Profiles search
Chris Mills
Lead Information Security Engineer at MEMIC
Portland, ME, United States
Details
Experience:
2023 : Present
MEMIC
Lead Information Security Engineer
2018 : 2023
MEMIC
Senior Information Security Engineer
Manage the research and development environment utilized by RSA FirstWatch, the Advanced Threat Research and Intelligence Team for RSA NetWitness, focused on advanced, criminal and state sponsored threats.
• Worked closely with Threat Researchers, Security Analysts and Project Management to redesign and implement a new research environment for use by the FirstWatch team. Continue to research and make recommendations for upgrades and improvements to environment based on requirements.
• Maintain a complete and fully functional simulated enterprise network environment supporting the researchers. Components include virtualization, firewalls, IDS/IPS, proxy and gateway servers, mail servers, SIEM and VPN devices from multiple vendors as well as a mix of Windows and Linux operating systems.
• Participate in blue team activities to upgrade and strengthen the research lab environment, ensuring data access restrictions, air gaps and sandbox environments are properly configured and controlled.
• In-house subject matter expert. Act in the role as network and security administrator for all security platform deployments, configurations, access and documentation.
• Responsible for lab budget planning for maintenance and support, licensing, upgrades and replacements. Act as liaison to finance group planning cross-team expenditures and budgeting.
2017 : 2018
RSA Security
Lab Manager, RSA FirstWatch
Led a team of software engineers and managed the design, operation and maintenance of a large research and development lab environment.
• Mentored junior engineers and oversaw their development activities building 3rd party content integrations to the RSA enVision and NetWitness products.
• Managed and maintained multiple security research labs utilizing multiple security vendor technologies and platforms including; IPS/IDS, Firewalls, Application Firewalls, Unified Gateways, Proxy Servers, Email Gateways, and SIEM applications. This virtual infrastructure was utilized by developers and security researchers involved in building analytical content packs for RSA NetWitness and 3rd party product research as well as security threat research and development.
• Demonstrated strong working knowledge of multiple security vendor technologies and platforms including; IPS/IDS, Firewalls, Application Firewalls, Unified Gateways, Proxy Servers, Email Gateways, and SIEM applications.
• Designed, procured and built a new lab environment within one week of the RSA breach, allowing the engineering teams to meet their release commitments during the 6-month breach investigation.
• Partnered with cross-functional teams. This included teams such as EMC Enterprise Lab Services to ensure Content Team was able to operate on an autonomous basis from other RSA development teams. Worked closely with the EMC Critical Incident Response team to implement their requirements and with Product Management on roadmap items and customer requests.
• System Administrator for the Content Team; responsible for lab and environment access, documentation and configuration.
• Worked as a volunteer for the NECCDC (North East Collegiate Cyber Defense Competition) as both the Black Team Captain and White Team Judge.
• Oversaw licensing compliance for all environment software and hardware platforms. Worked with upper management regarding yearly capital expenditures and budget planning.
2009 : 2017
RSA Security
Team Lead & Lab Manager
Developed log parsers for integration of 3rd party products to RSA NetWitness and RSA enVision content library.
• Lead developer on key content integrations, including parser development for Cisco WSA and Imperva Secureshere. Supported EMC’s Critical Incident Response Team in developing custom device integrations based on their requirements.
• Development team member. Member of two SCRUM teams responsible for building NetWitness content. Collaborated with key customers to investigate and resolve content related issues.
2008 : 2009
RSA Security
Senior Software Engineer
MEMIC
Lead Information Security Engineer
2018 : 2023
MEMIC
Senior Information Security Engineer
Manage the research and development environment utilized by RSA FirstWatch, the Advanced Threat Research and Intelligence Team for RSA NetWitness, focused on advanced, criminal and state sponsored threats.
• Worked closely with Threat Researchers, Security Analysts and Project Management to redesign and implement a new research environment for use by the FirstWatch team. Continue to research and make recommendations for upgrades and improvements to environment based on requirements.
• Maintain a complete and fully functional simulated enterprise network environment supporting the researchers. Components include virtualization, firewalls, IDS/IPS, proxy and gateway servers, mail servers, SIEM and VPN devices from multiple vendors as well as a mix of Windows and Linux operating systems.
• Participate in blue team activities to upgrade and strengthen the research lab environment, ensuring data access restrictions, air gaps and sandbox environments are properly configured and controlled.
• In-house subject matter expert. Act in the role as network and security administrator for all security platform deployments, configurations, access and documentation.
• Responsible for lab budget planning for maintenance and support, licensing, upgrades and replacements. Act as liaison to finance group planning cross-team expenditures and budgeting.
2017 : 2018
RSA Security
Lab Manager, RSA FirstWatch
Led a team of software engineers and managed the design, operation and maintenance of a large research and development lab environment.
• Mentored junior engineers and oversaw their development activities building 3rd party content integrations to the RSA enVision and NetWitness products.
• Managed and maintained multiple security research labs utilizing multiple security vendor technologies and platforms including; IPS/IDS, Firewalls, Application Firewalls, Unified Gateways, Proxy Servers, Email Gateways, and SIEM applications. This virtual infrastructure was utilized by developers and security researchers involved in building analytical content packs for RSA NetWitness and 3rd party product research as well as security threat research and development.
• Demonstrated strong working knowledge of multiple security vendor technologies and platforms including; IPS/IDS, Firewalls, Application Firewalls, Unified Gateways, Proxy Servers, Email Gateways, and SIEM applications.
• Designed, procured and built a new lab environment within one week of the RSA breach, allowing the engineering teams to meet their release commitments during the 6-month breach investigation.
• Partnered with cross-functional teams. This included teams such as EMC Enterprise Lab Services to ensure Content Team was able to operate on an autonomous basis from other RSA development teams. Worked closely with the EMC Critical Incident Response team to implement their requirements and with Product Management on roadmap items and customer requests.
• System Administrator for the Content Team; responsible for lab and environment access, documentation and configuration.
• Worked as a volunteer for the NECCDC (North East Collegiate Cyber Defense Competition) as both the Black Team Captain and White Team Judge.
• Oversaw licensing compliance for all environment software and hardware platforms. Worked with upper management regarding yearly capital expenditures and budget planning.
2009 : 2017
RSA Security
Team Lead & Lab Manager
Developed log parsers for integration of 3rd party products to RSA NetWitness and RSA enVision content library.
• Lead developer on key content integrations, including parser development for Cisco WSA and Imperva Secureshere. Supported EMC’s Critical Incident Response Team in developing custom device integrations based on their requirements.
• Development team member. Member of two SCRUM teams responsible for building NetWitness content. Collaborated with key customers to investigate and resolve content related issues.
2008 : 2009
RSA Security
Senior Software Engineer
Company:
MEMIC
About
Experienced technology professional who is self-motivated and has a strong passion for the information security and networking field. Strong communication skills and professional skills that range from networking, network security, virtualization and security operations.
Profile Photo
