We provide IT Staff Augmentation Services!

Security Analyst Resume


Position in configuration or change management.


Fifteen years of experience with Configuration, Change, and Release Management. Most of my work has been as a contractor on Federal projects that adhered to the standards set forth by NIST regards the Federal Information Systems Security Act (FISMA). Each federal project had a security team responsible to ensure standards were met and this included configuration, change, and release management. Twelve years of experience as a Programmer/Analyst, Systems Administrator, and systems technician. Experience in Quality Assurance. Extensive experience in management of personnel. Have written configuration management plans and documents for configuration and change management. I have worked with multiple CMDB tools (SCCS, Serena, Rational ClearCase, Subversion, Remedy.


HARDWARE: HP - UNIX 9000, Windows, Personal Computers


OPERATING SYS: UNIX, WINDOWS operating systems

METHODOLOGY: Capability Maturity Model (CMM), Rational Unified Process (RUP), Program Management Methodology (PMM)



Security Analyst


  • Manager, home improvement firm
  • Provide estimates for labor and materials for work to be done in the home improvement arena.
  • Manage personnel on site for hours worked and quality control of the work done so that the customer is fully satisfied with the work done.
  • Provide tools and transportation as needed to
  • Process payment from customers as needed.

Confidential, Vienna, Virginia

Change Management Expert


  • I was the change manager for the GSA Technology Office leading a team of three personnel. The Change Management (CM) team supports 17,000 GSA employees and contractors worldwide. This support includes equipment such as desktops, laptops, servers, and mobile devices. The network infrastructure, security, and remote technologies such as Citrix and VPN are also supported.
  • The CM team provides the agenda, meeting minutes, and facilitates the Change Advisory Board (CAB) and two Configuration Control Boards ( Confidential ) on a weekly basis for Release Management as part of my change management role in an ITIL environment. These meetings review all change requests ( Confidential ) taken to the boards by the CM team and gives approval for changes to be implemented in the production environment. Responsible for scheduling of releases.
  • The tool ServiceNow is used for CMDB and asset management (SAM).
  • Followed the direction of GSA security in performing security patching as needed for the production environment to ensure FISMA was adhered to in accordance with NIST.
  • Leading the transition to ITIL processes in the IT service area to include implementing Post Implementation Reviews (PIRs), change plan, and back out plan for each change.

Confidential, Washington, DC

Configuration Manager


  • Reviewed the configuration management plan of the Financial Management System that is part of FSA and made changes to bring it in compliance with the Lifecycle Management Methodology (LMM) that is in place with the FSA.
  • Used Rational ClearCase and ClearQuest to review project documents, interviewed project personnel to identify their needs, identified configuration items, and wrote several procedures that will be used by various team members.
  • The new documents include a different change request process, configuration control board charter, naming conventions, identification of configuration items, functional and physical configuration audit procedures, and other documents used for configuration management.
  • All deliverables were completed ahead of schedule.
  • Followed the direction of the security team to ensure FISMA was adhered to in accordance with the National Institute of Standards (NIST).

Confidential, Baltimore, MD

Configuration Manager


  • Instituted the enterprise Configuration Management (CM) process for Confidential in an ITIL environment.
  • Wrote the configuration management procedure, initiated the change control process to include submitting change requests, gaining approval from the configuration control board ( Confidential ), and scheduling and tracking changes to completion.
  • Distributed the agenda, meeting minutes, and moderated the Confidential . Used the tool Subversion to establish the CM repository.
  • Trained Confidential personnel on the enterprise CM process.
  • Responsible for all configuration management issues.
  • Worked with development teams in India and Maryland.
  • Waterfall methodology used with this job.
  • The tool Subversion is used to for CMDB and asset management (SAM).
  • Received an for contributions to the Confidential information systems security audit.
  • Composed much of the Confidential Security Audit Action Plan in response to audit findings and worked to resolve issues resulting from the audit.
  • Wrote Confidential policies to provide corporate guidance in the areas of access control, operating systems patches, security incident response, data backups, and disaster recovery.

Confidential, Aberdeen Proving Ground, MD


  • Senior Configuration Management Specialist Member of a four person Configuration
  • Management team supporting the US Army Product Manager Counter Remote Controlled
  • Improvised Explosive Device Electronic Warfare (PdM CREW) team.
  • Responsible for coordinating software releases for multiple systems with the CREW engineering team and Army personnel serving in Iraq and Afghanistan.
  • Distribute the agenda, meeting minutes, and moderate all Technical Working Group (TWG) and Configuration Control Board ( Confidential ) meetings.
  • Issue action items and follow up to ensure their completion.
  • Use Serena Dimensions Version Manager to keep version control of documents and files.
  • Use Serena Mashups to track and update change requests. Perform quality assurance on documents and change requests for these classified systems.
  • Followed the direction of the security team to ensure FISMA was adhered to in accordance with the National Institute of Standards (NIST). Waterfall methodology used with this work.

Confidential, Rockville, MD

Senior Configuration Management Specialist/Quality Assurance Specialist


  • Divided time equally between the enterprise Configuration Management (CM) and Quality Assurance (QA) teams for the Military Records Separations Processing (MRSP) program.
  • As part of a two person Enterprise Configuration Management team wrote all the CM procedures and documents of this startup company. This included the CM plan, Configuration Control Board ( Confidential ) Charter, Configuration Audit Procedures, Change Request form, and Confidential agenda form.
  • Prepared and distributed the Confidential agenda to board members. Moderated the Confidential, prepared and distributed Confidential minutes. Responsible for providing executable application software to the QA Independent Verification and Validation (IV&V) team lead. Coordinated with the CM team of the Software Engineering Group (SEG) regards software version control schedule of software builds. Waterfall methodology used with this work.
  • Prepared and distributed the QA/Site Visit Team (SVT), QA/Help Desk, QA/ Team, and QA/Software Engineering Group weekly meeting agendas. Moderated three of the meetings and prepared and distributed minutes for the meetings. Followed up and reported on action items.
  • As part of an eleven person Enterprise QA team reviewed and suggested changes to many project documents, including the User Requirements Specification, Software Requirements Specification, Disaster Recovery Plan, User Guide, and System Administrator Guide. Assisted in writing the QA test plan and QA/IV&V plan. Executed test cases and wrote anomaly reports as part of QA/IV&V.
  • Followed the direction of the security team to ensure FISMA was adhered to in accordance with the National Institute of Standards (NIST).

Confidential, Manassas, VA

Configuration Manager


  • One of six senior configuration managers of the Enterprise Configuration Management Program Office (ECMPO) that provides configuration management services to the Office of the Comptroller of the Currency (OCC).
  • Provide configuration management support to the telecommunications infrastructure team and seven software application projects in production. Responsible for reviewing and editing as needed all Requests for Change (RFCs) for the enterprise infrastructure team and more than 100 software application projects in production and development.
  • Prepare and distribute the agenda for the Enterprise Change Control Board (ECCB) weekly. Attend the ECCB, then prepare and distribute minutes of the ECCB and report the status of action items to senior management.
  • Prepare the Forward Schedule of Change (FSC) for the OCC enterprise weekly. The FSC contains all planned software and infrastructure implementations and is distributed to senior management.
  • Wrote procedures for preparing the ECCB agenda and the FSC.
  • Use Sharepoint for posting documents, creating queries, managing RFCs, and running queries to provide metrics information to senior management.
  • Administer Serena Version Manager to include installation for new users and providing access to project databases. Used the tool Remedy to review some change requests. Waterfall methodology used with this work.
  • Followed the direction of the security team to ensure FISMA was adhered to in accordance with the National Institute of Standards (NIST). A representative of the security team was present as a voting member of all Change Control Board ( Confidential ) meetings.

Confidential, Hanover, MD

Configuration Management Consultant


  • Information Services. Performed enterprise wide assessment of the configuration management (CM) processes of the NRC and compared them to best practices of the information technology (IT) industry.
  • The study included examination of contractor companies and offices of the NRC. The CM processes for software development and software maintenance through production and system retirement were analyzed. Management of the infrastructure including desktop computers and servers was reviewed. Configuration management tools were evaluatedpersonnel were interviewed, and documentation was examined. Configuration audits and ther research was performed using the configuration management tools ClearCase and
  • ClearQuest, Rational Unified Process (RUP) and Program Management Methodology (PMM). A written report and a review with senior management were provided.
  • The initial scope of the consultation was expanded in order to provide in-depth configuration audits on 28 software development projects selected by the branch manager. The results of the audit indicated a need for process improvement. Wrote a corrective action plan and conducted a meeting with project managers to implement the plan.
  • Wrote a configuration audits guide and provided it to CM personnel.

Hire Now