Profiles search

Sean Grady

Senior Information Security Engineer
West Chester, PA, United States

Details

Experience: 2019 : Present

Comcast

Senior Information Security Engineer

Cyber Security Engineer working on Comcast Corp's Threat Management Team

Responsibilities included :

ArcSight SIEM Solution Management

Use Case Development in ArcSight ESM, ArcSight Logger, and Splunk for malicious and/or unauthorized behaviors

Log Management of enterprise systems

Threat Hunting and Discovery

PCI Compliance Initiatives

Event review for malicious, and unauthorized behaviors with...

Host-based forensic solutions

Layer 3-7 network security devices

Windows, Linux, and Unix Platform logs

as well as many more point cyber security solutions

2017 : 2018

Comcast

Threat Management Engineer

Information Security Strategy development and implementation driven by Risk and Threat Mitigation techniques utilizing industry guidelines such as CIS, NIST, SANS, and ISO 27001/2 combined with driver indicators from data breach investigation reports as well as Third Party Risk Assessment feedback

Information Security Solution prospecting, design, implementation, and continuous improvement in the following areas : host-based anti-malware detection/prevention, network-based anti-malware prevention/detection, vulnerability management, threat intelligence integration, Layer 7 Firewalls, Malicious/Unauthorized Behavior Analytics, Automated Malicious/Unauthorized Incident Detection, malware sandboxing, Forensic response kits as well as several other areas

Audit Management and Compliance Advisement for PCI DSS 3.1 and SOX

2015 : 2016

Five Below

Information Security Engineer

Prospecting, design, implementation, continuous engineering support of security solutions such as ArcSight SIEM, Firemon Network Security Policy Management Suite, McAfee Email Gateway Email Protection Suite, Access Data's Forensic Toolkit for Digital Investigations, F5 Load Balancers for Log Distribution services, QualysGuard Web Application Scanning, Services,Veracode Static Code Analysis and Data Loss Prevention Services

Design, implementation, and continuous improvement of Process and Procedures needed for strengthening information security posture, and assuring compliance for PCI DSS 3.0, AND FTC requirements

Firewall Configuration and Control Risk Review, Firewall Complexity and Control Redundancy Reduction Services, Firewall Control Migration

Proactive and incident driven system examination with platform utilities, SIEM systems, intrusion detection/prevention systems (IDS/IPS), packet analyzers, traffic analyzers, Advanced Threat Detection Engines, logging platforms, vulnerability scanners and network security policy management engines to discover and remediate malfunctions, malicious activity, unauthorized activity, vulnerabilities or risks

2011 : 2015

CVS Health

Information Security Engineer

Design, support, and implementation of Clinical/Non-Clinical information systems utilizing various versions of Windows, Linux, Unix, and specialty Unix/Linux operating systems.

Design, support, and implementation of data networks

Data reconnaissance, restoration, and migration of server and end user systems utilizing Windows, and Linux tools

2009 : 2011

Phoenixville Hospital

Systems Engineer
Company: Comcast

About

Information technology engineer offering the following competencies:



Design, implementation, administration, and service of information systems and data networks for companies in several sectors: Clinical, Healthcare, Insurance, Construction, Legal, Venture Capital and Education



Engineering Support for Security Solutions such as ArcSight SIEM, Firemon Network Security Policy Management Suite, McAfee Email Gateway Email Protection Suite, Access Data's Forensic Toolkit for Digital Investigations, F5 Load Balancers for Log Distribution services, and QualysGuard Web Application Scanning Services.



Networking concepts such as physical and logical design, service debugging, OSI Model Layer 1 - 7 troubleshooting, packet analysis, NetFlow, switching, routing, subnetting, access control lists, and network address translation



Data reconnaissance, migration, forensics, and restoration on server and client systems



Proactive and incident driven system examination with platform utilities, SIEM systems, intrusion detection/prevention systems, packet analyzers, traffic analyzers, Advanced Threat Detection Engines, logging platforms, vulnerability scanners and network security policy management engines to discover and remediate malfunctions, malicious activity, unauthorized activity, vulnerabilities or risks