Summary
Overview
Work History
Education
Skills
Interests
Timeline
Certification
Volunteer

Milinko Milincic

Information Security Architect
Kingsport,TN

Summary

Excels at aligning business objectives and attributes to enterprise security architecture while delivering on time and budget. Capacity to leverage enterprise security architectures to meet an organization's need for information assurance, compliance and growth. Excellent organizational and interpersonal skills. Exceptional and proven ability to protect confidentiality, integrity, and availability of information and information systems.

Overview

23
23
years of professional experience
16
16
years of post-secondary education
3
3
Certificates

Work History

Security Architect

National Grid USA
Waltham, MA
03.2022 - 10.2022
  • Developed enterprise automation vision and strategy. Ansible and ServiceNow integration. Enterprise digital transformation enablement through automation. Automation security guidelines.
  • Worked on Azure regulatory compliance NIST, SOC, network security, Azure DevOps, application & API security, AKS security, cloud security audit, patch & vulnerability management. AKV, SQL security, AI anomaly detectors, IAM, Defender for Cloud, Sentinel, IoT security, and storage security. Zero trust and defense in depth. Azure CIS, FedRAMP. Cost management.
  • DevSecOps, shift left, zero trust, security gap analysis, CI/CD pipelines automation, application & API security, infrastructure security, Jfrog, Sonarqube, Checkmarx, Jenkins, Ansible, Azure, AKS, dev/prod environments, risk assessment, vulnerability management, DevSecOps design, security toolchains, Jira, Agile, Bitbucket. Chain supply security, artifactory, X-ray security. Red Hat OpenShift & DevWorkspaces.
  • ICS/OT risk assessment and security. Defense in depth. Enterprise Security Architecture. Tech Risk Vendor Assurance Support and baseline security requirements. Regulatory compliance. NIST, NERC CEP, FERC, CIS hardening.
  • IBM Cloud and DevSecOps. IBM mainframe and z/OS application modernization, API and application security. Cloud-native development. Best practices, security, regulatory compliance.
  • Member of threat modeling workgroup introducing TM into enterprise. STRIDE, OWASP, SAST, DAST, SCA. Threat Model Risk Matrix and baseline security requirements.

Enterprise Architect

Advanced Cyber Research LLC
Altamonte Springs, FL
02.2017 - 02.2022
  • Conceptualized blueprints that define the structure and operation of organizations, created unified and secured IT environments, developed and implemented strategic road-maps. Overseen key indicators, security of the traditional and cloud infrastructure, serving as the main point of contact for investigating and resolving infosec related issues. Developed threat and vulnerability management policies and managed SIEM system.
  • Designed, implemented, and managed private and hybrid cloud solutions including Vmware, AWS, Google Cloud, Azure, AZURE AD, SSO setup/configuration, Azure AD Identity Protection, Azure Defender, Azure AD federation, MFA, Microsoft 365, Azure AD Security and Alibaba Cloud. Evaluated and implemented open source cloud solutions like OpenStack and Eucalyptus Cloud.
  • Developed, administered, and optimized Windows-based networks including MS Exchange Servers, Sharepoint, PKI for MS Office, AD Certificate Services, file encryption, Entrust, Bitlocker, AES, Serpent, VPN, encryption, Windows PKI, Linux PKI solutions, MS SQL, MySQL, Red Hat Linux Enterprise Servers, Suse Linux Enterprise Servers, Linux Servers, Debian, Ubuntu, OpenBSD, FreeBSD, Network Appliance Storage, VMWare ESXi 5, 6, 7, Virtual Centre, Vmware Horizon, Veeam, Vmware Cloud, Ansible, Ansible Tower, Jenkins, Splunk.
  • Worked on Amazon AWS EC2, Lightsail, AWS MGN, S3, S3Glacier, Cloudwatch, Cloudrail, IAM, WAF & Shield, AWS Firewall Manager, Azure Domain, Azure IAM, Azure VPN, Azure Load Balancer.
  • Google Cloud Platform, Compute Engine, VMWare Engine, Kubernetes Engine, Docker, CloudRun, Google CA, Microservices, App Engine, Security, IaaS, PaaS, CaaS.
  • Performed penetration and stress testing, networks and apps, SCADA, Threat modelling, STRIDE
  • Done a lot of presales and sales, evaluated cloud and security solutions and products, educated customers and their employees on cloud technologies and information security.
  • Performed migrations from traditional networking environments into the cloud.
  • Completed work on e-commerce projects enabling a business to quadruple their annual online income.
  • Identified, analyzed, and resolved infrastructure vulnerabilities and application deployment issues.
  • Provided technical leadership and delivered innovative products and services to address customer-specific requirements.
  • Performed risk assessment and management, consulted on compliance standards, NIST Cybersecurity Framework (CSF), PCI DSS, HIPAA, FedRAMP, ISO/IEC 27001, TOGAF.

