Profiles search
David Trevino
Asst. Vice President/Risk Management at Veritex Community Bank
Houston, TX, United States
Details
Education:
MSIS
Information Systems
University of St. Thomas (TX)
2005 : 2008
BBA
Management Information Systems
University of Houston-Downtown
1994 : 1999
Information Systems
University of St. Thomas (TX)
2005 : 2008
BBA
Management Information Systems
University of Houston-Downtown
1994 : 1999
Experience:
• Identify vulnerabilities, recommend corrective measures, and ensure the adequacy of existing information security controls.
• Monitored and advised on information security issues related to the systems and workflow to ensure that internal and external security controls are appropriate and operating as intended.
• Support the implementation and documentation of the Bank’s information security program, including information security risk assessment and threat identification.
• Implement the information security’s aspects of the Bank’s Business Continuity Plan and Disaster Recovery and annual BCP/DR testing, including identification of areas of emerging risks which enhancement of the BCP/DR or related policy and procedures.
• Administer and review Usernames and passwords in Active Directory and third party applications.
• Support and consult with Information Technology and Business Lines, to continually improve security posture for daily operations and new initiatives, verify that business processes are kept in-sync with security polices, and standards and procedures.
• Collaborate with Information Technology to maintain data flow and network documentation and diagrams including cybersecurity controls.
action, investigate, and report on noted irregularities.
• Monitor and review user access to critical applications and its security parameters, to ensure access privileges and security parameters remain appropriate, on a quarterly and annual basis.
• Administer quarterly reviews on security parameter and firewall rules, providing details of any exceptions found during the reviews.
• Maintain and coordinate Incident Response Plan on annual testing and in the event of a catastrophe.
• Participate and coordinate with Veritex Audit Coordinator on security related issues with External and Internal Auditors and Federal/State examiners
2018 : Present
Veritex Community Bank
Asst. Vice President/Information Security Analyst
• Identify vulnerabilities, recommend corrective measures, and ensure the adequacy of existing information security controls.
• Monitored and advised on information security issues related to the systems and workflow to ensure that internal and external security controls are appropriate and operating as intended.
• Support the implementation and documentation of the Bank’s information security program, including information security risk assessment and threat identification.
• Implement the information security’s aspects of the Bank’s Business Continuity Plan and Disaster Recovery and annual BCP/DR testing, including identification of areas of emerging risks which enhancement of the BCP/DR or related policy and procedures.
• Administer and review Usernames and passwords in Active Directory and third party applications.
• Administer and review application master list for the application owner and administrative personnel for bank critical financial applications, to verify owners are current and correct.
• Monitored the security of critical systems (e.g. database server, web servers, e-mail servers, etc.) and changes to highly sensitive computer security controls to ensure appropriate system administration action, investigate, and report on noted irregularities.
• Monitor and review user access to critical applications and its security parameters, to ensure access privileges and security parameters remain appropriate, on a quarterly and annual basis.
• Administer quarterly reviews on security parameter and firewall rules, providing details of any exceptions found during the reviews.
• Review and monitor AD Group memberships on a weekly basis and documents any changes within the review.
• Monitor and review user access maintenance reports from Jack Henry Silverlake, to detect unauthorized/inappropriate administration of user access.
2017 :
Green Bank
Asst. Vice President/Information Security Analyst
• Monitor and advice on information security issues related to the systems and workflow to ensure that internal and external security controls are appropriate and operating as intended.
• Responsible for Installation and matintenance of security software on various servers within the Data Center.
• Successfullly, monitor the security of critical systems (e.g. database server, web servers, e-mail servers, etc.) and changes to highly sensitive computer security controls to ensure appropriate system administration action, investigate, and report on noted irregularities.
• Successfully design, implement, and administer Cyber Security Awareness Month procedures within the various departments on campus.
• Successfully, identify vulnerabilities, recommend corrective measures and ensure the adequacy of existing information security controls.
• Coordinate and execute IT security projects.
• Perform vulnerability scans, analysis, remediation, and ongoing monitoring procedures Coordinate response to information security incidents.
• Provide daily backup administration nightly tape backups for all production & test systems, for Disaster Recovery purposes.
• Develop, publish and maintain Information Security policies, procedures, standards and guidelines based on knowledge of best practices, audit and compliance requirements.
• Conduct data classification assessment and manage audit remediation plans.
• Collaborate with IT management, the legal department, safety and security, and law enforcement agencies to manage security vulnerabilities.
• Create, manage and maintain user security awareness. Conduct security research in keeping abreast of latest security issues.
• Actively participate in the higher education security community such as CompTIA, ISC, InfraGard, SANS, Houston RCPI, etc.
