Richard N. Marsh Jr., CISSP
San Francisco
Summary
My goal is to continue a successful career in the systems and IT security field. I have over 15 years experience in Information Technology. Starting as a Unix Systems Administrator, I expanded my systems experience and improved my networking skills as a Network Administrator for several companies. I’ve applied this experience towards IT Security for the last 8 years. I have experience in industries such as finance, medical, and manufacturing and have much technical consulting experience. I am a technical leader who works well with others, is calm under pressure and pays attention to detail and possess excellent troubleshooting and writing skills.
Work History
Williams-Sonoma Inc., San Francisco, CA, Senior IT Security Engineer (April, 2006 - present)
As the senior member of the IT Security group, I provide expertise in a number of security related projects that improve the overall IT security for the entire company. My responsibilities include:
§ PCI and SOX compliance efforts
§ Risk assessments
§ Incident response
§ Security Systems Architecture and deployment.
§ IT Security project management and strategy.
Synopsys Inc., Mountain View, CA, Senior IT Security Engineer (March, 2003 – April 2006)
As a senior member of a team of security professionals, I provide expertise in a number of security related projects that improve the overall network security of a company of 5000 employees.
§ Install, configure and support the network security infrastructure using the following technologies: IDS (Snort/Manhunt), SecurID 5.x, Checkpoint/Nokia Firewall R55, Nokia Provider 1, Cisco and Nortel VPN, Cisco Routers and Switches, Neoteris SSL VPN server, PGP 9.x, Netapp, Nokia Mobile One, Redhat Linux Security and many other technologies to protect over 60 sites worldwide.
§ Lead and manage projects to ensure security compliance and proper system integration between various groups in the company. This includes acting as security liaison for our Sarbanes-Oxley compliance project.
Verisign Inc., San Francisco, CA, Senior Security Consultant (October, 2000 - June, 2002)
As a Senior Security Consultant, I provided security consulting to companies across the country.
§ Installed and configured security systems, and provided network security assessment and design. The product focus included, but is not limited to, Checkpoint Firewall, Nokia/Checkpoint Appliances, Foundry Switches, RSA SecurID Authentication systems, RealSecure and Enterasys IDS software, and TrendMicro content-filtering software.
§ Designed, configured, and upgraded, many client’s implementations of Checkpoint on various platforms to improve their perimeter and internal security and for creation of VPNs and roaming encrypted connections. This includes the building of hardened and minimized servers for use as firewalls and provided client training of firewall operation.
§ Provided senior technical expertise on a major Nokia Checkpoint Firewall and Foundry Switch deployment for a major healthcare provider as part of its effort to comply with HIPAA requirements and improve internal and external security.
§ Developed installation and operational procedures for Enterasys Dragon IDS to be deployed for clients of the Managed Services division. This includes NOC operation, site-engineer installation, and NOC support procedures.
eBay, San Jose, CA, Senior Security Engineer (March 2000 - October 2000)
Senior Member of the Systems Security team that maintained and improved network security for eBay.
§ Administered, upgraded and maintained the company RSA SecurID servers and clients.
§ Upgraded, configured and maintained the site’s Tripwire configuration.
§ Implemented BlackIce for Host Intrusion Detection and Network Intrusion Detection.
§ Wrote Perl scripts to scan multiple HTML logs to provide detection of server scanning robots against eBay’s web site.
Wells Fargo Bank, San Francisco, CA, Senior Unix Administrator, Bank Server Group (March, 1998- March, 2000)
As a Senior Unix Administrator, I provided technical leadership roles for the bank server group in the areas of security, system performance and networking with regards to over 1500 bank servers that provided teller services to each bank.
§ Technical Lead on the development of the best strategy for making all bank servers Y2K compliant.
§ Designed and built a “gold disk” that configured itself to be usable in various HP Server hardware models.
§ Technical Lead for internal Intranet project that provides web access to bank tellers in all of the branches. This included the configuration of iPlanet for Web and LDAP services and the configuration and hardening of the HP servers used. Built the development, staging and production servers and services for this project.
