ON Semiconductor is a Fortune 500 semiconductor supplier company based in Phoenix, AZ with operations in 15 countries. Its 31,000 employees produce an annual revenue of over $8 billion. Founded in 1999, ON Semiconductor was originally a spinoff of Motorola’s Semiconductor Components Group. It has acquired over 20 other semiconductor manufacturers and manages them all as subsidiaries under a single security umbrella. Its unique composition makes it a very complex technology environment with a vast threat landscape.

• Served as the Director of Global Security Operations during which time I was responsible for:

• Overseeing all aspects of day-to-day security monitoring and response.

• Serving as incident commander security events anywhere around the globe.

• Coordinating security monitoring and active defense infrastructure across all subsidiaries.

• Prioritizing and reporting cyber risk to executive management and recommending mitigation strategies.

Designed a co-location environment to continually stream Reuters stock data from exchanges to customer-facing brokers as quickly as possible for timely trades. The design included the use of multi-cast streaming technology and QoS network prioritization rules.

Designed and built core data center routing systems capable of withstanding multiple failures across geographically diverse locations. Designs incorporated many different technology concepts including:

o Complex spanning-tree and VTP configurations

o Multiple routing protocols (EIGRP, BGP, OSPF) depending on location or function.

o Multiple load-balancing techniques and configurations.

Load Balancer modules built into hardware.

• Weighted round-Robin.

• Least connection.

• Resource based (adaptive).

DNS load balancing with sophisticated health checks

• Flag file values.

• Specific query-return URLs.

Designed and built sophisticated web proxy environment for local, remote, and guest users.

o Integrated 802.1x authentication results to determine path based on VLAN placement.

o Implemented GRC tunnels for environments that needed additional internal security on web connections.

o Synchronization of corporate rules to external proxy for remote users.

o Configuration of remote user proxy determination based on geographic location.

Designed and built multi-tenant VPN head-end infrastructure used for B2B connections, remote employees, temporary contract workers, and remote support. Environment included:

o Support for multiple remote encryption methods.

o Support for multiple remote routing protocols.

o Isolation of traffic between environments.

RSA Security Analytics (Netwitness) SIEM custom configuration.

o Configuration of custom log parsers in log decoder hardware for unique customer environments.

o Complex rule creation via the Event Stream Analysis module for SIEM alerts.

o Configuration of Malware Analytics module including integration into customer sandbox environments.

RSA ECAT endpoint threat detection customer setup.

o Custom threat intelligence feed configuration.

o External component setup per customer requirements (SYSLOG, SMTP, SA integration, etc.).

• Setup forward-deployed air defense communications systems for Marine Air Support Squadrons worldwide.

• Troubleshot and repaired UHF radio communications issues in high-pressure, life-threatening situations.

• Troubleshot and repaired issues with cryptographic cyphers and frequency hopping SINCGARS (Single Channel Ground and Airborne Radio Systems) technology.