Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP

Information Security Specialist Lead at Freddie Mac [TonyPangilinan AT gmail DOT com]

Washington D.C. Metro Area

Current
Past

see less...

9 more...

Education
  • Strayer University
  • JEB Stuart HS
Recommended
Anthony has 33 recommendations 33 people have recommended Anthony
Connections
500+ connections
Industry
Computer & Network Security

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s Summary

SECURITY PROFESSIONAL with over ten years of progressive experience in Information Technology security, operations and incident response management of high technology businesses. Highly dedicated to contributing to the success of my employer and to upgrading my skills to keep pace with the changes in business. Good self esteem, motivated by challenge, friendly, outgoing and able to leverage my inter-personal and public relations skills.

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s Specialties:

Incident response, malware analysis, anti-virus, computer information security, enterprise security, network security, host based security, policy, auditing, assessments, virtual private networks, payment card information assessments.

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s Experience

  • Information Security Specialist Lead

    Freddie Mac

    (Public Company; FRE; Financial Services industry)

    April 2009Present (9 months)

    Maintain a continuous process improvement work environment, recommending and implementing new/improved processes in accordance with industry standards and best practices. Identify, evaluate, test and implement appropriate security products, tools and systems for implementation of the secure infrastructure.

    Create and enforce security standards and procedures. Articulate security policies, guidelines and standards to customers and developers in order to provide control and consistency throughout Freddie Mac.

    Provide and revoke access to data and network entities. Analyze and provide technical support and problem resolution to customers. Train new staff in security procedures.

    Performs all procedures necessary to protect the safety of the information systems from intentional or inadvertent destruction. Provide security consulting and advisory service to business units and project teams.

    Identify and resolve information security issues. Recommend adjustments to policies and procedures. Works with staff within a business unit to execute short and long term business plans and objectives.

    Builds, develops, and maintains relationships with internal and external customers, and vendors to formulate solutions to Freddie Mac and customer system issues related to information security. Researches and maintains currency regarding information security issues, solutions and potential implications for Freddie Mac.

    Reviews industry trends in relevant technical/professional knowledge areas and determines their applicability to Freddie Mac functions. Performs research for and assists in the preparation of written proposals and presentations for Freddie Mac management.

    Provides input into the design efforts of critical projects and implements newly developed or revised systems or initiatives. Serves as an effective role model (open to change, lives the vision, enthusiastic) for the company and department.

  • Security Consultant

    Stroz Friedberg, LLC

    (Privately Held; Computer & Network Security industry)

    November 2006April 2009 (2 years 6 months)

    Author of the Stroz Friedberg Information Security Policy based on ISO/IEC 27002 Information Technology Security Techniques.

    Key contributor to Stroz Friedberg Achieving Certification as a Qualified Security Assessor by the PCI Security Standards Council

    Collaborate with Stroz Friedberg executive management in developing a security framework based on ISO/IEC 27001 Information Security Management Systems.

    Conduct incident response and perform vulnerability assessments for corporate, government and non-profit clients.

    Implement network security reviews to identify, assess, and analyze clients’ exposures to data loss, security breaches, and other threats to IT infrastructure.

    Design and implement remedial measures to bolster cybersecurity against a variety of threats, including cyber attackers, viruses, and malicious corporate insiders.

    Design and implement business continuity and disaster recovery planning for networks and information IT systems of corporate, government, and non-profit clients.

  • IT Security Engineer

    AOL, LLC

    (Public Company; TWX; Internet industry)

    April 2002November 2006 (4 years 8 months)

    Responsibilities included computer incident response for computer malware and incident handling for computer breaches in the AOL enterprise.

    Developed and documented the Computer Security Incident Response process using a framework developed by Carnegie Mellon CERT.

    Developed and documented the Anti-Virus Incident Response process and a operations guide that details the take apart and analysis process used for identifying and mitigation of malware threats customized to the AOL computing environment.

    Contributed in the development of the AOL Enterprise IT Security Policy based on ISO/IEC 27002 standard along with the development of the IT Risk Management framework utilizing CobiT.

    Architected and established a Centrally Managed Anti-Virus Solution which included the design, testing and implementation of the solution across the entire AOL Enterprise consisting of non-homogenous networked environments.

    Served as a testing lead and liaison for Sarbanes Oxley 404 Compliance.

  • Project Manager

    America Online, Inc.

    (Public Company; TWX; Internet industry)

    August 2000April 2002 (1 year 9 months)

    Served as the lead for enterprise incident response for Internal Computing.

