SUMMARY OF EXPERIENCE:

• Master's of Information Systems from University of Phoenix.
• Offer over 20 years of experience with major system implementation and process reengineering efforts within mainframe and client server environments following software development life cycle SDLC processes.
• Strong analytic skills that include information security, analysis design and execution.
• Talent for translating business needs into system requirements and technical design documents for INFOSEC projects.
• Strong aptitude for communicating complex technical issues with clarity and to translate them into business terms.
• Exceptional business, technical and interpersonal communication skills.
• Experience documenting entire systems.
• Have a passion for computer automation, reducing manual activities, and implementing cost savings.
• Extensive experience with project management, change control processes, and managing changes to baseline requirements.

TECHNICAL SKILLS:

• Operating Systems: MS DOS, Windows 2003, XP, UNIX, MVS, Windows 7
• PC Software: MS Office 2003 2007, Visual SourceSafe, MS SQL Server, MS Visio, MS Project, PVCS Tracker, SharePoint, Google Map, XML, Java, HTML/ HTTP, Doors, Hummingbird, Rational Clear Quest, Rational Clear Case, Jira
• Security Software: Access Commander WE, Guardium, Agiliance
• Database Applications: Oracle 8i, Oracle Enterprise Manager, PL/SQL, Progress OE10, DB2
• Scanner Software: Captiva and InputAccel
• Servers: Tomcat and Apache web servers, Sapphire application servers

Confidential

Senior Business/Security Analyst

• Responsible for prioritization and sequencing of infrastructure and application components for new projects including implementation of the following:
• Create detailed AS-IS MS-Visio diagrams to promote conversation to review and analyze current vulnerability and threat management related programs, to improve INFOSEC processes for Freddie Mac information systems and networks.
• Using stakeholder interviews analyzing current INFOSEC processes to determine opportunities for process improvement and reduction of manual activities.
• Provides analytical support for various activities for Legacy Remediation efforts to improve and enhance Information Security INFOSEC projects, systems and applications.
• Freddie Mac is supporting the nation's housing recovery by keeping mortgage markets open, preventing foreclosures and providing economic relief to homeowners. Freddie Mac's information technology governance group maintains all controls over security administration utilizing the Information Technology Governance Institute's Control Objectives for Information and related Technology framework. Freddie Mac has designed and implemented controls, to ensure that data is secure and available only to authorized and appropriate users.
• Oracle Identity Federation is a complete, enterprise-level and carrier-grade solution for secure identity information exchange between partners.
• IBM Sterling Managed File Transfer is the market-leading solution for secure data movement that enables enterprises to gain control and oversight of the massive movement of critical corporate data to reduce security risk.
• Agiliance a leader in delivering integrated Governance, Risk and Compliance GRC management platform solutions,
• and upgrading the current IBM InfoSphere Guardium monitoring tool to a new version 8.x.

Determine test strategy and planning for each new project.

• Participate in the RFI, RFP, status reporting, and provides analytical and testing support to the POCs and pilot programs.
• Responsible for business case deliverables and artifacts.
• Work closely with Stakeholders, INFOSEC Partners, Business Subject Matter Expert s and IT for defining and validating business requirements.
• Responsible for identifying requirements with business process modeling, workflow analysis, and functional decomposition.
• Responsible for eliciting requirements from multiple stakeholders and across organizational boundaries.
• Responsible for ensuring quality of business requirements in support of business cases for new IT investments.

Confidential

Senior Business

• Booz Allen's reputation has been earned by nearly a century of delivering exceptional management and technology consulting services to their clients, their success is measured by clients' success, the excellence of our people, and our spirit of partnership.
• Proactively engage with the business stakeholders to evaluate time and resource commitments to support the process improvement initiative.
• Evaluated current state processes providing suggestions for process improvement and improved data management activities within secured spaces SCIF .
• Gathered and documented current state AS-IS processes creating detailed business requirements and process diagrams using MS Visio.
• Performed Gap Analysis and elicited business requirements from eight teams of stakeholders to design and re-engineer a future state TO-BE process for centralized asset management of government provided equipment.
• Assessed current tools and their ability to fit the gap.
• Analyze vendors for future state software solution.
• Worked closely with the Project Manager and provide weekly summary updates to project manager regarding progress.
• Identify and resolve procedural and process problems with applicable business areas.

