Jeremy Kicklighter, CISM

• Reduced IT operational spend by 25% through a comprehensive user audit, eliminating redundant accounts and licenses.
• Conducted a comprehensive Enterprise Risk Assessment to identify security control gaps across people, process, and technology layers, prioritizing mitigation efforts.
• Led the deployment of critical security controls including NGAV, SIEM, SSO, and MDM, significantly reducing attack surface and aligning with Zero Trust principles.
• Established a formal security program aligned with NIST and ISO 27001, strengthening risk management and compliance.
• Launched targeted security awareness campaigns and phishing simulations, reducing user click rates on malicious links by 60%.

• Managed complex projects involving multiple stakeholders, delivering high-quality results within budget constraints and timelines.
• Managed SOC 2 readiness and led a successful security and compliance audit on behalf of a client, meeting stringent requirements from one of their major banking customers.
• Provided comprehensive support for security infrastructure, leading the integration, decommissioning, and cloud migration of on-premises datacenter systems for a large adtech client.

• Led security compliance initiatives, including SOC 2 Type 2 certification, through internal gap assessments, policy development (aligned to ISO/NIST), and vendor risk management.
• Managed vendor audits, responded to customer security assessments, and coordinated responses to third-party due diligence requests.
• Conducted quarterly User Access Reviews (UARs), annual Security Awareness Training, and simulated phishing exercises to reinforce secure behaviors.
• Oversaw and executed annual third-party penetration testing and internal security audits, ensuring findings were triaged, remediated, and documented.
• Implemented and maintained key security technologies such as Web Application Firewalls (WAF) and SIEM, enhancing threat visibility and system performance.
• Directed multiple security and compliance projects end-to-end, applying project management best practices to deliver on-time and under budget.
• Developed security metrics and reporting dashboards to track KPIs, identify trends, and inform executive decision-making.
• Authored security documentation, operationalized incident response plans, and led annual tabletop exercises to validate readiness.

Role Overview: Oversaw the design and implementation of advanced security architecture, focusing on production data centers, DDoS mitigation, authentication systems, and compliance.

Project Management and Technical Leadership

• Directed the implementation of a DDoS mitigation platform to protect against large-scale attacks.
• Managed the deployment of centralized and multi-factor authentication systems to strengthen access security.
• Led the full greenfield deployment of a redundant West Coast data center, integrating security measures and designing an ultra-low latency network to ensure optimized performance and reliability.

Network and Infrastructure

• Maintained and supported production and corporate next-gen firewalls, including managing B2B VPN connectivity to vendors and remote locations.
• Assisted the Network Operations team with routing changes, port moves, load balancer configurations, architecture installations, and GSLB changes.

Vulnerability Management and Threat Management

• Conducted ongoing vulnerability management and penetration testing to identify and remediate security weaknesses, ensuring continuous protection against emerging threats.
• Implemented and maintained tap aggregation and sensor systems in production data centers, enhancing network visibility and monitoring capabilities.

Security Policy and Compliance

• Developed, wrote, and implemented comprehensive security policies based on ISO and NIST frameworks, ensuring alignment with industry standards and best practices.
• Spearheaded the implementation of security policies and practices in preparation for an MPAA audit, focusing on anti-piracy measures, digital rights management, and the protection of proprietary digital assets.

Role Overview: Provided monitoring, alerting, and responding to network security events as part of the Verizon Telematics Security Operations Team.

• Led the deployment and management of OSSEC HIDS for production environments, enhancing host-based intrusion detection capabilities.
• Directed the deployment of Web Application Firewalls (WAF) to protect against web-based threats and ensure the security of web applications.
• Oversaw the deployment, maintenance, and monitoring of commercial IPS platform to detect and prevent network intrusions.
• Managed the deployment, maintenance, and monitoring of open-source IDS, improving network visibility and threat detection across the organization.

Role Overview: Part of the Global Information Security team, responsible for Risk and Vulnerability Assessments, Security Architecture, and Security Operations for a leading financial software and payment processing company (highly regulated environment).

• Developed and maintained a comprehensive Vulnerability Management Program by identifying and classifying assets, leading remediation and mitigation activities, and integrating with GRC platform.
• Conducted quarterly Dynamic Application Security Testing (DAST) against web releases to identify and address security vulnerabilities before deployment.
• Acted as the technical lead for migrating users to a secure SSL VPN solution, ensuring secure remote access.
• Led the migration and upgrade of Intrusion Prevention Systems (IPS) and Intrusion Detection Systems (IDS), including deployment and monitoring.
• Monitored and maintained a Security Information and Event Management (SIEM) system for effective correlation of security events.
• Monitored and maintained Web Application Firewalls (WAF) to protect critical applications.
• Led cross-functional collaboration with internal/external audit teams to ensure successful Sarbanes-Oxley (SOX) audits, PCI Report on Compliance (ROC) completion, and ongoing FFIEC/SSAE16 regulatory compliance..
• Assisted in preparing Annual Enterprise Risk Assessments to identify and mitigate potential risks.
• Conducted semi-annual Wireless Risk Assessments and Internal/External Penetration tests against corporate and production environments.
• Provided guidance to the Operations team on design and tactical responses to emerging threats such as DDoS attacks.

Role Overview: Contracted to work on various network and security-related projects for an oil and gas company.

