My name is Stephen Gaucher. I am a computer systems analyst specializing in security.
My CV follows:
Experience
Security Analyst, Threat & Vulnerability
Aritzia LP, Kelowna, BC — Jan. 2022 to Present
- To do
Systems Analyst, Network
City of Vernon, Vernon, BC — Mar. 2020 to Jan. 2022
- Administered wired/wireless network infrastructure (including switches, firewalls, wireless access points) and physical/virtual server environments across all city facilities
- Expanded the use of Linux in the datacenter where prudent
- Discovered, documented, and remediated security vulnerabilities, greatly enhanced the city’s security posture through endpoint hardening, network segregation and DR strategy
- Implemented infrastructure/application monitoring, file server auditing and two-factor authentication for a variety of applications
Technical Specialist
Tolko Industries Ltd., Kelowna, BC — Sep. 2018 to Feb. 2020
- Supported on-site information systems and infrastructure at five Central Okanagan mill sites in conjunction with infrastructure team at headquarters in Vernon, making use of Agile methodologies and ITIL-oriented incident, problem and change management systems
- Worked with mill electrical staff to design, develop and deploy HMI/PLC systems and improve mill and electrical cogeneration operations
- Assisted with company-wide infrastructure projects including firewall configuration, server/storage maintenance and lifecycling, endpoint patch/upgrade management, wi-fi delivery and end-user training
- Created detailed documentation and diagrams and wrote articles for IT and end-user knowledge bases
Systems Administrator
SunRype Products Ltd., Kelowna, BC — Jun. 2009 to Sep. 2018
- Administered end-user desktop software/hardware, analog/digital/IP desktop telephony, mobile provisioning and carrier management including contract negotiations, networking, email, physical and virtual server operations, storage, physical security, and environmental control/power distribution, with specific focuses on availability and managing cost
- Managed disaster recovery operations including both planning and testing as well as mitigated several incursions of ransomware with almost no loss of productivity and no loss of data. Orchestrated third party penetration testing and remediation of their findings
- Coordinated end-user security awareness training including mock phishing exercises and skills-based assessment
Certifications
- AZ-500: Microsoft Azure Security Technologies, 2023
- SC-900: Microsoft Security, Compliance, and Identity Fundamentals, 2022
- AZ-900: Microsoft Azure Fundamentals, 2021
Education
Network and Telecommunications Engineering Technology Diploma, Okanagan College, 2009