Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Curtis Haugen

Maple Grove

Summary

Seasoned cybersecurity professional with over 15 years of experience in vulnerability and risk management, cybersecurity controls, and policy development. Proven track record in enhancing system integrity and operational efficiency through strategic risk mitigation and robust security solution implementation. Skilled communicator adept at collaborating with cross-functional teams to address security challenges. Committed to staying ahead of emerging threats and leveraging cutting-edge technologies to safeguard critical data assets.

Overview

26
26
years of professional experience
1
1
Certification

Work History

Sr. Cybersecurity Consultant

Secure Ascent, LLC
08.2023 - Current
  • Craft effective solutions customized for clients' individual requirements.
  • Demonstrate exceptional communication skills through verbal and written interactions with clients and colleagues.
  • Establish cybersecurity controls aligned with NIST, Cobit5, and ISO 27001 frameworks.
  • Conduct thorough vulnerability assessments to identify potential risks.
  • Develop strategies to mitigate risks and vulnerabilities.

Information Security Manager

Bobcat
07.2021 - 08.2023
  • Oversaw development and implementation of improvements to support cybersecurity initiatives across both Bobcat and Doosan on a global level.
  • Implemented and maintained technology and software budget.
  • Analyzed network security and current infrastructure, assessing areas in need of improvement.
  • Performed Red and Blue team testing exercises
  • Created cybersecurity awareness and training for employees
  • Integral part of the Dev/SecOps team as well as quarterly planning sessions and reporting

Information Security Risk and Controls Manager

Allianz
01.2018 - 07.2021
  • Collaborated with IT, business groups and project teams to conduct security risk analysis for applications.
  • Collaborated with technology leadership to address risks and recommend changes in security policies.
  • Advised senior management on security best practices and emerging threats.
  • Coordinated with management to assess potential threats and implement preventative measures.
  • Implemented endpoint security solutions such as antivirus, patch management, content filtering to protect against malware and other threats.

IS Security Analyst - Contract

PeopleNet
02.2017 - 10.2018
  • Maintained a comprehensive inventory of all IT assets across the organization's network infrastructure.
  • Executed risk assessment and data processing system performance tests to verify and configure security settings for data processing and network access.
  • Evaluated evidence of violations in company security policies to identify violators and investigate incidents, instructing employees on correct procedures.
  • Reviewed security bulletins and vulnerability patch releases.
  • Monitored alerts generated by intrusion detection systems to identify potential attacks against corporate networks.
  • Learned about latest security threats from blogs and online publications.
  • Analyzed web traffic logs to detect anomalies or malicious activities.

Senior Security Consultant

Wipfli LLP
04.2016 - 02.2017
  • Facilitated vulnerability assessments, penetration tests, and social engineering exercises for clients.
  • Researched the latest threats and vulnerabilities to enhance vulnerability assessment services.
  • Facilitated and executed plans within Information Risk Management.
  • Remediated critical security vulnerabilities impacting data confidentiality, integrity and availability.

Security Analyst - Contract

Target Corporation
10.2015 - 10.2016
  • Spearheaded development, analysis, and execution of strategies in Information Risk Management.
  • Managed remediation of critical security vulnerabilities impacting data confidentiality, integrity, and availability.

Sr. Network/Systems/Security Administrator

Northwrite
01.2008 - 04.2016
  • Responsibilities of this one-man team include Windows/Mac administration, network operating center (NOC) administration, LAN/WAN/VPN administration, VMware conversion and administration, intrusion detection and prevention, securing firewalls, and endpoint security management.
  • Handled FTP servers, AD/DNS, wireless access points and server farms.
  • Designed and deployed HA and DR solutions to ensure operational continuity.
  • Conduct penetration tests on both applications and infrastructure.

Systems Administrator/Security Analyst - Contract

Data Recognition Corp
05.2014 - 04.2015
  • Managed over 800 Windows servers utilizing SCCM 2012 R2 and PowerShell.
  • Supported Desktop team in configuring and deploying Windows operating systems across 3,000 devices.
  • Collaborated with security team to identify and remediate vulnerabilities.

Sr. Systems Administrator

Open Access Technology International
01.2005 - 04.2008
  • Constructed and repaired clustered server environments.
  • Collaborated effectively with development teams to ensure timely project completion.
  • Facilitated distribution and oversight of building access security.
  • Conducted environment testing utilizing VMware and Microsoft platforms.
  • Configured Active Directory and DNS for improved efficiency.

Field Service Representative

Qualxserv
04.2003 - 01.2005
  • Completed on-site warranty services and installations for multiple leading brands including Dell, IBM, Sony, Philips, Apple, Hughes, Direcway and Canon.
  • Managed inventory, supported customers, and maintained personal computing equipment.
  • Installed and configured servers, workstations, and laptops for LAN connections.
  • Completed service calls for organizations such as the FBI, IRS, Mall of America, and 3M.

Customer Engineer

Vaske Computer Solutions
01.2000 - 04.2003
  • Performed on-site service for multiple Hewlett-Packard clients.
  • Performed installations, upgrades, repairs, and troubleshooting of HP 9000 and 3000 mainframe environments.

Education

Bachelor of Science - Information Assurance And CyberSecurity

Capella University
12-2013

Skills

  • Qualys & Nessus vulnerability scanning
  • Microsoft SCCM and WDS
  • Intrusion prevention and detection
  • Patch and vulnerability management
  • Microsoft Baseline Security Analyzer
  • PowerShell scripting
  • Python programming
  • Malware analysis techniques
  • Burp Suite usage
  • Wireshark analysis
  • Nmap scanning
  • Forensics with SIFT
  • Active Directory management
  • VMware virtualization
  • Hyper-V management
  • STIG viewer utilization
  • LogRhythm monitoring
  • Splunk analytics
  • Automated deployment services (Microsoft)
  • DNS management
  • Cisco IOS configuration
  • Cisco ASA firewall management
  • Microsoft SQL database administration
  • FedRAMP compliance knowledge
  • SIEM implementation and monitoring
  • Disaster recovery planning
  • Employee training programs
  • Project management methodologies

Certification

  • CISSP
  • MCP
  • MCTS
  • MCSA
  • MCSE
  • MCITP
  • CEH v8
  • CHFI v8
  • ECSA

Timeline

Sr. Cybersecurity Consultant

Secure Ascent, LLC
08.2023 - Current

Information Security Manager

Bobcat
07.2021 - 08.2023

Information Security Risk and Controls Manager

Allianz
01.2018 - 07.2021

IS Security Analyst - Contract

PeopleNet
02.2017 - 10.2018

Senior Security Consultant

Wipfli LLP
04.2016 - 02.2017

Security Analyst - Contract

Target Corporation
10.2015 - 10.2016

Systems Administrator/Security Analyst - Contract

Data Recognition Corp
05.2014 - 04.2015

Sr. Network/Systems/Security Administrator

Northwrite
01.2008 - 04.2016

Sr. Systems Administrator

Open Access Technology International
01.2005 - 04.2008

Field Service Representative

Qualxserv
04.2003 - 01.2005

Customer Engineer

Vaske Computer Solutions
01.2000 - 04.2003

Bachelor of Science - Information Assurance And CyberSecurity

Capella University

Similar Profiles

CREATE PROFILE
Curtis Haugen