Darryl Smith

• Directed security consulting for numerous AWS contracts spanning over three years.
• Proposed cost-effective security enhancements for cloud and on-premises.
• Analyzed procedures, general risks, and vulnerabilities to identify areas of improvement.
• Enhanced mission strategy by executing incident response exercises for intelligence, surveillance, and reconnaissance teams.
• Enhanced productivity by educating team members about efficient cloud usage and adherence to company standards.
• Established standardized procedures for maintaining security and governance in various sectors.
• Directed security experts to create tailored solutions for business needs.
• Oversaw project budgets exceeding 20 million dollars while meeting aggressive deadlines.
• Engineered robust SCPs and Guardrails tailored for both new and previously optimized AWS environments.

Operated as a Lead Engineer on the Information Security Team at Fifth Third Bank.

• Managed critical infrastructure by ensuring consistent maintenance and application of security patches.
• Managed trio of initiatives aimed at enhancing hardware systems and implementing advanced security solutions.
• Collaborated with vendors like Symantec and IBM to identify architectural errors in the environment.
• Created multiple engineering procedure documents for cross-training junior engineers.
• Created comprehensive disaster recovery plan including fail-over documentation.
• Developed and sustained custom scripts boosting system efficiency.
• Configured and installed operating systems, application software, and management tools.
• Collaborated with skilled software engineers to develop cloud infrastructure.
• Led technical initiatives to develop innovative products and services.
• Utilized best practices for secure and efficient network deployment.

Functioned as a Cyber Security System Analyst and Engineer for U.S. Marine Corp in the continental United States.

• Maintained cyber security systems by performing regular vulnerability scans with ACAS, and then patched and upgraded these systems to maintain Department of Defense (DOD) compliancy.
• Served as the Splunk system administrator. Maintained the back end servers as well as the application.
• Developed and deployed a Splunk deployment server configuration for the network to automate configuration and version updates across the network.
• Monitored and analyzed network traffic for internal and external threats as a member of an incident response team using Websense, Splunk, and Host Intrusion Prevention Systems(HIPS). Authored detailed reports on incidents and events that were discovered, and provided guidance andsupervision formitigation efforts to address them.
• Prepared technical architecture proposals for enhancements and integration of existing third party software systems.
• Designed, documented and executed maintenance procedures, including system upgrades, patch management and system backups.
• Facilitated the change management process for two divisions within the organization by documenting requirements, implementation plans, and risk assessments for new technologies.
• Assessed current and new systems for vulnerabilities by conducting SCAP and ACAS scans.

Functioned as a Cyber Security Administrator for the networks used in the Pentagon. Performed daily maintenance, troubleshooting, and operational checks to ensure optimal performance.

• Created and deployed host intrusion prevention system (HIPS) signatures that detected current and emerging threats against the network.
• Detected and responded to identified network incidents.
• Prepared trending analysis and statistical reports on network activity using multiple proprietary and industry accredited network monitoring devices.
• Utilized comprehensive knowledge of network protocols, computer operating systems, vulnerabilities, and intrusion methods to initiate Computer Network Defense activities.
• Proposed plans to senior management for implementing new technologies and processes that would improve organizational capability for intrusion detection and prevention.
• Diagnosed system hardware and software problems using advanced root-cause analysis.

• Administered and maintained a defense sensor grid supporting U.S. Navy networks, ensuring operational readiness through daily maintenance, troubleshooting, and performance checks.
• Conducted Computer Network Exploitation (CNE) operations in a team environment to evaluate the impact of Open Source Software (OSS) and server functions on WAN and wireless network performance.
• Designed and executed exploitation strategies to identify technical and operational vulnerabilities across multiple networks.
• Performed CNE target development using a variety of enterprise-specific and commercial tools.
• Reviewed and validated SNORT rules prior to deployment; authored and deployed SNORT signatures to detect emerging threats.
• Developed and deployed Host-Based Security System (HBSS) signatures to detect current and evolving threats; coordinated alert responses with enterprise Points of Contact (POCs).
• Detected, analyzed, and responded to network incidents, contributing to real-time threat mitigation efforts.
• Produced statistical reports and trending analyses using industry-standard and proprietary network monitoring tools.
• Applied deep knowledge of network protocols, OS vulnerabilities, and intrusion techniques to respond to over 100,000 network events.
• Identified adversary Tactics, Techniques, and Procedures (TTPs); advised leadership on mitigation strategies to prevent, control, and isolate incidents.
• Collaborated with Information Assurance Managers (IAMs) to discover, isolate, and remediate security incidents.
• Gained extensive experience in Netflow and PCAP analysis and performed forensic investigations on compromised network and host devices, including Windows IIS servers and firewalls.