CALPERS, Sacramento, CA, Senior Unix Consultant (October, 1997- March, 1998)
As a Senior Unix Consultant for KPMG, I provided senior technical consulting for the migration of CALPERS’ HP T-Series and K-Series servers from mainframe and other legacy systems. This involved the re-configuration of these servers and their high-availability RAID devices to improve their redundancy and performance. I also wrote critical scripts for transfer of data between their mainframe and unix systems
Imatron Inc., South San Francisco, CA, Unix and Network Administrator (June, 1995- October, 1997)
Reported to the VP of Engineering as Administrator of a network of 200+ nodes. Provided technical expertise for the upgrading and migration of the company’s Internet connection. Increased network security by building a new Gauntlet Firewall and implemented a network security policy. Managed various maintenance contracts and implemented data archiving.
§ Integrated two separate networks and the added 3 sub-nets via fiber.
§ Reconfigured and upgraded HP clusters in the Mechanical Engineering group to become part of the overall network.
§ Installation of NT and Sun servers and clients for the Engineering department.
§ Implemented backup data archiving to an off-site location for disaster recovery.
§ Performed expert configuration and maintenance of Sendmail, DNS, Legato Backup, and Gauntlet Firewall.
§ Managed a junior member of my team.
Unix and Networking Consultant (October, 1992 – June, 1995)
As an independent consultant, provided technical consulting to various companies. Projects include:
§ Non-Stop Logistics, San Francisco, CA performed configuration and installation of several Sun servers, workstations, and many types of supporting equipment and applications. Also partnered on several projects to stabilize and better design a network and to set-up systems to be used at remote sites over ISDN.
§ Make Systems, Mountain View, CA, managed a network, phones, and all computer systems for a developer of WAN diagnostic software that included 70+ users of Suns, Macs, and RS6000's. Also assisted with the 56Kb Frame Relay connection to the Internet using a Cisco 4000, improved system operations. Handled maintenance contracts and system purchased. Developed and implemented MIS policy.
§ Sun Microsystems, Mountain View, CA, performed hardware and software troubleshooting. Administered NIS maps, automounting, NFS, Sendmail and a wide range of 3rd Party and in-house applications. Worked closely with the IR support team in the support of Sun corporate users at Sun’s Palo Alto headquarters. Also contributed to the conversion of all users to Sun’s new Solaris OS.
§ Frame Technology, Dublin, Ireland, administered the local company network consisting of a Sun 690/MP acting as a file server to Sun’s, PC's, Macintoshes, HP’s, Dec’s, and IBM workstations in a NIS/DNS domain.
§ Horizon Open Systems, Dublin, Ireland, acted as a Sun Customer Support technician, advanced through Sun's internal training system, provided technical support to all Sun Microsystems's customers in Ireland. Contributed to a successful support team by developing call-logging procedures and managing support contracts.
California St. University Chancellor's Office, Long Beach, CA,
Systems Administrator (1990-1992)
Provided support to a team of administrators while attending college to obtain my BSCE. Major projects included:
§ Development of a menu driven environment for non-UNIX users which allowed remote file transfer, E-mail, and other UNIX tools to be accessed over telephone lines using UNIX shell scripts and programs written in C and ported this menu-driven system and all user accounts to a Sun 670/MP from an AT&T 3B2/1000.
Full-time University Student (1989-1992)
USS Enterprise, U.S. Navy Nuclear Systems Supervisor (1982-1988)
Supervised an eight-man work team that maintained electrical power auxiliaries and distribution systems for a nuclear-powered aircraft carrier. Duties included:
§ Power-plant electrical system operation vital to the ship's operation. Gained proficiency in Nuclear Radiation and Contamination control procedures and emergency response; and graduated with honors from the Navy Nuclear Power Program.
§ Worked in a highly technical environment. Performed maintenance and complex troubleshooting.
Education and Certification History
§ Bachelor’s in Science, Computer Engineering, California State University, Long Beach (1992)
§ Novell Identity Manager, Advanced DirXml (2005)
§ RSA SecurID Administration and Installation (2004)
§ Certified Information Systems Security Professional (CISSP) (2002)
§ Verisign PKI Class (2002)
§ ActivCard (2002)
§ 3Com Wireless Networking Class (2001)
§ Alteon Certified Administrator (2001)
§ Verisign Applied Hacking and Countermeasures (2000)
§ Checkpoint Certified Security Engineer (CCSE) and Administrator (CCSA) (1999)
§ All Sun Solaris classes. (1992)
Special Achievements
Dean's List (1990), President’s List (1992) California
State University, Long Beach
Various Navy Service awards (1982-1988)