Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Gene Ballard

Parker,CO

Summary

Information Security Sr. Sales Engineer/Consultant/Manager/Architect/Engineer/Analyst and IT Systems Engineer/Manager with over 30 years of experience who has designed, implemented, and managed Enterprise Information Security Programs, developed and implemented IT and Information Security Policies, performed IT Security Audits, Assessments, Remediation and Compliance activities, designed, implemented, and managed Vulnerability, Patch Management, SOC/SIEM and Incident Response Programs, designed, implemented, and managed Enterprise PKI, strong Project Management and Risk Analysis skills, designed, implemented, and managed Enterprise Backups and Disaster Recovery Programs, designed, implemented, and managed Storage Area Networks, designed, managed, and deployed Datacenters, designed, implemented, and managed Microsoft Active Directory, Exchange, SQL Server, SharePoint, designed, implemented, and managed VMWare ESXi / VirtualCenter, designed, implemented, and managed Mobile Device Management platforms, installed, configured, and managed firewalls, routers, switches, packet brokers, load balancers, and IDS/IPS, provided Leadership/Management of Information Security and IT Departments, strong collaboration and communication skills.

Overview

19
19
years of professional experience
1
1
Certification

Work History

Sr. Sales Engineer - Security

Gigamon
06.2021 - 03.2024
  • Met with customers to assess their current security posture to include administrative controls, operational controls, and compliance/regulatory requirements in development of a network visibility solution aimed at solving current business challenges and various use cases
  • Designed Network Visibility / Deep Observability solutions for customers to enable pervasive security monitoring of their on-prem and hybrid cloud environments, feeding immutable network traffic to network and security tools for analysis such as NPM, APM, IDS/IPS, NDR, SIEM, and XDR solutions
  • Gave technical and overview presentations to prospects, customers and at industry events
  • Installed and configured solutions for POCs, both on-prem and in hybrid cloud environments
  • Provided post-sales follow-up, technical training, and consulting
  • Designed complex architectures and deployment plans for customers; worked with PS engineers on smooth post-sales transition
  • Performed periodic health checks for customers and presented results/recommendations
  • Led technical strategy with RSDs and CAM inclusive of partner development
  • Active designer of account strategy with RSDs; participated with RSDs on sales pipeline forecasts
  • Created best practices for use by broader SE team and worked to help improve SE processes
  • Provided feedback to PLM and Engineering teams on customer experience and desired improvements
  • Developed joint solutions with channel, alliances team, and ecosystem partners
  • Created and provided technical training/mentorship to new engineers.

Enterprise Security Architect

PEAK Resources
02.2019 - 06.2021
  • Meet with customers to assess their current security posture to include administrative controls, operational controls, and compliance/regulatory requirements
  • Consulted with customers on their high-level Infosec program needs in relation to Governance, Risk, and Compliance
  • Consulted with customers in the development of their Vulnerability Management, Risk Management, Incident Response, Security/Network Monitoring, and Security Training and User Awareness programs
  • Designed/Architected Information Security Controls for customers in a number of verticals to include healthcare, communications, state/local governments, Industrial Control Systems, sports franchises, government contractors, etc
  • Designed/Architected Information Security Controls to include NGFW, SIEM, SOAR, Endpoint Security, DLP, Advanced Threat Protection, Multi-Factor Authentication, Privileged Access Management, Intrusion Detection, Data Access Governance, CASB, SASE, etc
  • Consulted with customers to develop and implement Information Security Policies/Procedures
  • Worked to create/develop the customer facing Information Security program at PEAK Resources to include Product/Services portfolios and partner relationships
  • Developed and participated in publicly broadcast Virtual Roundtable and Webinar presentations on various Information Security topics
  • Wrote blogs on relevant infosec topics for PEAK
  • Assisted internal PEAK Resources IT personnel with security recommendations/implementations.

Manager of Information Security

TTEC
01.2018 - 02.2019
  • Provided leadership/management for operational Infosec and Security Operations Center (SOC) personnel
  • Designed and implemented a global Vulnerability Management program
  • Assisted in the development of the Global Incident Response program
  • On-shored 24x7 US SOC
  • Deployed dedicated security control infrastructure for a federal client
  • Worked to architect and recommend security solutions to include NGFW, SIEM, FIM, DLP, Endpoint Security, Advanced Threat Protection, Multi-Factor Authentication, Privileged Access Management, Intrusion Detection, Network Visibility
  • Reviewed proposed customer, vendor, and internal solutions/architectures from an Infosec/Risk perspective
  • Performed compliance audit activities for PCI DSS, HIPAA, HITRUST, Fedramp, SOC Type 2, SOX and customers
  • Created and maintained Information Security Policies, Standards, Procedures, Guidelines, Metrics, and Best Practices.

