ABOUT ME

Hi, I'm Matt Wilson, an experienced Information Security Manager with a demonstrated history of working in the banking idustry for just under 20 years. As a dedicated cybersecurity professional, I have honed my skills in protecting organizations from the ever-evolving landscape of advanced cyber threats. My expertise spans defensible hybrid architecture, enterprise security, and network design, ensuring that security measures not only meet industry standards but also enable business growth. I thrive on challenges, continuously seeking to enhance security postures while promoting innovation. I am a tech-loving, knowledge-seeking, and highly-motivated family man, surviving fatherhood, one day at a time.

Thank you for taking the time to visit my page.

Certifications

GIAC Defensible Security Architect

Microsoft Certified: Azure Administrator Associate

MCSA: Windows Server 2016

Cisco Certified Network Associate: Routing & Switching

Cisco Certified Network Associate: Security

CompTIA Cybersecurity Analyst (CySA+)

ISC² Systems Security Certified Practitioner (SSCP)

Aruba Certified ClearPass Professional

Brocade Certified Network Engineer

VMWare Certified Associate 6-DCV, Mobility

CNSS 4011

DoD 8570

Work

Mission Federal Credit Union

June 2006 - Present

Information Security Manager

  • Helps develop and define direction for Cybersecurity strategy and Information Security Program.
  • Leads cross-functional teams to ensure zero-trust principles are architected for all enterprise systems, applications, and networks.
  • Responsible for all security-related projects from inception to successful completion
  • Collaborates with member delivery channel stakeholders and Infrastructure teams to architect proper DevSecOps processes.

    • Key Project Highlights

  • Led the deployment of CrowdStrike Falcon Complete, a managed endpoint protection solution that significantly enhanced the organization's ability to detect and respond to advanced threats.
  • Managed the rollout of Rapid7 Vulnerability Management across the organization, resulting in a streamlined vulnerability assessment process.
  • Spearheaded the implementation of Rapid7 CSPM to secure cloud environments, ensuring continuous compliance with security best practices.
  • Successfully implemented Proofpoint Email Security, providing advanced protection against phishing, malware, and targeted email attacks.
  • Oversaw the integration of Abnormal Email Security, focusing on mitigating business email compromise (BEC) and other sophisticated email threats.

    • Senior Information Security Engineer

  • Responsible for designing, implementing, and administering on-premises and cloud information security infrastructure to align with organizational policies to protect its systems, networks, and data
  • Oversee business application implementation and reviews the design and implementation of security measures inclusive of encryption, passwords, certificates, multi-factor authentication, mobile device management and secured file transmissions, prior to adoption.
  • Acts as lead in all information security related incident investigations and work towards enhancing relationship with Managed Detect & Response (MDR) provider.
  • Acts as primary system custodian for all information security related hardware and applications, i.e., Palo Alto firewall, endpoint protection, email security, IDS/IDP, DMARC, User Behavior Analytics (UBA) and vulnerability management.

    • Key Project Highlights

  • Implemented Privileged Identity Management, Multi Factor Authentication, and Single Sign-On through Azure AD for increased Identity Access Management controls.
  • Collaborated with MDR provider to implement 24x7 SOC monitoring for endpoints, network devices, infrastructure and cloud resources.
  • Migrated critical business applications to Azure Cloud and secured connectivity to on-premise data repositories and network infrastructure.
  • Completed hardware refresh of Palo Alto NGFW's at multiple datacenters with zero downtime of critical business applications.
  • Increased overall email reputation and security by achieving DMARC enforcement.

    • Cloud Infrastructure Engineer

  • Responsible for overseeing Azure cloud environments which includes architecting secure solutions that incorporate high availability and redundancy while controlling costs.
  • Collaborate with stakeholders and Business Analysts across the organization to resolve issues, provide technical oversight, and contribute to the overall security and design of production environments.
  • Review and assess user needs; makes recommendations for resources required to maintain and/or expand service levels.
  • Define cloud network architecture using Azure virtual networks, VPN, and express route to establish connectivity between on-premises and cloud.

    • Key Project Highlights

  • Architected the cloud migration of our online and mobile banking platforms, securing connections to on-premises and cloud services.
  • Designed a successful migration and implementation of Azure Active Directory and Hybrid Identity with Office 365.
  • Developed and implemented organizational wide BYOD policies using Microsoft Intune MDM, MAM, and conditional access.
  • Influenced innovation through leading a Microsoft Power App in a day course with a class size of 30+.
  • Navigated the constant changes with the COVID pandemic to facilitate the successful shift of over 250 employees to work from home.

    • Network Engineer

  • Responsible for the setup, maintenance, and troubleshooting of various network devices and services (Palo Alto Firewalls, Routers, Switches, Aruba Wireless).
  • Review and Implement Network Security tools, policies, and procedures (ClearPass, 802.1x, port security, firewall rules, Sophos Endpoint Protection, Symantec Endpoint Manager).
  • Design, implement, and maintain Disaster Recovery architecture, procedures and processes (A10 Load Balancer, GSLB, Zerto).
  • Manage existing and deploy new system configurations, including Windows Server, Virtualization Systems, Mobile Devices, Mobile Platforms and Desktops (Windows and MAC).
  • Monitor performance and ensure system availability and reliability.
  • Create and maintain comprehensive documentation for all implemented networks.

    • Key Project Highlights

  • Successful migration and consolidation of two datacenters into large campus network/datacenter with zero downtime to critical services.
  • Implemented successful disaster recovery infrastructure using A-10 load balancers and GSLB of all critical member-facing services.
  • Facilitated the network and security design for the acquisition of multiple partner organizations.
  • Worked with local school districts to implement secure direct check processing with multiple point-to-site relays to platform provider.