2014 : 2017
University of St. Thomas-Houston
Information Security Administrator
Responsible for the implementation, effective provisioning, installation/configuration, coordination, troubleshooting, security, maintenance, and usage monitoring of servers to ensure the stability and integrity of the university systems in accordance with the University of St. Thomas policies and procedures. Provide technical research and development to enable continuing innovation within the infrastructure. Setup and independently manage various virtual production servers on VMware ESX 5.1 vCenter environment. Provide daily database administration for production databases functions required for normal operations including management of databases, performance tuning, setup User IDs, and roles, maintain log files, maintenance plans, security performance, migration of data between databases, backup/disaster recovery and restore/backup Design and implement Cyber Security Awareness policy and procedures within various department throughout the university. Setup and independently manage SAN storage solutions.
2004 : 2017
University of St. Thomas-Houston
Senior Systems Administrator
Strategically planned, installed, created, implemented, and maintained Test Plans and Test Cases for all assigned software projects, on TestPlus Software. QA Lead for various software projects pertaining to new HP Proliant Servers. Served as the single point of contact in administrating and testing of HP Smart-Start software and HP Agent software. Test suites include the in-depth configuration of HP Proliant Servers. Validate test configuration for regression testing, new product releases, and established performance benchmarks are maintenance and update as needed. Strategically installed, configured, and maintained HP ML/DL Proliant Servers within the Research and Development lab. Setup and implemented LAN/WAN for test environment within Research and Development Lab. Provided security procedures within the lab, such as implemented fault-tolerant systems, upgraded anti-virus software, and installed UPS power supplies. Provided upgrades for operating systems regarding service packs, web browsers, server products, and supporting companion products. Implemented and configured various protocols, such as DHCP, TCP/IP, WINS, DNS, FTP, and LDAP, within the Research and Development Lab. Researched hardware and software needs for the purpose of providing an effective and efficient test environment.Installed, configured, and maintained storage units for the purpose of backup drives and disaster recovery.
Developed, coordinated, and conducted training for various HP departments. Compiled, organized, and wrote documentation for training materials.Troubleshoot, administered, and monitored daily tasks for specified software assignments.Provided weekly status, configuration results, and recommendations to the development/management teams.
2001 : 2003
Hewlett-Packard
Software Engineer
• Monitored and advised on information security issues related to the systems and workflow to ensure that internal and external security controls are appropriate and operating as intended.
• Support the implementation and documentation of the Bank’s information security program, including information security risk assessment and threat identification.
• Implement the information security’s aspects of the Bank’s Business Continuity Plan and Disaster Recovery and annual BCP/DR testing, including identification of areas of emerging risks which enhancement of the BCP/DR or related policy and procedures.
• Administer and review Usernames and passwords in Active Directory and third party applications.
• Support and consult with Information Technology and Business Lines, to continually improve security posture for daily operations and new initiatives, verify that business processes are kept in-sync with security polices, and standards and procedures.
• Collaborate with Information Technology to maintain data flow and network documentation and diagrams including cybersecurity controls.
action, investigate, and report on noted irregularities.
• Monitor and review user access to critical applications and its security parameters, to ensure access privileges and security parameters remain appropriate, on a quarterly and annual basis.
• Administer quarterly reviews on security parameter and firewall rules, providing details of any exceptions found during the reviews.
• Maintain and coordinate Incident Response Plan on annual testing and in the event of a catastrophe.
• Participate and coordinate with Veritex Audit Coordinator on security related issues with External and Internal Auditors and Federal/State examiners
2018 : Present
Veritex Community Bank
Asst. Vice President/Information Security Analyst
• Identify vulnerabilities, recommend corrective measures, and ensure the adequacy of existing information security controls.
• Monitored and advised on information security issues related to the systems and workflow to ensure that internal and external security controls are appropriate and operating as intended.
• Support the implementation and documentation of the Bank’s information security program, including information security risk assessment and threat identification.
• Implement the information security’s aspects of the Bank’s Business Continuity Plan and Disaster Recovery and annual BCP/DR testing, including identification of areas of emerging risks which enhancement of the BCP/DR or related policy and procedures.
• Administer and review Usernames and passwords in Active Directory and third party applications.
• Administer and review application master list for the application owner and administrative personnel for bank critical financial applications, to verify owners are current and correct.
• Monitored the security of critical systems (e.g. database server, web servers, e-mail servers, etc.) and changes to highly sensitive computer security controls to ensure appropriate system administration action, investigate, and report on noted irregularities.
• Monitor and review user access to critical applications and its security parameters, to ensure access privileges and security parameters remain appropriate, on a quarterly and annual basis.
• Administer quarterly reviews on security parameter and firewall rules, providing details of any exceptions found during the reviews.
• Review and monitor AD Group memberships on a weekly basis and documents any changes within the review.
• Monitor and review user access maintenance reports from Jack Henry Silverlake, to detect unauthorized/inappropriate administration of user access.
