Ray Amirvafaei

• Responsible for Oracle identity access management, Sailpoint access, analyzing roles and sharing data with management and stakeholders, Microsoft Excel data mining, Access policy management, providing subject matter expertise on technical documentation, interpreting information security policy, audit compliance, and other cybersecurity analyst functions.
• Conducted security audits to identify vulnerabilities.
• Improved incident response times by developing and maintaining cybersecurity playbooks for common attack scenarios.
• Performed regular reviews of user access rights, minimizing the risk posed by insider threats or compromised accounts.
• Performed risk analyses to identify appropriate security countermeasures.

• Responsible for system administration, overseeing access controls, managing system security, risk management, managing security requests, provisioning user security roles, analyzing existing role structures, escalation management, and other related assignments.
• Simplified the process of rolling out security updates to end-users by creating an easy-to-follow update schedule and corresponding documentation.
• Managed firewall configurations to maintain optimal levels of network protection while allowing for necessary business operations.
• Conducted thorough risk assessments for proposed projects or changes in technology infrastructure, highlighting potential vulnerabilities before implementation could begin
• Managed approximately 30 incoming calls, emails, faxes per day from customers
• Conducted thorough risk assessments for proposed projects or changes in technology infrastructure, highlighting potential vulnerabilities before implementation could begin.
• Established a robust patch management process that ensured timely updates to software and hardware components across the organization.
• Performed regular audits of user access rights, ensuring only authorized personnel had access to sensitive information.
• Implemented multi-factor authentication measures for all users, adding an extra layer of defense against unauthorized access attempts.
• Collaborated with cross-functional teams to address complex security incidents, minimizing potential damage.
• Reduced potential security risks by proactively monitoring systems for suspicious activity and taking appropriate action.
• Created customized reports for stakeholders detailing key metrics related to IT security performance, fostering transparency and accountability within the organization.
• Identified areas requiring improvement through detailed analysis of past incidents, preventing future occurrences through targeted remediation efforts.
• Worked closely with legal and compliance departments to ensure adherence to relevant regulatory requirements pertaining to data privacy and information security practices.
• Assisted with the successful migration of company data to a secure cloud-based storage system, enhancing overall data protection capabilities.
• Developed and implemented IT security policies, ensuring compliance with industry standards and best practices.
• Provided comprehensive training to employees on cybersecurity awareness, promoting a culture of vigilance.
• Conducted security audits to identify vulnerabilities.
• Spearheaded the development of an incident response plan, significantly reducing downtime in the event of a breach.
• Evaluated new technologies to strengthen IT security infrastructure, maintaining cutting-edge protection against threats.
• Streamlined communication channels between IT staff members during critical incidents by developing clear escalation paths based on severity level classification.
• Improved overall IT security posture by regularly reviewing and updating protocols in alignment with industry best practices and emerging trends.
• Performed risk analyses to identify appropriate security countermeasures.
• Recommend improvements in security systems and procedures.
• Developed plans to safeguard computer files against modification, destruction, or disclosure.
• Encrypted data and erected firewalls to protect confidential information.

• Supported the Department of Veterans Affairs (VA) Business program Management Office
• Responsible for ensuring that information security awareness, compliance to security policies, and security risks occurred as planned for areas of duty.

• Responsible for managing day to day provisioning and de-provisioning of medical applications, managing daily and monthly metrics for IT Security Department, creating company policies and procedures governing corporate security, and incident response.
• Conducted thorough risk assessments for proposed projects or changes in technology infrastructure, highlighting potential vulnerabilities before implementation could begin.
• Performed regular audits of user access rights, ensuring only authorized personnel had access to sensitive information.
• Evaluated new technologies to strengthen IT security infrastructure, maintaining cutting-edge protection against threats.

• Served as Team Lead, managing daily operations, and allocating personnel to needed areas to meet service-level agreements
• Managed unique and non-unique IDs and their access to Active Directory, LDAP, Unix, Exchange, Sybase, and Oracle entitlements, Sailpoint, OIM, Training new employees.
• Improved operational efficiency by streamlining processes and implementing best practices in management analysis.
• Developed comprehensive reports, providing valuable insights into business performance and aiding in strategic planning efforts.
• Collaborated with cross-functional teams to identify opportunities for process improvement and increased productivity.

• Worked on implementation SSO projects for Vengeance Software), and worked on audits and reviews of identity management compliance.
• BIometrics implementation for Medstar Georgetown hospital

VoIP Protocols and Standards
VoIP System Installation and Maintenance
VoIP Optimization and Troubleshooting
VoIP Security
Configuring, Testing, and Maintaining VoIP Systems
Providing Technical Support and Customer Service
Communicating Effectively
Taking Initiative
Working with teams

Served as Team Lead, managing daily operations, and allocating personnel to needed areas to meet service-level agreements
Managed unique and non-unique IDs and their access to Active Directory, LDAP, Unix, Exchange, Sybase, and Oracle entitlements, Sailpoint, OIM, Training new employees.
Improved operational efficiency by streamlining processes and implementing best practices in management analysis.
Developed comprehensive reports, providing valuable insights into business performance and aiding in strategic planning efforts.
Collaborated with cross-functional teams to identify opportunities for process improvement and increased productivity.