Alicia LewisAddress: 335 North Broadway, Yonkers, NY, 10701 Phone: (914)310-1251 Email: lewisnamaste@gmail.com

US Naval Veteran with a Masters of Liberal Arts in Cyber Security Over eight years of IT network, hardware and security experience working with MSP's and Critical Infrastructure. Extensive experience with Cyber Security, PHI, PII, Nerc CIP compliance and risk.

EDUCATION Mercy College Dobbs Ferry, NYMasters of Liberal Arts – Cyber Security February 2014 Bachelor of Science – Health Science February 2006

APPLICATION EXPERIENCE

Microsoft OneDrive FireEye Office 365 Citrix Xen

Symantec - SEP Imperva Archer Symantec - SDCS

Splunk RSA/Envision Trustwave - DLP Exabeam

StealthWatch Tipping Point Encase SourceFire

Tipping Point WebSense TripWire FTK

PROFESSIONAL EXPERIENCE Consolidated Edison New York NYSenior Cyber Security Analyst December 2013 - Present

Work in Risk and Threat detections business teams. Designed architecture, configured and implemented Splunk SIEM. Worked with substations to prepare for NERC CIP V5 compliance. Worked with Federal agencies with information sharing and network investigations. Maintained roles within threat detection and risk management teams. Maintained company PKI internal infrastructure. Coordinate and oversee IT risk assessments performed internally and by third party consultants. Perform vulnerability scans using commercial and open source tools to identify and remediate security gaps. Work closely with relevant business units to collect and analyze the appropriate documentation required for

vendor risk reviews. Reviewed independent audit reports (e.g. SSAE16, SOC 2) and supporting vendor security documents Conduct security assessments of vendor solutions being considered for procurement. Provide guidance to business

organizations on security requirements for hosted services and secure data exchange with third parties. Run monthly Corporate Cyber Security Team meetings and communicate on cyber security issues affecting the

industry and our company Deliver periodic presentations to management on cyber security issues, proposed standards (e.g. NERC CIP) and

industry trends Review and update information security policies, standards, and procedures in support of ensuring confidentiality,

integrity, and availability of systems and data Draft RFPs for procurement of cyber security products and services Participate in industry groups and collaborate with regulatory resources to identify and understand emerging

threats and vulnerabilities. Develop and maintain a corporate cyber security awareness program using various communication methods to

educate employees and raise awareness about cyber security issues both at work and at home Provide support to operating areas on cyber security compliance and best practices Participated as an SME on the DOE Electricity Sector Cyber Risk Management Maturity Model drafting team Participated in various E-ISAC, GRID EX and CERC Drills. Manage Security Network Operations Center team. Work with business groups to comply with security guidelines and data loss prevention. Worked with external auditor to acquire documentation and support. Implemented, managed and established security PII and PHI projects with external devices, secure printing and

file monitoring. Configured and managed IDS and IPS security tools.

Project Management lead for segmentation and islanding projects of network systems.

Magi Technologies Yonkers, NY Network Consultant October 2011 – December 2013 Refer major hardware or software problems or defective products to vendors or technicians for service Hire, supervise, and direct up to 5 employees at any given time while workers are engaged in special project work,

problem solving, monitoring, and installing data communication equipment and software Provide recommendations to security architecture and design Develop Information Security Policies and Standards for the Medical Centers in connection with HIPAA, ISO

requirements Performed in depth research on requests regarding new application or software, for proper security policies and

effectiveness Utilized comprehensive knowledge of business continuity planning and technical disaster recovery planning and

testingResponsible for managing the HIPAA and HITECH Risk Assessment Consultants regarding clinical and business

applications used by the hospitals Install, manage and troubleshoot applications used for clinical units Demonstrated and produced audits of 180 health, business and enterprise applications Performed in depth research on requests regarding new application/software, for security policies and effectiveness Responsible for Risk Assessment for EMR system and process

EZ MSP Yonkers, NY LAN Administrator February 2009 – January 2012 Consulted customers, visited workplaces or conducted surveys to determine present and future user needs Assigned duties, responsibilities, and spans of authority to project personnel Prepared project status reports by collecting, analyzing, and summarizing information and trends Worked with engineers, systems analysts, programmers, technicians, scientists and top-level managers in the design,

testing and evaluation of systems Tested and evaluate hardware and software to determine efficiency, reliability, and compatibility with existing system,

and make purchase recommendations Conferred with project personnel to identify and resolve problems Design and implement systems, network configurations, and network architecture, including hardware and software

technology, site locations, and integration of technologies Managed project execution to ensure adherence to budget, schedule, and scope Monitored system performance and provide security measures, troubleshooting and maintenance as needed

National Association of Female Professionals Yonkers, NY Admissions Director June 2008 – February 2009 Created internet network groups throughout the tri-state area for professional women Worked with IT team to create website and generation of leads through internet usage

New York Sports Club Dobbs Ferry, NY Membership Consultant December 2007 – June 2008 Sold fitness services including - personal training and small group sessions Increased market share 25% (5 share points) in assigned area Increased by 205 the # of new accounts

REAL Billing & Coding Yonkers, NYBilling \ Claims Supervisor March 2007 – December 2007 Strong knowledge of regulatory requirements of HIPAA compliance Experience with private practices and hospitals and negotiating new contacts with physicians Responsible for supervising 20-25 employees Responsible for end of month reports and budgets

United States Navy USS Dwight D Eisenhower, Virginia, United StatesQuartermaster \ Navigation June 1995 – December 1999 Created and maintained computers for daily navigation Monitored operations and systems within the bridge of the aircraft carrier Maintained computer navigational systems. Configured and operated satellite, GPS and sonar systems for updates and upgrades.

Calculated barometer readings, weather and sunrise and sunset Answered directly to the Officer and Executive Officer of the ship Manned the Helm and maintained the courses at forward steering