Profiles search
Anatoliy Shishonok
Cybersecurity Architecture and Engineering
Brooklyn, NY, United States
Details
Experience:
Lead Security Engineer : as the member of the Cyber Security Architecture & Engineering team played a key role in defining a strategic direction and technical solutions to build centralized cyber defense infrastructure and to address risks and mitigate various security gaps at the citywide level. Built from a scratch logs collection and delivery architecture pipeline to enable CERT, SOC and infrastructure teams to effectively and efficiently react to various cyber security threats. Conduct R&D, evaluation and deployment of various security products. Coordinate and support the resolution of security issues and engineering requests.
Responsibilities include :
● Implement appropriate security control layers utilizing various security frameworks.
● Evaluate, design and implement enterprise security solutions such as Log collection infrastructure and the entire log delivery pipeline to the Google GCP.
● Design and build monitoring and alerting instrumentation to maintain high availability and resiliency in delivery data into the cloud.
● Utilize the concept of infrastructure as a code (IaC) to deploy and maintain various security solutions using CI/CD process, Terraform as well as version control systems like Git and GitHub.
● Built multi-regional, highly resilient architecture of Cyber team infrastructure within GCP
● Conduct PoC/PoV to evaluate, assess and recommend new technology/solution to mature NYC's Cyber defenses.
● Coordinate the effort between Engineering, CERT and SOC teams to collect, process and store the security events and alerts.
● Mentor colleagues, prepare technical documentation runbooks, work closely with various IT departments to carry out information security tasks and projects, leverage numerous tools and technologies to maintain confidentiality, integrity and availability of critical IT systems and infrastructure.
● Perform special projects and initiatives as assigned.
2017 : Present
City of New York-Cyber Command
Cybersecurity Architecture and Engineering
Sr. Security Engineer : Member of Information security team, responsible for building and implementing a security program, based on security controls, define by SANS CSC20 and around standard framework ISO27002
● Develop and drive through information security strategy and promote information security policies, standards and guidelines combined with a hands-on engineer skill set to implement/run network and server technologies that ensure policies/standards/guidelines are achieved in a complex environment.
● Provide appropriate metrics and reporting to top-level management.
● Responsible for managing across a number of information security areas.
● Lead virtual teams of people taking responsibility for the information security status of the organization.
● Support and drive the promotion of information security best practice through the organization.
● Ensure that information security incidents/problems are recorded and managed through to resolution.
● Establish and maintain relationships within the IT Infrastructure, PMO office and business line areas.
● Assist in responses to external audits, penetration tests and vulnerability assessments.
● Conduct risk assessments, penetration tests and diagnose internet/extranet security and intrusion attempts.
● Recommend and coordinate the application of fixes, patches procedures in the event of a security breach.
● Research emerging technologies in support of security enhancement and development efforts.
2015 : 2017
Tradition Securities and Futures
Sr. Security Engineer
Sr. Network/Security Engineer : Member of IT security engineering team, responsible for evaluation, designing, implementing and managing core security infrastructure across enterprise. Act as a technical lead to analyze problems and determine the best solutions, collaborate with peers to vet proposed designs, provide insight and perspective into the state of information infrastructure and help to develop strategy to improve enterprise security posture by applying principles “defense-in-depth”.
● Evaluate Secure Web Gateway technology for a selected group of vendors. Provide recommendations, exercise proof-of-concept and lead this project from inception to turnover into production.
● Provide engineering design and specification to deploy Network Based Anomaly Detection technology
within a low frequency trading environment. Integrate NBAD with Directory Services, Radius and SSIM.
● Assess and upgrade NIDS infrastructure across perimeters based on a new architecture and hardware. It helps to improve effectiveness of this solution by gaining more visibility into traffic flow, adding contextual correlation and reducing number of false-positive alerts.
● Provide recommendation and upgrade of wireless infrastructure for guests and employees’ access from non-managed devices.
● Provide engineering escalations to services and SecOps team, help troubleshoot and escalate problems.
● Meet with vendors to assess commercial products for use in the Firm. Analyze and write formal security reviews in subject area.
● Research common and emerging attack vectors, the mechanisms of exploitation, common security
pitfalls and past examples of exploitation; communicate awareness to others at all levels of the
organization.
2010 : 2015
Morgan Stanley
Sr. Network Security Engineer
Details of previous experience available upon request.
2006 : 2010
National Grid USA
Sr. Network Engineer
Details of previous experience available upon request.
