Enterprise cybersecurity threats I have mitigated and documented with written procedures: implementing discretionary access control, securing biometric scanners, securing single sign-on, securing the access token, implementing implicit deny, securing active directory, securing user accounts, managing user account properties, managing groups, managing Linux users, managing Linux groups, configuring
Linux user security and restrictions, securing group policy, configuring user account restrictions, configuring account policies and UAC settings, hardening user accounts, configuring smart card authentication, using fine-grained password policies, controlling authentication method, browsing a directory tree via LDAP, credential management, using hashes, cracking a symmetric encryption key, managing certificates, configuring a subordinate CA, wiping a hard drive, implementing basic forensic procedures, using forensic tools, creating a forensic drive image, investigating a social engineering attack, breaking into a system, securing mobile devices, enforcing security policies on mobile devices, enrolling devices and performing the remote wipe, configuring IPv6, configuring Subnetting, analyzing a TCP three-way handshake, performing perimeter reconnaissance, mitigating a UDP flood attacks, mitigating ARP poisoning, examining DNS attacks, configuring Network Security appliance access, configuring the DMZ, configuring a perimeter firewall, configuring NAT, configuring virtual private networks, configuring web threat protection, implementing network access protection with DHCP enforcement, configuring wireless connection, using wireless attack tools, detecting rogue hosts, configuring a wireless access point, configuring captive portal, securing default passwords, securing a switch, configuring the VLANS from the command line interface, hardening a switch, implementing intrusion monitoring, implementing intrusion prevention, configuring an Internet small Computer System interface secure area network, implementing Malware protection, using rainbow tables, capturing passwords, hardening operating systems, managing automatic updates, configuring Windows firewall, using secure templates with group policy, configuring GPO's to enforce security, scanning for open ports, configuring NTFS permissions, removing unneeded services, managing security zones, configuring IE enhanced security, managing cookies, implementing popup blockers, enforcing an IE settings through GPO, protecting a client from SPAM, securing e-mail server, securing e-mail on iPad, blocking peer-to-peer software, securing windows messenger, configuring application control software, creating virtual machines (VM), managing VMs, adding VM network adapters, creating virtual switches, hardening applications on Linux, implementing application whitelisting with Applocker, implementing data execution preventions, implementing RAID, backing up workstations, restoring WorkStation Data from backup, backing up the domain controller, restoring server data from backup, securing files using the encrypted file system, encrypting files with GPG, configuring BitLocker, adding SSL to a web site and, requiring IPSec for communications.