Information Security Architect

Freelance
Orlando, FL
04.2011 - 02.2017
  • Worked closely with customers providing technical and security know-how and leadership to help protect their information systems and data. Performed critical system assessments, reviewed systems architecture, and security. Aligned and reinforced business continuity while implementing information security policies and standards.
  • Designed, build, secured, managed, and supported traditional, virtual/cloud infrastructure solutions using VMware VSphere, VDI, Vmware Horizon, Google Cloud, AWS, Alibaba Cloud, IaaS, PaaS. Implemented security and identity management solutions, and policies. Implemented secure Unified Communications and collaboration.
  • Build and management of IDS, SIEM (Splunk), UTM systems (Checkpoint, Sonicwall, Watchguard, Sophos).
  • DevSecOps, CI/CD pipelines, security toolchain, threat modelling, risk analasys, secure coding practices, Github, Bitbucket, cloud native development
  • Designed and implemented backup and disaster recovery solutions for traditional networks, private and hybrid clouds. PKI for MS Exchange, file encryption, AD CA Authority, Bitlocker, Truecrypt, encrypted VOIP.
  • Streamlined business operations, greatly reducing operating costs, increased efficiency of businesses and their employees
  • Done presales, sales, management, and tech support. Educated customers on the benefits of cloud computing and associated security solutions.
  • Brought to completion several e-commerce projects.
  • Brought to completion number of IP Video surveillance and monitoring projects.
  • Created cybersecurity best practices, educated customers and their employees against known threats and potential vectors of attack. Performed penetration testing, threat assessments, SCADA. Kali Linux, Nexpose, InsightVM, Metasploit.
  • Worked on risk assessment and risk management, vulnerability management, compliance work (GLBA, HIPPA, NIST CSF)
  • Engaged business and technology stakeholders to gather goals and requirements.

Network Security Architect

Fortress Security Systems, Inc
Los Angeles, USA
08.2007 - 04.2011
  • Conceptualized, designed, and developed total system/product solutions for enterprise-wide information technology and/or security processes. Assisted customers in determining the tactical and strategic direction of the organization.
  • Planned, directed, and coordinated network security related projects. Accomplished project goals on time, on budget, and in alignment with business objectives.
  • Designed, implemented, and operationally supported Microsoft-based networks running AD, Exchange, Sharepoint, Lync server, AD CA server.
  • Implemented secure VOIP systems, design and implementation of UTM systems, IDS systems, VPN, host/file integrity monitoring solutions, done extensive penetration testing, vulnerability management. LAN/WAN, network and host encryption, Radius, NPS.
  • Done extensive work on business intelligence, e-marketing, data mining.
  • Developed reasonable and cost-effective recommendations for security improvement. Assessed security compliance, security program organization, policies and procedures, general risks, and vulnerabilities.
  • Integrated and migrated different systems into virtual private/hybrid cloud.
  • Implemented UTM systems, auditing, intrusion detection, reporting.

Information Security Consultant

Miltech doo
Belgrade, Serbia
04.2004 - 06.2007
  • Lead on an e-commerce project for an e-commerce start-up.
  • Provided IT design, direction, and day-to-day support of infrastructure and security. UTM, vulnerability management, IDS systems, vulnerability, and patch management. GPG, PKI for web, email and file encryption, SSL.
  • Performed penetration testing for banks and Internet startups, power utility, SCADA.
  • Managed different profiles of people and different professional abilities to function as a team.
  • Delivered on promised design and implementation's as agreed.
  • Assured availability and redundancy of the system.
  • Successfully repelled DoS attacks and assured the availability of the system.
  • Worked on reporting, education of colleagues and customers, host and network forensics, consulting, risk assessment.
  • Designed reasonable and cost-effective recommendations for security improvement.
  • Delivered meticulous project management to effectively resolve complex challenges.