Confidential

Senior Business

• Work with the business unit or other subject matter experts to identify or refine technical requirements for application under development or being revised, including creation and maintenance of context diagrams.
• Document and maintain baseline requirements in appropriate directories and per SDLC standards.
• Review and/or contribute content test plans, and participate in technology walkthroughs. Analysis can include functional requirements development, testing, or user acceptance.
• Provide business domain and/or technology and/or process expertise. Prepare or contribute to briefings of application owners at pertinent stages of project.
• Responsible for the transformation of business requirements into detailed technical specifications from which development and quality assurance testing occurs.
• Deliverables include context diagrams, functional/technical requirements and Interface Control Documents ICDs .

Confidential

Senior Business/Security Analyst

• Freddie Mac maintains policies and procedures to ensure that the level of security, relative to both the physical environment and the protection of data meets MISMO, BSC, SOX and Freddie Mac standards and requirements.
• Managed a complex infrastructure initiative for the implementation of Baseline Security Configuration BSC requirements based on the Center for Internet Security CIS standards.
• Developed policies and procedures to determine evidence of BSC implementation.
• Lead complex data collection, analysis activities, and project management status meetings.
• Engage in data modeling and research alternatives for the development of BSC's to meet incorporate the Center for Internet Security CIS guidelines that maintained or exceeded Freddie Mac standards.
• Analyzed business needs and requirements for proposed new business products and processes.
• Lead conflict resolution and facilitate decision-making.
• Develop and maintain information and documentation related to developing and modifying business processes and systems.
• Develop and enhance systems by bringing specific business knowledge to the technical design process.
• Review system documentation to identify how a system might impact BSC's. Interview users to determine their need to provide evidence of compliance.
• Research processes and compose/write security requirements.
• Escalate issues as necessary and facilitate resolution.
• Develop business and technical subject matter expertise on business applications systems.
• Address requests from end-users/customers regarding system hotlines, issues and ADHOC reports.
• Prepare and maintain system documentation in accordance with business requirements.
• Prepare detailed system test cases that adequately represent the business application's needs.
• Communicate with and coordinate efforts among various team members while maintaining project plans.
• Support data conversion activities and assist in the resolution of conversion issues. Interface with Information Security Governance to identify BSC requirements specific to system platforms/processes and translated the business application's needs into systems requirements.
• Serve as a primary link between the business user and members of the technical support team including database administrator's DBA's and system administrator's SA's .

Confidential

Lead Business Analyst

• CTGi is a small, veteran-owned information technology services company. CTGi leverages modern engineering, business, and management practices within their Enterprise21 Framework, exploiting appropriate information technology, to enhance the business productivity of Federal Government agencies which include: Federal Aviation Administration FAA Department of Defense DOD , Intelligence Community, City and State Governments, and several Commercial Clients.
• Worked closely with the project manager, senior analysts, and other team members on a Federal government agency's ATO-IT disaster recovery project to establish processes that would achieve the Office of Information System Security's ISS goals to meet disaster recovery preparation.
• Communicated with and coordinated efforts among various team members by providing review and analysis of ISS-related programs.
• Research, evaluated and maintain situational awareness of current environments, evaluated all potential ISS vulnerabilities and emerging threats to federal information systems by establishing clear concise disaster recovery plans.
• Attended weekly meetings providing written and verbal status of project requirements.
• Responsible for investigating, testing, evaluating and making recommendations for the purchase of COTS software that partially matched technical specifications for an automation tool for disaster recovery.
• Enhanced systems by bringing specific business knowledge to the technical design process.
• Provided vendor's development team detailed requirements for future software enhancements, and customization to manage software based on stakeholders real need.
• Responsible for interviewing stakeholders and key players by analyzing business process descriptions and online documentation to incorporate into detailed disaster recovery plans.
• Responsible for creating functional testing requirements to analyze effectiveness of tasks and workflow.
• Created standardized templates following Department of Transportation DOT requirements.
• Responsible for suggesting to use Google Map to create a point and click contact list for nationwide points of contact numbers.
• Working knowledge of Federal laws and Security publications including the Federal Information Security Management Act FISMA , the National Institute of Standards and Technology NIST , and Special Publications SP .
• Supported Disaster Recovery Plans for ATO-IT which included but were not limited to NexGen, BlackBerry, and Active Directory.
• Incorporated MS Visio diagrams into disaster recovery plans to represent data flow.

Confidential

Security Systems Analyst

• Confidential a software technology and security products company that provides innovative security products and services to leading corporate, government and military organizations. Their products, Access Commander Web Edition WE and ViSi Commander Web Edition WE are able to streamline security management for Facility and Special Security Officers FSO's and SSO's . This comprehensive product allows corporations and government agencies to scale lobby security according to their geographical and enterprise infrastructure. Access Commander is a security accountability software system that automates the security responsibilities of FSO's and SSO's as mandated by the various government auditing agencies NIST . ViSi Commander a visitor management and control software.
• Provided technical guidance in the testing and debugging process, identified requirement errors and defects.
• Prepared and maintained system documentation in accordance with business requirements.
• Tracked requirement defects and provided notification reports to software development with the appropriate level of detail for resolution. Created and maintained a bug tracking database.
• Gathered user requests for enhancements and distinguished actual requirements from wishes, reported to management to enhance future software releases.
• Presented Access Commander formal and informal application training to clients IT Security staff. This included the operation and maintenance of the software.
• Evaluated and assessed impact of proposed changes in requirements on the production environment.
• Escalated issues as necessary to development and facilitated resolutions.
• Effectively presented weekly status reports for management and development staff, provided information of project status by analyzing data and tracking progress resulting in the application being thoroughly tested and documented.

Confidential

Senior Quality Assurance Engineer

• Gelco is the world's leading provider of on-demand Employee Spend Management services. Travel Manager enables organizations to globally control costs by automating the processes they use to manage employee spending. Gelco's end-to-end solution unite online travel booking with automated expense reporting, streamline meeting management, and optimizes the process of managing invoices, employee advance requests and direct reimbursements.
• Participated in requirements design, and test plan reviews with particular focus on matching software features to user requirements.
• Performed system integration, regression, and performance quality assurance testing by executing manual and automated test plans.
• Prepared detailed system test cases that adequately represented the business application's needs.
• Performed back-end test validation using Oracle and Progress SQL queries.
• Worked with application developers to isolate and solve design problems encountered during testing.
• Responsible for test planning, validation, documentation, and reviews that analyzed test data.
• Recommended, developed, and implemented improvements.
• Analyzed and assisted in the review of information and recommended appropriate corrective actions to ensure successful program execution.
• Worked actively with all levels of management to define and supply required resources for the timely completion of the project.

Confidential

• Imaging Acceptance Corporation IAC developed technologies and services to file and retrieve paper and mail electronically on public and private-network Web sites. IAC focused on converting mail and courier-delivered documents to Web accessible e-documents. The company serves the management and digital imaging industries and hardware and software manufacturers. IAC has been a strong player in the federal government sector performing scanning and other document services for clients that included OPM, the U.S. Coast Guard, and the Veterans Administration.
• Designed, developed, and implemented Quality Assurance methodologies during project start up phase for scanning government personnel documents.
• Partnered with Marketing and Sales to incorporate customer feedback.
• Reduced cycle time for implementation of new software releases. Collaborated with Development and QA teams to establish software release management procedures, resulting in fewer ad hoc updates, improved standardization and 100 user availability during peak production times.
• Lead requirements analysis and verification, ensuring that requirement statements were complete, consistent and they conformed to Office of Personnel Management OPM standards. Established and implemented effective requirements practices.
• Developed and updated organization's current operating policies and procedures to ensure appropriate configuration management and quality controls were established and followed.
• Demonstrated experience in customer and software requirements gathering and documentation and experience in dealing with and providing technical solutions to meet business needs.

Confidential

Production Support/Operations Manager

• CheckAGAIN designed innovative technology to simplify and improve the recovery process on returned checks for merchants following Regulation E of the Federal Reserve System, and NACHA Operating Rules. CheckAGAIN's check management services include Centralized Returns processing, Electronic Representment RCK processing, Lockbox ARC processing and Check Authorization. Each service can be customized to meet specific business objectives. CheckAGAIN also offers unmatched electronic reporting options and a secure website to access account information anytime, anywhere.
• Supported multiple versions of software at various stages of the software development life cycle SDLC using Visual SourceSafe. Coordinated maintenance and software release schedules.
• Demonstrated customer service, leadership, and team interaction skills, was the primary point of contact for all customer inquiries and user account support.
• Worked hand in hand with Sales staff incorporating new enhancements to requirements for development.
• Established policies, standard operating procedures, and guidelines, and assisted in the design and documentation of all production processes.
• Participate in the coordination and monitoring of software development activities, including all meetings, walkthroughs, technical reviews, testing, and problem tracking.
• Identified ways to assist software development in product planning through requirements development, web site analysis and design. Proposed new product features and updates.