SUMMARY:

• 10+ years in the Federal/Contracted IT community
• CISSP - Cybersecurity Specialist
• Expertise in execution, management, and training of cybersecurity assessment teams.
• Excellent communicator; experience in the interagency environment working collaboratively under strict deadlines in high-pressure situations to identify, assess, and ameliorate cybersecurity threats
• Current TS/SCI clearance
• Experience with CSAM

PROFESSIONAL EXPERIENCE:

ST&E Lead

Confidential

Responsibilities:

• Manage and coordinate multiple assessments and teams in order to plan, execute, and report on federal agency security posture and compliance with relevant polices and regulations
• Present findings to all stakeholders including senior management via cogent, timely briefings
• Ensure team members perform to the highest standards and provide concise documentation by reviewing all deliverables and ensuring quality assurance
• Provide feedback and mentorship to junior and midlevel personnel to help prepare them for additional responsibilities.

ST&E Engineer

Confidential

Responsibilities:

• Worked with a team as an independent third party to assess the security posture of CMS systems to ensure are compliance with CMS, Confidential, Confidential, and HIPAA polices
• Developed subject matter expertise in CMS system policies and performed comprehensive review to ensure that they completely address all control requirements
• Provided reports and briefed clients and senior management of potential issues and findings
• Generated and presented finalized risk reports to the client chain of command detailing our process, findings, and ways forward

Cyber Security Analyst/ISSO

Confidential

Responsibilities:

• Managed and completed Information System Security Officer (ISSO) duties for over 35 systems in the continuous monitoring and tri-annual assessment stages
• Developed a diverse catalogue of SOPs to craft, track, and execute Plans of Action and Milestones (POA&Ms)
• Maintained system documentation, policies, and security direction in accordance with Confidential, Confidential, and Confidential regulations
• Tracked emerging vulnerabilities and cyber security incidents

Lead Security Analyst

Confidential

Responsibilities:

• Managed a team and customer assets to perform in-depth security assessments on key Confidential systems
• Provided high-level executive summaries and detailed vulnerability reports describing ways forward to address all identified security concerns
• Assisted system owners in gathering input, data, and requirements to formulate POA&Ms in a timely fashion
• Reported to stakeholders and Confidential personnel findings, assessment, lessons learned, and ways forward

Security Analyst

Confidential

Responsibilities:

• Maintained the EPA’s Automated System Security Evaluation and Remediation tracking system.
• Provided detailed guidance to complete security assessments and remediate POA&Ms
• Managed and executed the Confidential FY11 annual Confidential report and all after-action documentation
• Managed communication and mediation for ATO and POA&M status with critical stakeholders
• Designed, prepared, and implemented the system transition to Telos by mapping out business rules and processes, and ensuring uniformity between the systems with little impact to the client

C&A Consultant

Confidential

Responsibilities:

• Met with customers to gather information on critical controls to facilitate the completion of the C&A process
• Worked with a variety of customers to document and improve their overall information security posture
• Reviewed systems policies and their implementation to ensure they met Confidential and Confidential security guidelines
• Worked with system owners to create plans and timelines to document and remediate the risks and vulnerabilities found

LAN Administrator

Confidential

Responsibilities:

• Migrated data from decentralized department servers to a centralized location
• Managed multiple projects and groups to meet strict timelines
• Maintained disk space and patching records
• Interacted with a diverse client base to ensure timely, informative, and need-based services

Network Administrator

Confidential

Responsibilities:

• Sustained Department productivity by maintaining over 150 workstations and 50 servers on production and test networks
• Planned, designed, and built the new cyber security data center to increase productivity and efficiency while decreasing cost, earning a merit award of appreciation from the Office Director of Cyber Security
• Established, organized, and maintained a server room and test lab
• Built desktop PC images with all baseline applications and security patches installed for roll out of new systems office-wide to improve security posture

System Administrator

Confidential

Responsibilities:

• Maintained user productivity by solving software, hardware, and network issues
• Troubleshot and updated numerous software applications on Windows, UNIX, and Linux operating systems
• Prepared systems for new employees, answered help desk emails, and installed server hardware as required
• Awarded for helping restore server and firewall function during off hours, protecting company data and restoring productivity to offsite users
• Monitored systems for unusual activity and took detailed notes to pass on to the security team