Andrew Yoder, CISSP

LinkedIn

LinkedIn

GitHub

GitHub

Employment History

JPMorgan Chase - Cybersecurity and Technical Controls July 2023 - Present

Manager, Vulnerability Management Engineering
    Acquired by JPMorgan Chase, continued responsibilities from previous role.
  • Implemented Wiz cloud security solution
  • Implemented CrowdStrike Falcon Complete security solution

First Republic Bank - First Line Risk August 2022 - Present

Manager, Vulnerability Management Engineering
    Leader of the first line risk team for threat intelligence and vulnerability management. Responsible for threat & vulnerability management for workstation, server, infrastructure, network, cloud, and application security initiatives. Responsible for analyzing and remediating technology and cyber risk. Determined criteria for prioritization efforts based on risk factors. Developed key performance indicator (KPI), key risk indicator (KRI), and service level agreements (SLA) to measure program effectiveness and drive continual risk reduction efforts. Researched compensating and mitigating controls. Seek and monitor threat intelligence sources to identify evolving threats to the organization.
  • Implemented enterprise vulnerability management solution Tenable.io
  • Operationalized data from AquaSec product suite to prioritize findings based on risk factors for containers
  • Developed rapid response process for critical threats and vulnerabilities
  • Implemented procedures for managing the banks attack surface and drove remediation of identified risks
  • Resolved escalated technical issues associated with remediation activities

Becton Dickinson - Information Security Office August 2021 - August 2022

Lead Threat & Vulnerability Analyst
    Brief leadership on threats to the global organization and advances in the cyber threat landscape. Manage communications, processes, timelines, resources, and progress for enterprise, manufacturing (OT/ICS), and product security areas. Support incident response, threat hunting, and analysis efforts. Conduct research on emerging threats. Compose written analysis of identified risks and their potential impact. Identify gaps in security program and controls. Provide strategic oversight for vulnerability management operations. Develop dashboards to support data management of vulnerability and threat operations. Foster relationships with federal government partners.
  • Partner with cybersecurity officers on risk reduction strategies
  • Develop dashboards to capture threat intelligence and vulnerability activities
  • Track threat actors targeting health care or medical device industry and document tactics, techniques, and procedures (TTPs)
  • Provide consultation to teams regarding threats against their services/systems and researching potential vulnerabilities
  • Coordinate cross functional response efforts to critical vulnerabilities
  • Reviewing Indicators of Compromise (IOCs) to ensure detection coverage
  • Organize and maintain documentation for internal information security table-top exercises and training
  • Leverage healthcare rubrics for vulnerability scoring and threat modeling

Princeton University - Package Adoption and Configuration July 2017 - August 2021

Lead ECM Architect
    Responsible for application delivery for packaged solutions. Configuring advanced integrations with commercial and custom applications. Responsible for system architecture and implementing application upgrades. Implementing automation using Puppet & PowerShell to accelerate application deployment and delivery. Partner with Service Management Office to implement Change Management, Problem Management, and Event Management using ServiceNow for packaged solutions. Recipient of Tiger Award for outstanding individual acheivement and Team Stripe Award.
  • Develop custom solutions for university departments and handle integration with third party applications/databases
  • Perform application and platform upgrades
  • Implemented new REST API module to enable modern integrations with other systems
  • Develop cloud strategy for packaged applications
  • Implement robust authentication and authorization strategies including the introduction of multi-factor authentication for packaged solutions using Shibboleth (SAML). Automated user onboarding and provisioning process.
  • Implement Puppet for configuration management
  • Partner with Information Security Office to ensure developed solutions are in compliance with University and organizational policies
  • Member of Problem Review Board which reviews Major Incidents and ongoing identified Problem records to ensure technical resources are being prioritized appropriately
  • Partner with the Enterprise Security and Monitoring team to introduce Application Performance Monitoring
  • Onboard vended applications into LogRhythm and configure alerts based on logged events
  • Built dashboards in ExtraHop to track and identify network security events

University of New Mexico - Business Applications February 2015 - June 2017

Systems/Network Analyst 2
    Serve as lead technician for the Division of Enrollment Management. Managed departmental workstations and Windows servers including the enterprise student records systems. Performed DBA functions on a variety of SQL Server machines. Managed Juniper hardware firewalls.
  • Manage UNMs enterprise Hyland OnBase implementation including performing application and platform upgrades
  • UNMs Records and Registration repository
  • Over 3.5 million archived documents
  • Manage database, application, and web servers
  • Constructed development environment for testing patches and upgrades
  • Successfully performed multiple platform and application upgrades on time maturing the service
  • Administer Unitrends Recovery Series backup appliance
  • Automate the deployment of workstations and servers using System Center Configuration Manager
  • Ensure compliance with FERPA data requirements
  • Monitor network and application infrastructure with PRTG monitoring servers
  • Use PowerShell for automation and scripting of administrative tasks
  • Representative on IT Agents
  • Built dashboards with Microsoft Power BI to track and report on application usage
  • Implement role based security to simplify the management of access to confidential and restricted data
  • Created vulnerability management program to identify vulnerabilities with servers and workstations using Nessus

