Gary North

• Participated in project meetings, evaluated management needs, and provided solutions that meet the business objectives.

• Developed and maintained documentation of security standards, procedures, guidelines, and controls according to the industry best practices and the regulatory requirements.

• Hands-on experience with security tools such as SIEM, SOAR, vulnerability scanners, IDS, IPS, EDR, MDM, PAM, DLP, DNS filtering, web proxies, email gateway, application whitelisting tools, and antivirus solutions.

• Responsible for ensuring seamless operation of Digital Certificates.

• Familiarity with scripting languages (PowerShell, Python), query languages (KQL, LEQL) and Regular expression (Regex).

• Collaborated with other team members to ensure timely resolution of security incidents.

• Performed an in-depth analysis of security events and alerts to determine the root cause.

• Developed and maintained documentation for incident response procedures and generated detailed incident response reports.

• Conducted vulnerability assessments to identify system vulnerabilities and create remediation plans.

• Collaborated with the software development team and implement necessary security measures at every stage of the software development lifecycle (SDLC).

• Familiarity with NERC CIP standards, CIS Controls, and NIST Cybersecurity Framework.

• Participated and assisted in NERC CIP audits.

• Researched well-established security-focused organizations, such as NIST and CIS, to assist in establishing and maintaining a framework that supported and protected business objectives and/or requirements.
• Assisted in the development of security policies and procedures that comply with the chosen framework.
• Reviewed system/application architecture from a security aspect.
• Maintained a role as a technical expert for security-related activities.
• Conducted periodic, often daily, review of security-related logs and events.
• Managed the daily review and identification of cybersecurity vulnerabilities, Indicators of Compromise, and recommendations from the E-ISAC, MS-ISAC, and others, to secure repair or mitigate those vulnerabilities.
• Developed and delivered social engineering exercises for employees and presented the data to stakeholders.
• Conducted monthly vulnerability assessments of infrastructure related to the Electrical Management System utilizing Nessus and provided remediation information to the appropriate teams.
• Assisted the organization in maintaining NERC-CIP Compliance. Attended monthly Critical Infrastructure Protection Working Group meetings either virtually or in person at ERCOT, including participation in Grid Guardians, a defense collaborative group to detect and prevent APT activity.

• Planned, coordinated, and installed network switches to eliminate multiple single points of failure that were there previously. Properly documented connections and created diagrams to clearly articulate how client side and server side traffic were separated in the environment.
• Utilized network monitoring and scanning tools to verify connectivity between endpoints and servers. Identified faults in the current failover system and corrected those issues. Conducted testing to verify properly failover between switch stacks and firewalls.
• Managed, tracked and coordinated problem resolution and escalation processes. This also involved the creation and implementation of automation in the help desk portal to provide for prompt self service solutions when the technology team could not provide human interaction.
• Coordinated implementation and support of network and server infrastructure monitoring tools. Managed implementation of AI network monitoring devices to take action on anomalous behavior over the network. Utilized webhooks to centralize critical infrastructure warning messages to be displayed in commonly used locations such as Microsoft Teams.
• Coordinated annual penetration testing for SOC audits and remedied any issues that arose from vulnerability testing.
• Collaborated with vendors to identify best options for optimizing network performance, including an upgrade for the companies current network infrastructure.
• Assisted in maintenance of Office 365 admin portal to properly keep track of private teams groups, access groups for Sharepoint, and email groups.

• Create/add new users and computers to the Active Directory domain. Assign group policy permissions to users. Troubleshoot desktop, laptop, printer, and other peripherals in a timely manner. Answer help desk tickets in a promptly.
• Assisted customers with troubleshooting issues encountered while using hardware or software, providing actionable tips to resolve problems.
• Resolved technical issues by troubleshooting.
• Logged support tickets and closed when issues were resolved.
• Followed up with employees to verify optimal customer satisfaction following support engagement and problem resolution.
• Trained and supported end-users with software, hardware and network standards and use processes.
• Loaded software, granted permissions and configured hardware for new employees as part of onboarding process.
• Installed, modified and repaired software and hardware to resolve technical issues.
• Identified and solved technical issues using variety of diagnostic tools and tactics.
• Developed knowledge base articles to help end users resolve technical issues. Built workflows inside of the ticketing system to automate responses to common tickets with links to knowledge base articles already created.
• Assisted in remediation of issues found during SOC audits

• Over 1300 hours in law enforcement training.
• Experience in undercover operations including managing confidential informants as a Detective.
• Experience maintaining technical equipment involved in recording and documenting undercover narcotics transactions.
• Experience including interviewing witnesses, victims and suspects along with investigating from start to finish offenses including counterfeit currency, fraud, narcotics, and property crime.
• Responsibilities have previously included managing cases, managing the bait vehicle program including the technology it requires, and conducting investigations related to before mentioned offenses.
• Functioned as a Field Training Officer training new recruits how to be a Patrol Officer.
• Conducted multi-scope research into suspects to determine criminal activities and suspect operating environments.
• Obtained and verified evidence by interviewing, observing and conducting surveillance of suspects and records.
• Installed covert cameras and recording devices in compliance with legal statutes and department policies.

• Extensive training and performance in teamwork, Law and Order as well as Combat Support Operations.