SUMMARY

Cyber Security Engineer with a 15 year background in system administration, hardware and software troubleshooting and network management for the federal government and in the private sector. Possesses active Top Secret SCI Poly Clearance.

TECHNICAL SKILLS

• Palo Alto IDS IPS
• Splunk
• Data backup and recovery systems
• Arcsight ESM
• LAN and WAN expertise
• Citrix Xen Server
• IPS signature updates
• VMware
• Security logs
• Group Policy
• Security Audits
• Active Directory
• User account creation
• ACAS vulnerability scanning
• Antivirus and spam blocking
• FireEye
• Mcafee EPO
• Nessus
• McAfee HIPS
• RedHat Linux
• McAfee Virus Scan 8.8
• Unix
• WireShark
• Windows Server 2012
• McAfee Firewall
• BlueCoat Web Proxy
• McAfee Nitro Siem
• RedSeal
• AWS Cloud Computing
• Cloud Security
• Centos
• Microsoft Azure

PROFESSIONAL EXPERIENCE

Confidential - Quantico VA

Responsibilities:

• Engineer, implement and monitor security measures for the protection of computer systems, networks and information.
• Identify and define system security requirements.
• Design computer security architecture and develop detailed cyber security designs.
• Prepare and document standard operating procedures and protocols.
• Configure and troubleshoot security infrastructure devices.
• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
• Write comprehensive reports including assessment-based findings, outcomes and propositions for further system security enhancement.
• Constantly monitor Dept. of Defense networks and systems for security breaches or intrusions.
• Conducts periodic scans of DISA networks to find any vulnerability.
• Direct experience with anti-virus software, intrusion detection, firewalls and content filtering.
• Mitigate security vulnerabilities by implementing applicable solutions and tools.
• Design infrastructure to alert the technical team of detected vulnerabilities.
• Uses many different operating systems and hacking tools to perform penetration tests.

Confidential - Springfield VA

Responsibilities:

• Reviewed logs for all networking devices for unresolved abnormalities and problems.
• Risk assessments on new projects, identify and reduce risk
• Provide tuning recommendations for SIEM and DLP systems
• Managed Juniper Netscreen Firewalls and Intrusion Prevention and Detection (IDP) Devices
• Identify potential risk, consult on correcting or reducing risk, report if uncorrected
• Responded to events from Security Incident Event Management (SIEM) system distilling 25 thousand events into a few hundred actionable items per week.
• Investigate cases of fraud and abuse
• Performed system and network audits against FISMA and FIPS200 regulatory requirements
• Developed and executed datacenter migration plan for all managed security services such as firewalls, IDS, VPNs and authentication servers with no impact to production environments
• Managed vulnerability remediation and mitigation through meticulous review and submission of Plan of Action and Milestones (POA&Ms) and Authorizing Official Risk Acceptance (AORA) documentation; built a database that tracks and mitigates vulnerabilities based on remediation efforts across the enterprise.
• Provided Information Assurance (IA) policy analysis for different projects including in depth knowledge of DoD 5200.40, DoD 8500.1, 8500.2, and NIST 800-53

Confidential - Chantilly, VA

Responsibilities:

• Coordinate the Engineering, Integration, and Administration Functions required to successfully deliver capabilities and services to the enterprise
• The implementation of RSA technologies including writing custom parsers and device XMLs that map generated audit events to data fields.
• Lead the technical process of mapping CSR/IIR audit events into the Confidential 500-27 specified mandatory and optional fields.
• Conduct technical exchange meetings with the system owners and monitor performance of the indicted systems (data accuracy, reliability and volume).
• Configuring, installing, and hardening network security appliances. nstallation and configuration of Windows and Linux Servers, Operating System and Application Patch Management.
• Perform command line operating system patching including UNIX and Linux, knowledge of scripting including Perl, Python, and Bash.
• Troubleshot and maintained all networking devices and infrastructure across the enterprise including switches, routers and firewalls.
• Performed network and appliance log forensics

Confidential - Springfield, VA

Responsibilities:

• Attends system development technical meetings involving Preliminary Design Reviews (PDR), Critical Design Review (CDR), Interim Progress Review (IPR), Test Readiness Review (TRR), Baseline Acceptance Testing (BAT), and Post Test Reviews (PTR) for the Cross Domain PMO Program.
• Member of the NGA ECDS program, which includes NGAs Certification and Accreditation requirements, consolidation, and Department of Defense Intelligence Information System (DoDIIS) / Combatant Command (COCOM) support efforts.
• Supports the ECDS program management office in the certification and accreditation (C&A) requirements needed for systems engineering activities.
• Develops security test and evaluation plans to conduct system certification testing and consolidation of existing systems into the NGA Enterprise solution.
• Develops training plans involving all aspects of cyber defense and information assurance (IA) in the NGA Enterprise.
• Manages Remedy tickets for ECDS and the Cross Domain PMO's day to day operations involving over 30 major

Confidential - Quantico, VA

Responsibilities:

• Implemented and maintained McAfee firewalls, Juniper EX series switches and security appliances.
• Reviewed logs for all networking devices for unresolved abnormalities and problems.
• Documented all server and network problems and other unusual events in detail.
• Support Certification & Accreditation Assessment and Authorization processes and documentation, conduct vulnerability scans and audits and support Information System Security Officer (lSSO) Responsibilities.
• Support and assist in policy and procedure creation, updates and modifications, conducting IA analysis, security assessments, developing strategic implementation of risk management framework, supporting certification and accreditation processes, and documentation.
• Provide Information Assurance expertise, services and support to IA Policy, Process, Planning and Documentation in support of IA Oversight, Technology Review and Integration and Computer Network Defense (CND) services.
• Perform Security Assessment Visits (SAVs), Security Test & Evaluations (ST&Es) and IT Security Vulnerability Assessments.
• Monitored Arcsight ESM and Arcsight logger for all Agency Cyber related Events.
• Reviewed IDS and Firewall logs for all networking devices for unresolved abnormalities and breaches.

