ccurzio@accipiter.org
Qualifications and Work Experience
OBJECTIVE
To secure a challenging position in a high-tech environment enabling me to apply my knowledge and skills to advance personal
and professional growth, as well as affording me the opportunity for advancement once qualified.
QUALIFICATIONS
Extensive experience in security engineering and operations, endpoint security, network/web application vulnerability testing
and remediation, as well as network monitoring and traffic analysis. Broad overall experience with computers and technology,
including network administration and maintenance under various operating systems, automation, and web application development.
Specialties include ulnerability scanning and testing, development and implementation of network security policies and
procedures, and operational security systems such as firewalls, endpoint security systems, and both signature and
anomaly-based intrusion detection/prevention systems.
WORK HISTORY
- American Express (October 2021 - Present):
- • Promoted to Senior Information Security Engineer in May, 2022, continuing with
Tanium and CrowdStrike management. Additional responsibilities include evaluation and deployment of 3rd-party products to
improve the security posture of the organization, as well as automation improvements via scripting and tweaks to internal
processes.
- • Information Security Engineer II;
Responsible for internal management and integration of the Tanium platform and its associated modules. Also responsible for
maintenance of the overall Tanium system including implementation, configuration optimization, client management, as well as
platform updates/upgrades and module updates/upgrades, and package/sensor creation/troubleshooting. Additional responsibilities
include assisting in emergency remediation efforts, as well as management and troubleshooting of the internal CrowdStrike
implementation including troubleshooting of agent issues, alert and configuration management, as well as host and policy management.
- First Data Corporation / Fiserv, Inc. (May 2018 - October 2021):
- • Senior Cyber Security Engineer;
Responsible for internal management and integration of the Tanium platform and its associated modules. Also responsible for
maintenance of the overall Tanium system including implementation, configuration optimization, as well as platform
updates/upgrades and module updates/upgrades. Additional responsibilities include internal tool development, implementation
of new security tools from proof-of-concept through to deployment, and coordination of Tanium and other endpoint security
systems with other internal teams for endpoint management and analysis.
- Elavon, Inc. / US Bank (August 2016 - April 2018):
- • Senior Engineer of Information Security;
Responsible for engineering network and information security solutions for the Elavon organization. In addition to maintaining
security operations tools from an engineering standpoint (Carbon Black Enterprise Response, etc.), responsibilities also
include evaluation and implementation of new security tools and processes within the environment.
- Vonage Business (May 2015 - August 2016):
- • Senior Security Engineer (Information Security Analysis III);
Responsible for evaluating and maintaining internal security for the Vonage Business organization, including vulnerability
management, network security infrastructure design and management, security process design and implementation, as well as
compensating controls evaluation and management. Also responsible for internal vulnerability management, penetration testing,
and forensics.
- Verizon Business (March 2008 - May 2015):
- • Promoted to Lead Specialist Engineer of Network & Information Security in April 2010.
- • Promoted to International Tier III Security Engineering Team Lead in February, 2009.
- • Senior Engineer of Network & Information Security;
Primarily responsible for acting as the final internal escalation point for the Verizon Business vulnerability scanning product lines.
Responsible for third-level troubleshooting of technical issues, client false-positive claim analysis, as well as liaising
with both internal development teams and vendor development teams in response to issues found in both internal and
vendor-provided user interfaces. Also responsible for assisting in direct client interaction, including participating as a
technical resource in product and training presentations and client Q&A sessions, as well as acting as a general
information and advice resource for both clients and internal staff.
- SecureWorks, LLC. (July 2003 - February 2008):
- • Promoted to Operational Intelligence Lead in May 2007, responsible for assessing Security Operations departmental systems needs and developing applications and processes to compensate, as well as continually monitoring and improving scalability of existing applications and processes.
- • Promoted to SOC Shift Manager in March 2005, encompassing management of SOC personnel and operations, client escalations, internal escalations, limited network traffic analysis and incident response.
