Artificial Intelligence
Milinko Milincic
Information Security Architect
Kingsport,TN
Summary
Excels at aligning business objectives and attributes to enterprise security architecture while delivering on time and budget. Capacity to leverage enterprise security architectures to meet an organization's need for information assurance, compliance and growth. Excellent organizational and interpersonal skills. Exceptional and proven ability to protect confidentiality, integrity, and availability of information and information systems.
Overview
23
23
years of professional experience
16
16
years of post-secondary education
3
3
Certificates
Work History
Security Architect
National Grid USA
Waltham, MA
03.2022 - 10.2022
- Developed enterprise automation vision and strategy. Ansible and ServiceNow integration. Enterprise digital transformation enablement through automation. Automation security guidelines.
- Worked on Azure regulatory compliance NIST, SOC, network security, Azure DevOps, application & API security, AKS security, cloud security audit, patch & vulnerability management. AKV, SQL security, AI anomaly detectors, IAM, Defender for Cloud, Sentinel, IoT security, and storage security. Zero trust and defense in depth. Azure CIS, FedRAMP. Cost management.
- DevSecOps, shift left, zero trust, security gap analysis, CI/CD pipelines automation, application & API security, infrastructure security, Jfrog, Sonarqube, Checkmarx, Jenkins, Ansible, Azure, AKS, dev/prod environments, risk assessment, vulnerability management, DevSecOps design, security toolchains, Jira, Agile, Bitbucket. Chain supply security, artifactory, X-ray security. Red Hat OpenShift & DevWorkspaces.
- ICS/OT risk assessment and security. Defense in depth. Enterprise Security Architecture. Tech Risk Vendor Assurance Support and baseline security requirements. Regulatory compliance. NIST, NERC CEP, FERC, CIS hardening.
- IBM Cloud and DevSecOps. IBM mainframe and z/OS application modernization, API and application security. Cloud-native development. Best practices, security, regulatory compliance.
- Member of threat modeling workgroup introducing TM into enterprise. STRIDE, OWASP, SAST, DAST, SCA. Threat Model Risk Matrix and baseline security requirements.
Enterprise Architect
Advanced Cyber Research LLC
Altamonte Springs, FL
02.2017 - 02.2022
- Conceptualized blueprints that define the structure and operation of organizations, created unified and secured IT environments, developed and implemented strategic road-maps. Overseen key indicators, security of the traditional and cloud infrastructure, serving as the main point of contact for investigating and resolving infosec related issues. Developed threat and vulnerability management policies and managed SIEM system.
- Designed, implemented, and managed private and hybrid cloud solutions including Vmware, AWS, Google Cloud, Azure, AZURE AD, SSO setup/configuration, Azure AD Identity Protection, Azure Defender, Azure AD federation, MFA, Microsoft 365, Azure AD Security and Alibaba Cloud. Evaluated and implemented open source cloud solutions like OpenStack and Eucalyptus Cloud.
- Developed, administered, and optimized Windows-based networks including MS Exchange Servers, Sharepoint, PKI for MS Office, AD Certificate Services, file encryption, Entrust, Bitlocker, AES, Serpent, VPN, encryption, Windows PKI, Linux PKI solutions, MS SQL, MySQL, Red Hat Linux Enterprise Servers, Suse Linux Enterprise Servers, Linux Servers, Debian, Ubuntu, OpenBSD, FreeBSD, Network Appliance Storage, VMWare ESXi 5, 6, 7, Virtual Centre, Vmware Horizon, Veeam, Vmware Cloud, Ansible, Ansible Tower, Jenkins, Splunk.
- Worked on Amazon AWS EC2, Lightsail, AWS MGN, S3, S3Glacier, Cloudwatch, Cloudrail, IAM, WAF & Shield, AWS Firewall Manager, Azure Domain, Azure IAM, Azure VPN, Azure Load Balancer.
- Google Cloud Platform, Compute Engine, VMWare Engine, Kubernetes Engine, Docker, CloudRun, Google CA, Microservices, App Engine, Security, IaaS, PaaS, CaaS.
- Performed penetration and stress testing, networks and apps, SCADA, Threat modelling, STRIDE
- Done a lot of presales and sales, evaluated cloud and security solutions and products, educated customers and their employees on cloud technologies and information security.