Confidential - Fairfax, VA.

Sr. Systems Engineer

Responsibilities:

• Duties include building and maintaining Symantec Netbackup and recovery solutions for the Defense Intelligence Agency
• Plan and test Disaster recovery resources; migrate physical servers into Virtual infrastructure; Netbackup Pure Disk administration and configuration.
• Test and evaluated Symentecsoftware to improve performance and usability.
• Communicate with vendors to resolve network outages and periods of reduced performance.
• Document all server and network problems and other unusual events in detail.
• Upgraded and expanded network systems and their components.
• Diagnose system hardware and software problems using advanced root-cause analysis.
• Monitor system logs for all agency computers and devices to maximize uptime.
• Build server systems and installed into racks.
• Identify and solve technical issues with a variety of diagnostic tools.
• Apply ad hoc tools and patches to resolve recurring production problems.

Confidential - Chantilly, VA

Responsibilities:

• Monitored NROwide tier 3 trouble ticket queues.
• Implemented and maintained firewalls, series switches and security appliances.
• Visually inspected temperature sensors to maintain health of servers and network devices. applied patches to resolve recurring production problems.
• Upgraded and expanded network systems and their components.
• Diagnosed system hardware and software problems using advanced root-cause analysis.
• Monitored system logs for all company computers and devices to maximize uptime.
• Completed remote repairs involving software solutions and hardware repairs.
• Responsible for the consolidation and decommissioning of end of life-cycle Windows Servers
• Built server systems and installed into racks.
• Defined security requirements for computer systems, thin client workstations and agency laptops
• Attend weekly enterprise engineering meeting.
• Kept up-to-date on new developments in computer and network vulnerabilities, data hiding and encryption.
• Configure Citrix Xen App and NRO published applications.

Confidential - Fairfax, VA

Responsibilities:

• Implemented and maintained firewalls, switches and security appliances.
• Troubleshot and maintained all networking devices and infrastructure across the enterprise including switches, routers and firewalls.
• Deployed and engineered symantec Endpoint security security servers.
• Deployed Trend Micro anti virus and spam appliances for all State Department Exchange servers
• Documented all server and network problems and other unusual events in detail.
• Upgraded and expanded network systems and their components.
• Designed and implemented networks in collaboration with project engineers.
• Incorporated feedback and recommendations from other staff members when modifying software.
• Defined security requirements for computer systems, including Linux,thin client workstations and laptops.
• Used Nessus to scan for rouge networking devices.
• Responsible for the deployment of Symantec security and tools across State Department DTS enterprise.

Confidential - Rosslyn, VA

Responsibilities:

• Built server systems and installed into racks.
• Managed the development, deployment and training of the Citrix system and the internal systems suite.
• Designed and implemented networks in collaboration with project engineers.
• Managed and deployed Exchange Server 2003.
• Provided tier 3 support to DS Security Help Desk staff.
• Responsible for the creation of domain service accounts.
• Managed DS websites and tools.
• Diagnosed system hardware and software problems using advanced root-cause analysis.
• Communicated with vendors to resolve network outages and periods of reduced performance.
• Responsible for the movement of users and servers in the DS Domain.

Confidential - Fairfax, VA

Lead Systems Engineer

Responsibilities:

• Monitored PFPA infrastructurewide trouble ticket queues.
• Visually inspected temperature sensors to maintain health of servers and network devices.
• Reviewed logs for all networking devices for unresolved abnormalities and problems.
• Troubleshot and maintained all networking devices and infrastructure across the enterprise including switches, routers and firewalls.
• Managed and monitored PFPA router and switch connections to remote sites.
• Ensured proper SMTP mail functions with PFPA domain.
• Worked closely with Lockheed Martin and ITA to resolve mail routing issues
• Managed 4 Sr Systems administrators during night shift.
• Upgraded and expanded network systems and their components in accordance with DoD IA Policies.

Confidential - Reston, VA

Responsibilities:

• Built server systems and installed into racks.
• Defined security requirements for Windows Server based computer systems.
• Completed remote repairs involving software solutions and hardware repairs.
• Defined the database requirements for SQL Servers and hardware systems.
• Diagnosed system hardware and software problems using advanced root-cause analysis.
• Documented all server and network problems and other unusual events in detail.
• Responsible for the deployment of Pointsec security software

Confidential - Pentagon, DC

Responsibilities:

• Visually inspected temperature sensors to maintain health of servers and network devices.
• Reviewed logs for all networking devices for unresolved abnormalities and problems.
• Troubleshot and maintained all networking devices and infrastructure across the enterprise including switches, routers and firewalls.
• Managed and configured 844th Communications Squadronnetwork devices.
• Deployed server systems and installed into racks.

Confidential - Washington, DC

Responsibilities:

• Completed remote repairs involving software solutions and hardware repairs.
• Responsible for the support of 7,000 State Department servers and services.
• Maintain and set up new printer queues.
• Responsible for deployment of RSA tokens
• Maintained State Department lab servers
• Diagnosed system hardware and software problems using advanced root-cause analysis.
• Communicated with vendors to resolve network outages and periods of reduced performance.
• Responsible for building new Windows 2000 Servers and software.