Profiles search
Joseph Kane
Principal Information Security Engineer at Optum
Saint Paul, MN, United States
Details
Education:
Bachelor of Arts (B.A.)
Information Technology Management
Concordia University-St. Paul
2008 : 2010
Inver Hills Community College
2010 : 2010
Information Technology
Community College of the Air Force
1999 : 2004
Information Technology
Connecting Point
2001 : 2002
Associate of Arts and Sciences (A.A.S.)
Network Support Specialist
Duluth Business University
1999 : 2001
Information Technology Management
Concordia University-St. Paul
2008 : 2010
Inver Hills Community College
2010 : 2010
Information Technology
Community College of the Air Force
1999 : 2004
Information Technology
Connecting Point
2001 : 2002
Associate of Arts and Sciences (A.A.S.)
Network Support Specialist
Duluth Business University
1999 : 2001
Experience:
2021 : Present
Optum
Principal Information Security Engineer
•Technical team lead for Public Key Infrastructure (PKI) team providing oversight and weekly reporting on PKI projects and initiatives
•Responsible for architecting and maintaining the Unisys enterprise public key infrastructure (PKI) and peripheral solutions
•Planning and implementation of new PKI hardware and software deployments in physical, cloud (Azure) and virtual (hyper-v) configurations
•Administer and maintain certification authority (CA) servers utilizing Active Directory Certificate Services (ADCS) in both standalone and enterprise configurations on various Windows platforms
•Installation, management and subject matter expertise on Thales/nCipher hardware security modules (HSM) including nShield Connect, nShield Solo and nShield Edge devices
•Administration and maintenance of Microsoft network device enrollment service (NDES)/simple certificate enrollment protocol (SCEP)
•Planning and deployment of Certificate Enrollment Web Services (CES) solution to allow for user certificate enrollment off-VPN
•Planning and deployment of Microsoft Identity Manager Certificate Management (MIM CM) solution as registration authority (RA) for archival and self-service recovery
•Planning and implementation of JAMF ADCS connector for management and provisioning of certificates on Apple (Mac) devices
•Administration and configuration of online certificate status protocol (OCSP) revocation configurations
•Maintenance of Public Key Services Active Directory objects including certificate templates, AIA/CDP and enrollment services
•Perform certificate request vetting, support and issuance from internal and third-party CAs.
2017 : 2021
Unisys
Applications and Architecture Senior Analyst
• Conduct research to identify trends and best practices in support of the development of policies and procedures that provide safeguards for the security of network, perimeter, and/or gateway services.
• Analyze and evaluate network traffic for adversary activities, categorizes the types of vulnerabilities and associated attacks using incident-handling methodologies, and makes recommendations to management.
• Assist in the deployment of technology solutions to institute the security of network, perimeter, and/or gateway services, including incident-detection tools.
• Provide program guidance, direction or advice to internal and external stakeholders, coordinates and provides direction on a project basis.
• Assists in developing, testing, coordinating and implementing strong defense mechanisms that protect network systems.
• Develop reports regarding the status of the security of the network, ongoing status of protections, problems, and future efforts regarding threats, vulnerabilities, and risk factors.
• Work with employees, vendors, and contractors to help identify problems and irregularities in the network defense infrastructure; and develop and implement corrective measures to resolve issues.
2016 : 2017
United States Postal Service
Cybersecurity Engineering Specialist
Technical team lead for the United States Postal Service's Public Key Infrastructure (PKI) and Encryption Key Management team.
•Support USPS in compliance with industry standards for PKI and ADP security.
•Perform system analysis, design and database management for PKI and other security-related systems.
•Develop security-related guidelines, technical bulletins and training materials. coordinate, review and monitor installation activities related to security.
•Develop specifications for security operations to be included in selection of hardware systems.
•Oversee and conduct reviews and audits to ensure enforcement of security policy, programs, and procedures.
•Perform risk assessments to make recommendations on security certifications and accreditation of sensitive applicants and systems.
•Management and support of Public Key Infrastructure and encryption key lifecycle.
•Management and support for deployment and lifecycle of X509 digital certificates to support several hundred Postal applications.
•Certificate management support for multiple operating system platforms and devices.
2012 : 2016
United States Postal Service
Information Systems Security Specialist
Member of United States Postal Service Information Systems Security team and responsible for maintaining the USPS public key infrastructure (PKI).
Perform security vulnerability assessments on centralized computing resources and networks to ensure systems compliance with Postal Service security policies and hardening standards.
