Sam Jobes

Master of Science - Computer Networking & Security

Bachelor of Business Administration - Finance

IBM Generative AI for Cybersecurity Professionals Specialization

Certified Information Systems Security Professional (CISSP)

Certified Information Systems Auditor (CISA)

Security+

Network+

A+

Security Architect/Incident Response (IR) Engagement Lead

Directed teams of up to 15 engineers, successfully restoring business-critical systems and data within days following serious cybersecurity events. Conducted damage assessments for ransomware incidents affecting millions of dollars in operations, ensuring immediate damage control and reduced downtime. Initiated containment and eradication strategies, simultaneously coordinated triage and forensics workstreams based on critical infrastructure prioritization, regulatory requirements, and specific client requests. Worked in tandem with internal IT teams, coordinating with additional third party IR providers such as Mandiant, Unit 42, and CrowdStrike when required.

Mentored and supported Dell analysts and forensic engineers across all IR workstreams during engagements. Co-facilitated daily/hourly status meetings, enhancing client decision-making processes with real-time updates on milestones. Served as a subject matter expert (SME) in C-suite discussions, successfully securing additional resources for storage, networking, and forensics, which directly contributed to a reduction in incident recovery time. Delivered tailored closeout presentations, advocating for the implementation of recommended security measures, resulting in sustained risk mitigation for clients. Offered strategic guidance to corporate legal teams during negotiations based on forensic findings and provided detailed cost reports to insurance providers.

Co-developed internal automation tools using SharePoint and Microsoft Power Platform, significantly reducing manual processing times. Designed playbooks and workflows for engineers in various subject matter areas. Contributed to the ideation and development of new client-facing security products, as well as providing valuable feedback to enhance existing solutions.

Security Consultant (HIPAA/Data Privacy)

Led the setup and configuration of Microsoft Sentinel, Defender for Cloud Apps, Identity, and Endpoint, securing over 5,000 devices within Azure GCC-High for global operations. Collaborated with IT to develop a hybrid multi-cloud architecture (Azure, AWS, Office 365, SAP HANA), increasing operational efficiency and reducing infrastructure costs by 15% to 20%.

Implemented Cisco Umbrella, successfully offloading 100% of DNS traffic from AD servers globally, improving security response time and reducing DNS-related vulnerabilities and threats. Managed the rollout of Cisco Stealthwatch, FirePower, CyberArk, and SailPoint, securing privileged server access, corporate network and resource access, and effectively segmenting legacy manufacturing systems and networks.

Supervised global refresh of PaloAlto firewalls, taking advantage of server clustering and Panorama to reduce panes of glass for enhanced security monitoring. Led the Spirit Security Change Board, implementing new change controls and spearheaded an effort to streamline, document, and update existing corporate firewall rules. Acted as SME, advising on policy, standards, and compliance, resulting in improved regulatory adherence across all business units in an effort to comply with recent changes to government contractor requirements (CMMC).

Security Consultant (HIPAA/Data Privacy)

Delivered comprehensive security consulting for 5+ law firms, ensuring 100% HIPAA compliance and improving overall IT infrastructure security. Assessed business systems and processes, resulting in a reduction of data breach risks, strengthening the integrity and availability of client data used in legal representation. Conducted IT audits across multiple firms, identifying critical vulnerabilities in existing infrastructure and implementing policy and hardware changes. Installed and configured security hardware/software, identified and remediated system vulnerabilities, improved overall system reliability and up-time. Developed IT security policy and provided contract recommendations, resulting in cost savings and reduced third party provider risks.

SIEM & Security Infrastructure Engineer - Team Lead

Led a team of 8 engineers for SIEM operations, managing multi-tenant security services for 20+ global clients, and acted as SME for McAfee SIEM and ePO services. Assisted in the migration of a SIEM platform to AWS from 3 legacy data centers, improving system reliability and reducing overall operational costs.

Provided SME support for SOC 2 audit preparation, improved overall compliance and reduced security gaps. resulting in successful certification. Conducted comprehensive gap analysis for risk and compliance across 10 client environments, identified and remediated major vulnerabilities, reducing compliance-related risks for clients.