- Performed migrations from traditional networking environments into the cloud.
- Completed work on e-commerce projects enabling a business to quadruple their annual online income.
- Identified, analyzed, and resolved infrastructure vulnerabilities and application deployment issues.
- Provided technical leadership and delivered innovative products and services to address customer-specific requirements.
- Performed risk assessment and management, consulted on compliance standards, NIST Cybersecurity Framework (CSF), PCI DSS, HIPAA, FedRAMP, ISO/IEC 27001, TOGAF.
Information Security Architect
Freelance
Orlando, FL
04.2011 - 02.2017
- Worked closely with customers providing technical and security know-how and leadership to help protect their information systems and data. Performed critical system assessments, reviewed systems architecture, and security. Aligned and reinforced business continuity while implementing information security policies and standards.
- Designed, build, secured, managed, and supported traditional, virtual/cloud infrastructure solutions using VMware VSphere, VDI, Vmware Horizon, Google Cloud, AWS, Alibaba Cloud, IaaS, PaaS. Implemented security and identity management solutions, and policies. Implemented secure Unified Communications and collaboration.
- Build and management of IDS, SIEM (Splunk), UTM systems (Checkpoint, Sonicwall, Watchguard, Sophos).
- DevSecOps, CI/CD pipelines, security toolchain, threat modelling, risk analasys, secure coding practices, Github, Bitbucket, cloud native development
- Designed and implemented backup and disaster recovery solutions for traditional networks, private and hybrid clouds. PKI for MS Exchange, file encryption, AD CA Authority, Bitlocker, Truecrypt, encrypted VOIP.
- Streamlined business operations, greatly reducing operating costs, increased efficiency of businesses and their employees
- Done presales, sales, management, and tech support. Educated customers on the benefits of cloud computing and associated security solutions.
- Brought to completion several e-commerce projects.
- Brought to completion number of IP Video surveillance and monitoring projects.
- Created cybersecurity best practices, educated customers and their employees against known threats and potential vectors of attack. Performed penetration testing, threat assessments, SCADA. Kali Linux, Nexpose, InsightVM, Metasploit.
- Worked on risk assessment and risk management, vulnerability management, compliance work (GLBA, HIPPA, NIST CSF)
- Engaged business and technology stakeholders to gather goals and requirements.
Network Security Architect
Fortress Security Systems, Inc
Los Angeles, USA
08.2007 - 04.2011
- Conceptualized, designed, and developed total system/product solutions for enterprise-wide information technology and/or security processes. Assisted customers in determining the tactical and strategic direction of the organization.
- Planned, directed, and coordinated network security related projects. Accomplished project goals on time, on budget, and in alignment with business objectives.
- Designed, implemented, and operationally supported Microsoft-based networks running AD, Exchange, Sharepoint, Lync server, AD CA server.
- Implemented secure VOIP systems, design and implementation of UTM systems, IDS systems, VPN, host/file integrity monitoring solutions, done extensive penetration testing, vulnerability management. LAN/WAN, network and host encryption, Radius, NPS.
- Done extensive work on business intelligence, e-marketing, data mining.
- Developed reasonable and cost-effective recommendations for security improvement. Assessed security compliance, security program organization, policies and procedures, general risks, and vulnerabilities.
- Integrated and migrated different systems into virtual private/hybrid cloud.
- Implemented UTM systems, auditing, intrusion detection, reporting.
Information Security Consultant
Miltech doo
Belgrade, Serbia
04.2004 - 06.2007
- Lead on an e-commerce project for an e-commerce start-up.
- Provided IT design, direction, and day-to-day support of infrastructure and security. UTM, vulnerability management, IDS systems, vulnerability, and patch management. GPG, PKI for web, email and file encryption, SSL.
- Performed penetration testing for banks and Internet startups, power utility, SCADA.
- Managed different profiles of people and different professional abilities to function as a team.
- Delivered on promised design and implementation's as agreed.
- Assured availability and redundancy of the system.
- Successfully repelled DoS attacks and assured the availability of the system.
- Worked on reporting, education of colleagues and customers, host and network forensics, consulting, risk assessment.
- Designed reasonable and cost-effective recommendations for security improvement.
- Delivered meticulous project management to effectively resolve complex challenges.
