Tony Zafiropoulos has been leading Fixvirus.com since 1999, with hundreds of projects, systems configurations and more.
CISA Certified (ISACA organization) as of 11/11/24 ISACA is an organization which helps people stay up-to-date on many aspects of cybersecurity including auditing computer systems – Information Systems Audit and Control Association.
Certified Information Systems Auditor®
(picture is from the early 2000’s )
In the late 90’s placed companies on the Internet for the first time (Huntleigh Financial Services).
In early 2000’s helped some efforts:
Moved a company (Smith Moore & Co) from 2 offices to one(Saint Louis Area), No errors 1 minor oversight which was corrected quickly, the end result no loss of business or functionality (project Management and business acumen) while moving 70 some computers and servers.
Transferred a flat file database structure to a SQL database, a typical ETL (Extract Transform Load) project. Hired and tested the programmer to perform the function within tight time and budget constraints. (Brennan Tools – Saint Louis the owner retired and closed company)
Moved back office programs from Phase3 to Thomson Financial, we had to go from a real-time trade execution to batch file execution. Developed the confirm technology with a sharp Perl programmer. Led the effort in the shortest time ever says Thomson Financial (also for Smith, Moore & co – In Saint Louis, Jefferson City, and Columbia, MO) – More project management skills as well as leading an agile programming methodology. Had to help in the printing testing and other methods.
I have many other examples from earlier in my career.
But this company today is about security. In the last 10 years I have worked on contracts for large enterprise environments (Pfizer and Savvis) where I supported upgrading IPS (Intrusion Prevention Systems) from IBM (Proventia). I upgraded over 50 systems working with Network, onsite and firewall teams. The IPS systems create a network of protection against malware and other attacks on the Pfizer network.
IBM Proventia IPS systems, Cisco network gear, Windows Servers, Linux systems, System administration with Security focus, all I have worked on.
At Savvis (Saint Louis, MO) I helped change ACL’s (Access Control Lists)
Starting 2013 computer network security is the focus. www.oversitesentry.com is the Fixvirus.com Security Blog where I write about technical details and more regarding a variety of cybersecurity issues. including how AI will affect cybersecurity.
Our security testing methodology is included in my book “Too Late You’re Hacked”(this website link) and ‘the Guide’ to the book “Too Late You’re Hacked”(oversitesentry link). Although i keep this site up a bit, my blog is at oversitesentry.com – also have a vlog at rumble.com(Small Business cybersecurity channel) and youtube.com.
Tony’s phone number: 314-504-3974
Located in the Greater Saint Louis Metro area.
Also I am of Greek ancestry – part of the Assumption Greek Orthodox Church – come to our festival There is an interesting Greek cultural heritage you may not know: PhilotimoΦιλοτιμο. Wikepedia entry – “Philotimo is considered to be the highest of all Greek virtues which determines and regulates how someone should behave in their family and social groups. In its simplest form it means “doing good”, and it ensures your behavior will make you stand out from others”
My translation: to help others as I would want them to help me.
I can only hope to aspire as others before me, but I am trying to use my talent from God to solve this Cyber security riddle that companies have.
Also an apt Youtube video (regarding ΦΙΛΟΤΙΜΟ)
Contact us to discuss Governance and other projects
Taught SEC020 and SEC030 at the old CAIT Center for Application of Information Technology (Off-campus at the old Famous-Barr building)
then Professional Education Technology and Leadership Center. And now it is:
V8
Certified Ethical Hacker certification – V8 (Windows8 and Windows2012 included) until Feb 2017
Funny how Windows versions change but don’t change – Today Microsoft wised up and just calls it Win10/Win11, Although the servers still have the years on them.
I did pass the CISA – (Certified Information Systems Auditor) test , now am waiting for the review of my experience by ISACA.
Member of ISACA (ISACA® is a nonprofit, independent association that advocates for professionals involved in information security, assurance, risk management and governance.)
Current picture
The following service products would give you an understanding of what we do.
You can start with creating a security policy.
Our Mission is to improve Cybersecurity
You can hire me to be your double-check of your Information technology defenses.
We have 3 different CISO services:
- Minimum CISO service 25 hrs/month Risk management-basic, vulnerability assessments-min(nmap)
- Standard CISO service 40-60hrs/month Risk management-standard, vulnerability assessment-standard includes different nmap scans.
- Maximum effort 200 hours per month minimum.Uncover all risks by probing endlessly within business time constraint.Vulnerability assessment takes initial nmap test then probes vulnerabilities with gvm (Greenbone Vulnerability Management). Very soon set up automated scans weekly basis (or more) i.e. scan all systems on weekly basis.
Set up vulnerability management system which also checks software on each desktop, server.
The scanner checks all systems on network port level. Management system checks the software level.
Set up social engineering tests for users, either for PCI compliance or HIPAA. But it’s also for general financial fraud.
Max will be customized to needs of client
Security policy creation
All employees must understand implications of cybersecurity
oversitesentry.com Is there to make security easier to understand.T
The following is a much older project:
Whereas Tonis Zafiropoulos, E.I.T., dutifully and meritoriously performed in the position of Co-Chairman, MSPE Information Technology Task Force.
Wheras: you have gone the EXTRA MILE for the Missouri Society of Professional Engineers in your endeavors, and its members are exceedingly grateful and wish to recognize the achievements you have made on their behalf.
This award was given because we(other co-chair was Bob Becnel) talked the MSPE organization into grabbing the MSPE.org domain name back in the mid nineties (1996 or so). As you can see MSPE.org is Missouri not MN, or MD, or MS.
Phone: 314-504-3974
Pingback:Insider Knowledge Threats and Action | Oversite Sentry
Pingback:Improve Cybersecurity – Let’s Teach More Infosec | Oversite Sentry
Pingback:Can the Cloud “Fix” Your Security Risks? | Oversite Sentry
Pingback:Stop Attacking Me – Don’t exploit My Code Bro | Oversite Sentry
Pingback:Are You Afraid Of Malware Ads? | Oversite Sentry
Pingback:2016 New Year – New Firewall? Which One? | Oversite Sentry