Authored security procedures, policies, and business continuity documentation, improving overall regulatory compliance and streamlining security response processes. Developed playbooks for security analysis, triage, and incident response, improving response times and ensuring consistency across security operations teams globally.

Senior Security Engineer/Analyst - IPS

Delivered expert security consulting services for the State of Texas DIR. Deployed TrendMicro/TippingPoint IPS systems with full 10G inspection at multiple perimeter gateways, enhancing network defense capabilities. Configured and tuned all IPS/IDS systems, optimizing traffic inspection and increasing intrusion detection accuracy. Acted as SME for IPS/IDS operations, leading deployments and threat investigations.

Conducted threat research and threat hunting, identifying unique threats, preventing multiple major security incidents affecting state-critical infrastructure. Co-designed and configured multi-tap architecture, enabling continuous network recording and improving packet inspection efficiency, enhancing incident response times. Monitored and advised on DDoS mitigation strategies provided by CenturyLink across carrier backbones, reducing the impact of DDoS attacks and safeguarding critical infrastructure against service disruptions.

Product Designer, Developer, Business Analyst, & Course Author

Architected and integrated systems for online course publishing via learning management system, providing user management and payment processing. Authored first in a series of security, ethics, and compliance courses for Texas attorneys, reaching over 20 law firms, improving regulatory compliance. Produced, directed, and developed interactive online security courses accredited by the State Bar of Texas, facilitating continuing education for 200+ attorneys and legal professionals.

Senior Level Technical Solutions Consultant

Supported IPS, next-gen firewall, and advanced threat appliance deployments for over 1000 global clients. Delivered expert troubleshooting and network defense guidance to Fortune 500 companies and governments during active attack scenarios. Developed tailored configuration and filtering strategies for clients, optimizing network traffic flow and enhancing security efficiency based on unique topologies and architectures. Conducted root cause analysis for network-down events, and implemented permanent fixes that improved system reliability across client environments.

Developed internal infrastructure for reproducing complex issues, reducing troubleshooting times and facilitating proof of concept deployments for 20+ customer environments. Co-developed internal and external testing and data gathering tools, improving product testing efficiency, enabling faster identification of system configuration issues. Authored more than 50 configuration and troubleshooting guides, improving support team efficiency, enabling faster resolution of customer issues.

Cyber Security Lead - Delivery Center Operations Americas

Managed a team of 12 security analysts and IT technicians across North and South America, to ensure the protection of sensitive client data. Led audit preparations for 10+ delivery center clients, ensuring 100% compliance with HIPAA, PCI, and SOX regulations. Enforced security policies across the Americas region, reducing security incidents and ensuring compliance with regional and global standards. Developed and led security training sessions for over 50 team members, improving security awareness and reducing policy violations. Rolled out security initiatives that contributed to successful ISO 27001 certification for global delivery centers. Managed the deployment of security applications and hardware across multiple regions, improving threat detection capabilities and reducing vulnerabilities in client networks. Represented the “Americas” in change review meetings, advocating for security changes that resulted in a significant reduction in security risks across the region's IT infrastructure.

Information Security Analyst – Delivery Center Operations Americas

Primary analyst tasks included local security event reporting, analysis of current and new policy, maintenance of internal client relations, and pre-audit preparation activities. Additionally, assisted with the operations and reporting for firewalls (Cisco, Juniper), IDS/IPS (ISS, McAfee), event monitoring (script deployment), and content filtering (Websense). Managed installation, configuration, and deployment of Retina vulnerability scanning systems at each delivery center in the Americas.

Security Analyst

Assisted clients with custom security appliance installation and configuration, reducing security vulnerabilities and improving system stability through regular patch management. Contributed to the design of FreeBSD-based security appliances, enhancing intrusion detection capabilities, increasing overall effectiveness. Conducted market analysis for new security product components, identifying key features that increased customer interest and contributed to the successful launch of two new products. Performed wireless penetration tests and vulnerability assessments for clients across multiple states, identifying critical security gaps and reducing vulnerabilities through remediation efforts. Produced executive reports detailing critical vulnerabilities and security recommendations, leading to the implementation of the recommendations and reducing potential risks for clients.