Richard N. Marsh Jr., CISSP
San Francisco
Professional Summary
My goal is to continue a successful career in the systems and network security field. I have 20 years experience in Information Technology. Starting as a Unix Systems Administrator, I expanded my systems experience and improved my networking skills as a Network Administrator for several companies. I’ve applied this experience towards Network Security for the last 9 years. I am a military veteran with experience in industries such as technology, finance, medical, manufacturing and retail. I have worked well as a permanent employee for companies and also possess technical consulting experience. I am a technical leader who works well with others, is calm under pressure, pays attention to detail, and has excellent troubleshooting and writing skills.
Work History
Wells Fargo Bank, San Francisco, CA, Senior IT Security Engineer (2008 – present)
As the senior member of the file encryption group, I provide expertise in a number of file encryption technologies that are used to securely transfer data throughout the bank. Previous to joining the file encryption group, I worked for the Unix secure authentication group providing support to thousands of Unix servers and the secure authentication product used to protect them.
Williams-Sonoma Inc., San Francisco, CA, Senior IT Security Engineer (2006 – 2008)
As the senior technical member of the IT Security group, I provided expertise in several security related projects to improve the overall network security of the entire company. The following is a short list of my duties.
I researched, recommended, and led the effort to deploy the following security systems: Configuration Management and Audit Compliance; Forensics; SIEM and Log Management; Enterprise Data Protection and Encryption; Network Intrusion Detection; Web Content Filtering; Application Security
I was deeply involved in PCI and SOX compliance efforts, Internal and external Pen Testing, Risk assessments, Security Incident response.
I also provided IT Security project management and strategy.
Synopsys Inc., Mountain View, CA, Senior IT Security Engineer (2003 – 2006)
As a senior member of a team of security professionals, I provide expertise in a number of security related projects that improve the overall network security of a company of 5000 employees.
Install, configure and support the network security infrastructure using the following technologies: IDS (Snort/Manhunt), SecurID 5.x, Checkpoint/Nokia Firewall R55, Nokia Provider 1, Cisco and Nortel VPN, Cisco Routers and Switches, Neoteris SSL VPN server, PGP 9.x, Netapp, Nokia Mobile One, Redhat Linux Security and many other technologies to protect over 60 sites worldwide.
Lead and managed projects to ensure security compliance and proper system integration between various groups in the company. This includes acting as security liaison for our Sarbanes-Oxley compliance project.
Verisign Inc., Mountain View, CA, Senior Security Consultant (2000 - 2002)
As a Senior Security Consultant, I provided security consulting to companies across the country.
Installed and configured security systems, and provided network security assessment and design. The product focus included, but is not limited to, Checkpoint Firewall, Nokia/Checkpoint Appliances, Foundry Switches, RSA SecurID Authentication systems, RealSecure and Enterasys IDS software, and TrendMicro content-filtering software.
Designed, configured, and upgraded, many client’s implementations of Checkpoint on various platforms to improve their perimeter and internal security and for creation of VPNs and roaming encrypted connections. This includes the building of hardened and minimized servers for use as firewalls and provided client training of firewall operation.
Provided senior technical expertise on a major Nokia Checkpoint Firewall and Foundry Switch deployment for a major healthcare provider as part of its effort to comply with HIPAA requirements and improve internal and external security.
Created the architecture framework for the installation and operational procedures for Enterasys Dragon IDS to be deployed for clients of the Managed Services division. This includes NOC operation, site-engineer installation, and NOC support procedures.
Wells Fargo Bank, San Francisco, CA, Senior Unix Administrator, Bank Server Group (1998- 2000)
As the senior member of the bank server Unix Team, I provided technical leadership roles for the bank server group in the areas of security, system performance and networking with regards to over 1500 bank servers that provided teller services to each bank.
Technical Lead on the development of the best strategy for making all bank servers Y2K compliant.
