Anthony D Timbers

ANTHONY TIMBERS CEH, CHFI DHS EOD, Secret, & Public Trust(s) Clearances QUALIFICATION SUMMARY Senior Cybersecurity Engineer with over seven (7) years of experience. Master’s Degree in Cybersecurity and Information Assurance. Certified Ethical Hacker & Computer Hacking Forensic Investigator proficient in identifying vulnerabilities in network designs, creating secure network topologies, using information assurance principles to maintain CIA, patch management of virtual machines, hardening systems with DISA STIGs, monitoring client networks with Splunk & Arcsight, and providing support 24x7x365 in a security operations center (SOC) environment. In depth understanding of VPN & Firewall deployment tactics. Also experienced with basic/advanced static/dynamic malware analysis utilizing tools such as IdaPro and OllyDbg. Some experience with Python, C++, and x86 Assembly language as well. PROFESSIONAL EXPERIENCE Self-EmployedJuly 2019 to Present Cyber Security Consultant Job Tasks Assist businesses with creating various security related policies and documentation to ensure that their networks are protected properly and that they remain compliant to applicable laws and regulations (HIPAA Compliancy, PCI-DSS Compliancy, GLBA Compliancy, FISMA Compliancy, FERPA Compliancy) Conducts risk analysis of a company's assets to determine if vulnerabilities are present and the likelihood of them being exploited Conducts vulnerability assessments and penetration tests in order to discover security gaps and vulnerabilities in the current infrastructure Analyzes a company's current network layout and provides an updated, secure network design in order to prevent unauthorized outside access to a company's resources Creates business continuity & disaster recovery plans to ensure that a business is able to be resilient to potential disasters and are able to recover critical business operations as soon as possible Cubic CorporationMay 2019 to Present Senior Cyber Security Engineer Job Tasks Administer computing devices/systems that enforce security policies and audit controls in Windows, Linux and Cisco environments Assist in responses to external audits, penetration tests and vulnerability assessments Participate in the application of fixes, patches and disaster recovery procedures in the event of a security breach Track, assess, and validate Information Assurance Vulnerability Management (IAVMs), Secure Technical Information Guidelines (STIGs), and new policies as necessary to support accreditation efforts for NIST Risk Management Framework (RMF) Support updates to documentation, Vulnerability Management System (VMS), Enterprise Mission Assurance Support Service (eMASS), Xacta IA Manager when required Implement policies, standards, laws, and regulations regarding technical aspects with respect to Information Security Support requirements to re-accredit DoD Information Technology and Platform Systems PerspectaFebruary 2016 to May 2018 Information Security Analyst (Night Shift) Job Tasks Works with a team of security analysts to remediate complex problems as required. Monitors client networks for security events and alerts clients to potential (or active) threats, intrusions, and/or compromises. Responsible for understanding the global threat landscape and tracking changes in this area, as well as understanding the direct or indirect impact to the HP MSS customer base. Conducts research on and maps out response to emerging threats, including understanding the level of impact and exposure to our customers, proactively communicating to internal business unit staff and customers on a regular basis updates on emerging threats, and ensuring HP MSS has thorough detection capabilities in place for emerging threats. Perform triage of service requests from internal teams, act as a subject matter expert for advanced technology, architecture and threat-related questions from internal staff. Veris Group, LLCAugust 2015 to February 2016 Mobile Security Analyst Provide security recommendations, based on research, NIST security requirements (special publications), and best practices, for an enterprise NAC solution for EPA. Reviewed responses gained from employees on the scope of the mobile security posture of the healthcare organization, compared those current controls to HITRUST controls, determined implementation status of controls, and made recommendations on how the company can become compliant with HISTRUST controls. Performed assessments of the security posture of mobile applications (Android & iOS) via FireEye and Kryptowire. Performed various vulnerability scans utilizing Tenable Nessus to discover vulnerabilities on various endpoints and analyzed the results. Northrop Grumman CorporationJanuary 2015 to August 2015 Systems Engineer Intern Job Tasks Provisioning, deployment, support, and troubleshooting of virtual machines using VMware VSphere 5. Created, patched, and secured STIG machines and used SCAP checker to check compliance of system settings with DoD security standards and to support accreditation efforts for NIST Risk Management Framework. Prepared various computers for installation of Windows 8.1 by wiping/converting their current drives and then installed the new operating system along with various other enterprises applications. CACI International Inc.July 2012 to December 2014 Technical Support Technician 1 Troubleshoots problems with operating systems, applications, remote access, email, and telephone and wireless issues. Handles problem recognition, research, isolation, resolution and follow-up for routine user problems, referring more complex problems to the appropriate team. Mobile Analyst 2 (Intern) Mobile device activation, troubleshooting, and deployment. Familiarity with Blackberry (RIM), Apple (iPhones), Android/Google Devices, Air cards, and Tablets. Assists with user base, including but not limited to, CACI Wireless Procurement, ordering new devices, negotiating plan rates and contracts, processing transfer & service requests, fielding end user questions & issues. Systems Engineer 1 (Intern) Provisioning, deployment, support, and troubleshooting of virtual machines using VMware VSphere 5. Provisioning, deployment, support, and troubleshooting of Windows OS on dell physical server hardware. Creation of accounts across multiple active directory domains on an Enterprise Network consisting of 14,000 endpoints. Site provisioning, support, and troubleshooting in both SharePoint Server 2007 and SharePoint Server 2010. Configuration and deployment of System Center Configuration Manager 2012 on an Enterprise network consisting of 14,000 endpoints. EDUCATION George Mason University, Fairfax, VA B.S. in Information Technology, Information Security Concentration2015 Western Governor’s University, Online University (In Progress) M.S. in Cybersecurity and Information Assurance2019 CERTIFICATIONS/TRAINING EC-Council Certified Ethical Hacker2019 EC-Council Computer Hacking Forensic Investigator 2019 SKILLS Secure Configurations: DISA STIG hardening to support IS accreditations Operating Systems: MS Windows Server 2003/Server 2008/XP/Vista/7/8, Kali Linux Software: HP ArcSight, HP TippingPoint, Splunk, Nessus, Nikto, Nmap, Burp Suite, SQLMap, Sparta, OpenVAS, Metasploit, IdaPro, OllyDbg, RSA Security Console 7.1, McAfee ePolicy Orchestrator 4.6.6, Microsoft System Center 2012, VMWare VSphere 5, Cherwell Service Management, FireEye, Kryptowire, Active Directory, Microsoft Visio Programming Languages: Python, C++, x86 Assembly Server Applications: Nessus CLEARANCES DOJ Secret (February 2016)Granted DHS Entry On Duty (EOD) (April 2016) Granted FSA 6C Clearance (2016) Granted Public Trusts (2016) Granted