Use system vulnerability assessment tools to scan computer resources (Rapid7 Nexpose, Nessus)
Identify weaknesses in public facing applications and risk mitigation planning
Provide support and administration for PKI infrastructure (Windows Server 2003/2008)
Issue/Revoke/Renew digital certificates
Utilize Veritas/Netbackup to maintain backups of PKI systems
Provide up-to-date documentation of procedures
Assist end users in installing and configuring SSL certificates
Plan and integrate Postal PKI with remote PIV card registration agent locations
Troubleshoot PKI-related problems
Attend and participate in Certificate Policy Working Group (CPWG) conferences
2007 : 2012
Northrop Grumman Corporation
Computer Systems Security Analyst
Optum
Principal Information Security Engineer
•Technical team lead for Public Key Infrastructure (PKI) team providing oversight and weekly reporting on PKI projects and initiatives
•Responsible for architecting and maintaining the Unisys enterprise public key infrastructure (PKI) and peripheral solutions
•Planning and implementation of new PKI hardware and software deployments in physical, cloud (Azure) and virtual (hyper-v) configurations
•Administer and maintain certification authority (CA) servers utilizing Active Directory Certificate Services (ADCS) in both standalone and enterprise configurations on various Windows platforms
•Installation, management and subject matter expertise on Thales/nCipher hardware security modules (HSM) including nShield Connect, nShield Solo and nShield Edge devices
•Administration and maintenance of Microsoft network device enrollment service (NDES)/simple certificate enrollment protocol (SCEP)
•Planning and deployment of Certificate Enrollment Web Services (CES) solution to allow for user certificate enrollment off-VPN
•Planning and deployment of Microsoft Identity Manager Certificate Management (MIM CM) solution as registration authority (RA) for archival and self-service recovery
•Planning and implementation of JAMF ADCS connector for management and provisioning of certificates on Apple (Mac) devices
•Administration and configuration of online certificate status protocol (OCSP) revocation configurations
•Maintenance of Public Key Services Active Directory objects including certificate templates, AIA/CDP and enrollment services
•Perform certificate request vetting, support and issuance from internal and third-party CAs.
2017 : 2021
Unisys
Applications and Architecture Senior Analyst
• Conduct research to identify trends and best practices in support of the development of policies and procedures that provide safeguards for the security of network, perimeter, and/or gateway services.
• Analyze and evaluate network traffic for adversary activities, categorizes the types of vulnerabilities and associated attacks using incident-handling methodologies, and makes recommendations to management.
• Assist in the deployment of technology solutions to institute the security of network, perimeter, and/or gateway services, including incident-detection tools.
• Provide program guidance, direction or advice to internal and external stakeholders, coordinates and provides direction on a project basis.
• Assists in developing, testing, coordinating and implementing strong defense mechanisms that protect network systems.
• Develop reports regarding the status of the security of the network, ongoing status of protections, problems, and future efforts regarding threats, vulnerabilities, and risk factors.
• Work with employees, vendors, and contractors to help identify problems and irregularities in the network defense infrastructure; and develop and implement corrective measures to resolve issues.
2016 : 2017
United States Postal Service
Cybersecurity Engineering Specialist
Technical team lead for the United States Postal Service's Public Key Infrastructure (PKI) and Encryption Key Management team.
•Support USPS in compliance with industry standards for PKI and ADP security.
•Perform system analysis, design and database management for PKI and other security-related systems.
•Develop security-related guidelines, technical bulletins and training materials. coordinate, review and monitor installation activities related to security.
•Develop specifications for security operations to be included in selection of hardware systems.
•Oversee and conduct reviews and audits to ensure enforcement of security policy, programs, and procedures.
•Perform risk assessments to make recommendations on security certifications and accreditation of sensitive applicants and systems.
•Management and support of Public Key Infrastructure and encryption key lifecycle.
•Management and support for deployment and lifecycle of X509 digital certificates to support several hundred Postal applications.
•Certificate management support for multiple operating system platforms and devices.
2012 : 2016
United States Postal Service
Information Systems Security Specialist
Member of United States Postal Service Information Systems Security team and responsible for maintaining the USPS public key infrastructure (PKI).
Perform security vulnerability assessments on centralized computing resources and networks to ensure systems compliance with Postal Service security policies and hardening standards.
Use system vulnerability assessment tools to scan computer resources (Rapid7 Nexpose, Nessus)
Identify weaknesses in public facing applications and risk mitigation planning
Provide support and administration for PKI infrastructure (Windows Server 2003/2008)
Issue/Revoke/Renew digital certificates
Utilize Veritas/Netbackup to maintain backups of PKI systems
Provide up-to-date documentation of procedures
Assist end users in installing and configuring SSL certificates
Plan and integrate Postal PKI with remote PIV card registration agent locations
Troubleshoot PKI-related problems
Attend and participate in Certificate Policy Working Group (CPWG) conferences
2007 : 2012
Northrop Grumman Corporation
Computer Systems Security Analyst
Company:
Optum
Years of Experience:
26
Skills
Active Directory, Computer Security, DoD, Hardware, Information Security, Integration, Microsoft Exchange, Network Administration, Networking, Operating Systems, Public Key Cryptography, Security, Security Policy, Software Installation, System Administration, Technical Support, Troubleshooting, Vulnerability Assessment, Vulnerability Management, Windows, Windows Server, Windows XP, XP
About
I am a diligent and skilled Information Systems Security professional who likes the challenge of learning new things and the satisfaction of sharing knowledge with others. I am experienced in various IT security and operations platforms, with a primary focus on Public Key Infrastructure (PKI).
Profile Photo