University of New Mexico - Information Technologies October 2013 - February 2015

Technical Support Analyst 1
    Provided enterprise workstation management services to centrally managed departments. Made recommendations on enterprise hardware & software configuration policies and migrated departments to centrally managed desktop and server management. Assigned as dedicated technician to the Office of the President for IT needs. Reviewed changes to network infrastructure for potential impact on University resources
  • Provide enterprise level desktop support to departments who enlist the services of the Workstation Management Group including:
  • Office of the President
  • Office of Equal Oppourtunity
  • Office of Institutional Analytics
  • Office of the Provost
  • Office of Planning, Budget, & Analysis
  • Office of the Executive Vice President for Administration, COO, and CFO
  • Safety and Risk Services
  • Policy Office
  • Internal Audit
  • Government Relations
  • University Regents
  • UNM West
  • Build, test, and deploy a variety of Windows images using DISM and other enterprise utilities used on 1,200+ workstations
  • Coordinate with Networking, Security, Platforms, and Application teams to establish enterprise desktop standards
  • Perform Active Directory OU Administration
  • Modify and create applicable Group Policy procedures
  • Develop and update technical documentation
  • Deploy software, updates, and images using Microsoft System Center Configuration Manager
  • Review changes to network infrastructure for potential impact on university resources including HP Tipping Point IPS and Palo Alto firewalls
  • Assisted with the integration of the Field Agent program including the alignment of technical procedures, training, and service agreements
  • Run reports on managed resources in Active Directory using PowerShell
  • Member of Active Directory Technical Committee who was responsible for setting the direction of the enterprise domain

University of New Mexico - Information Technologies March 2013 - October 2013

Student Technical Specialist
    Provided support at various departments for Windows desktops and servers including the building, configuration, and troubleshooting of images, group policy, and Active Directory OU administration.
  • Assist with large scale workstation installations including UNM Gallup deployment of over 250 machines in two days
  • Test and deploy computer images
  • Perform OU administration in Active Directory
  • Troubleshoot Group Policy issues
  • Compose Technical Documentation
  • Test software for compatibility issues
  • Provide technical support to multiple UNM departments including:
  • Institute For Applied Research Services (IARS)
  • Bureau of Business and Economic Research (BBER)
  • Geospatial and Population Studies (GPS)
  • Division of Governmental Research (DGR)
  • School of Law
  • Managed over 30 network printers through Windows print servers
  • Provided training to individual users and large groups
  • Assisted with SAS, SPSS, STATA, R, and ArcGIS technical issues
  • Served as technical advisor for Kofax Capture/KTM enterprise content management system

Administrative Office of the United States Courts - U.S. Probation & Pretrial Services Office May 2010 - April 2013

Information Systems Technician
    Responsible for providing user support to a number of offices across the state of New Mexico. Also assisted Systems administrator with hardware and software upgrades to a variety of server and network projects.
  • Created additional inventory control procedures and maintained accurate inventory of computer equipment including the purchase and responsible disposal of servers, desktops, computer hardware, and network equipment
  • Repaired and upgraded user workstations
  • Designed, built, and administered VMware vSphere 5 system
  • Built and managed multiple FreeNAS boxes
  • Trained users in 9 locations around the state on new or existing court technology
  • Oversaw the successful migration from a Windows XP environment to a 64-bit Windows 7 environment
  • Assisted with facilities and procurement initiatives including new construction and repurposing of existing space by mapping out data and power requirements for specialized systems
  • Assisted with Lotus Notes / Domino Server Issues
  • Built kiosks used for electronic monthly reports which helped streamline the process and free administrative staff from manual entry of the reports
  • Captured and deployed images using Norton Ghost
  • Worked with networking engineer on data center network redesign
  • Coordinated with Systems Administrator to redesign backup and disaster recovery procedures
  • Implemented a low footprint datacenter redesign in multiple areas around the state which included heavy use of virtualization that saved the court money in cooling, hardware, and electric costs
  • Configured a Nagios server to monitor departmental services across the network
  • Implemented a help desk ticketing system to track requests and monitor incident trends
  • Designed and implemented the districts first computer forensics laboratory for analysis of computer and mobile devices for clients on supervision

Professional skills

Here is an overview of the platforms and software I have experience working with.

Operating Systems

  • Windows
  • Windows Server
  • macOS
  • Linux

    • Software

  • VMware vSphere
  • Microsoft SQL Server
  • Active Directory
  • Wireshark
  • Sysinternals
  • Git
  • ExtraHop
  • LogRhythm
  • Qualys
  • Tenable.io/sc/ot
  • Aqua Cloud Security
  • Rapid 7 Nexpose/insightVM
  • Flashpoint
  • Microsoft 365 Defender
  • Microsoft Sentinel
  • Microsoft Power BI
  • Palo Alto Panorama

    • Languages

  • PowerShell
  • SQL
  • HTML

    • Education

    University of New Mexico2015 - 2017

    Master of Science (MS), Information Systems and Assurance

    Program focused on cyber security, analytics, data management, and project management. A member of UNM's Center for Information Assurance Research and Education program.

    University of New Mexico2010 - 2014

    Bachelor of Business Administration (BBA), Management of Information Systems

    Encompasses the analysis, design, implementation, and management of information systems.

    Relevant Coursework

    • ECE 595 - Web Application Architectures
    • ENGL 219 - Technical & Professional Writing
    • MGMT 330 - Business Programming Fundamentals
    • MGMT 331 - Business Application Programming
    • MGMT 326 - Information System Security
    • MGMT 329 - Data Management
    • MGMT 631 - Information Systems Project Management
    • MGMT 648 - Advanced Information Systems Security
    • MGMT 646 - Digital Forensics
    • MGMT 638 - Advanced Database Management
    • MGMT 639 - Advanced Topics: Data Warehousing
    • MGMT 633 - Vendor and Contract Management
    • MGMT 635 - Data Analytics
    • MGMT 639 - Advanced Topics: Multivariate Analysis Methods
    • MGMT 551 - Problems: Cloud Architectures
    • OILS 510 - Designing Knowledge Management Solutions