Linda Van Horn, CISSP

IT Security Professional

Boston, MA, United States

Details

Experience: Vulnerability management for the Air Force at Hanscom AFB.

2015 : Present

OASIS Systems

Sr. Cybersecurity Engineer

Balanced daily incident handling for a large university network with requests for vulnerability assessments, litigation support, internal investigation services, PCI-DSS scans, firewall and VPN support. Managed university's McAfee’s intrusion detection/protection system. Security liaison to the Medical School promoting NIST best practice, standards, procedures and baselines with humor and integrity.

•Briefed Medical School technology managers on FERPA, HIPAA/HITECH, and HEOA regulations.

•Developed education seminars for IT staff to promote solutions to evolving attacks.

•Appointed lead incident handler in 2004 managing 100% increase over the last three year. Proficient in early detection of stealth attacks and advanced persistent attacks.

2004 : 2011

Tufts University

System/Security Analyst

Recruited by Medical School IT Dean to provide computer security services to Boston campus and act as a liaison to the central IT group. Recommended secure Unix system practices and firewall configurations to research groups, advised Windows system administrators on defense-in-depth security and mentored desktop support group on incorporating security as a business/cost saving process. With the publication of the HIPAA privacy rule, became a member of the Medical School’s compliance efforts and subsequently the university’s central computer security initiative.

•Wrote security policies for the Medical School and central IT.

•Developed and lead faculty/staff HIPAA training for the Medical School.

•Secured Unix servers after major compromise, saving the school $20,000 in external vendor cost.

1999 : 2004

Tufts University School of Medicine

System/Security Analyst

System, web and biomedical database administration on SUN platform; technical liaison to primary teaching hospital, university’s central computing department and university wide library system; instructor for National Library of Medicine database searching in Continuing Medical Education courses and New England Regional Hospital conference

Accomplishments

•Cited by IBM university audit for system security expertise.

•Implemented local biomedical database system, saving the University $50K by capping costs at 1991 level.

•Introduced PCs to the library for faculty, staff and student searching.

•Designed and maintained library’s web presence

1991 : 1999

Tufts University, Health Sciences Library

Network Librarian

Company: OASIS Systems

About

Highly skilled security analyst with expertise in academic and medical settings. Proficient in collaborative decision making and developing solutions customized to the organization’s mission, culture and goals. Reputation for ability to translate in-depth IT Security knowledge into effective technical controls and awareness programs.

Specialties: Incident handling, network and host analysis.

Regulatory issues: HIPAA/Hitech, MA 201 CMR 17, FERPA, PCI - DSS

Security Policies and Procedures

Training and awareness programs

Technical Skills:

Security Solutions: McAfee Network Security Platform (IDS/IPS) & Endpoint Encryption; Netscreen/CheckPoint firewalls, Cisco VPNs, Identity Finder, Trend Micro Enterprise Antivirus, VMware Workstation/Fusion, Sophos Antivirus, Splunk; NBTscan for Windows, Mac and Unix platforms.