Profiles search
Justin Simmons
Information Security Manager
Chicago, IL, United States
Details
Experience:
2022 : Present
UChicago Medicine
Information Security Manager
2019 : 2022
UChicago Medicine
Senior Information Security Engineer
Subject matter expert responsible for all network intrusion prevention/detection policy creation, deployment and architecture as well as all Mergers & Acquisitions. Responsible for over 10 separate policies to facilitate each entities unique environment.
Subject matter expert for the Cloud Logging Standard creation & primary team member working with the architecture team to deploy the logging infrastructure to facilitate the expansion into the cloud.
Senior team lead for the technical refresh and eventual transition of the Wireless Intrusion Prevention system from AirTight/Mojo Networks to Cisco.
One of 2 senior team leads facilitating all security log alert policy creation, maintenance and on-boarding for the environment and the sole team lead for all SaaS Cloud logging & alert creation.
Security Operations Center
• Tier 1 resource responsible for monitoring & responding to all detected threats alerted upon by our security tools.
• Tier 2 resource responsible for advanced investigations stemming from Tier 1 alerting and initial triage. Also responsible as the primary POC for all things related to network IDPS functionality including policy, tuning, troubleshooting and buildout.
• Tier 3 resource responsible for the design & architecture of all security solutions used by the SOC including procedural documentation, architecture and layout of the solution and advanced troubleshooting with each vendor.
2015 : 2019
MasterCard
Senior Security Analyst
2012 : 2015
MasterCard
Security Analyst
Management, implementation and operation of all security services and equipment in our environment.
Customer support for Managed Security Services in our Web Hosting environment.
Log management, audit and review of all systems related to security services.
Centralized anti-virus implementation, management and support.
Incident Response team member on-call 24/7 for all suspected and confirmed intrusion events.
DDoS system monitoring and management network wide.
Management of Intrusion Prevention Systems.
Implementation and auditing of OS hardening policies on all platforms supported in our environment.
RSA two-factor implementation and operation for VPN remote access.
2007 : 2012
Connectria Managed Hosting
Information Security Engineer
UChicago Medicine
Information Security Manager
2019 : 2022
UChicago Medicine
Senior Information Security Engineer
Subject matter expert responsible for all network intrusion prevention/detection policy creation, deployment and architecture as well as all Mergers & Acquisitions. Responsible for over 10 separate policies to facilitate each entities unique environment.
Subject matter expert for the Cloud Logging Standard creation & primary team member working with the architecture team to deploy the logging infrastructure to facilitate the expansion into the cloud.
Senior team lead for the technical refresh and eventual transition of the Wireless Intrusion Prevention system from AirTight/Mojo Networks to Cisco.
One of 2 senior team leads facilitating all security log alert policy creation, maintenance and on-boarding for the environment and the sole team lead for all SaaS Cloud logging & alert creation.
Security Operations Center
• Tier 1 resource responsible for monitoring & responding to all detected threats alerted upon by our security tools.
• Tier 2 resource responsible for advanced investigations stemming from Tier 1 alerting and initial triage. Also responsible as the primary POC for all things related to network IDPS functionality including policy, tuning, troubleshooting and buildout.
• Tier 3 resource responsible for the design & architecture of all security solutions used by the SOC including procedural documentation, architecture and layout of the solution and advanced troubleshooting with each vendor.
2015 : 2019
MasterCard
Senior Security Analyst
2012 : 2015
MasterCard
Security Analyst
Management, implementation and operation of all security services and equipment in our environment.
Customer support for Managed Security Services in our Web Hosting environment.
Log management, audit and review of all systems related to security services.
Centralized anti-virus implementation, management and support.
Incident Response team member on-call 24/7 for all suspected and confirmed intrusion events.
DDoS system monitoring and management network wide.
Management of Intrusion Prevention Systems.
Implementation and auditing of OS hardening policies on all platforms supported in our environment.
RSA two-factor implementation and operation for VPN remote access.
2007 : 2012
Connectria Managed Hosting
Information Security Engineer
Company:
UChicago Medicine
About
Information Security Specialist with a passion for aligning security architecture plans and processes with security standards and business goals. Extensive experience developing and testing security frameworks within an enterprise environment. I am an IT professional with 15+ years of experience developing and implementing security solutions in fast-paced environments. Skilled in Defense-in-Depth strategies and Incident Correlation and able to deliver exceptional results in a timely manner.
Area's of Expertise:
• Network & Host based IDPS
• Network Data Loss Prevention
• Incident Correlation & Response
• Endpoint & Network Security best practices
• Network Anti-Malware
• Wireless IDPS
• Host based Endpoint Security
Profile Photo
