Profiles search
Mark Collins
-
United States
Details
Experience:
2022 : Present
Microsoft
Sr. Cybersecurity Consultant
Manage 16 people in 6 teams : Cyber Security Intelligence, Counter Access/Hunt, Network and
Endpoint Analysts, Vulnerability Management, Cyber Security Operations Cell, and Cyber
Security Engineering
Responsible for providing oversight of cyber security products for an Enterprise of 30K users,
25K Windows systems, and 10K network devices
Use PowerShell daily to collect and parse data looking for undetected threats
Day-to-day technical oversight of security tools that include SCCM client database, Fidelis
Network, Cisco FirePower, ArcSight SIEM, McAfee endpoint security, and Windows AppLocker
for computer network defense (CND)/mission assurance
Process cyber security intelligence and work with team to tune current security tools to alert on
undetected threats
Work closely with senior leadership in order to fully understand mission priorities and shape
cyber security tools, tactics, and procedures to meet mission requirements
Responsible for incident response execution, management, and exercises to ensure team
effectiveness
2016 : 2022
CACI International Inc
DoD - Cyber Security Operations Lead
Perform precise real-time analysis and correlation of logs/alerts from a multitude of enterprise systems with a focus on the determination if events constitute security incidents
Developed processes and toolsets to detect and analyze Windows Malware
Perform dynamic and static malware analysis, network intrusion analysis, network monitoring, protocol analysis, and digital forensic investigation :
Fidelis Network
Microsoft SCCM SQL
Sysinternals Tools
Mandiant Redline
Cuckoo Sandbox
Arcsight ESM
Kali Linux
REMnux
2013 : 2016
L-3 Communications
DoD - Information Assurance - Cyber Security Analyst
Manage government projects from cradle to grave; lead engineering team to travel and implement projects at military stateside and overseas locations
Supporting Microsoft Exchange developed and implemented strategies for defining proactive support procedures, technical guides, operational concepts, engineering plans, and disaster recovery to troubleshoot and manage AFCENT’s Exchange environments
Performed Exchange migration from 2003 to 2010
Perform day-to-day management and troubleshooting of 2 Exchange organizations geographically spread across 30 Active Directory domains, worldwide; consisting of two-node Hub/CAS array and three-node Database Availability Group at each domain supporting 50K mailboxes
Microsoft System Management Server 2003 with 25K clients and servers on three different networks
2008 : 2013
L3 Technologies
DoD - Network Engineering Support Team - Systems Engineer
Managing a shift of 6 employees
Responsible for on floor training of new contractors and military
Training other contractors to fill the SME position
Responsible for scheduling contractors
Configure/Troubleshoot
Window Server 2003
Window Exchange 2003
Bluecoat Proxy server
Sidewinder G2 Firewall
Cisco Routers and Switches
DNS on Linux and Window 2003
2007 : 2008
L-3 Communications
DoD - SME (Subject Matter Expert) Operations Floor
Microsoft
Sr. Cybersecurity Consultant
Manage 16 people in 6 teams : Cyber Security Intelligence, Counter Access/Hunt, Network and
Endpoint Analysts, Vulnerability Management, Cyber Security Operations Cell, and Cyber
Security Engineering
Responsible for providing oversight of cyber security products for an Enterprise of 30K users,
25K Windows systems, and 10K network devices
Use PowerShell daily to collect and parse data looking for undetected threats
Day-to-day technical oversight of security tools that include SCCM client database, Fidelis
Network, Cisco FirePower, ArcSight SIEM, McAfee endpoint security, and Windows AppLocker
for computer network defense (CND)/mission assurance
Process cyber security intelligence and work with team to tune current security tools to alert on
undetected threats
Work closely with senior leadership in order to fully understand mission priorities and shape
cyber security tools, tactics, and procedures to meet mission requirements
Responsible for incident response execution, management, and exercises to ensure team
effectiveness
2016 : 2022
CACI International Inc
DoD - Cyber Security Operations Lead
Perform precise real-time analysis and correlation of logs/alerts from a multitude of enterprise systems with a focus on the determination if events constitute security incidents
Developed processes and toolsets to detect and analyze Windows Malware
Perform dynamic and static malware analysis, network intrusion analysis, network monitoring, protocol analysis, and digital forensic investigation :
Fidelis Network
Microsoft SCCM SQL
Sysinternals Tools
Mandiant Redline
Cuckoo Sandbox
Arcsight ESM
Kali Linux
REMnux
2013 : 2016
L-3 Communications
DoD - Information Assurance - Cyber Security Analyst
Manage government projects from cradle to grave; lead engineering team to travel and implement projects at military stateside and overseas locations
Supporting Microsoft Exchange developed and implemented strategies for defining proactive support procedures, technical guides, operational concepts, engineering plans, and disaster recovery to troubleshoot and manage AFCENT’s Exchange environments
Performed Exchange migration from 2003 to 2010
Perform day-to-day management and troubleshooting of 2 Exchange organizations geographically spread across 30 Active Directory domains, worldwide; consisting of two-node Hub/CAS array and three-node Database Availability Group at each domain supporting 50K mailboxes
Microsoft System Management Server 2003 with 25K clients and servers on three different networks
2008 : 2013
L3 Technologies
DoD - Network Engineering Support Team - Systems Engineer
Managing a shift of 6 employees
Responsible for on floor training of new contractors and military
Training other contractors to fill the SME position
Responsible for scheduling contractors
Configure/Troubleshoot
Window Server 2003
Window Exchange 2003
Bluecoat Proxy server
Sidewinder G2 Firewall
Cisco Routers and Switches
DNS on Linux and Window 2003
2007 : 2008
L-3 Communications
DoD - SME (Subject Matter Expert) Operations Floor
Company:
Microsoft
About
I engineer around problems to make the applications, products, or hardware that you want to run, work on your network.
Profile Photo
