Dylan Helton
O'Fallon,MO
Summary
Detail-oriented Network Engineer with 12 years of IT/Networking experience and a strong background in network design and security. Accomplished in designing and implementing security across unclass, secret and SCI enterprise infrastructures. Focused on maintaining network security to provide customers with safe data management.
Overview
12
12
years of professional experience
1
1
Certification
Work History
Senior Network Engineer
CACI International
St. Louis, MO
09.2019 - Current
- Responsible for implementing and applying technologies, processes, and practices designed to protect networks, devices, programs, and data from malicious attack, damage, or unauthorized access
- Maintains network device and information security incident, damage and threat assessment programs
- Configured and implemented Cisco ASA firewalls to provide clients with comprehensive security, antivirus protection and virtual network capabilities.
- Employed firewalls and VPNs to safeguard network security and block unauthorized access.
- Investigates network device and information security incidents to determine extent of compromise to national security information and automated information systems
- Provide intrusion support to high technology investigations in the form of network assessments
- Researches and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding and network and device security and encryption
- Performs duties in support of in-house and external customers
- Designs, develops or recommends integrated system solutions ensuring proprietary/confidential data and systems are protected in accordance with mandated standards
- Participates with the client in the strategic design process to translate security and business requirements into technical designs
- Configures and validates secure systems, tests security products/systems to detect computer and information security weakness
- Generates security architecture documentation
- Provides critical written and verbal analyses of previously generated security architecture documentation and vulnerability and risk assessments
- Designs and implements plans of action and milestones to remediate findings from vulnerability and risk assessments
- Provides information assurance for digital information, ensuring its confidentiality, integrity, and availability
- Responsibilities include the granting of authorization to operate IT systems at acceptable levels of risk, monitoring and testing of IT systems for vulnerabilities and indicia of compromise, incident response and remediation, the development of appropriate policy, relevant user security awareness and training, and compliance with applicable government and other external standards
- Designed standardized inter-VRF MPLS routing deployment to ease configuration of connectivity
- Experience in managing the load balancers in a high-availability infrastructure
- Provided full visibility and notification of authorized and unauthorized network access with integration of CISCO ASA/FWSM and NAC solution
- Configure Cisco 7200 routers which were also connected to Cisco ASA5500 security appliances providing firewall security.
- Identified and resolved network performance issues.
- Configured, monitored, and maintained routers, switches, firewalls, and load balancers.
- Provided technical support for local area networks, wide area networks, virtual private networks and other data communication systems.
- Developed network security policies to protect against unauthorized access.
- Performed system upgrades of hardware and software components to ensure optimal performance.
- Created detailed documentation of the existing network architecture, processes, applications and services.
- Designed new solutions for complex networking projects such as routing protocols, VPNs and VoIP systems.
- Analyzed traffic patterns to identify potential problems before they occur.
- Investigated advanced troubleshooting techniques in order to resolve complex outages or incidents quickly.
Senior Network Engineer
Aegis Strategies, LLC
09.2018 - 09.2019
WireSharkFirePowerSourceFire
- Maintains Enterprise Cyber Security Engineering requirements utilizing aNetwitnesslowing tools: RSA Netwitness, FireEyProofPointFire, Fire Power, ProofPoint and others as needed
- Apply Cyber Security Engineering and Network Security Engineering expertise to optimize NGA's enterprise protection posture
- Recommend and participate in activities that prevent repeated vulnerability assessments and resolve issues as they arise
- Provide and participate in A&A support for projects and technical exchange meetings
- Contribute to the deliverables for this WBS element.
