Vice President Applications Development and Security Resume Format in Word Free Download

Sample Template Example of Beautiful Excellent Professional Curriculum Vitae / Resume / CV Format with Career Objective, Job Description, Skills & Work Experience for Freshers & Experienced in Word / Doc / Pdf Free Download

309 BallyMeade Drive, wilmington, de 19001

Phone: 302-897-9876 • EMail:joy@hotmail.com

Joy Maguire

Certifications & Accomplishments

§  Oracle Certified Professional, Java SE6 Programmer (OCP-JP; formerly SCJP)

§  Oracle Certified Master, Java SE6 Developer (OCP-JD; formerly SCJD)

§  ISACA Certified Information Systems Auditor (CISA)

§  ISACA Certified Information Security Manager (CISM)

§  (ISC)² Certified Information Systems Security Professional (CISSP)

§  ITIL V3 Foundation Certificate in IT Service Management (ITIL-F)

§  Microsoft Certified Solution Developer and Database Administrator (MCSD/MCDBA)

§  CompTIA Certified Professional (Security+ / Network+)

§  ICCP Certified Computing Professional (CCP)

§  Project Lead on Microsoft Worldwide Winner: Business Solution of the Year – 2000

§  Corporate mission commendation for support of Blackout Security Investigation – October 2003

Experience

Citigroup, New Castle, DE October 2004 to Present

Vice President, Information Security Applications Developer (January 2007 – Present)

§  Authored all business and functional requirements for the Vulnerability & Threat Management component of the Automated Risk Management and Online Reporting (ARMOR-VTM) system:

·         ARMOR-VTM is a notification, workflow, and reporting system for monitoring and managing vendor product vulnerabilities from engineering certification through operational deployment.

·         Technical Lead and Lead Developer of ARMOR-VTM:

o   Developed exposure based formulas for determining threat posture; incorporating time-value and multiple standard deviations for graduating risk exposure.

o   System developed in Java and Perl, Sun/Oracle iPlanet, using Oracle RDBMS, on RedHat Enterprise Linux platform.

§  Authored “CATE Risk Index” White Paper and developed Perl-based web tool tool for analysis of information security based audit findings – including valuation, ratings, and weightings.

Assistant Vice President, Senior Infrastructure Security Engineer (October 2004 – January 2007)

§  Member of Threat Intelligence & Analysis Group (TIAG) responsible for analyzing Citi infrastructure threats using systematic and uniform methods, many of which are developed by TIAG.

§  Authored all business and functional requirements for the Citi Architecture & Technology Engineering (CATE) Threat Indicator (TI) and Threat Management System (TMS):

·         Technical Lead and Lead Developer for the corporate TI, a system designed to automate notification of required actions for incident responders in the event of a change in “Citi Threat Level”.

·         Technical Lead and Lead Developer for the TMS, a system for monitoring the threat posture of “Certified Standard Build” systems on the global technology infrastructure.

o   Application includes drill-down capabilities with heat-map visualizations based on geography and business unit.

·         TI & TMS both developed with Perl, using Oracle RDBMS, Apache, on a RedHat Enterprise Linux platform.

PJM Interconnection, LLC, Norristown, PA November 2002 to October 2004

Senior Security Analyst

§  North American Electric Reliability Council (NERC) Mid-Atlantic Area Council (MAAC) regional Cyber Security representative on industry Critical Infrastructure Protection Committee (CIPC).

§  Selected by NERC and Department of Homeland Security (DHS) to be one of six industry advisors to the “Security Working Group” investigating security aspects of the August 2003 “Northeast Blackout”.

§  Interviewed for Government Accounting Office (GAO) reports on “Critical Infrastructure Protection”:

• Challenges in Securing Control Systems (GAO-04-140T)
• Challenges and Efforts to Secure Control Systems (GAO-04-354)

§  Selected to become a member of the NERC Standard Authorization Request and Cyber Security Standard drafting teams tasked with developing the security scope for the electric industry.

§  Responsible for drafting, reviewing, and editing industry security policies and standards; including: Platform, Database, Firewall, Audit, Access Control, Incident Response, and Data Classification.

INDEPENDENT CONTRACTING (June 1996 – November 2002)

Federal Government Contracting June 2001 to October 2002

Contract IT Auditor

§  Presented and co-wrote winning proposal for a Department of Commerce (DOC) security contract with a total exercisable value of approximately six million dollars.

§  Presented and co-wrote winning proposal for a U.S. House of Representatives (House) security contract with a total exercisable value of approximately three million dollars.

§  Government Systems IT Security and Audit Consulting:

§  Lead auditor of U.S. Department of the Treasury, Bureau of Engraving and Printing (BEP) Public Sales System (PSS) and SAP point-of-sales backend system.

§  Revised the PSS and SAP security, accreditation, and disaster recovery plans.

·         Developed C & A package for delivery to the Inspector General of the Treasury; including the Vulnerability Assessment, Risk Management Plan, and Information System Security Plan.

§  Co-Lead security specialist for U.S. Department of Commerce (DOC), Office of the CIO, audit.

·         Reviewed and revised CIO level security policies and procedures guides.

·         Audited DOC compliance with the Government Information Security Reform Act (GISRA) using NIST SP800-26, Security Assessment Guide for I.T. Systems.

§  Security and Applications Lead for U.S. Department of Defense, Department of the Navy

§  Developed Business Continuity Plan for a Navy/Marine Corps Intranet (NMCI) portal, under the auspices of the Space and Naval Warfare Systems (SPAWAR) Command.

§  Web Administrator for SIPRNet Naval Research and Development (NRaD) Web site.

§  Software development of support utilities for the Tactical Automated Mission Planning System (TAMPS); built using C++ and TCL/TK for HPUX and Sun Solaris.

Regulated Utility and State Government Contracting March 1999 to June 2001

Contract Project Lead

§  Project Lead, Designer, and Security Engineer for Total Resource for Automated Data Exchange (TRADE), a secure EDI trading, validation/verification, translation, and data management engine.

·         TRADE named Microsoft Fusion: 2000 Global Business Solution of the Year (1st of 850 entries).

§  Designed the Secure-HTTP EDI document posting engine conforming to the Gas Industry Standard Board’s Electronic Delivery Mechanisms for Internet Commerce.

§  Reviewed security compliance of system design and implementation for the State of Pennsylvania Department of the Treasury Bureau of Finance & Revenue Case Management System.

Financial Services Contracting August 1997 to March 1999

Contract Programmer

§  Responsible for data management and access control of card-member information using eBill (electronic bill presentment) message processor; implemented with Oracle, C++, and Perl.

§  Analysis and development of corporate Email Director application – a Web application supporting line-of-business messaging, mass mailing, and customer information management.

§  Software development/integration of the Global Trading Router online transaction processing system. Implemented with DCE in C/C++; supporting utilities in Perl and Korn Shell.

Education

Excelsior College, Albany, NY
B.S. Computer Information Systems

Download Resume Format