    Responsibilities in this position included computer incident response for computer malware and incident handling for computer breaches in the AOL enterprise with responsibility for approximately 25,000 seats.

    Additional responsibilities included the analysis of malware and submission of samples to Anti-Virus vendors for signature creation.

    Accomplishments included the creation of KW: Virus for internal dissemination of Anti-Virus updates and the launch of the Intranet site for the AOL Desktop Standards Group.

    Operational duties included the maintenance of AOL KW: Virus for internal users and members, ICWeb Company Intranet Site, Desktop Standards Intranet Site.

  • Senior Support Technician

    America Online, Inc.

    (Public Company; 10,001 or more employees; TWX; Internet industry)

    January 2000August 2000 (8 months)

    Hired from a contracting position to full time employment. Responsibilities include training new Support Technicians in various NOS including Microsoft, Novell and Macintosh administration.

    Serve as the internal liaison to the Operations Security Department for Anti-Virus Control Measures. Created and implemented new corporate virus removal procedures.

    Was a key contributor in the discovery of the ILOVEYOU virus in the AOL Campus and assisted in the creation of a counter script to combat the virus. With intervention damage was contained to less than 200 incidents for a user populous of 16,000 seats.

  • AOL Project Leader

    Inacom Information Systems

    (Public Company; 5001-10,000 employees; INAC; Computer & Network Security industry)

    February 1998January 2000 (2 years )

    New responsibilities include 2nd tier troubleshooting and support for various NOS including Microsoft, Novell and Macintosh. Distributed workload and dispatched technicians to field support calls.

    Audit Field Service Engineer reports and do occasional quality spot checks. Train new hires for this job site as well as other job sites on all disciplines including system administration and computer incident response for virus issues.

    Supervise between five to seven personnel depending on task requirements. Good familiarity with Enterprise Administrator and NetWare Administrator software. Experience working with DMS Support system for Radius Server.

  • FCPS Project Manager

    Inacom Information Systems

    (Public Company; 5001-10,000 employees; INAC; Computer Hardware industry)

    June 1997February 1998 (9 months)

    Promoted from Senior Field Engineer to Project Manager. Added responsibilities include implementation of new process workflow.

    Development of streamlined tracking forms for use in the field. Dispatch of technicians to calls. Perform monthly billings of contract labor. Audit Field Service Engineer reports and do occasional quality spot checks.

    Train new hires for this job site as well as other job sites on all disciplines including system administration and computer incident response for virus issues.

    Supervise between five to twenty six personnel depending on task requirements. Responsible for performing quarterly reviews and bonus objectives for all Field Engineers Onsite.

  • Senior Field Engineer

    Inacom Information Systems

    (Public Company; 5001-10,000 employees; INAC; Computer Hardware industry)

    April 1997June 1997 (3 months)

    Hired from temporary assignment to permanent position. Added responsibilities include training of new Field Engineers, triage of new work orders received along with recommendations before dispatch into the field.

    Supervise work crew of two to five Field Service Engineers responsible for an integration and migration network project from AppleTalk to Ethernet. Perform troubleshooting and repair of AppleShare Servers as well as administration of At Ease for Workgroup Servers.

    Assisted in training end users in the use of newly installed computer systems. Apple Certified on all disciplines.

  • Macintosh Field Engineer

    System One Technical

    (Privately Held; 1001-5000 employees; Computer Hardware industry)

    February 1997April 1997 (3 months)

    Responsibilities include repair and configurations of Apple Computers. Performed break and fix duties on site. Tremendous amount of customer relations experience. Working on a temporary to permanent assignment basis.

  • Macintosh Field Engineer

    Tandy Technical Services

    (Public Company; 5001-10,000 employees; RSH; Computer Hardware industry)

    August 1995February 1997 (1 year 7 months)

    Responsibilities include repair and configurations of Apple Computers. Performed printer repairs for all major vendors. Performed all clerical duties as assigned. Heavy public relations and customer service exposure. Responsible for interfacing and resolving all customer issues in the service department.

  • Documentation DTP Clerk

    Raytheon Company

    (Public Company; 10,001 or more employees; RTN; Defense & Space industry)

    March 1991September 1995 (4 years 7 months)

    Responsible for upkeep of administrative files dealing with government and materiel management. Heavy data entry work on HP CFS VAX. Involvement with preparation of both government and commercial proposals. The company was formerly Engineering Research Associates.

