Edward Frye, CISSP - Resume

Enterprise Information Security Professional

Proven information security consultant and leader with over 19 years success in guiding implementation of leading-edge technology solutions that drive business growth in network, systems architecture, configuration management, and systems administration with extensive experience in cloud computing (MSP, ASP, SaaS) companies and the healthcare industry in ensuring security without compromising availability or performance.

  • ISSA Chapter Board
    Member
  • (ISC)2 CISSP
  • Cisco CCNA Security
  • GIAC GWAPT
  • Network Security Architecture
  • Windows / Linux Systems
    Security Administration
  • Virtualization Technologies
  • Audit experience
  • Risk Management
  • ASP / MSP / SaaS Experience
  • PERL / Python / PHP / Shell Scripting /
    Javascript Programming

Professional Experience

Kaiser Permanente • Pleasanton, CA • 2010 – Present
Information Security Consultant Specialist

Providing Risk Management and mitigation recommendations for projects in large healthcare organization covering Kaiser's multiple regions providing Project Lifecycle Security Engagements for information technology projects.

  • Provided automation reducing workload from 16 man/hours for single operation to 2 man/hours per day
  • Perform Vulnerability assessments on projects
  • Perform Vendor security asessment
  • Risk assessments on proposed projects
  • Identify potential risk, consult on correcting or reducing risk
  • Digital forensic investigations for workstations and servers.
  • Consult with Security Operations Team
  • Analyze, correlate, and reduce 50 million+ security logs creating less than 200 actionable work items per day with various Security Incident Event Management (SIEM) systems.
  • Workflow automation using Python / PHP / Perl / Request Tracker for Incident Response

Proofpoint, Inc • Sunnyvale, CA October 2009 - August 2010
Sr. Technical Support Engineer

Provide advanced level product support for the Proofpoint Email Protection Server to Self-Hosted as well as Proofpoint hosted customers.

  • Achieve consistent high marks on customer satisfaction surveys
  • Sendmail, Proofpoint PPS subject matter expert
  • Advanced Linux Systems administration, LDAP, MySQL, PERL
  • SME in Networking and Information Security.
  • Provide policy recommendations to customers

Valley Oak Systems, Inc • San Ramon, CA Aug 2006 - May 2009
Manager of Information Technology and Security

Rapidly promoted through roles as Systems Administrator to Information Technology and Security manager due to excellence in infrastructure design and hosting environment experience. Deliver network and infrastructure support for Valley Oak Systems' complex Java J2EE, iVOS claims management product development environment and Software as a Service (SaaS) platform. Supporting enterprise user base with offices in multiple locations as well as 25% remote workforce.

  • Successfully completed SAS/70 type 2 audits on time, without any findings or management comments required.
  • Introduced change management policies and procedures for infrastructure changes reducing the number of unscheduled or unplanned outages by 75%.
  • Reduced non-staff IT costs by 20% while maintaining key metrics through VMware virtualization, application rationalization, legacy system retirement, and SAN storage consolidation.
  • Implemented a new operating system deployment scheme for all new Linux and windows servers using PXE boot and Kickstart / Slipstream which reduced time to deploy by 25%.
  • Re-architected SaaS infrastructure to provide high-availability using Linux Cluster services and Global File System (GFS) along with Oracle Real Application Clustering (RAC) providing for 99.99% up time.
  • Managed 9 direct reports with differing focuses including Linux Systems Administrators, Windows Systems Administrators, Network Engineers, Database Administrators, and Information Security.
  • Managed capital budget of $1.7M and completed all documented projects on time, and within budget.

Performant Financial Corp • Livermore, CA 2006 - 2006
Senior Information Security Engineer

Developed and implement information security policies and procedures for regulatory compliance.

  • Introduced content management using squid and squidguard proxy servers to allow internal end users internet access while still being able to monitor and report on usage.
  • Performed system and network audits against FISMA and FIPS200 regulatory requirements
  • Managed Juniper Netscreen Firewalls and Intrusion Prevention and Detection (IDP) Devices

Ellie Mae Inc • Dublin, CA 2004 - 2006
Senior Information Security Engineer

Provided company-wide risk and exposure assessments to meet regulatory requirements for the finance, financial services, and mortgage industries including FDIC, PCI, and Privacy Regulations such as SB1386, HIPAA. Managed IT Security Devices.