- • Security Analyst; Primarily
responsible for analysis of network traffic entering and exiting customer networks via an intrusion prevention appliance
installed on the customer network. Traffic is monitored in real time by the appliance, and in the event all or some of the
traffic matches rules based on known attacks, the traffic data is sent to the analysts for further inspection. Determinations
are made on a case-by-case basis based on examination of the traffic, cross-referencing with traffic history, and coordination
with other analysts. Also responsible for timely response to client-side outages including low-level troubleshooting and
customer notification. Responsibilities also include handling customer inquiries regarding traffic, alerts, vulnerabilities,
and other general information.
- StayOnline, Inc. (April 2002 - July 2003):
- • Promoted to Tier II Support in May 2003, overseeing Tier I support and handling escalated issues.
- • Support Technician; Responsible for
providing timely and accurate answers to technical questions regarding the internet access systems installed in our locations.
At hotels across the country, systems consist of a wireless network, gateway server, and thin clients populating hotel rooms.
Support responsibilities encompass the entire system, from the thin clients to our main authentication server. Responsible for
filing accurate tickets regarding technical issues, as well as contacting appropriate parties in the event of an outage. Also
responsible for configuration of wireless devices to be shipped to the hotels enabling guests with laptops equipped with
ethernet to use the system.
- Comstar.Net, Inc. / Globix Corporation (May 2000 - September 2001):
- • Promoted to Security Systems Administrator in August 2000.
- • Information Security Analyst;
Responsible for monitoring network traffic on the internal network and customer network using anomaly-based intrusion
detection. Primarily responsible for analysis of anomalous traffic on a network consisting of both Linux and Windows
workstations and servers. Also responsible for logging, indexing, and cataloging of said traffic, as well as contacting any
parties responsible for attacks upon said network. Responsibilities also include periodic penetration testing on both
internal and client servers.
SKILLS
Extensive experience with the Tanium platform including installation, administration (server and agents), and troubleshooting.
Deep familiarity with several Tanium modules including Interact, Connect, Discover, Integrity Monitor, Patch, etc., as well as
custom package and sensor development. Network and endpoint security including traffic pattern analysis using a variety of tools
and intrusion detection systems as well as network monitoring, incident reporting, vulnerability management, and network
scanning/penetration testing including manual vulnerability testing in such areas as SQL injection, cross-site scripting, etc.
Firewall setup and configuration, network access restriction implementation, incident analysis and response, etc. Usage of security
tools such as OSSEC, Tripwire IP360, Nessus, Metasploit Framework/Pro, nmap, netcat, tcpdump, iptables/ipchains, etc. Experience
with the configuration and management of virtualized environments under Proxmox and VMWare ESXi/Fusion/Workstation. Extensive
experience with scripting languages such as Perl and PHP including a solid working knowledge of regular expressions. Experience with
native mobile application development for iPhone and iPad devices using Swift and SwiftUI.
Networking under TCP/IP (LAN environments; peer to peer, or client/server) under UNIX/Linux, Mac OS, Microsoft Windows;
extensive application server configuration and maintenance specializing in LAMP environments (Apache 2.x/1.x), Mail systems
(Dovecot; Exim 4.x; Sendmail), DNS (ISC BIND 9/8), etc. Experience with SQL in both administration, maintenance,
and development. (MySQL, MariaDB) Cloud computing experience with Amazon Web Services.
Operating system administration and maintenance of systems running Linux (Slackware, Debian, Red Hat/Fedora/CentOS, etc.),
Mac OS (and Mac OS Server) 10-14.x/9.x/8.x, Microsoft Windows 11/10/8.x/7/Vista/2000/NT4; ME/98/95; 3.51/3.11/3.1; CE 2.0/1.0, MS-DOS
CERTIFICATIONS ATTAINED
• SANS GIAC Web Application Penetration Tester (GWAPT)
• Metasploit Pro Certified Specialist (MPCS)
• Nexpose Advanced Certified Administrator (NACA)
• PCI SSC Qualified Security Assessor (QSA)
• PCI SSC Approved Scanning Vendor (ASV)
• PCI SSC PCI Professional (PCIP)
• SANS GIAC Secure Internet Presence (GSIP)
• SIP School Certified Associate (SSCA)
EDUCATION
• Interactive Media; International Academy of Merchandising & Design, Tampa Florida (1997-1999)
• High School Diploma; Central High School, Brooksville Florida (1993-1997)