

28
28
years of professional experience
2
2

Certifications

Work History

IT Security Analyst

Streamline Healthcare LLC
08.2024 - Current
  • Oversee and perform Security Operations, Governance, Risk, and Compliance duties
  • Integral part of Hitrust and Soc 2 audits
  • Monitor our cloud security posture using Wiz.io for exposure and vulnerabilities
  • Utilize ADAudit to monitor Active Directory user and group activity
  • Deployed Lansweeper for hardware and software inventory and auditing
  • Utilize Huntress.io for Endpoint Detection and Response
  • Administer ESET Endpoint Security for Antivirus and Web filtering for onsite and remote devices
  • Use Rapid7 SIEM SAAS for security event monitoring
  • Currently migrating from ESET to Defender for Endpoint
  • Create and maintain Security Policies, Standards, Procedures, and Baselines
  • Perform baseline audits of on prem and cloud solutions and monitor baseline drift

IT Security Analyst Sr

Fidelity National Financial
05.2023 - 08.2024
  • Developed our CIS Baseline program for products based on risk using automated Qualys scans and manual checks
  • Perform quarterly baseline control reviews and updates
  • Discover and remediate/document root cause for baseline drift on server, workstation, network and security devices
  • Perform firewall rule reviews for 400+ firewalls
  • Manage vulnerability remediation or compensation controls for in house applications
  • Drive continuous scanning compliance for in house applications
  • Develop standards and procedures for Threat Vulnerability Management duties.
  • Backup support for Qualys administration
  • Involved with internal and external audits and resolving their findings.

Information Security/GRC Analyst

Fidelity National Financial
02.2018 - 05.2023
  • Implemented change control matrix/flow for ISO approvals including admin consent for Azure applications utilizing ServiceNow
  • Review and process all Information Security Office ServiceNow change requests and admin consent requests for FNF and its subsidiaries following ISO Policies and standards
  • Access the security risk posture of new applications before they are on boarded and document their current compliance
  • Developed our CIS Baseline program for products based on risk using automated Qualys scans and manual checks
  • Perform quarterly baseline control reviews and updates
  • Discover and remediate/document root cause for baseline drift on server, workstation, network and security devices
  • Perform firewall rule reviews for 400+ firewalls
  • Manage vulnerability remediation or compensation controls for in house applications
  • Drive continuous scanning compliance for in house applications
  • Develop standards and procedures for Threat Vulnerability Management duties.
  • Backup support for Qualys administration

Sr Security Engineer

UPMC
08.2017 - 01.2018
  • Migrated hospital acquisitions from their security solutions to UPMC security solution standards using Palo Alto products
  • Implemented External Dynamic Lists using MineMeld for white and black listings
  • Used External Dynamic Lists to route to our cloud providers through their express paths
  • Implemented Active/Active and Active/Passive Palo Alto clusters
  • Used Panorama to manage all Palo Alto firewalls and act as the log collector for all PA firewalls
  • Utilized Splunk to troubleshoot problems and investigate security issues

Sr Security Analyst

Heritage Valley Health System
09.2015 - 08.2017
  • Analyzed the current PCI environment and documented all systems and processes that needed to be upgraded/replaced to bring the environment to current industry standards
  • Created and maintained security policies for IT specific functions
  • Managed Checkpoint Advanced Firewall’s and its Next Generation features
  • Administered Barracuda URL and spam filters
  • Implemented LogRhythm SIEM solution for better insight into the HVHS network
  • Managed vulnerability and penetration scans on new and existing solutions and devices
  • Migrated end points from McAfee ePO 4.6 to 5.3 and enabled the management of native Bitlocker encryption
  • Managed and coordinate security projects inside and outside of the security team

Network Security Analyst

Amerinet Inc
09.2012 - 09.2015
  • Introduced redundant Palo Alto firewalls behind our Internet-facing firewalls as a second layer of defense and utilized its advanced firewall rules, virus and malware monitoring and blocking, along with URL filtering
  • Implemented Tenable Security Center for continuous passive and weekly scheduled vulnerability scans, file integrity monitoring and security audits
  • Administered Qradar SIEM appliance and setup syslog and netflow streams from our routers, switches, and servers
  • Integrated Enterasys Network Access Control (NAC) on our corporate network
  • Performed quarterly penetration tests using Metasploit Pro and Core Impact tools
  • Managed Cisco ASA and Palo Alto firewalls, Cisco routers, switches, and access points, as well as, Enterasys access points for all Amerinet sites
  • Implemented internal PKI to enable pushing of security updates, software, and virus signatures to our remote users that do not connect to our internal network

