MIKE SHANNON
Information Security Analyst/Manager
GCFA, GCFE, GCFW, GAWN, GCIA, GSEC, GCIH, CCSE, CCNA, CNE, MCSE, MS
mike[@]mmshannon.net
PROFESSIONAL EXPERIENCE:
11/05-Present: (CONFIDENTIAL), Los Angeles, CA
SVP, Network Security
Responsibilities include: (CONFIDENTIAL)
3/04-11/05: Indymac Bank, Pasadena, CA
Manager, Network Security
- Assess, direct and manage all aspects of Indymac Bank’s network security
- Manage Network Security Team.
- Monitor all aspects of network infrastructure for security compliance
- Email Encryption compliance
- Firewall configuration and log analysis
- Forensics Analysis using Encase
- Log analysis and correlation of all disparate systems, Arcsight
- Incident Response Team participant
- Intrusion Detection/Protection Systems
- Monitor Web filter and design rules, Websense
- Policy Writing
- RSA SecureID
- Security audit and configuration of network devices, Routers, switches and VPN devices
- Vulnerability assessments of all network devices internal and external
- Wireless security, Monitoring and Rogue detection and locating
- Liaison with Internal Audit teams to comply with Financial Regulations (CA-SB 1386, GLBA, OTS, and SOX)
5/01-3/04: DANONE Waters of North America, Los Angeles, CA
Senior Network Engineer – Security Engineer
- Cisco VPN WAN
- Solaris Checkpoint Firewall
- Redundant, PIX firewall
- Intrusion detection with Snort
- Internet filtering with I:Filter
- Implemented remote access replacement using Nortel Contivity VPN and MS RADIUS
- Security monitored all access points to the corporate network.
- Responsibilities included vulnerability scanning and penetration testing on all internet facing routers, firewalls and servers, monitored all security logs, incident handling, produce and maintained security policies and maintained DRP/BCP.
6/97-4/01: WINSTAR, Los Angeles, CA
Senior Systems/Network Engineer/Consultant/Analyst
- Senior Systems Consultant-Engineer for Winstar’s Professional Services Division.Specialized in: Security assessments & design, Firewalls, VPN, IDS, Cisco routers & switches, BGP configurations, LAN/WAN design, file servers, sales support.
- Additional responsibilities included: design, implementation, integration, securing, and troubleshooting Microsoft and Novell networks.
10/95-6/97: MEDIA SERVICES, Los Angeles, CA
Manager-Director, Computer Operations; Network Administrator
- Managed Computer Operations (5 person staff, Novell and Microsoft NT) for Media Services and Oberman, Tivoli & Miller Ltd. business management companies, and its’ client base.
10/93-10/95: ENTERTAINMENT PARTNERS, Burbank, CA
Network Systems Engineer, Customer Support
- System Administrator for internal, 20 user, Novell 3.12 and Microsoft NT network.
- Set up and maintained Novell and Windows for Workgroups networks for Entertainment Partners’ clients.
8/93-2/94: CALIFORNIA STATE UNIVERSITY, Long Beach, CA
Assistant Professor, Biostatistics, Department of Biology.
6/92-8/93: PCBASICS, Van Nuys, CA
Computer Consultant, Independent.
9/91-8/92: UNIVERSITY OF CALIFORNIA, LOS ANGELES
Programmer/Analyst II IBM Mainframe, MVS/TSO
- Maintained OSHA database; performed statistical analyses from the OSHA database; contributing author in Cisternas, M., M. Smith, M. Shannon and J. Froines. Industries with increased risk of occupational diseases in California.
9/88-8/91: CALIFORNIA STATE UNIVERSITY, LONG BEACH
Teaching Assistant, Biostatistics; General Biology Laboratory, PC Instructor and support
EDUCATION:
4/2018: GCFA #14127 GIAC CERTIFIED FORENSIC ANALYST, Van Nuys, CA
4/2017: GCFE #3553 GIAC CERTIFIED FORENSIC EXAMINER, Van Nuys, CA
7/2007: GSEC #3236 GIAC SECURITY ESSENTIALS RE-CERTIFICATION, SANS, Los Angeles, CA
10/2005: GCFW #698 GIAC CERTIFIED FIREWALL ANALYST , Van Nuys, CA
7/2005: GAWN #63 GIAC Auditing Wireless Networks , Van Nuys, CA
3/2004: GCIA #705 GIAC CERTIFIED INTRUSION ANALYST, Los Angeles, CA
9/2003: GSEC #3236 GIAC SECURITY ESSENTIALS CERTIFICATION, SANS, Los Angeles, CA
1/2003: GCIH #0390 GIAC CERTIFIED INCIDENT HANDLER , SANS, Los Angeles, CA; Recert March 2005
3/2001: 1/2 CISCO CCNP; ACRC and BCMSN TEST (2 of 4 for CCNP, BCRAN would have been next), Los Angeles, CA
1/2001: CHECKPOINT CCSE, Los Angeles, CA
4/2000: CHECKPOINT CCSA, Los Angeles, CA
11/99: MICROSOFT WINDOWS 2000 ACCELERATED TRAINING, Santa Monica, CA
4/99: CISCO CCNA, Los Angeles, CA
2/99: NOVELL 4.11 TO 5.0 UPDATE, Los Angeles, CA
6/98: MICROSOFT EXCHANGE 5.0, Los Angeles, CA (completes MCSE requirements for NT 4.0)
4/98: MICROSOFT WINDOWS NT TCP/IP, Los Angeles, CA
3/98: MICROSOFT WINDOWS NT WORKSTATION, Los Angeles, CA
2/98: MICROSOFT WINDOWS NT SERVER 4.0, ENTERPRISE, Los Angeles, CA
1/98: MICROSOFT CERTIFIED PROFESSIONAL, Microsoft Windows NT Server 4.0, Los Angeles, CA
4/97: NOVELL 4.1X ADMINISTRATOR, North Hollywood, CA
10/96: FRED PRIOR MANAGEMENT SEMINAR: HOW TO SUPERVISE PEOPLE, Burbank, CA
8/95: MICROSOFT, SUPPORTING WINDOWS 95, Santa Monica, CA
4/95: MICROSOFT, NT WORKSTATION 3.5; NT SERVER 3.5, Santa Monica, CA
3/95: MICROSOFT, SUPPORTING MICROSOFT NT WORKSTATION AND SERVER, Santa Monica, CA
2/95: NOVELL, 3.x to 4.x UPDATE, North Hollywood, CA
7/93: NOVELL, CERTIFIED NETWORK ENGINEER. v2.2 & v3.11, Van Nuys, CA
12/92: CALIFORNIA STATE UNIVERSITY, LONG BEACH; Master of Science, Biology.
6/86: UNIVERSITY OF CALIFORNIA, LOS ANGELES; Bachelor of Science, Biology.
SOFTWARE:
Operating systems: CHECKPOINT, CISCO IOS, MS DOS, MVS, NOVELL 3.12, 4.11 & 5.0, MICROSOFT WINDOWS 3.11, 95 & 98 MICROSOFT WINDOWS NT, 2000, 2003 and XP, SOLARIS 8. LINUX (many flavors, but especially Slackware)
SPECIALTIES:
Snort IDS, packet analysis, Wireless Security, Checkpoint FW-1/VPN-1, Cisco Routers, VPN’s, Microsoft 2k, 2k3, Network Infrastructure building and design. Network Security (audits, pen testing, hardening). Very efficient and accurate on finishing projects. Documentation.
TECHNICAL INTERESTS:
Any technology that is new and different. Network Security. Open source hacking tools. Becoming proficient at various *nix’s. Wireless networking.
Applications and Utilities (listing just the security related ones):
AIRCRACK
CISCO WLSE
BLACK ICE
CHECKPOINT FIREWALL-1, VPN-1, NG
ETHEREAL
IPTABLES
KISMET
MCAFEE ANTIVIRUS
MICROSOFT PROXY 2.0
NESSUS
NMAP
NORTON ANTIVIRUS
NORTON ANTIVIRUS & UTILITIES
PGP
QMAIL
RETINA
RSA/ACE
SSH (various forms, Linux, Cisco, Solaris and Win32)
SNIFFER PRO
SNORT (Windows and Linux)
SYSLOG (*nix and Kiwi)
TCPDUMP & WINDUMP
ZONE ALARM
other miscellaneous tools, utilities…
Programming Languages: TURBO PASCAL, SAS (Mainframe and PC). Recently, a bit of Perl, php and c++; script kiddie stuff
HARDWARE (listing only security devices) :
Cisco Routers, switches and PIX
Intrusion firewall boxes
Netscreen firewall appliance
Nokia firewall boxes
Sonicwall firewall appliances
HOBBIES
Network Computer Security; Wireless Networks
Saltwater Fishing
Lock Picking