Position title: Security Analyst
Government of Manitoba
Department of Finance
Office of Information Technology (OIT)
Information Protection Centre (IPC)
Found a firewall misconfiguration (included in a briefing to the
Minister of Finance).
Scanning internal IIS web servers for Code Red and Nimda
Creating summaries of IDS logs for CANCERT (Canadian CERT)
Attending Information Protection Association of Manitoba (IPAM)
Working with Snort and ISS's (Internet Security Systems) Network
Intrusion Detection Systems (called RealSecure) (updating them, reading
their logs, new installations)
Mapping the internal network's topology.
Demonstrated a proof of concept exploit that could defeat old ISS
Analyzed daily lists of vulnerabilities to determine if any systems were
Used nmap, Nessus and other scanning tools to help find any potential
Helped diagnose bad web content that produced a denial of service (DoS)
attack like symptoms.
Evaluated several encryption products.
Evaluated filtering proxies.
Worked with WebTrends to help with forensic analysis through proxy log
Worked with hard drive imaging technology to help prepare to do future
Re-configured a Checkpoint firewall.
Did arp scans.
Test lab creation & maintenance (x86, RS/6000 AIX 4.3.3,
Sun EPS 250 Solaris, HP R300 HPUX).