SUMMARY:

Intellectually Curious Cybersecurity Risk Professional, passionate about security with a bias toward action. Creative problem solver and strategic decision maker in fast - paced enterprise environments. Proven ability to facilitate cross-functional teams and form relationships to achieve strategic objectives. Effective emotional and socially intelligent team leader with a strong desire for continuous personal growth. Seeking next challenging engagement.

TECHNICAL SKILLS:

Assessment and Risk Management: Vulnerability Assessment, Risk / Compliance Assessment, Cloud Security Risk Management, InfoSec Strategy Design

Security Frameworks: ISO 27K, NIST SP 800-53r4, 800-53Ar4, 800-30, 800-18, 800-37r1, Data integrity /Disaster Recovery, Contingency Planning, Incident Response & Monitoring

Compliance Experience: FIPS, FISMA, HIPAA, FedRAMP, Identity and Access Management, Security Awareness Training, Cloud Service Provider Oversight

OS: Linux/Unix, OSX & Microsoft Windows (All versions)

Identity & Access Management: Citrix XenApp (SSO) & AD Integration

Access and Intrusion Management (IDS/IPS): Sourcefire FireAMP, Tenable Nessus, McAfee Network Security IPS/IDS Platform.

Firewall & Networking: Cisco switches/routers, Cisco ASA 5520, Barracuda Web Filter 310

Malware & Data Loss Prevention: McAfee Data Loss Prevention Monitor, Sourcefire FireAMP

Storage: Dell PowerVault NX400, HP Proliant DL380G6

Application: Office Suite, Microsoft Terminal Services (Administration and Support), Windows Server 2008/2012R2, SCOM, Active Directory, SCCM, VMware ESXi technologies, Risk Vision GRC

Network Knowledge/Experience: Strong knowledge of network fundamentals such as TCP/IP, ICMP, UDP, IPSEC, HTTP, HTTPS, FTP, routing protocols. DNS, DHCP Services, VPNs, LAN/WAN Technologies, 802.11xSecurity Experience/Tools Vulnerability Scanning and Report Analysis, Intrusion Detection Systems (IDS), McAfee ePolicy Orchestrator (ePO), McAfee Drive Encryption, Cisco Sourcefire FireAMP, Splunk, Nessus, Wireshark, Nmap, Metasploit.

PROFESSIONAL EXPERIENCE:

Sr. Cyber Security Analyst

Confidential, Fairfax, VA

• Develop and publish Information Security policies, procedures, standards, and guidance based on knowledge of best practices and compliance requirements (FISMA, NIST)
• Instrumental in developing and implementing Business Continuity and Disaster Recovery plans for the Department of Veteran’s Affairs (VA).
• Conduct data classification assessment and perform risk assessments to include unresolved Plan of Action and Milestones (POA&Ms), unsecured tenant systems, and unprotected medical devices in accordance with NIST 800-30.
• Engage with clients Information Assurance Analysts to oversee the preparation of a Comprehensive and Executive Certification & Accreditation (C&A) package for Authorization to Operate (ATO) approval; prepare, assess and update System Security Plans (SSP) against NIST 800-18 and NIST 800-53 requirements.
• Perform security risk assessments and NIST/FedRAMP security reviews of cloud based information systems submitted for full ATO.
• Develop security documentation to include boundary scoping and collaborate with stakeholders to develop SSPs, RAs, ISCPs, DRPs, IRPs, CMPs, PIAs, Policies and Procedures, FIPS categorization and etc.
• Prepare, update and assess Authorization to Operate (ATO) packages for federal systems and facilities for completeness and compliance to NIST 800-37.
• Lead on-site visits to client data centers, regional offices, medical facilities and conduct interviews as part of risk assessment, system categorization and security control assessments.
• Provide e xpe rt advice to the M edical Devic es D eve l opm e nt P rog r am (MDPP) t e am by providing HIPAA c o n t rol mapping r e comme ndatio ns to NIST controls.
• Facilitate ongoing process improvement while monitoring security vulnerabilities and present results to Senior Leadership (S/FISOs, SOs, POs & PMs) - Manage and track remediation progress in RiskVision GRC.

IT Support Engineer

Confidential, Washington DC

• Managed day-to-day incident response and investigative duties for Children’s Research Institute (CRI) - Managed, operated, and analyzed incident event data from enterprise security systems using Sourcefire FireAMP and McAfee ePO Administrative console.
• Performed installation and administration of McAfee Host Based Security Systems (HBSS) across endpoints on (CRI) network.
• Successfully deployed multi-sensor Sourcefire Host Intrusion Prevention Systems (HIPS) to over 1500 domain systems directly leading to a reduction in attack volume within 3 months of implementation.
• Developed and distributed Intelligence Objects (security reports and updates) updating clients on imminent threats and compliance-related risks.
• Evaluated OS and 3rd party security patches, as they become available, and performed regression testing.
• Ensured consistent delivery of superior technical solutions for 500+ users globally across (5) Research Centers within Children’s Research Institute (CRI) by coordinating multi-departmental responses to achieve results.
• Documented all Security, Migration, and Implementation Plans.

IT Specialist

Confidential, Frederick, MD

• Maintained accountability for phone and in-person support to users in the areas of networking, software and hardware installation, email, directories, and general support applications.
• Designed, maintained, tested and deployed enterprise workstation images using SCCM for FCC computer systems.
• Assigned, maintained, and updated user accounts, user permissions, group memberships, and passwords reset for FCC domain users.
• Designed, implemented, and managed Windows 7 desktop security policy using Group Policy Objects (GPO) for over 2500 campus-wide client machines.
• Reduced Active Directory (AD) infrastructure attack surface by performing monthly reviews of privileged accounts and groups, implementing least privilege administrative model and securing domain controllers against physical and logical attacks.

Digital Media Lab Aide

Confidential, Frederick, MD

• Coordinated with in-house IT Staff in deploying and configuring 300+ new desktop systems, network printers, enterprise scanners and fax machines.
• Provided customer relations and emergency technical support to FCC Faculty and Students.
• Oversaw regular maintenance and software updates on FCC domain computers for the Center for Teaching and Learning - Academic Affairs.
• Advised Faculty members in the use of work-vital application software and Windows OS functionalities.
• Diagnosed and resolved non-functioning digital and multimedia devices such as scanners, digital cameras and CD/DVD Duplicators.

IT Helpdesk Lab Tech

Confidential, Frederick, MD

• Provided remote and in-person technical support to Faculty and Students troubleshooting, diagnosing, resolving and documenting a range of software, hardware and network related issues.
• Excelled in asking probing questions - researching, analyzing and rectifying problems.
• Investigated and escalated network performance degradation issues to the Network Engineering team. Provided detailed description of issues in trouble ticket system and followed diligently to ensure swift resolutions.
• Documented all technical issues and generated reports detailing common problems and error trends utilizing HEAT ticketing system.
• Displayed exceptional interpersonal skills and maintained calm demeanor during every phone call.