System Engineer Middleware

Dicks Sporting Goods
09.2010 - 09.2012
  • Managed around 500 Web servers running on IIS 6.0 - 7.5
  • Set and implemented standards and best practices for IIS Web Servers across all of DSG Infrastructure
  • Upgraded applications from IIS 6 to IIS 7.5 using MSDeploy and other tools
  • Implemented Team Foundation Server to replace SourceSafe code repository
  • Managed internal PKI for SSL certificates
  • Backup resource for Biztalk and Websphere technologies on Microsoft and IBM Operating Systems
  • Maintained Apache Servers and IBM HTTP servers for Reverse Proxies and WebSphere

Network Manager/Architect

Guru.com
10.2008 - 09.2010
  • Designed and built the production site for Guru.com at half of the cost of the original site while increasing server and network performance by 25% and maintaining a 99.99% uptime
  • Reduced our production maintenance window and enabled rolling outages by implementing F5 load balancers and virtual web servers running on Hyper-V
  • Increased the e-mail sending capacity for campaigns and marketing by 75% using Exchange 2007
  • Implemented clustered SQL 2005 database and DFS file stores using Windows 2008 connecting to an Equallogic ISCSI SAN to enable redundancy and the capability for maintenance on these systems with no downtime
  • Implemented a QA environment that mirrors production for proper code vulnerability scanning and performance testing
  • Manage all aspects of design, setup, security, disaster recovery, documentation and policies for production, QA and corporate networks
  • Ensure PCI compliance by managing security, enforcing policies and performing PCI quarterly scans
  • Managed the IT support staff of 2 people
  • Responsible for patching of all servers and desktops including Linux operating systems.

Education

Associate Degree - Specialized Business, Computer Information Management

Computer Tech
01.1997

Skills

  • Network security management
  • Vulnerability assessment
  • Security analysis
  • Security monitoring
  • Firewall configuration
  • Security protocols
  • Compliance monitoring

Certification

  • CISSP (ISC)² Member ID 541605
  • CCSP (ISC)² Member ID 541605

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Timeline

IT Security Analyst

Streamline Healthcare LLC
08.2024 - Current

IT Security Analyst Sr

Fidelity National Financial
05.2023 - 08.2024

Information Security/GRC Analyst

Fidelity National Financial
02.2018 - 05.2023

Sr Security Engineer

UPMC
08.2017 - 01.2018

Sr Security Analyst

Heritage Valley Health System
09.2015 - 08.2017

Network Security Analyst

Amerinet Inc
09.2012 - 09.2015

System Engineer Middleware

Dicks Sporting Goods
09.2010 - 09.2012

Network Manager/Architect

Guru.com
10.2008 - 09.2010

Associate Degree - Specialized Business, Computer Information Management

Computer Tech

Similar Profiles

  • Chris Hamoeller

    Chris HamoellerChris Hamoeller

    Director Security and Networking at Streamline HealthcareDirector Security and Networking at Streamline Healthcare

  • Bharath Kumar M

    Bharath Kumar MBharath Kumar M

    Lead - Recruitment at Streamline Healthcare Solutions India Pvt LtdLead - Recruitment at Streamline Healthcare Solutions India Pvt Ltd

  • Paul Toth

    Paul TothPaul Toth

    Senior Solutions Consultant at Streamline Healthcare SolutionsSenior Solutions Consultant at Streamline Healthcare Solutions

  • Elliot Thompson

    Elliot ThompsonElliot Thompson

    Lifeguard at Edgeworth ClubLifeguard at Edgeworth Club

  • Owen Glass

    Owen GlassOwen Glass

    Outdoor Operations at Sewickley Heights Golf CourseOutdoor Operations at Sewickley Heights Golf Course

CREATE PROFILE