Ernest Staats

Address: Calhoun, GA 30701

E-mail: info@networkpaladin.org

Phone: (423) 464-6604

Professional info
 

I perform information security consulting for schools, medical institutions, and small businesses . I hold a Masters in Information Assurance along with BS/AS degrees in Business and Information Systems . I have performed technical network administration for government and faith-based institutions along with giving presentations internationally in security and networking. I have worked in the medical and academic areas as a network and security consultant. I hold vendor neutral certifications along with vendor specific certifications. I have established security and network policies or procedures for my clients and employers

Work experience
 

IT Security Director 

IT Sentrix  - General Conference of SDA    South Pacific Division            2015 - Present

Responsible for a combination of day-to-day operations as well as strategic security planning for information security measures that impact the enterprise for executive management approval.
Develop and implement security policies, procedures, and processes relevant to Information Security Program to ensure confidentiality, availability, and integrity of data for all computing systems.
Manage the IT Security and Risk & Compliance consistent with ISO 27001 security safeguards and controls.
Ensure that Information Security and Privacy regulations are being implemented.

Provide expert knowledge of security requirements and regulations that govern IT security programs to include PCI, HIPAA, NIST and ISO27001.

Coordinate, Conducted and participated in internal and external IT security audits
Provide senior level reports for understanding and completing risk mitigations.
Provided oversight for reporting and assisting in computer security incidents.
Provide Oversight of the patch management program, report patch status to executive and senior level management, and provide mitigation strategies.
Performing vulnerability scanning/mitigations, virus reporting, and corrections.
Provided oversight and review of configuration change management.
Investigating new security technologies and manage an IT Security support team.
Conduct electronic discovery and digital forensic investigations.
Mentor IT Security Team and other teams to become more security self-sufficient

 

 

 Senior IT Security / Network  

Harbin Clinic                                                                                            2015-- 2017

Certifications

Certified Information Systems Security Professional (CISSP) 

Certified Ethical Hacker (CEH)

Certified Wireless Network Administrator (CWNA)

Microsoft Certified Systems Engineer (MCSE)

CompTIA Security +

CompTIA Network +

CompTIA I-Net+

CompTIA Server+

Certified Novell Administrator (CNA)

Protocols

Ethernet, WIFI 802.11x, SSL, SSH, TCP/IP, 802.11i, 802.1Q, 802.1x, T1/T3, ISDN, IPSEC, IPX/SPX, ICMP, SNMP, PPP, HTTP, CHAP

Operating Systems / Software

iOS, Android, Windows 2000-2008R2, Novell, Linux, ProCurve, Aerohive, Meru, Proximity and Time Card systems,  Windows X-7, BackTrack, VMware, MDM, Several cloud providers 

Hardware

Apple, Lenovo, VoIP, Packet Shaper, Firewalls/UTM,  HP Network Devices, Wireless controllers, IP Cameras, Proximity locks, Servers, Data Center Monitoring

Develops partnerships with a variety of stakeholders by linking ideas to others perspectives, building support and implement a plan to gain consensus and buy-in.
Develops and maintains relationships with other leaders in the ITS department
Developed a high performing ITS Security & Network infrastructure team.
Develops project plans, manages projects, communicates status, holds staff accountable for delivering results.      
Have an innovative approach to solving complex problems. Think outside the box but also can adopt and operate within a certain level of conformity.
Responsible for providing support as required for all security and infrastructure needs 24x7 
Responsible for managing the Security Incident response team and reports after action items
Responsible for managing the demand for usability & Security resources to support projects and service requests.
Responsible for ensuring changes to IT infrastructure follow the change management policy and procedures 
Responsible for the configuration of the infrastructure to ensure implemented systems meet the organizational goals of providing safe patient care in an efficient manner.
Responsible for managing the availability of infrastructure by ensuring it is on current release levels to ensure vendor support, high availability, and reliability.
Responsible for managing the documentation of security and infrastructure.
Responsible for overseeing the integrity and security of data and systems access processes.
Oversight, design and implementation of sophisticated security measures to protect the Harbin Infrastructure.
Develops and presents training courses for Harbin Clinic personnel at all levels relative to the privacy and security of health information.
Develops and directs technical teams in the investigation and resolution of complex privacy and security problems.

