Summary
Overview
Work History
Education
Skills
Achievements Awards Volunteerism
Affiliations
Certification
Timeline
Generic

Kevin Ray

Wylie,TX

Summary

Ambitious Information Security professional committed to formulating innovative solutions to challenges while optimizing processes. Polished in implementing and maintaining security plans and procedures and developing strategies to respond and recover from security attacks or breaches. Logical and analytical leader familiar with security tools and technologies such as vulnerability management, IPS/IDS, Data-at-Rest Encryption and SIEMs.

Overview

10
10
years of professional experience
1
1
Certification

Work History

Information Security Engineer

Optum
04.2022 - Current
  • Procured and migrated Data-at-Rest security tool to a compliant and more modern platform (Vormetric, CipherTrust).
  • Designed, Purchased and Implemented On-Prem Anti-Virus and Data Loss Prevention tools. (ESET, Safetica)
  • Primary point of contact for all vulnerability related information regarding specific sub-section of the company. (Tenable, Qualys, Github Dependabot/CodeQL)
  • Assisted with vulnerability remediation within a section of our Production cloud environment (Azure, Windows Defender)
  • Continued vulnerability remediation effort to keep infrastructure and applications within compliance requirements.
  • Primary contact for Third-Party Compliance audit (PCI, SOC1, SOC2, HITRUST)

Infrastructure Security Administrator

VPay
01.2019 - 04.2022
  • Re-evaluated and updated Data Security policies based on PCI-DSS standards (Vormetric)
  • Migrated HIDS platform to a more modern and user-friendly platform (OSSEC, Wazuh)
  • Decreased Critical and High vulnerabilities by 95% (Tenable)
  • Implemented and Migrated VPN users from standalone clients to centrally managed clients (FortiClient)
  • Procured and Implemented Third-Party application patching across the Enterprise (Ninite)
  • Migrated Physical Security Camera system for increased visibility, easier end-user experience and more robust audit functionality (HikVision, DW Spectrum)
  • Performed Windows and Linux Patching to support Infrastructure Team
  • Provision Windows and Linux Servers (VMWare vCenter)
  • Primary point of contact for Elasticsearch related issues within our environment

Information Security Analyst

VPay
12.2017 - 12.2018
  • Rebuilt and optimized SIEM environment from Physical to Virtual (Graylog)
  • Designed and Implemented daily usable Dashboards through SIEM (Graylog)
  • Designed and Implemented HA for our MFA application (RSA)
  • Designed, Purchased and Implemented Physical SOC
  • Created Reporting and Dashboards for Vulnerability Management (Tenable, Nessus)
  • Execute Quarterly Firewall Audits, Quarterly Wireless Scans (WarDriving), and Quarterly Internal and ASV Scan Reports
  • Primary contact for On-site Third-Party Compliance Audit (PCI, SOC I, SOC II)

Production Support Administrator

VPay
08.2016 - 12.2017
  • Automated Job Design and Management (ActiveBatch)
  • Integrated Monitoring platform for SQL and DB2 queries, as well as CentOS and Windows host monitoring (LogicMonitor)
  • Assisted in increasing productivity of production scripts by identifying inefficiencies (Python and bash scripts)
  • Assisted in procuring necessary information for Annual Third-Party PCI, SOC I, SOC II Audit.

Operations Administrator

Heartland Payment Systems
03.2015 - 08.2016
  • End to End File Automation (ActiveBatch, Axway, GlobalScape, Connect:Direct)
  • Server Management and Creation (VMWare vSphere and vRealize Orchestrator)
  • Disaster Recovery Management

Helpdesk Technician

Heartland Payment Systems
03.2014 - 03.2015
  • Windows OS and Mac OS Maintenance
  • Perform User Maintenance using Active Directory and Adaxes (LDAP based tool)
  • Maintained applications such as: VMWare, Office Software(s), SQL and Visual Studio

Education

Bachelor of Arts in Information Technology -

University of North Texas
Denton, TX
05.2014

Skills

  • SIEM (Graylog, Splunk)
  • Data Encryption (Vormetric, CipherTrust)
  • Vulnerability Assessment (Qualys, Tenable)
  • Patch management (WSUS, Ninite)
  • SIEM Provider Management (Graylog)
  • Application security (GitHub Dependabot and CodeQL, Harbor)
  • Intrusion Detection Systems (Wazuh, OSSEC)
  • Security metrics
  • Regulatory Compliance Knowledge (PCI, SOC1, SOC2, HITRUST)
  • Data Loss Prevention (Safetica)
  • Attention to Detail
  • Analytical and Critical Thinking

Achievements Awards Volunteerism

System Security Certified Practitioner (SSCP) - Current, Alpha Tau Omega, President, Vice President, Secretary, Alumni Relations

Affiliations

  • Alpha Tau Omega
  • ISC2

Certification

  • SSCP - Systems Security Certified Practitioner
  • CCSP - Certified Cloud Security Professional

Timeline

Information Security Engineer

Optum
04.2022 - Current

Infrastructure Security Administrator

VPay
01.2019 - 04.2022

Information Security Analyst

VPay
12.2017 - 12.2018

Production Support Administrator

VPay
08.2016 - 12.2017

Operations Administrator

Heartland Payment Systems
03.2015 - 08.2016

Helpdesk Technician

Heartland Payment Systems
03.2014 - 03.2015

Bachelor of Arts in Information Technology -

University of North Texas

Similar Profiles

CREATE PROFILE
Kevin Ray