  • Lead engineer for company-wide risk and exposure assessment and audit.
  • Performed quarterly infrastructure audits and penetration testing for mortgage software ASP
  • Deployed and Maintain firewalls and multi-platform VPNs creating highly available secure network.
  • Collaborated with IT, development, and MIS to implement company wide security measures and business continuity planning.

PaymentOne, Inc. • San Jose, CA 2003 - 2004
Senior Information Security Engineer

Developed and Implemented corporate security policy based on industry standard best practices to meet regulatory requirements for financial institutions such as VISA's CISP now PCI.

  • Facilitated Successful completion of SAS70 Type 1 and 2 external audits.
  • Successfully re-architected key components of the Network Architecture including DNS increasing both reliability and security.
  • Successfully implemented new Sun Solaris / Oracle cluster environment.

ConXion Corp. • San Jose, CA 2001 - 2003
Senior Information Security Engineer

Security group lead, managing and assigning tasks across multiple data centers for management security services.

  • Third level escalation point for troubleshooting any security, network, and system issues within the company or for our customers.
  • Developed and executed datacenter migration plan for all firewalls, IDS, VPNs and authentication servers with no impact to production environments.
  • Worked with business development to design the fully managed VPN new product initiative.
  • Responsible for maintenance of DNS, DHCP, Sendmail, Checkpoint Firewall-1, and Juniper Netscreen managed services.
  • Worked with Cisco routers, switches and PIX Firewalls.

Interliant, Inc. • Burlingame, CA 1999 - 2001
Professional Services Consultant

Provided Network Security and Unix Systems administration as work force augmentation. Customers included: Apple, Lawrence Berkeley National Labs, Palo Alto Internet Exchange (PAIX), LifeChart, Daimler, many others.

  • Direct Customer Interface from Engineering / Architecture to Management of engagement.
  • Successfully migrated VLSI environment from Solaris 5.1 to 6.2
  • Managed large cluster environment for Genome project.
  • Managed Foundry Server Iron and Big Iron Switches
  • Successfully obtained Checkpoint Certified Security Engineer (CCSE) certification
  • Successfully managed professional services engagements and customer

Coho.Net • Beaverton, OR 1996 - 1999
Principle Architect / Network Engineer

Designed, implemented, and managed dial-up Internet service provider from the ground up.

  • Grew user base from 3 users to over 2000 dial-up and web hosting users.
  • Responsible for configuring, maintaining and securing mixed UNIX and NT servers to provide Internet service to dial-up and DSL customers
  • Configuration and maintenance of ACL lists on Cisco routers and Livingston Portmaster

U.S. Air Force • Biloxi, MS 1993 - 1995
Enlisted Airman - Computer Communications Systems Control Specialist (Network Engineer)

Maintain base wide data communications using 4 wire dedicated circuits and Ethernet. Maintain Secure Data Communications circuits. Enlisted Airman.

  • Successfully maintained DoD TS/SCI Security Clearance
  • Completed Military Basic Training
  • Completed Advanced Training in Network Communication Technologies including:
    • Time Division Multiplexing / Frequency Division Multiplexing (TDM / FDM)
    • Radio Frequency (RF) transmission.
    • Encryption technologies and practices for DoD

Education

  • High School Diploma
  • - Beaverton High School, Beaverton OR
  • Basic Military Training
  • - USAF, San Antonio TX
  • Computer Communications Systems Control Specialist
  • - USAF, Biloxi MS
  • BS, Information Technology with Security Focus
  • - Western Governors University (2013)
  • MS, Information Security and Assurance
  • - Western Governors University (expected)

Certifications

  • Certified Information Systems Security Professional (CISSP)
  • 2003
  • Cisco Certified Network Associate Security (CCNA Security)
  • 2013
  • Certified Ethical Hacker (C|EH)
  • 2013
  • Computer Hacking Forensics Investigator (C|HFI)
  • 2013
  • SANS GIAC Web Application Penetration Tester (GWAPT)
  • 2013
  • Checkpoint Certified Security Engineer (CCSE) - expired
  • 2001
  • Checkpoint Certified Security Administrator (CCSA) - expired
  • 2001
  • Air Magnet Certified Security Associate
  • 2011
  • CIW JavaScript Specialist
  • 2012
  • CIW Database Design Specialist
  • 2012
  • CompTIA Project+
  • 2011
  • CompTia A+
  • 2011