Sr. Information Security Consultant

Sev1Tech
10.2017 - 01.2018
  • Met with customers to assess their current security posture to include administrative controls, technical controls, compliance, and regulatory requirements
  • Worked to architect and recommend security solutions for customers to include NGFW, SIEM, Endpoint Security, Advanced Threat Protection, Multi-Factor Authentication, Privileged Access Management, Intrusion Detection, and NAC
  • Performed NIST CSF/800-53 compliance assessment for a National Communications company
  • Lead on ICS security assessment and resultant design (ISA99, NIST SP800-82) for new water reclamation plant
  • Performed post-sales professional services for customers to implement/migrate solutions
  • Created and maintained Information Security Policies.

Security Solutions Architect/Engineer

NETSource
07.2016 - 10.2017
  • Met with customers to assess their current security posture to include administrative controls, technical controls, compliance, and regulatory requirements
  • Created SOWs and presentations for customers
  • Worked to architect and recommend security solutions for customers to include NGFW, SIEM, Endpoint, Advanced Threat Protection, Two-Factor Authentication, Privileged Access Management, IDS, and NAC
  • Performed incident response and post-IR mitigation services for customers
  • Performed post-sales professional services for customers to implement and migrate solutions
  • Created and maintained Information Security Policies
  • Worked with BDM and Sales to develop a suite of Managed Security Services
  • Performed vCISO role for customers
  • Performed PCI DSS 3.2 assessments to include delivering gap analysis reports and remediation/compliance plans.

Sr. Security Engineer

Echostar
05.2015 - 07.2016
  • Designed, managed, and maintained corporate security infrastructure across the global enterprise
  • Created, reviewed, and revised corporate Information Security Policies
  • Worked across business units to champion information security and enable their initiatives/projects while reducing risk to the company; participated in overall design efforts to ensure security was properly addressed
  • Respond to security alerts/incidents, performed general root-cause-analysis and managed remediation efforts; currently working to formalize incident response via policy/team/procedures/training
  • Managed a project to standardize endpoint security across the enterprise to include product POC testing, solution/design proposals, deployment of the new solution and policy configuration; included AV/Anti-Malware, Application Control, HIPS, Host Firewall, Web Filtering, Behavioral Analysis and Full Disk Encryption controls
  • Collaborated with the security team to develop corporate standards/requirements for controls such as dual-factor authentication, single sign-on, mobile device management and web/email filtering
  • Performed vulnerability management tasks using Nessus Security Center for scans and managed remediation efforts
  • Participated in change management review board to review proposed changes from a risk and overall security perspective
  • Ensured security related logs from corporate system/devices were in Splunk and Symantec MSS systems; utilized these services/systems for incident response efforts and general correlation/research efforts
  • Assisted with Check Point firewall deployment/configuration/upgrades and policy pushes
  • Deployed and managed FireEye EX, NX, HX and CM appliances
  • Managed Websense Web/Email Filtering
  • Provided day-to-day administration of the Tipping Point IPS'.

Sr. Security/Systems Engineer

Whiting Petroleum Corp
04.2012 - 05.2015
  • Designed security and infrastructure for new SCADA site - includes policies, procedures, and the deployment/configuration of all infrastructure
  • Designed, managed, and maintained corporate and SCADA IT Infrastructure
  • Created, reviewed, and revised corporate IT and Information Security Policies
  • Created corporate Computer Forensics Policy and procedure/process
  • Proposed a formal SCADA Information Security program and resultant design - ISA99, API 1164, NIST SP800-82
  • Participated in SCADA and corporate security assessments and remediation; regularly applying OS and application security patches and updates to remediate new and known vulnerabilities
  • Deployed internal PKI infrastructure for corporate and SCADA environments
  • Deployed 802.1x certificate-based security for wired and wireless networks
  • Deployed Nexpose for external/internal vulnerability assessment
  • Deployed Accelops for SIEM and basic monitoring of the enterprise
  • Performed routine auditing and remediation for corporate SOX compliance
  • Implemented email retention policies as part of the corporate Records Information Management program
  • Designed and implemented enterprise NTP and DNS solutions - improving security posture and reducing public service footprint
  • Performed routine vulnerability assessment of publicly exposed infrastructure to include corporate website and portals, DNS, and remote access
  • Worked with Application Developers to deploy and utilize Kerberos for improved authentication security in corporate apps
  • Upgraded and standardized Active Directory infrastructure across all geographic locations - included common internal network services such as DHCP, DNS, and DFS
  • Designed and deployed active/active multi-site Exchange 2010 - migrated organization from Exchange 2003
  • Implemented and integrated a Mobile Device Management solution with Exchange 2010
  • Implemented and integrated a SaaS Email Protection solution with Exchange 2010.

