Mark Gregory

• Hands-On work Security Operation Center experience with Jira Ticket Management, Qradar. Spunk, Crowdstrike, Python, Kali Linux. Investigated Incidents and Detections, determined adversaries, Tactics and Techniques used, correlated evidence from Qradar and Splunk , created tickets in Jira and worked with other team members to identify related detections and escalate to Tier II team.

Designed, implemented, and managed the lifecycle of a CA infrastructure in a private domain, ensuring secure and reliable digital certificate issuance. Enforced best practices for securing the CA server, including physical security, network isolation, and access controls. Led certificate deployment for LDAPS, SSSD, server communications, internal websites, and key rotations, adhering to industry standards (4096-bit keys, SHA256/SHA512). Oversaw privileged access management via BeyondTrust, CyberArk, and Active Directory, ensuring RBAC compliance. Utilized Tenable for vulnerability scanning, performing credentialed and non-credentialed assessments to enhance security posture. Managed McAfee SIEM for SOC compliance and implemented Windows server hardening to CIS Level 1 standards

· Conducted regular audits, monitoring CA activities, and implementing disaster recovery procedures

· Created and updated PowerShell scripts for SOC compliance, reporting, and patching

· Designed and standardized procedural documents for PKI implementation and change management

· Designed and standardized procedural documents for PKI implementation and change management

Assisted in server onboarding, troubleshooting connectivity issues, and deploying BMC ADDM Discovery

• Resolved escalated incidents, conducted root cause analysis, and implemented long-term solutions. Planned capacity expansion, configuring both physical and virtual servers to meet operational demands. Improved efficiency by automating manual processes with PowerShell and developing comprehensive technical documentation. Ensured vulnerability mitigation and compliance through proactive monitoring and reporting.

• Managed complex access management tasks, including delegation for Trusts, constrained delegation, and OUs across multiple forests and domains. Processed ticket-based work related to Active Directory data management, Group Policy deployments, and break-fix issues. Led elevated access projects to ensure compliance with SOX, HIPAA, and PCI regulations. Automated operational processes, streamlining ticket creation and email responses to improve efficiency. Provided end-user support for identity and access management issues, ensuring seamless authentication and authorization processes.

• Provided remote desktop support, resolved migration-related issues, and optimized ticket handling processes. Coordinated with multiple teams for issue resolution and performed software installations to enhance system functionality.

Managed complex access management across multiple forests and domains, including Trusts, constrained delegation, and OUs. Oversaw ticket-based Active Directory data management and Group Policy deployments, handling self-host, break-fix, and recurring updates. Led elevated access projects to ensure compliance with SOX, HIPAA, and PCI requirements.

Automated operational workflows to improve efficiency, including quick ticket creation and email response templates. Provided end-user support for identity and access management, ensuring seamless authentication and issue resolution.