Brian Chuong
Verified Expert in Engineering
IT Security Developer
Calgary, AB, Canada
Toptal member since August 21, 2023
Brian is a highly skilled and experienced IT professional specializing in security. Throughout his 25+ year-long career, he has developed a deep understanding of information security principles and best practices. Brian has an excellent knowledge of various IT domains, including manufacturing, banking, and IT services.
Portfolio
Experience
Availability
Preferred Environment
Window Defender ATP, RSA, Passwordstate, Splunk, Rapid7, Microsoft 365, RD Web, Palo Alto Networks, McAfee
The most amazing...
...thing I've built and implemented is RSA multi-factor authentication (MFA) that I integrated with different applications.
Work Experience
Security Solution Architect | Technical Lead
TC Energy
- Designed and implemented RSA multi-factor authentication (MFA) and integrated it with Active Directory (AD), Palo Alto Captive Portal, and other applications for operational technology (OT).
- Created and implemented Splunk infrastructure and integrated it with applications for collecting security events in OT for the security operation team.
- Designed and implemented Passwordstate for password management.
- Developed and implemented Rapid7 Solutions for the vulnerability management team and integrated them with security information and event management (SIEM).
- Implemented Microsoft 365 Cloud App Security (Microsoft MCAS) and integrated it with SIEM and Cortex XSOAR.
- Worked on SailPoint to find a solution for privileged access management (PAM) and identity access management (IAM).
- Worked on finding a solution for TSA tasks for OT endpoint anti-virus scans and MFA for a corporate restriction zone.
Senior Security Analyst
TC Energy
- Maintained a no-major-incident record throughout my tenure as a senior security analyst, demonstrating my exceptional incident presentation and risk mitigation skills.
- Conducted in-depth email investigations, identified the root causes of security incidents, and provided reports to senior management.
- Supported and managed a wide range of security tools and technologies, like Microsoft Defender ATP, Palo Alto XDR, Demisto SOAR, Trellix Endpoint Security, ePolicy Orchestrator, VirusScan Enterprise, ArcSight, Splunk, Vectra, RSA, and BeyondTrust.
- Developed red and blue teams and created procedures and guides for team members by leveraging advanced techniques and threat intelligence feeds to identify and neutralize potential threats before they could cause harm.
Technical Team Lead
TC Energy
- Managed and distributed workload among team members, ensuring tasks and projects were assigned based on individual strengths, skills, and expertise.
- Mentored and cross-trained the team members, focusing on enhancing technical skills and promoting professional growth through workshops, seminars, and individual coaching sessions.
- Created an automation package to migrate Windows NT to XP systems, including profile migration, application installation, and printer migration.
Experience
Architecture, Design, and Implementation of MFA for an OT Environment
To streamline user access to the OT environment, I integrated the MFA system with the Palo Alto Captive Portal, serving as a gateway. This portal now requests users to input their username and passcode, and upon a successful authentication process, grants them access to a terminal system for the industrial control system (ICS) through the Remote Desktop Protocol (RDP).
Moreover, I meticulously devised disaster recovery protocols and break-glass solutions for the MFA implementation, ensuring the system remains resilient and can effectively handle unforeseen scenarios.
Certifications
GIAC Certified Forensic Examiner (GCFE)
Global Information Assurance Certification (GIAC)
GIAC Certified Intrusion Analyst (GCIA)
Global Information Assurance Certification (GIAC)
GIAC Security Essentials Certification (GSEC)
Global Information Assurance Certification (GIAC)
Microsoft Certified Systems Engineer
Microsoft
CCNA
Cisco
Linux+ Certified
Linux Professional Institute
CompTIA Security+
CompTIA
Skills
Tools
Splunk, McAfee, ArcSight, McAfee Endpoint Security, McAfee MVISION Endpoint
Languages
VBScript, Python 3
Platforms
Rapid7, Red Hat Linux, Cortex XSOAR
Other
Window Defender ATP, RSA (Cryptosystem), Passwordstate, Security Foundation, Windows NT, Microsoft 365, RD Web, Software Packaging, EnCase, Palo Alto Networks, Cisco Switches, Routing, Intrusion Detection Systems (IDS), Network Traffic Analysis, Incident Response, Email Forensics, Threat Intelligence, Security Architecture, Secure Application Design, Operational Technology (OT), Trellix Endpoint Security (ENS), Trellix EDR, Trellix Solidcore, Trellix ePolicy Orchestrator
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring