You are on page 1of 3

Thomas J. Maika 4021 Percival Rd., Apt 1213 Columbia SC 29229 (239) 682-8016 tm1ad7c36@westpost.

net Information Technology Professional with broad-based experience in system design /administration, project management and corporate-level IT security. ______________ PROFESSIONAL EXPERIENCE _____________________ BLUE CROSS BLUE SHIELD of SC, Columbia, SC 3/2011 to 9/2011 IT Auditor, IT Project Manager, Security Information Management Provide IT deliverables within PMBOK standards: initiating, planning, executing , controlling, and closing. Project lead in IT Audit automation involving Windows Active Directory, AIX, UN IX, zLinux and Novell servers. IT Security countermeasures and analysis using: Retina, Nessus SC4, nCircle ip3 60, PGD gold disk and HIDS. Perform penetration testing, vulnerability analysis, PCI compliance, ethical ha cking. Built database in security compliance referencing SSAE-16, HIPAA, FFIEC, FDIC, FIPS, DIACAP, FISMA, STIGS, CMSRs and IAVA standards. Utilized security tools Symantec enterprise, AppDetective, UNIX security ready review scripts SRRs, Arc Sight, and McAfee Enterprise. Audited, performed break/fix analysis and penetration tested, UNIX, AIX, SUSE Linux, zlinux mainframes, Novell, Microsoft Win2k3, Win2k8 stand-alone / domain controllers, active directory and network security appliances to remediate authe ntication errors. Enhanced PMO to provide better service application development with SDLC. Proficient with Word, Excel, PowerPoint, Access, Visio, Project, Active Direct ory, User of SharePoint, AIX, UNIX, RACF, CICS. MICROWARE INC., Ft. Myers, FL 8/2010 to 3/2011 IT Systems Engineer, IT Sales and Delivery Applied PMI project management principles with client computing services and ne w IT security projects. Configured juniper, cisco, watch guard and application firewalls, remote access , security incident response programs, countermeasure actions and performed pene tration testing. Applied IT security controls with ISO24762 and ISO27001. Hands-on IT technician, Microsoft gold partner skilled with Win2k, Win2k8 serve rs, TCP/IP, DHCP, DNS, gateways, wifi 802.11i RSN security standards. Cloud computing security implementation in hosting contracts administration, le gal requirements, IT security. Initiated project management standards involving client's internal controls, SO X, accounting applications, VPN projects and network analysis. Marketed financial services clients to perform off-site IT work in SSAE-16, IT security assessments, PCI compliance, FFIEC, FDIC, BASEL II Accord and SEC guida nce. Increased unit sales by 25%. Promoted new business via BNI groups and local com munity involvement. Proficient with Excel, PowerPoint, Project, Access, Visio, QuickBooks Pro, MAS90, Backup Exec, Arc Serve. HEMISPHERE HOLDINGS CORP., Syracuse, NY 3/1996 to 2/2011 IT Systems Manager, Licensed Real Estate Agent Hardened and secured network of Win2k8 servers, PCs, Watch Guard firewall, Cisc o router, TCP/IP, DNS, POP email accounts, cloud security in database, Symantec

enterprise security. Introduced the internal control need for enhanced IT security, IT audit, ethica l hacking and Nessus scanning. Implemented cloud computing security, SLA and contract administration. Secured PCI compliance procedures for office. Provided key direction in a legacy database conversion project to a virtual web -based application. Initiated new service level agreements SLA in vendor management and realized ov er $200k in cost savings. Upgraded new IT security procedures and solicited IT vendor support. Secured re mote access and new VPN. $500k budget, Proficient with Excel, PowerPoint, Project, Access, Backup Exec, ARCserve. BAYVIEW FINANCIAL, LP, Coral Gables, FL IT Auditor 8/2007 to 3/2008

Sought as an industry reference to lead projects referencing FFIEC, FDIC, COBIT , HIPAA and BASEL II accord. Applied BASEL II models for strategic planning. Built mobile user/wireless 802.11 audit program. Improved existing IT security plan for the company. Added virtual and co-locat ion elements to audit scope. Authored a COBIT-based IT audit program for the mortgage business where none ex isted previously. Participated in penetration testing engagements, countermeasures and business r isk impact analysis involving ISO27001, disaster recovery planning and co-location testing. Wrote controls to ensure SOX 404/General Computer Controls GCC reliability of c ritical systems valued at $50 million. Recommended a critical application project be run to better reflect SDLC and PM BOK, PMI standards. Developed risk models to analyze the company via root cause, life cycle and act ual dollar value risk impact. Improved assessment of security structure, IT governance and risk assessment fo r lines of business. Provided reports to internal and external auditors, to ensure their accurate un derstanding and analysis of risk impact. Mitigated a $3 million risk exposure in re-aligning business objectives with Ca pital Markets core application. Proficient with Excel, PowerPoint, Project, Access, SharePoint. $1 million budget, oversee 3 staff MIZUHO CORPORATE BANK, LTD. New York, NY 5/2004 to 6/2007 Vice President, Systems Planning, Risk Project Manager Applied risk strategy in BASEL II analysis for internal capacity adequacy asses sment procss providing proper risk assessment, buffers, capital planning, and us e test. Risk project manager; control self assessment (CSA) involving risk assessment, BASEL II Accord governance, superviory review and evaluation. Utilized Project Management Office and PMBOK in assessing SDLC procedures for C apital Markets application. Identified potential risk impact regarding IT risk. Mitigated a $30 million exp osure. Provided ITIL v2, COBIT, FFIEC, FDIC best practices analysis for system-network enhancements. Wrote key controls for Business Impact Analysis BIA and BCP disaster recovery p lan. Systems analysis involving ISO27001, penetration testing, ethical hacking, and

forensics analysis with critical systems. Directed 14 person staff in a corporate governance project utilizing risk, FFIE C and Japanese FSA principles. Built project management PMBOK, NIST information quality, and ISACA COBIT stand ards into IT key controls. Highlighted IT risk to effectively mitigate issues in IT network infrastructure , and SDLC/systems development teams. $1 million budget, oversaw 14 staff, made key recommendations to management to help direct IT operations. PARENTE BEARD LLC,(RADICS & CO.,LLC) Clark, NJ 1/1997-5/2004 IS Manager, IT Auditor Wrote IT security plans, BCP disaster recovery plans for client companies. Launched client bank BASEL II governance, risk assessment, control buffers and IT internal capital assessments. Wrote audit program for EDS-HP web banking application. Improved security audi t programs with audit engagement team, 3rd party consultants and sought senior p artner approval. Consultant to thrift industry and vendors. Led over 200 IT-FFIEC and SAS 70 audits for 60+ clients including Bank service bureaus. Audited Top Secret, AS/400, DASD, IBM 7 series mainframes, Win2k, Win2k 3 distributed operating environment. Industry reference with FFIEC safety and soundness security controls audits and risk assessment reviews. Lead hands-on technical manager in supporting a 100 user network involving Nove ll 5x, Win2k3, MS Exchange server, TCP/IP, DNS, POP accounts, Backup Exec, ProSe ries Tax, Go Systems Tax, QuickBooks Pro, Peachtree Accounting. Tally IAVA security metrics and report to staff and management existing securit y concerns and requirements. Participated in network penetration testing and BCP disaster recovery drills. Provided board-level business guidance regarding IT operations, IT governance, internal controls and audit findings. Promoted best practices referencing ISACA COBIT, ITIL, BASEL II, FFIEC, GAAP an d OTS guidance. $500k budget, oversaw 3 staff. INTERPUBLIC GROUP (fka WILLIAM D

You might also like