Designed and built a “gold disk” that configured itself to be usable in various HP Server hardware models.
Technical Lead for internal Intranet project that provides web access to bank tellers in all of the branches. This included the configuration of iPlanet for Web and LDAP services and the configuration and hardening of the HP servers used. Built the development, staging and production servers and services for this project.
CALPERS, Sacramento, CA, Senior Unix Consultant
As a Senior Unix Consultant through KPMG, I provided senior technical consulting for the migration of CALPERS’ HP T-Series and K-Series servers from mainframe and other legacy systems. This involved the re-configuration of these servers and their high-availability RAID devices to improve their redundancy and performance. I also wrote critical scripts for transfer of data between their mainframe and Unix systems
Imatron Inc., South San Francisco, CA, Network Manager
Reported to the VP of Engineering as manager of a network of 200+ nodes. Provided technical expertise for the upgrading and migration of the company’s Internet connection. Increased network security by building a new Gauntlet Firewall and implemented a network security policy. Managed various maintenance contracts and implemented data archiving. Implemented numerous network and server projects to consolidate and streamline the network and systems of the company.
Unix and Networking Consultant (1992–1995)
As an independent consultant, provided technical consulting to various companies. Projects included:
Non-Stop Logistics, San Francisco, CA performed configuration and installation of several Sun servers, workstations, and many types of supporting equipment and applications. Also partnered on several projects to stabilize and better design a network and to set-up systems to be used at remote sites over ISDN.
Make Systems, Mountain View, CA, managed a network, phones, and all computer systems for a developer of WAN diagnostic software that included 70+ users of Suns, Macs, and RS6000's. Also assisted with the 56Kb Frame Relay connection to the Internet using a Cisco 4000, improved system operations. Handled maintenance contracts and system purchased. Developed and implemented MIS policy.
Sun Microsystems, Mountain View, CA, performed hardware and software troubleshooting. Administered NIS maps, automounting, NFS, Sendmail and a wide range of 3rd Party and in-house applications. Worked closely with the IR support team in the support of Sun corporate users at Sun’s Pablo Alto headquarters. Also contributed to the conversion of all users to Sun’s new Solaris OS.
Frame Technology, Dublin, Ireland, administered the local company network consisting of a Sun 690/MP acting as a file server to Sun’s, PC's, Macintoshes, HP’s, Dec’s, and IBM workstations in a NIS/DNS domain.
Horizon Open Systems, Dublin, Ireland, acted as a Sun Customer Support technician, advanced through Sun's internal training system, provided technical support to all Sun Microsystems's customers in Ireland. Contributed to a successful support team by developing call-logging procedures and managing support contracts.
California St. University Chancellor's Office, Long Beach, CA Systems Administrator (1990-1992)
Provided support to a team of administrators while attending college to obtain my BSCE. Major projects included:
Development of a menu driven environment for non-Unix users which allowed remote file transfer, E-mail, and other Unix tools to be accessed over telephone lines using Unix shell scripts and programs written in C and ported this menu-driven system and all user accounts to a Sun 670/MP from an AT&T 3B2/1000.
Education and Certification History
Bachelor’s in Science, Computer Engineering, California State University, Long Beach (1992)
Envision Administration, Novell Identity Manager, Advanced DirXml, RSA SecurID Administration and Installation, Verisign PKI Class, ActivCard, 3Com Wireless Networking Class, Alteon Certified Administrator, Verisign Applied Hacking and Countermeasures, Checkpoint Certified Security Engineer (CCSE) and Administrator (CCSA)
Military Experience
As a U.S. Navy Nuclear Systems Supervisor, I managed an eight-man work team that maintained electrical power auxiliaries and distribution systems vital to the ship's operation on a nuclear-powered aircraft carrier. As part of this experience, I gained proficiency in Nuclear Radiation and Contamination control procedures and emergency response, earned various Navy Service Awards and graduated with honors from the Navy Nuclear Power Program.