ICT Security Consultant

Freelance
Amsterdam, Netherlands
06.2002 - 02.2004
  • Extensively consulted on the network and security-related projects.
  • Worked on IT and telecommunication infrastructure.
  • Penetration testing, the establishment of basic and more advanced security policies and procedures for a range of company's (small, medium size), host and network forensics.
  • PKI system for a medium-sized law firm.
  • Secured wireless, and GSM communications.
  • Extensive work on service infrastructure and related security.
  • Risk, threat assessments, vulnerability management.
  • SIEM, IDS, incident response, and handling of incidents.
  • Network and security infrastructure work, small/medium, virtual e-mail, web, hosting, security, antivirus, firewalls, VPN.
  • War dialing, penetration testing, WIFI.
  • Kismet, Nessus, Gfi Languard, Retina, netcat, nmap.
  • Developed and implemented reasonable and cost-effective recommendations for security improvement.

ICT Security Analyst

Atobe Mobile Solutions BV
Haarlem, Netherlands
08.1999 - 03.2002
  • Started working as a web developer and network administrator, developed WAP applications, portal, worked on projects for KLM, Abn Amro bank, Budget rent-a-car, Financial Times, Libertel Telecom, Funda, ING, Accenture Italy, Nokia R&D.
  • Transferred to infrastructure to work as a security analyst to remedy network penetration, worked on the host, network forensics, adapted and administered clustered network firewalls (Checkpoint), developed security procedures and policy.
  • Developed and implemented Linux, Solaris, Java based mobile solutions. Lead on Solaris, Java systems integration.
  • Apache, Tomcat, Resin, Oracle DB, Postgres, Mysql, MSSQL, IDS,VPN, IPSec, PF, VLAN, iptables, penetration testing, LDAP, XML, Perl, shell, C, Java
  • Security and threat assessment work, migrations, penetration testing.
  • Cisco routers, load balancers, 3com, Cisco switches, Nokia WAP Gateway, micropayment systems, administration, access control.
  • Done presale work, improved the company's position on the market, improved on security awareness of colleagues and coworkers.
  • Vastly improved my technical and information security skills.
  • Greatly improved my communication and expertise skills, broaden my knowledge of real-world issues and problems and their solutions.
  • Worked with great professionals, had fun doing it.
  • Clustering, PKI, data mining, software development, HDTV, satellite communications, digital media, and mobile media.
  • Established company-wide security best practices and protocols to mitigate the risk. Performed risk analyses to identify appropriate security countermeasures.
  • Recommend improvements in security systems and procedures.

Education

No Degree - International Relations And Affairs

University of Amsterdam
Amsterdam, Netherlands
09.1993 - 05.1998

Diploma - Law (Pre-Law)

19 September
Lajkovac, Serbia
09.1987 - 07.1991

Dragutin Dule Karaklajic, Elementary School
Lazarevac, Serbia
09.1978 - 07.1986

Skills

Enterprise Security Architecture

undefined

Interests

Artificial Intelligence

Crypto currencies

History

Cryptography

Cybernetics

Cyber Intelligence

Timeline

IBM Cloud DevSecOps Specialty

09-2022

IBM Cloud Advanced Architect

07-2022

Security Architect

National Grid USA
03.2022 - 10.2022

Enterprise Architect

Advanced Cyber Research LLC
02.2017 - 02.2022

Information Security Architect

Freelance
04.2011 - 02.2017

Network Security Architect

Fortress Security Systems, Inc
08.2007 - 04.2011

Information Security Consultant

Miltech doo
04.2004 - 06.2007

ICT Security Consultant

Freelance
06.2002 - 02.2004

ICT Security Analyst

Atobe Mobile Solutions BV
08.1999 - 03.2002

No Degree - International Relations And Affairs

University of Amsterdam
09.1993 - 05.1998

Diploma - Law (Pre-Law)

19 September
09.1987 - 07.1991

Dragutin Dule Karaklajic, Elementary School
09.1978 - 07.1986

Certification

IBM Cloud Advanced Architect

Similar Profiles

  • Jon Hill

    Jon HillJon Hill

    Senior Relay Technician at National Grid Usa Service CompanySenior Relay Technician at National Grid Usa Service Company

  • Rajesh Rimal

    Rajesh RimalRajesh Rimal

    Network Specialist at National Grid Usa Service CompanyNetwork Specialist at National Grid Usa Service Company

  • Babu Inturi

    Babu InturiBabu Inturi

    Lead DataOps | DevOps Engineer at National Grid USALead DataOps | DevOps Engineer at National Grid USA

  • Whitney Choate

    Whitney ChoateWhitney Choate

    Operations Assistant at Perma R ProductsOperations Assistant at Perma R Products

  • Nicole Wilson

    Nicole WilsonNicole Wilson

    Remote System Administrator at Shasta Garage DoorsRemote System Administrator at Shasta Garage Doors

CREATE PROFILE
Milinko MilincicInformation Security Architect