2000 : 2006
KeySpan
Sr. Network/Security Engineer
Responsibilities include :
● Implement appropriate security control layers utilizing various security frameworks.
● Evaluate, design and implement enterprise security solutions such as Log collection infrastructure and the entire log delivery pipeline to the Google GCP.
● Design and build monitoring and alerting instrumentation to maintain high availability and resiliency in delivery data into the cloud.
● Utilize the concept of infrastructure as a code (IaC) to deploy and maintain various security solutions using CI/CD process, Terraform as well as version control systems like Git and GitHub.
● Built multi-regional, highly resilient architecture of Cyber team infrastructure within GCP
● Conduct PoC/PoV to evaluate, assess and recommend new technology/solution to mature NYC's Cyber defenses.
● Coordinate the effort between Engineering, CERT and SOC teams to collect, process and store the security events and alerts.
● Mentor colleagues, prepare technical documentation runbooks, work closely with various IT departments to carry out information security tasks and projects, leverage numerous tools and technologies to maintain confidentiality, integrity and availability of critical IT systems and infrastructure.
● Perform special projects and initiatives as assigned.
2017 : Present
City of New York-Cyber Command
Cybersecurity Architecture and Engineering
Sr. Security Engineer : Member of Information security team, responsible for building and implementing a security program, based on security controls, define by SANS CSC20 and around standard framework ISO27002
● Develop and drive through information security strategy and promote information security policies, standards and guidelines combined with a hands-on engineer skill set to implement/run network and server technologies that ensure policies/standards/guidelines are achieved in a complex environment.
● Provide appropriate metrics and reporting to top-level management.
● Responsible for managing across a number of information security areas.
● Lead virtual teams of people taking responsibility for the information security status of the organization.
● Support and drive the promotion of information security best practice through the organization.
● Ensure that information security incidents/problems are recorded and managed through to resolution.
● Establish and maintain relationships within the IT Infrastructure, PMO office and business line areas.
● Assist in responses to external audits, penetration tests and vulnerability assessments.
● Conduct risk assessments, penetration tests and diagnose internet/extranet security and intrusion attempts.
● Recommend and coordinate the application of fixes, patches procedures in the event of a security breach.
● Research emerging technologies in support of security enhancement and development efforts.
2015 : 2017
Tradition Securities and Futures
Sr. Security Engineer
Sr. Network/Security Engineer : Member of IT security engineering team, responsible for evaluation, designing, implementing and managing core security infrastructure across enterprise. Act as a technical lead to analyze problems and determine the best solutions, collaborate with peers to vet proposed designs, provide insight and perspective into the state of information infrastructure and help to develop strategy to improve enterprise security posture by applying principles “defense-in-depth”.
● Evaluate Secure Web Gateway technology for a selected group of vendors. Provide recommendations, exercise proof-of-concept and lead this project from inception to turnover into production.
● Provide engineering design and specification to deploy Network Based Anomaly Detection technology
within a low frequency trading environment. Integrate NBAD with Directory Services, Radius and SSIM.
● Assess and upgrade NIDS infrastructure across perimeters based on a new architecture and hardware. It helps to improve effectiveness of this solution by gaining more visibility into traffic flow, adding contextual correlation and reducing number of false-positive alerts.
● Provide recommendation and upgrade of wireless infrastructure for guests and employees’ access from non-managed devices.
● Provide engineering escalations to services and SecOps team, help troubleshoot and escalate problems.
● Meet with vendors to assess commercial products for use in the Firm. Analyze and write formal security reviews in subject area.
● Research common and emerging attack vectors, the mechanisms of exploitation, common security
pitfalls and past examples of exploitation; communicate awareness to others at all levels of the
organization.
2010 : 2015
Morgan Stanley
Sr. Network Security Engineer
Details of previous experience available upon request.
2006 : 2010
National Grid USA
Sr. Network Engineer
Details of previous experience available upon request.
2000 : 2006
KeySpan
Sr. Network/Security Engineer
Company:
City of New York-Cyber Command
Spoken Language:
English, Russian, Ukrainian
About
Career Objective: Help to build, advance and mature organization's security programs.
Essential: Well-rounded professional in a field of cyber security with multi-years of experience in enterprises’ design and architecture, good understanding of a cross-domain IT disciplines, their interrelations and synergy, strong technical foundation in network and security systems, ability to handle complex projects, pragmatic and influential in presenting solution options, team player with strong collaboration skills, detail oriented and highly organized.
Specialties: Cyber security architecture, network design, implementation, integration and management
Profile Photo