• Project Manager and Technical Lead for replacing load balancers and implementing SSL in the PeopleSoft environments.
• Technical Lead for implementing commercial netflow monitoring tool to track network flows for security and bandwidth concerns.
• Assisted internal teams in creating secure configuration templates for field equipment.
• Implemented role-based security for network devices using custom shell command authorization sets.
• Assisted in the upgrade of video-conferencing equipment and the deployment of new video conferencing solutions to several field sites.
• Assisted in the planning and design of a migration to new network infrastructure.
• Assisted in evaluating and selecting next-generation firewalls to replace legacy systems.

Role Overview: Led a team of engineers responsible for maintaining network connectivity and security functions for two datacenters in the Metro Atlanta area.

• Managed the support and maintenance of firewalls, intrusion prevention systems (IPS), and external load balancers, ensuring secure and efficient network operations.
• Oversaw the deployment and maintenance of VoIP solutions and contact center systems, enhancing communication infrastructure.
• Orchestrated the installation of a comprehensive voice and data circuit management system, leading the project to streamline and enhance network reliability.
• Supported and maintained VPN solutions with two-factor authentication, ensuring secure remote access.
• Managed a complex extranet consisting of various connectivity solutions, including Frame-Relay, MPLS, and site-to-site VPNs.
• Conducted internal and external vulnerability scanning, enforcing remediation efforts to maintain a secure environment.
• Managed SSL certificate issuance and renewal for internal and external systems.
• Assisted system administrators with Active Directory and email system administration tasks.
• Configured and maintained spam filtering solutions to protect against email threats.
• Led the migration to redundant core switches, enhancing network resilience and performance.
• Implemented a centrally managed endpoint protection solution, ensuring comprehensive security coverage.
• Developed a custom intrusion detection system (IDS) and centralized logging solution to monitor and protect critical infrastructure.
• Deployed a data loss prevention (DLP) solution to safeguard sensitive information at rest and in motion.
• Established a centralized encryption infrastructure to protect data with whole disk encryption.
• Tailored policies, procedures, and guidelines to comply with PCI standards, ensuring regulatory adherence.

Role Overview: Provided regional MIS support to the Atlanta branch of Micromuse, Inc., which developed the security line of the Netcool® Suite of Products. Part of a global team of engineers supporting the Micromuse infrastructure worldwide. Coordinated with IBM engineers to integrate the Micromuse infrastructure into IBM after the acquisition.

• Integrated and supported directory services, including Active Directory and OpenLDAP.
• Administered and supported directory services and email systems.
• Supported and managed approximately 50 firewalls using a network security management solution, including site-to-site VPN connectivity for remote offices. Also managed additional firewalls.
• Assisted the development team in staging various security appliances for integration coding.
• Supported VPN concentrators for remote worker connectivity.
• Assisted in the global deployment of VoIP solutions, including MPLS rollout.
• Provided local support for network switches and infrastructure.
• Supported approximately 60 development and production servers running a mix of operating systems, including Windows, Solaris, and Linux.

Senior Network Engineer

Role Overview: Responsible for monitoring and maintaining the corporate and production network infrastructure, as well as implementing solutions for connecting vendors and customers.

• Managed core, distribution, and access layer routing and switching, utilizing high-end routers and switches.
• Configured and maintained routing protocols (OSPF, EIGRP, BGP) and implemented static routes and access lists for traffic manipulation.
• Configured and managed firewalls to secure the internal network and used web tracking and caching solutions.
• Supported and maintained VPN solutions for employee remote access.
• Implemented and maintained network monitoring solutions for comprehensive node monitoring.
• Administered a multi-domain network, including email system administration and domain migrations.
• Provided Unix/Linux/Solaris administration for DNS and SMTP relay servers.
• Maintained central antivirus server for deploying updates and scan policies to all clients.

Network Engineer

Role Overview: Responsible for monitoring, maintaining, and optimizing a global Frame Relay network, providing networked voice and data messaging services.

• Maintained optimum traffic flow using Unix and proprietary software in a dynamic environment.
• Monitored network health using network management tools and custom scripts.
• Staged servers for field deployment, including hardware upgrades, software installations, and configurations.
• Maintained network backbone consisting of switches and routers running advanced routing protocols.
• Configured and deployed routers and CSU/DSUs in the field.

Senior Systems Support Consultant

Role Overview: Provided first and second level hardware, software, and network support for over 2,500 Holiday Inn and Intercontinental branded hotels in a high-volume inbound call center.

• Supported a wide range of hardware including multi-port boards, various printers, dumb terminals, routers, UPS systems, and CPU boxes.
• Managed and maintained Unix systems, emulation and telnet sessions, and network monitoring tools.
• Administered servers to maintain communication links for field dispatch.
• Recognized for outstanding customer service, receiving Level III recognition for three consecutive months.

Desktop Support

Role Overview: Provided software and network support for corporate users on a hybrid network, ensuring smooth operations and resolving issues promptly.

• Administered user accounts and permissions on desktop and file servers.
• Provided first and second level support for software, hardware, and network issues.
• Managed email system administration including mailbox provisioning, quotas, and distribution lists.
• Supported a variety of hardware including desktops, laptops, routers, and docking stations, performing upgrades and replacements as needed.