Shane Albright's Résumé

Professional Summary

I have eighteen years of information technology and information security experience in a variety of environments, including two publicly-traded companies, a public research university, and an Information Sharing and Analysis Center (ISAC). I possess a thorough understanding of information technology fundamentals as well as a great depth of knowledge and skill in the area of information security management and the design, deployment, operation, management, and continual improvement of IT infrastructure and services.

Experience

Principal Security Engineer

Research and Education Networks Information Sharing and Analysis Center (REN-ISAC)
February 2021 – Present

  • Develop, implement, secure, manage, maintain, and improve systems and processes in service of aiding and promoting cybersecurity operational protection and response within the research and higher education communities.
  • Develop, implement, manage, maintain, and improve IT and information security documentation, including policies, procedures, technology standards, baselines, and guidelines.
  • Currently leading the implementation of a structured, comprehensive information security management program for REN-ISAC based on the CIS Controls.
  • Architected and engineered an on-demand penetration testing environment in Amazon Web Services (AWS) using Kali Linux and infrastructure as code (IaC) processes and technologies, including Terraform, Packer, and Ansible.
  • Gather, analyze, manage, and share threat-related information and intelligence.

Principal System Administrator

Indiana University, Student Health Center
November 2010 – January 2021

  • Provided operational leadership for information technology and information security at the Student Health Center as well as four other clinical healthcare environments across three campuses.
  • Supervised and mentored another system administrator and mentored the manager of the IT help desk.
  • Developed, implemented, managed, maintained, and improved IT and information security processes and related documentation, including policies, procedures, technology standards, baselines, and guidelines.
  • Implemented, managed, and improved an information security management program that aligned with the NIST Cybersecurity Framework.
  • Completed information security management projects and tasks, notably in the areas of asset management, governance, risk assessment, vulnerability management, access control, incident management, data recovery, disaster recovery planning, security assessment and audits, and regulatory compliance (HIPAA).
  • Implemented, managed, and maintained physical and technical safeguards to ensure the confidentiality, integrity, and security of electronic protected health information (ePHI) per the HIPAA Security Rule.
  • Implemented, managed, secured, and maintained multiple LAMP stacks (Linux, Apache HTTP Server, MySQL, and PHP; in this case); which were used to develop, test, and host both the Student Health Center's internally-developed web applications as well as third-party solutions such as MediaWiki.
  • Implemented, managed, secured, and maintained multiple Microsoft solution stacks (SQL Server and Internet Information Services (IIS) running on Windows Server); which were used to test and host both the Student Health Center's legacy, internally-developed web applications as well as third-party healthcare information systems.
  • Designed, implemented, managed, secured, and maintained a departmental server infrastructure based primarily on Microsoft technologies that provided a number of services for the Student Health Center’s staff.
  • Designed, implemented, managed, and maintained Group Policy for the Student Health Center's Windows clients and Windows Server instances based on Windows security baselines and CIS Benchmarks.
  • Designed, implemented, managed, and maintained an issue tracking system for the Student Health Center's IT team based on Request Tracker and Ubuntu Server. This solution was replaced by JIRA Service Desk in April 2015.

Systems Engineer - Infrastructure Specialist

Interactive Intelligence
September 2007 – June 2010

  • Implemented, managed, and maintained a VMware Infrastructure 3 DRS cluster consisting of five VMware ESX 3.5 hosts managed using vCenter Server 2.5. The cluster supported approximately 100 virtual machines.
  • Implemented, managed, and maintained an HP LeftHand P4000 iSCSI Storage Area Network (SAN).
  • Designed, implemented, managed, and maintained a data backup/recovery system based on Symantec Backup Exec 12.5 software that utilized a disk-to-disk-to-tape backup strategy. The system backed up over 10 TB of data each week.
  • Procured, deployed, managed, and maintained HP ProLiant DL server and HP ProLiant BL blade server hardware.
  • Administered Active Directory, DNS, DHCP, and file services on Microsoft Windows Server 2003.
  • Completed information security management tasks associated with asset management, vulnerability management, data recovery, disaster recovery planning, and regulatory compliance (Sarbanes–Oxley).

Adjunct Faculty

Ivy Tech Community College
August 2006 – December 2007

  • Taught one section of CIT 201 — Advanced Operating Systems: Linux each semester for three semesters.

Education

Ivy Tech Community College

A.A.S., Computer Information Systems

  • Specialties: PC Support & Administration; Networking
  • Graduated summa cum laude
  • GPA: 4.00
  • Outstanding Student Award Recipient

Indiana State University

B.S., Automotive Technology Management

  • Minor: Business Administration
  • GPA: 3.63

Certifications