ICT Security Consultant
Freelance
Amsterdam, Netherlands
06.2002 - 02.2004
- Extensively consulted on the network and security-related projects.
- Worked on IT and telecommunication infrastructure.
- Penetration testing, the establishment of basic and more advanced security policies and procedures for a range of company's (small, medium size), host and network forensics.
- PKI system for a medium-sized law firm.
- Secured wireless, and GSM communications.
- Extensive work on service infrastructure and related security.
- Risk, threat assessments, vulnerability management.
- SIEM, IDS, incident response, and handling of incidents.
- Network and security infrastructure work, small/medium, virtual e-mail, web, hosting, security, antivirus, firewalls, VPN.
- War dialing, penetration testing, WIFI.
- Kismet, Nessus, Gfi Languard, Retina, netcat, nmap.
- Developed and implemented reasonable and cost-effective recommendations for security improvement.
ICT Security Analyst
Atobe Mobile Solutions BV
Haarlem, Netherlands
08.1999 - 03.2002
- Started working as a web developer and network administrator, developed WAP applications, portal, worked on projects for KLM, Abn Amro bank, Budget rent-a-car, Financial Times, Libertel Telecom, Funda, ING, Accenture Italy, Nokia R&D.
- Transferred to infrastructure to work as a security analyst to remedy network penetration, worked on the host, network forensics, adapted and administered clustered network firewalls (Checkpoint), developed security procedures and policy.
- Developed and implemented Linux, Solaris, Java based mobile solutions. Lead on Solaris, Java systems integration.
- Apache, Tomcat, Resin, Oracle DB, Postgres, Mysql, MSSQL, IDS,VPN, IPSec, PF, VLAN, iptables, penetration testing, LDAP, XML, Perl, shell, C, Java
- Security and threat assessment work, migrations, penetration testing.
- Cisco routers, load balancers, 3com, Cisco switches, Nokia WAP Gateway, micropayment systems, administration, access control.
- Done presale work, improved the company's position on the market, improved on security awareness of colleagues and coworkers.
- Vastly improved my technical and information security skills.
- Greatly improved my communication and expertise skills, broaden my knowledge of real-world issues and problems and their solutions.
- Worked with great professionals, had fun doing it.
- Clustering, PKI, data mining, software development, HDTV, satellite communications, digital media, and mobile media.
- Established company-wide security best practices and protocols to mitigate the risk. Performed risk analyses to identify appropriate security countermeasures.
- Recommend improvements in security systems and procedures.
Education
No Degree - International Relations And Affairs
University of Amsterdam
Amsterdam, Netherlands 09.1993 - 05.1998
Diploma - Law (Pre-Law)
19 September
Lajkovac, Serbia 09.1987 - 07.1991
Dragutin Dule Karaklajic, Elementary School
Lazarevac, Serbia 09.1978 - 07.1986
Skills
Enterprise Security Architecture
Information Security Management
IBM Cloud, GCP, Azure, AWS
DevSecOps
Cloud Security Architecture
Regulatory Compliance
Microservices, Kubernetes, Docker
Risk Assement & Management
SaaS, PaaS, IaaS, IaC
Zero trust, Defense in depth
Interests
Crypto currencies
History
Cryptography
Cybernetics
Cyber Intelligence
Timeline
IBM Cloud DevSecOps Specialty
09-2022
IBM Cloud Advanced Architect
07-2022
Security Architect
National Grid USA
03.2022 - 10.2022
Enterprise Architect
Advanced Cyber Research LLC
02.2017 - 02.2022
Information Security Architect
Freelance
04.2011 - 02.2017
Network Security Architect
Fortress Security Systems, Inc
08.2007 - 04.2011
Information Security Consultant
Miltech doo
04.2004 - 06.2007
ICT Security Consultant
Freelance
06.2002 - 02.2004
ICT Security Analyst
Atobe Mobile Solutions BV
08.1999 - 03.2002
No Degree - International Relations And Affairs
University of Amsterdam
09.1993 - 05.1998
Diploma - Law (Pre-Law)
19 September
09.1987 - 07.1991
Dragutin Dule Karaklajic, Elementary School
09.1978 - 07.1986
Certification
IBM Cloud Advanced Architect