2017 :
Green Bank
Asst. Vice President/Information Security Analyst
• Monitor and advice on information security issues related to the systems and workflow to ensure that internal and external security controls are appropriate and operating as intended.
• Responsible for Installation and matintenance of security software on various servers within the Data Center.
• Successfullly, monitor the security of critical systems (e.g. database server, web servers, e-mail servers, etc.) and changes to highly sensitive computer security controls to ensure appropriate system administration action, investigate, and report on noted irregularities.
• Successfully design, implement, and administer Cyber Security Awareness Month procedures within the various departments on campus.
• Successfully, identify vulnerabilities, recommend corrective measures and ensure the adequacy of existing information security controls.
• Coordinate and execute IT security projects.
• Perform vulnerability scans, analysis, remediation, and ongoing monitoring procedures Coordinate response to information security incidents.
• Provide daily backup administration nightly tape backups for all production & test systems, for Disaster Recovery purposes.
• Develop, publish and maintain Information Security policies, procedures, standards and guidelines based on knowledge of best practices, audit and compliance requirements.
• Conduct data classification assessment and manage audit remediation plans.
• Collaborate with IT management, the legal department, safety and security, and law enforcement agencies to manage security vulnerabilities.
• Create, manage and maintain user security awareness. Conduct security research in keeping abreast of latest security issues.
• Actively participate in the higher education security community such as CompTIA, ISC, InfraGard, SANS, Houston RCPI, etc.
2014 : 2017
University of St. Thomas-Houston
Information Security Administrator
Responsible for the implementation, effective provisioning, installation/configuration, coordination, troubleshooting, security, maintenance, and usage monitoring of servers to ensure the stability and integrity of the university systems in accordance with the University of St. Thomas policies and procedures. Provide technical research and development to enable continuing innovation within the infrastructure. Setup and independently manage various virtual production servers on VMware ESX 5.1 vCenter environment. Provide daily database administration for production databases functions required for normal operations including management of databases, performance tuning, setup User IDs, and roles, maintain log files, maintenance plans, security performance, migration of data between databases, backup/disaster recovery and restore/backup Design and implement Cyber Security Awareness policy and procedures within various department throughout the university. Setup and independently manage SAN storage solutions.
2004 : 2017
University of St. Thomas-Houston
Senior Systems Administrator
Strategically planned, installed, created, implemented, and maintained Test Plans and Test Cases for all assigned software projects, on TestPlus Software. QA Lead for various software projects pertaining to new HP Proliant Servers. Served as the single point of contact in administrating and testing of HP Smart-Start software and HP Agent software. Test suites include the in-depth configuration of HP Proliant Servers. Validate test configuration for regression testing, new product releases, and established performance benchmarks are maintenance and update as needed. Strategically installed, configured, and maintained HP ML/DL Proliant Servers within the Research and Development lab. Setup and implemented LAN/WAN for test environment within Research and Development Lab. Provided security procedures within the lab, such as implemented fault-tolerant systems, upgraded anti-virus software, and installed UPS power supplies. Provided upgrades for operating systems regarding service packs, web browsers, server products, and supporting companion products. Implemented and configured various protocols, such as DHCP, TCP/IP, WINS, DNS, FTP, and LDAP, within the Research and Development Lab. Researched hardware and software needs for the purpose of providing an effective and efficient test environment.Installed, configured, and maintained storage units for the purpose of backup drives and disaster recovery.
Developed, coordinated, and conducted training for various HP departments. Compiled, organized, and wrote documentation for training materials.Troubleshoot, administered, and monitored daily tasks for specified software assignments.Provided weekly status, configuration results, and recommendations to the development/management teams.
2001 : 2003
Hewlett-Packard
Software Engineer
Company:
Veritex Community Bank
Years of Experience:
24
Skills
Access, Agile Methodologies, C#, Database Administration, Databases, DHCP, Disaster Recovery, DNS, FalconStor, Fortinet, HTML, IIS, Integration, Java, JavaScript, LeftHand, Linux, Microsoft SQL Server, Nagios, Nessus, Perl, Perl Script, Quality Assurance, SDLC, Security, Servers, SharePoint, Softw, Software Development, Software Documentation, Software Engineering, Software Project Management, Software Quality Assurance, Splunk, SQL, SQL Server Management Studio, Storage, System Administration, Systems Analysis, TCP/IP, Testing, Troubleshooting, Unix, Visio, VMware, VMware ESX, VMware Server, Web Applications, Web Development, XML
About
Versatile, results-oriented Asst. Vice President/Information Security Analyst with broad-based experience in the areas of analyzing, designing, developing, and problem solving with major corporations. Special expertise in identifying problems and defining solutions while promoting understanding and satisfaction. Ability to multi-task within a team environment as well as independently
Profile Photo