Director IT Security / Security Consultant 

City of Chattanooga                                                                                            2014 -- 2015

Manage staff including prioritizing and assigning work; conducting performance evaluations; ensuring staff is trained.

 

Manages the day-to-day activities of the security division section which includes planning, coordinating, administering and evaluating programs, projects, processes, procedures, systems and standards; ensuring compliance with federal, state and local laws, regulations, codes and/or standards; coordinating activities between multiple service areas.

 

Gathers and analyzes information from departments to determine and set disaster recovery operations.

 

 Participates in forecasting, preparing and administering IT security division budget, project budgets and assist the CIO with annual budgeting; prepares cost estimates for budget recommendations; submits justifications for budget items; monitors and controls expenditures.

 

Assists and advises the CIO on matters pertaining to strategic and action plans for IT security, disaster recovery, penetration testing, use policy, IT change management, and other IT security related matters.

 

Monitor and maintain access controls on network usage, user account policies.

 

Communicates and collaborates with internal departments, external consultants, vendors, external agencies, regulatory officials and/or other interested parties to coordinate work activities, exchange information and resolve problems.

 

Audit IT security measures and user account access levels to achieve maximum effectiveness of IT systems and users.

Technology Director / Security Consultant 

Georgia Cumberland Academy                                                                           2001--2014

Consult with administration on current, future security and risk implications

Recruit and manage information student security team assigned to implementation and execution of information security policies and procedures

Promote internal security awareness

Create all IT security policies and procedures with administration approval

Monitor and assure compliance with federal regulations HIPPA, CIPA, PCI,  and industry standards, instituting changes as necessary

Responsible for network engineering, design, implementation, integration, cabling, equipment selection, and technical support

Manage multiple concurrent projects, and perform project feasibility analysis

Implement a mobile - BYOD program and robust wireless infrastructure

Technical subject matter expert, in evaluating, selecting, and integrating information security-related projects

Manage and coordinate network operation efforts, IT planning, security, and other technical areas

Institute technical countermeasures to identify threats and attempted security breaches

Deliver technical briefings and project plans to management

Establish a virtualized network with on and offsite redundant backup disaster recovery

Institute a magnetic and proximity ID card/door system

Manage conversion of accounting, development and SIS software to cloud-based solutions

Coordinate integration efforts, develop operational procedures, and implement and support LANs, WLANs, and WANs

Develop and manage budget for campus network and telecommunications infrastructure

Provide vision and leadership for technological initiatives on campus

Mentor and support IT staff members while managing their project assignments

Establish and supervise a customer-centric Helpdesk, Graphic Arts, and Streaming teams

 

User Support Specialist II  GA 

Georgia State Department of Human Resources, Rome                                         1999-2001

Designed a VPN for school nurses to connect to Georgia Dept. of Public Health

Installed proxy servers, wireless networks, and DSL routers

Upgraded all PC’s and servers at several medical clinics

Spearheaded the drive to install high-speed Internet to all Environmental Department offices 

Performed network security analysis and managed user system rights

Installed/managed network servers, Web server, and a web database

Computer Technician / Consultant

Guam Adventist Academy, Talofofo, Guam                                                             1995 - 1999

Consultant for SDA medical clinic and the regional education department on network and web security

Designed and managed all computer network, user, and system security settings

Designed network and remediated accounting software for Guam Micronesia Mission office

Converted accounting software to meet new business goals for the Guam Micronesia Mission

Education
 

Norwich University 

Masters of Science Information Assurance                                                                         2006

Union College 

B.S. degrees in Computer Science Education and Business Education                          1995

A.S. degrees in Computer Information Systems and Business Management              1995

Cookie Settings