SUMMARY:

• Solutions - oriented IT Security Specialist with notable success directing a broad range of corporate IT initiatives while participating in planning and implementation of information-security solutions in direct support of business objectives.
• Track record of increasing responsibility in secure network design, systems analysis and development, and full lifecycle project management.
• Demonstrated capacity to implement innovative security programs that drive awareness, decrease exposure, and strengthen organizations.
• Hands-on experience leading all stages of system development efforts, including requirements definition, design, architecture, testing, and support.
• Outstanding leadership abilities; able to coordinate and direct all phases of project-based efforts while managing, motivating, and leading project teams.
• Adept at developing effective security policies and procedures, project documentation and milestones, and technical/business specifications.
• Extensive experience building and architecting Security Operation capabilities, such as SIEM and threat prevention and response tools, IDS/IPS implementation, DLP solutions, Application and Host based vulnerability management tools and software.

TECHNICAL SKILLS:

Core Competencies: Leadership and team building; Network & Systems Security; System Engineering and Administration; Regulatory Compliance; Risk Assessment; Malware Analysis, Threat and Incident Response, Forensic Analysis.

Platforms: VMWare ESX, UNIX (Solaris), Microsoft Windows Servers, Linux (CentOS, Red Hat, Fedora), Hadoop, AWS, OpenStack

Tools: Tenable SecurityCenter, Tenable Appliance, Tenable.IO (Nessus Cloud), Nessus Agents, Nessus Manager, Nessus Scanner, Snort, Retina, AppDetective, WebInspect, Fortify Security Software Center (SSC), Fortify Static Code Analyzer (SCA), Kali, Cenzic Hailstorm, Metasploit, NeXpose, LAN Manager, ISS Internet Security Scanner, Nipper, Splunk, AppScannerPro, eSCAPe, IBM Appscan, CodeDx, BigFix

PROFESSIONAL EXPERIENCE:

Confidential, Rockville, MD

Lead Vulnerability Management Engineer

Responsibilities:

• Responsible for expanding and maximizing the vulnerability functions of the Security Operations Center (SOC).
• Manages a team of Security Analysts and Engineers in supporting security authorization efforts in vulnerability detection, mitigation, and eradication
• Implement known security methodologies and standards such as OWASP and SCAP.
• Lead and oversee projects that include procurement, deployment, implementation and documentation of cybersecurity capabilities
• Established Standard Operation Procedures for all security tools utilized.
• Provide training to security and infrastructure teams.
• Produce weekly, monthly, and quarterly assessment metrics and reports for senior management
• Project leader for several high-profile projects across the enterprise (architecture, design, implementation and maintenance)
• Evaluates and coordinates the identification of cyber threats, vulnerabilities, and risks to the HRSA IT Enterprise.
• Provide technical analysis to the Risk Management Team
• Manage incident and threat capabilities in support of security operation efforts.
• Ensures the categorization of applicable security controls required by FISMA and NIST for new and currently deployed systems.

Confidential, Herndon, VA

Senior Vulnerability Management Engineer

Responsibilities:

• As the Team Lead, wrote performance reviews and periodic employee evaluations including administrative and disciplinary measures when appropriate.
• Responsible for expanding and maximizing the vulnerability functions of the Security Operations Center (SOC).
• Managed a team of Security Testers and Engineers.
• Implemented known security methodologies and standards such as OWASP and SCAP.
• Established Standard Operation Procedures for all security tools utilized.
• Provided training to security and infrastructure teams.
• Provided management weekly and monthly reports (metrics, monitoring,)
• Introduced a robust application scanning capability to include code reviews, and web application and database scanning
• Worked closely with Incident Response Team to determine if events are actual incidents which would lead to an investigation.
• Provided technical analysis to the Risk Management Team as needed when attempting to make risk decisions.
• Managed incident and threat capabilities and tools in support of security operation efforts.

Confidential, Severn, MD

Information Systems Security Engineer

Responsibilities:

• Technical Lead Security Engineer (managing a team of 10) supporting a multi-cloud instantiation for the Confidential .
• Lead the successful implementation of NIST security standards and security requirements.
• Embedded security Subject Matter Expert (SME) working closely with management and developers to integrate effective IA solutions into the development life-cycle.
• Helped integrate Security Content Automation Protocol (SCAP) into the security workflow creating custom content as needed based on environment.
• Collaborated with security personnel from multiple government agencies to establish security baselines and acceptable body of evidence to be shared between agencies.
• Manage personnel from several organizations to help design and implement a successful security program supporting community efforts.
• Coordinated Continuous Monitoring efforts with stakeholders for service provider deployed systems. Tasked with establishing the security processes and procedures for all PaaS, SaaS, and IaaS environments made available to the enterprise.
• Provided architectural and engineering input to the newly formed Security Operations Center. Assisted in establishing monitoring requirements, system design, and software and hardware procurement.
• Evaluated the identification of cyber threats, vulnerabilities, and risks to the enterprise.
• Lead Compliance engineer responsible for mapping internally developed frameworks to such known standards as HIPAA Security Rule, GLBA, Sarbanes Oxley (SOX), PCI-DSS, and NIST, NERC (CIP).