Sr. Security/Systems Engineer

Urban Lending Solutions
11.2011 - 04.2012
  • Contract Information Security Audit Remediation Project for financial client
  • Reviewed Information Security Audits and provided detailed response and created remediation plans
  • Created IT and Information Security Policies and Procedures
  • Information Security Program designed around ISO 27001/27002 and FFIEC
  • Designed and proposed the Exchange 2010 solution for their migration from Exchange 2003
  • Provided systems hardening guidance for Linux and Windows
  • Integrated authentication between AD and Linux systems
  • Created the Information Systems Migration Strategy and the resultant Analysis, Planning, and Migration processes utilized to migrate corporate information systems
  • Completed the build out of a new Data Center to include VMWare and Isilon NAS Storage
  • Migrated SQL 2005 Reporting Services, reports, report models, and report model reports to SQL 2008 R2 Reporting Services
  • Assisted in the migration of IIS / .NET applications to new systems in the Cloud
  • Deployed central SYSLOG, custom MSI pre-configured agent installation packages for various platforms as part of SEIM
  • Performed System Engineering tasks and duties for the Infrastructure department.

IT Manager / Sr. Systems Engineer

Latisys
09.2006 - 11.2011
  • Manager for the Latisys IT department consisting of other engineers, sys admins, and desktop support staff
  • Responsible for the 24 x 7 management, operation, and support of IT
  • Lead Systems Engineer and Project Manager for all corporate infrastructure acquisition/integration projects
  • Created the Latisys Enterprise Information Security program and Enterprise Information Security Policy
  • Conducted and participated in IT security assessments and remediation
  • Designed and managed Access Control via AD for all corporate infrastructure/applications
  • Participated in Change Management meetings/processes
  • Participated in annual SAS70 audit/compliance efforts and provided guidance/recommendation on PCI DSS
  • Completed and/or advised on pre-sales security questionnaires/audits
  • Designed, proposed, managed, and executed the upgrade of our 2003 AD environment to 2008 R2 AD DS across all datacenters
  • Designed, proposed, managed, and executed the deployment of Exchange 2010 and the migration from Exchange 2003
  • Utilized Windows PowerShell for AD/Exchange/Systems reporting and administration tasks
  • Designed, deployed, and managed the Corporate Microsoft SQL Clusters
  • Designed, deployed, and managed the Microsoft Dynamics CRM and Great Plains platforms utilizing Scribe Insight integration
  • Designed and deployed the Corporate and Customer VMWare ESX and VirtualCenter environments
  • Designed and tested Disaster Recovery plans on recovering Active Directory, Exchange, and SQL Server for EMC using their Avamar backup software
  • Designed, implemented, and managed Blackberry Enterprise Server
  • Designed, deployed, and managed our Intranet using Windows SharePoint Services 3.0
  • Designed, deployed, and managed the Corporate Compellent SANs
  • Deployed the Salesforce Email-to-Case Integration
  • Responsible for maintaining IT vendor support contracts and development of the annual Latisys IT budget
  • Create and maintain detailed systems diagrams and support documentation
  • Create and maintain Corporate IT Policies; developed corporate IT systems security baselines and best practices
  • Provided Level III support to our hosting customers for Microsoft environments in the event our NOC, Support, or Engineering staff could not resolve the issue
  • Consulted with Sales staff and customers on their systems design needs
  • Annually put together the 'State of IT' and 'IT Roadmap' for upper management and executives.

Sr. Systems / Network Engineer

MasterCraft Cabinets
01.2005 - 09.2006
  • Designed the Data Center at our new manufacturing facility
  • I was the project manager for the Data Center Construction Project and the Facility Relocation Project
  • I managed all vendor relationships and budget for these projects
  • I not only managed the project but also was the lead engineer on these projects
  • Designed, managed, and implemented the annual Systems Strategic Plan
  • This involved upgrading server hardware for all Domain Controllers, Exchange Servers, Web Servers, and a handful of application servers
  • VMware Server Virtualization was used to virtualize servers saving hardware, footprint, and power in the new Data Center
  • Managed, engineered, administered, and supported the network (Cisco routers/switches and Checkpoint NG Firewall) and systems (Windows 2003 Servers) for three locations in Colorado, Arizona, and New Mexico
  • Designed the current AD structure, created, tested, deployed, and supported GPOs to configure and manage the environment, updated all security patch levels and basic server/network security standards, implemented a standard Policy and Procedure format/process, began creating P&P's on IT processes/requirements, and centralized/automated all patches/updates throughout the Enterprise
  • Designed and managed Access Control via AD for all corporate infrastructure/applications
  • Designed and implemented backups to spinning disk with archival to tape and implemented offsite vaulting of the archives
  • Designed, implemented, managed, administered, and supported Windows 2003 Server/AD, Exchange Server 2003 and OWA, Symantec Corporate Anti-virus with Symantec System Console, Symantec Mail Security for Exchange (Virus and Spam), SQL Server 2000, SurfControl Web Filtering, Cisco Routers and Switches, Checkpoint NG Firewall, and all departmental applications and processes (ADP/HRP, ETime, TimeCentre etc)
  • Performed systems and network vulnerability assessments, provided recommendations, and remediated issues
  • Administered and supported the Intertel Phone System
  • Managed the Desktop and Help Desk personnel
  • Developed a new IP address scheme for the company where I planned, managed, and implemented the project to convert to the new IP addressing scheme
  • Redesigned the current desktop support strategy with Ghost/SYSPREP imaging, updated all hardware platforms at each site
  • Deployed, configured, and maintained a server-based help desk solution giving IT a formal centralized presence to the company, which enabled us to track, monitor, and report on our support activity
  • Performed basic AS/400 support and administration for both user and general connectivity.