  • Apple Sales/System Administrator

    Computer City Superstores

    (Public Company; 5001-10,000 employees; RSH; Retail industry)

    August 1994August 1995 (1 year 1 month)

    Sales Associate for Apple Macintosh products. Responsible for the setup and upkeep of all computers on the Apple Sales Displays. Specifies and recommends system configurations for both retail and commercial needs.

  • Security Guard/Receptionist

    Command Security

    (Privately Held; 11-50 employees; Security and Investigations industry)

    August 1994August 1995 (1 year 1 month)

    Answer multi-line PBX phone system for all office suites. Familiarity with the use of closed circuit monitoring technology. Monitor the physical security access for all offices.

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s Education

  • Strayer University

    AAIT , Information Technology , 20052010 (expected)

    Cumulative GPA of 4.0

  • JEB Stuart HS

    Diploma , Advanced Studies Diploma | Governor's Seal , 19841988

    Activities and Societies:
    All-State Choir, District Choir, All-County Choir, Chamber Singers, Madrigals, Performance Production, Chess Club, Stage Crew, Spanish Club

Additional Information

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s Interests:

Security Concentrations: • Certified in the Governance of Enterprise IT (CGEIT) 2009 • Certified Information Security Manager (CISM) 2004 • Certified Information Systems Auditor (CISA) 2005 • Certified Information Systems Security Professional (CISSP) 2004 • Information Systems Security Architecture Professional (ISSAP) 2005 • Qualified Security Assessor (QSA) 2008 Technical Concentrations: • Comp TIA A+ Certification Specialization in MacOS (A+) 1994 • Apple Macintosh Certified -Desktop Computers -PowerBook Computers -LaserWriter Printers -Champion Certified • HP Certified -Laser Printer Repair -Ink Jet Repair -Computer Repair • Okidata Certified Laser Printer Repair • Canon Certified Ink Jet Repair • Dell Certified • Toshiba Certified • IBM Certified

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s Groups:

• ISC2
• ISACA
• ISSA
• World Wide Executive Council
• PCI Security Standards Council

  •    Blue: The DallasBlue Business Network (25,000+ members)
  •    AOLAlumni
  •    Certified Information Systems Security Professionals (CISSP)
  •    Clarisoft Technologies
  •    Filipino Professionals
  •    Digital Forensics Association (DFA)
  •    Open Web Application Security Project (OWASP)
  •    Information Systems Security Association (ISSA)
  •    IT Governance
  •    Information Security Community
  •    Certified Information Systems Auditor
  •    Certified Information Systems Audit Professionals
  •    Computer Security and Forensics
  •    ISACA Professionals
  •    PCI QSA - Qualified Security Assessor Network
  •    Global Pinoy
  •    SAP Security Group
  •    Risk Managers
  •    Payment Card Industry Network
  •    Toronto ISSA
  •    The Philippine-American Chamber of Commerce (PACC)
  •    Information Security Network
  •    AOL CONNECTIONS
  •    Governance, Risk and Compliance Management (GRC)
  •    PCI DSS FORUM
  •    CGEIT Network
  •    PCI DSS Network Professionals
  •    Strayer University
  •    e-LEGAL
  •    Risk, Regulation & Reporting
  •    Information Security Sales
  •    JobAngels
  •    Stroz Friedberg Alumni
  •    CompuPros Independent IT Consultants
  •    Writers and Authors Circle
  •    AOL Reunion - DC Metro Area
  •    JobAngels -- US SOUTHEAST -- Job Seekers and Angels

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s Honors:

• AOL Business Technologies Raise the Bar Award ITRM SOX Team 2005
• AOL Business Technologies Raise the Bar Award BT Virus Protection Team 2005
• Awarded Employee Excellence Award 2002
• IC Team Recognition Award Enterprise Help Desk Transition Project 2000
• Nominated for Employee Recognition for the Third and Fourth Quarter 1998
• Awarded Employee Recognition for the Third Quarter 1998
• Three Degrees from Kevin Bacon

Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s Contact Settings

Interested In:

  • career opportunities
  • consulting offers
  • new ventures
  • job inquiries
  • expertise requests
  • business deals
  • reference requests
  • getting back in touch

View Full Profile

Public profile powered by: LinkedIn

Create a public profile: Sign In or Join Now

View Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP’s full profile:

  • See who you and Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP know in common
  • Get introduced to Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP
  • Contact Anthony Pangilinan, CGEIT,CISM,CISA,CISSP-ISSAP directly

View Full Profile