Confidential, Columbia, MD

Information Systems Security Engineer

Responsibilities:

• Provided security guidance and oversight to System Engineers and Developers of current and upcoming system architectures. Lead a team of six engineers in establishing a robust security program supporting efforts around the globe.
• Worked closely with the Designated Accrediting Official (DAO) and the Security Control Assessor’s (SCA) to provide secure solutions to mission driven environments.
• Reviewed and analyzed system and application scan results for security weaknesses.
• Utilized a variety of developed and automated network security tools to scan system, application, and network/networking device vulnerabilities.
• Instrumental in the implementation of several security initiatives, including but not limited to an enterprise patch management solution, security relevant change process, centralized vulnerability management platform, and a continuous monitoring process.
• Created SCAP content and mapped NIST controls to agency established baselines.

Confidential, Linthicum, MD

Associate

Responsibilities:

• Supported certification tasks for various IT systems across several government agencies. Performed security testing on a wide array of Information Systems (IS) including Microsoft Windows Server, Solaris, and Linux operating systems as well as networking devices such as routers, firewalls, and switches.
• Focused on the development of security test plans, conducting security testing, the analysis of test results, and the development of risk assessment reports that documented vulnerabilities, threats, impacts, and recommended mitigations.
• Worked with data owners and system administrators to gain an in depth understanding of complex networks to ensure Certification and Accreditation (C&A) documentation accurately depicts the environment.
• Reviewed and analyzed system and application scan results for security weaknesses. Reviewed security test plans and procedures for accuracy and executed test procedures to validate system compliance requirements.

Confidential, CHANTILLY, VA

Responsibilities:

• Performed security analysis of all agency enterprise systems and networks seeking certification and accreditation approval.
• Developed information assurance strategy for testing of respective system risks and threat assessments.
• Utilized a variety of developed and automated network security tools to scan for system, application, network and networking device risks and vulnerabilities.
• Evaluated and recommended network security software to implement information assurance strategy.
• Conducted system risk and threat assessment reports.
• Referenced widely recognized security guidelines in assessment and recommendations. (SANS, Confidential Security Technical Implementation Guides ( Confidential ’s), Center for Internet Security (CIS), Security Focus, among others.

Confidential, Vienna, VA

Systems Engineer

Responsibilities:

• Provided WAN and LAN support for the Confidential (formally known as the 9-11 Commission) with offices spanning three locations.
• Spearheaded the mail migration from web-based mail to Microsoft Exchange 2000 Server
• Upgraded servers and workstations from Windows NT to Windows 2000 and 2003 servers and Windows XP workstations
• Managed multiple domains across three locations.
• Deployed and maintained secure VPN connections across multiple locations.
• Implemented and maintained security policies for all servers and workstations to ensure systems were in compliance with applicable policies.
• Worked in conjunction with outside contractors and other government agencies to institute a Document Management System for the Commission.
• Responsible for the procurement of hardware and software to include servers, workstations, printers, broadband connections (T1 lines), routers, hubs/switches, firewall.
• Provided desktop support to the Commission staff.

Confidential, Columbia, MD

Systems Administrator

Responsibilities:

• Worked with a team of Administrators supporting UNIX, Windows NT and 2000 servers and workstations in a LAN and WAN with over 70,000 users.
• As an NT administrator, manage user accounts spanning 10 domains in multiple locations within a 50-mile radius.
• Maintained mail accounts via Microsoft Exchange.
• Responsible for numerous dial-up internet and internet mail accounts across several domains.
• Remotely managed workstations and servers using Systems Management Server (SMS).
• Used Remedy software to provide help desk support, including diagnosing and resolving issues on and offsite.

Confidential

Information Systems Officer

Responsibilities:

• Supported the Senior Systems Administrator with the management and maintenance of Local Area Network (LAN).
• Implemented and enforced security guidelines mandated by the Confidential .
• Deployed hardware and software upgrade.
• Performed daily backup of application, mail, SQL and SMS servers.
• Provided help desk support, including diagnosing and resolving issues onsite and remotely.
• Provided technical support for digital-video conferences, hosted by the Embassy and other government and private agencies.
• Researched and identified appropriate resources to fulfill the Embassy's current and future technical needs, including determining hardware specifications and software compatibility to comply with Confidential regulations.
• Was instrumental in site installation of Embassy's system management server.
• Led successful migration from ISDN to DSL upgrades for several Embassy onsite and offsite locations.

Confidential, McLean, VA

Assistant Network Administrator

Responsibilities:

• Designed and implemented company's network infrastructure.
• Assisted with LAN installation, configuration, cabling and ongoing maintenance.
• Managed mail, web and ftp servers, as well as user workstations.
• Provided user support for hardware, software and connectivity issues across multiple locations.
• Generated and distributed daily database transfer files for Environmental Protection Agency’s (EPA) Air Quality Information Clearinghouse.

Confidential, Fairfax, VA

Computer Support Specialist/Database Coordinator

Responsibilities:

• Scanned professional journals and created database records.
• Wrote abstracts and selected index terms for Indoor Air Quality (IAQ) bibliographical database.
• Responded to telephone and mail inquiries on wide variety of issues concerning indoor air pollution data.

Confidential, Silver Spring, MD

Technical Assistant/Database Coordinator

Responsibilities:

• Aided Information Services Manager for Family Life Information Exchange (FLIE) and Indoor Air Quality Information Clearinghouse (IAQ INFO).
• Served as liaison for the general public, industry, and RII to fulfill verbal and written document requests for the Family Life Information Exchange (FLIE) and the Indoor Air Quality Information Clearinghouse.
• Prepared and evaluated monthly statistical reports for IAQ Info Clearinghouse.
• Handled purchase requisitions for office supplies.
• Maintained Confidential database and modified documents through Confidential .
• Updated and ensured accuracy of Subject Summaries and IAQ Operations Manual monthly.
• Managed and kept current extensive mailing lists.