Education

Bachelor of Science - Management of Information Systems

Colorado Christian University
Colorado
05.2006

Skills

  • Microsoft Windows Server: 2019, 2016, 2012, 2008, 2003, 2000, NT
  • Linux Server: CentOS, Red Hat, Ubuntu, Debian, Red Hat Ansible / Ansible Tower
  • Microsoft Active Directory: Azure, 2016, 2012, 2008, 2003, 2000
  • Microsoft Exchange Server: O365, 2013, 2010, 2007, 2003, 2000, 55
  • Microsoft SQL Server: 2012, 2008, 2005, 2000, 7x
  • Microsoft IIS 75/70/60/50, Apache, Tomcat Web Servers
  • VMware ESX/ESXi and vCenter: 7x, 6x, 5x, 4x, 3x
  • AWS, Azure
  • PowerShell, Python, and Bash Shell Scripting
  • Kali Linux, Security Onion, PTF, NMAP, Netcat/Ncat, Metasploit, Burp Suite
  • Checkpoint, Palo Alto, Cisco, and Fortinet security products
  • FireEye NX, EX, HX, CM and ETP
  • Tipping Point IPS, Snort, Thales/Gemalto SAS
  • Qualys, Nexpose, Tenable IO/SC/Nessus
  • AirWatch, MobileIron Mobile Device Management
  • Deep Instinct, McAfee Endpoint Security/EPO, Trend Micro, Symantec AV 12x/11x/10x/9x/8x, SMSME 6x,5x, Webroot, Cybereason, Sophos, Check Point Endpoint, Deep Instinct
  • Splunk, Netskope, HP OpenView, Accelops (FortiSiem), Nagios, SiteScope, ForeScout
  • Websense, SurfControl, McAfee SaaS Email/Web Filtering
  • Gigamon Deep Observability Platform for On-Prem and Hybrid Cloud

Certification

  • CISSP Certified Information Systems Security Professional
  • GCIA GIAC Certified Intrusion Analyst
  • GCIH GIAC Certified Incident Handler
  • GICSP Global Industrial Cyber Security Professional (expired)
  • CCSE Checkpoint Certified Security Expert (expired)
  • MCSE Microsoft Certified Systems Engineer
  • MCTS Microsoft Certified Technology Specialist - Windows 2008 Active Directory
  • MPCP Metasploit Pro Certified Specialist
  • NCA Nexpose Certified Administrator
  • AWS CCP AWS Certified Cloud Practitioner
  • MCAF Microsoft Certified Azure Fundamentals
  • CCNA Cisco Certified Network Administrator (expired)

Timeline

Sr. Sales Engineer - Security

Gigamon
06.2021 - 03.2024

Enterprise Security Architect

PEAK Resources
02.2019 - 06.2021

Manager of Information Security

TTEC
01.2018 - 02.2019

Sr. Information Security Consultant

Sev1Tech
10.2017 - 01.2018

Security Solutions Architect/Engineer

NETSource
07.2016 - 10.2017

Sr. Security Engineer

Echostar
05.2015 - 07.2016

Sr. Security/Systems Engineer

Whiting Petroleum Corp
04.2012 - 05.2015

Sr. Security/Systems Engineer

Urban Lending Solutions
11.2011 - 04.2012

IT Manager / Sr. Systems Engineer

Latisys
09.2006 - 11.2011

Sr. Systems / Network Engineer

MasterCraft Cabinets
01.2005 - 09.2006

Bachelor of Science - Management of Information Systems

Colorado Christian University

Similar Profiles

CREATE PROFILE
Gene Ballard