Systems Administrator II
Aegis Strategies, LLC
02.2017 - 09.2018
- Completes HBSS engineering and administration involving the roll-out, installation and configuration of McAfee HBSS and other security software in the McAfee security applications family
- Maintains HBSS IAW DISA and CYBERCOM standard as evaluated COR, Command Cyber Readiness Inspections, Cyber Protection Teams and other government oversight organizations including: troubleshooting highly complex McAfee HBSS solutions across the appropriate engineering environments in accordance United States Central Command (CENTCOM) guidance
- Provides HBSS engineering support to ensure that the HBSS environment provides sustained performance functionality
- Provides escalate-able HBSS engineering support to customers by investigating and resolving highly complex, systems related matters of significance
- Develops a process/technical solution to remediate any broken HBSS clients
- Providing support telephonically and/or electronically, with coordination tracked using the Remedy ticketing system.
Host Based Security System (HBSS) and Server Backups
SCOTT AFB
09.2016 - 02.2017
- Provided support for Vulnerability Management Systems (VMS); Assured Compliance Assessment Solution (ACAS); Host Based Security System (HBSS) and server backups
- Supported SIPRNET and JWICS domain VTC suits including VTC system operations checks
- Provided support for the Secure Entry Point (SEP) which provides secure reach back for GRIP systems
- Monitored SEP server operations
- Performed initial troubleshooting and corrective actions in the event of an SEP outage while assisting remote users attempting to connect to the SEP
- Assisted users in connecting to backup SEP when required along with assisting users with GRIP operations
- Preformed weekly ACAS and vulnerability scans while researching corrective actions and provide feedback to customer personnel.
Cyber Surety Technician
United States Air Force
Jacksonville, AR
04.2012 - 04.2016
- Conducted IA risk and vulnerability assessments, ensuring enterprise IA polices fully supported all legal and regulatory requirements and ensured IA policies were applied in new and existing IT
- Monitored policy and compliance while recommending IT security controls
- Performed audits and enforced compliance initiatives
- Performed preventative maintenance for Unclassified/Classified Systems Managed Top Secret keying material, messages & data with zero incidents.
Education
BA in Criminal Justice -
LINDENWOOD UNIVERSITY
01.2021
Skills
- Network security
- HBSS
- Information security
- Network engineering
- Cybersecurity
- Leadership
- Computer networking
- Customer service
- Incident response
- System administration
- Software troubleshooting
- Organizational skills
- Proofpoint Enterprise
- Cisco Routers/Switches
- Cisco FireEye
- Cisco SourceFire/FirePower
- RSA
- F5 Big-IP Advanced Firewall
- Palo Alto Firewall
- Juniper SRX Firewall
- AWS
- VMWare
- Information Exchange (Citrix)
- Rogue System Detection
- VPN
- Cisco Identity Services Engine (ISE)
- Network Routing
- Network Monitoring/Analysis
- IP Sub-netting/IP address allocation
- DNS
- LAN
- Active Directory
- WAN
- Operating Systems
- Network Support
- TCP/IP
- Microsoft Windows
- OSPF
- Routing Protocols
- FTP
- Juniper (7 years)
- WireShark (5 years)
- Firewall Management
- Access Control
- Infrastructure planning and design
- Technical Troubleshooting
- Firewalls and endpoint security
- Cisco wireless routers and switches
- Connectivity troubleshooting
- Network configuration
- Hardware Installation
- Documentation Writing
- Verbal and written communication
- Active Directory knowledge
- Effective Communication
- User Support
- Technical Support
- IP Addressing and Subnetting
- Equipment Configuration
- Change Management
- Hardware and software configurations
- Infrastructure Planning
- System Integration
- Network operations
- Technical infrastructure migration
- Network Security
Certification
- Top Secret Clearance
- TS/SCI w/Poly
- Secret Clearance
- CompTIA Security+
- Comptia CySA+
Military Service
United States Air Force
Timeline
Senior Network Engineer
CACI International
09.2019 - Current
Senior Network Engineer
Aegis Strategies, LLC
09.2018 - 09.2019
Systems Administrator II
Aegis Strategies, LLC
02.2017 - 09.2018
Host Based Security System (HBSS) and Server Backups
SCOTT AFB
09.2016 - 02.2017
Cyber Surety Technician
United States Air Force
04.2012 - 04.2016
BA in Criminal Justice -
LINDENWOOD UNIVERSITY