OBJECTIVE:

• My greatest interest is the continued pursuit of developing for tier 1 - 3 organizations the most highly efficient secure models for conventional or Virtualized/Cloud Operational Services, Streamlined Infrastructure/Facilities and Holistically (cross functional) Collaborative Cultures for secure efficient business computing.
• I am Hands-on Sr. Technical, an exceptional relationship builder, services innovator, mentor who prides myself on my ability to provide high impact pragmatic business technology solutions for executive directives or internal/external customer technology focus.

SUMMARY

• Staff management (Local & Remote), training, development and evaluation.
• Information System Security and Business Continuity experience, Cloud & Virtual Enterprise (.net/AWS) VPN/Remote Access, Virtual infrastructure/storage/relational Data Base/local &remote or Cloud computing, Installation, Encryption, Virus detection/prevention, Network (Firewalls, Switches, Routers and IDS utilizing both command line and GUI/API interface device control) /Sr. Architecture/Staging & Installation/Configuration (SCCM)/Contingency, Disaster Recover & Planning, Incident Response & Risk Assessment.
• GRC/Compliance experience with NERC-CIP/ FERC, NIST, SOX, HIPAA, GLBA, ITIL, COBIT, FFIEC, PCI, FDA, COSO, FISMA, CA SB1386, EU, ISO 2: etc., polices, procedures and technical controls.
• Unix/Linux Administration, Application Development & Integration.
• Cloud Computing and developing consumer-facing mobile apps utilizing N-tier.
• Operational computing, GRC Audit, Automation and Implementation.
• Hands-on Level 3 Core Network Administration, Architecture, VPN/Remote Access, Installation, Encryption, Virus detection/prevention, Network Metrics, Net Backups, Production Quality Assurance, IDS(Intrusion Detection Systems), Proactive Network 24/7 Real Time Monitoring and LAN/WAN management across all business enterprise verticals.
• Cross Platform ERP, Endpoint Protection Platforms, Network, Infrastructure, distributed computing, Tier 1-3 Security, Mitigation Planning, Tools Implementation & Monitoring, Helpdesk Enterprise Data Center Operations experience and Agile Software Development, Quality Assurance and Release Management.
• Full Life-Cycle Management & Production Scheduling, Vendor Service Level Agreement (SLAs), IT to IT Operational Level Agreement (OLAs), IT As A Service (ITAAS) and Strategic Business Partner Management.
• Standards Development and Compliance Analysis expertise as well as physical Data Center Security and Infrastructure management.
• Active Top Secret Clearance - Government (NRO, DOD, DMA, ICE, FBI, DHHS, NIH, JDFPG, NSA, CIA, DOE) customer include client Security Awareness, Incident Management & Planning, Application Development & Management, Data Center Stand up, Managed Services & Business Development, Operations & Automation.

PROFESSIONAL EXPERIENCE

Confidential

Sr. Operations Manager

Responsibilities:

• Sr. Operations Technical, Security & Compliance Manager.
• 24x7 Helpdesk and call center problem resolution
• Enterprise technology separation of global architecture into independent environments Confidential . from XeroxFull technology planning, architecture and migration to private cloud/AWS/.Net from legacy systems.
• Excavating and identifying “rouge” systems or applications within legacy enterprise and aligning to ITIL standards.
• Developing enterprise architecture diagrams and other best practice documentation that did not exist prior.
• Realtime operations architecture reconfiguration allowing for 99.999% operability for state & federal finical systems transactions of up to $3.5 billion.
• IT solutions and tool evaluation for edge security, DLP, document & code management, storage, DR, contingency, authentication/single sign on, license management; Etc.
• DevOps applications and enterprise database management to include migration to VM solution, sizing, security, multi patching and other maintenance.
• Enterprise data modeling and analytics

Confidential

Sr. Technical Consultant

Responsibilities:

• Senior Technical Architecture, Security, PM, Compliance & Testing Consultant to Verizon Business for redeployment of US National Grid ($650,000,000 capital project)
• Senior Compliance Consultant to US and International Business partners & POC for Verizon Business Solutions.
• Senior Consulting Project Manager for Data Center deployment & integration.
• Developed & configured architecture, project plans, iteration schedules, testing, training plans, and ensure risks are managed to provide required project deliverables within scope, schedule.
• Identity Management and Global Network Partner data throughput solutions installations and management.
• Senior Security & Compliance Consultant ITT Global Area Network - security assessment, network security distribution framework, compliance assessment and alignment to domestic or international governance, development of controls (MS, Blue Coat (9000, AV1400, Proxy SG Series), Juniper SSG550, Blackberry, CISCO (MCS 7800, ASA, 3750, 3945 Gate Keeper, 4400 Wireless Controller) Log logic ST4020, KVM - ACS 5048, LX4020, Big IP, F5, AS400, DB2, VoIP, DNS) assessment documentation.
• Consultant for GRC Audit, TIA-942 assessment & evaluation of Criminal Justice Information Systems (CJIS) of U.S. Federal Bureau of Investigations (FBI).
• Network Operations Center Management to include: 24x7x365 NSOC Operations, Remote Network & Security Management, Network Monitoring, IDS Management, Disaster Recovery, Contingency Planning, Application Hosting & Computer Security Incident Response Teams Principal
• Designed complex enterprise-scale solutions, integrated into larger network security architectures.
• Designed, developed and implemented Business Continuity Plan consulting services that include COOP and Disaster Recovery services to Navy, DISA, DLA, and others.
• Provided Information Assurance, Security Engineering, Continuity of Operations design and management implementation for the USAF and other DoD - all in support of the BRAC and GWOT.
• Technical consult to FBI, Blockbuster Video and MetaSolv Software Inc.
• Developed services model and operational direction for SOC/NOC topology real time monitoring/Incident Response forensic investigations and contingency for Global Data Center.
• Responsible for building upgrade and installation/change management of network infrastructure, UPS. Ethernet, frame relay, ATM, SNMP, RMON, VPN, ISDN, SONET, DSL, voice networking, wireless networking, network/parameter security and performance tuning.
• Managed $4,300,000 budget for vendor POC for hardware purchase & asset management.
• Developed Network Strategy, NOC Network topology & Architecture.
• Developed, built and managed Corporate Technology Lab for consultant engineer training, product evaluation and research.
• Drafted NOC Security Policy, Disaster Plan, Incident Handling & Escalation Procedures and E-mail Policy.
• Build out and Management Internet Access, Virus Detection, Audit, FireWall-1,ASA FW, Palo Alto, PIX, CISCO, SNORT, ArcSight Suite, FW1, Tipping Point SMS, NetRanger, NetSonar, and ISS Security Scanner Standard Operating Procedures and Best Practices.
• Consulting Engagements Include: TrueStone-FBI (Top Sec Clearance), INS International Network Services /Lucent Network Care, PacificaTech, Atlantic Systems Group- DOD Veterans Affairs

Confidential - Rockville MD

Tech Director

Responsibilities:

• Director of Management Information Systems & Operations to Enterprise Network Engineering Team, IT Hardware and Software Selection Group, ITaaS, Cloud Hosted Services, Operational Support Services Team, IT & Facilities Physical Security Group, and IT Privacy & Policy Team
• Responsibility for direct management and coaching of corporate IT Staff resources
• Managed business computing, Data Centers, IT operations, strategic business partner/vendor relationships, systems continuity/contingency/maintenance & recovery.
• Led projects and provided hands-on programming expertise to automate the exchange of product content information between vendors and suppliers in a real-time, secure environment. Leveraged existing business logic used for exchanging data between business storage and other applications Developed system using Java, JPS, Servlet, web services, XML, MS SQL Server Database, RMI, and Websphere Application Server. This primarily included the use of HTTP, SOAP, SOA & RDF model with ongoing conversion to a Web 2.0 model that utilize more RDF or Mashup’s in line with the Web 2.0 model.
• Designed and developed the security architecture using .net Cryptography namespace ensuring PHI, HIPAA and SOX compliance of sensitive data reusable in all inter/ intra/ desktop and mobile applications.
• Frequent reports and updates of systems status to customers and C-level staff: CTO/CEO/CFO/CSO.
• Budget and financial planning/forecasting for Data Center and network infrastructure purchases and operations.
• Responsible for communication, management and routing between multiple networks in the Data Centers, and remote customers and offices.
• Managed outages and events impacting client-facing services as well as back-office business support services. Developed escalation procedures to ensure reliable operations and response to incidents. Delivers improvements and changes as necessary to repair recurring issues and proactively identify and prevent other issues affecting the site operation or customer experience.
• Architecting and hands on implementation of Cisco Pix, ASA Firewalls, Snort, Big IP, Cisco, Juniper, Dell, D-link and other core cross platform technologies used secure or insure the data confidentiality, integrity and availability of customer networks.
• Responsible for Briefing the Network Operations CTO on Development plans for necessary upgrades and reengineering of the network architecture and Server Systems.
• Responsible for all Communication between Networks to our remote office and customers, including IPSec, SSL/TLS remote Access VPN.
• Data Center budgeting for purchases, and migration of our Lexington Data Center operations to our Rockville Data Center.
• Developed custom applications, analytics, schemas, query content, hardware selection and metadata collaboration for National Cancer Institute (NCI) first-ever large scale online cohort research effort.
• Training & mentoring of Data Center operational tier 1-3 technical staff.
• Provides various information assurance support throughout the system development lifecycle
• Provided analysis, communication, liaison, and environment support for data conversions for strategic partners like IBM Corp.
• Executed migration of the current enterprise servers to the new virtualized consolidated enterprise servers Department of Health & Human Services (HHS) and National Institute of Health (NIH).
• Designed and managed company principal Data Center Managed Hosting Facilities in MD, Mass and customer satellite hosting facilities (hosting, co-hosting & custom hosting) Services.
• Developed and successfully deployed the corporate C&A framework and processes to ensure customer, or strategic partner to regulatory alignment.
• Perform Certification and Accreditation (C&A) activities for Department of Homeland and Security (DHS), Department of Transportation (DOT), Department of Veterans Affairs (VA) using the NIST Risk Management Framework, ITIL Framework and HIPAA.
• Perform Certification and Accreditation (C&A) activities for nine major Department of Defense (DoD) applications and sites using the Department of Defense Information Technology Certification and Accreditation Process (DITSCAP).
• Review System Security Authorization Agreements (SSAA) and System Security Plans (SSP), document vulnerabilities, document accreditation recommendation to the Certification Authority (CA) for final review/approval.
• Management oversight regarding all planned and unplanned site engineering activities for national Data Centers.
• ASA FW, Palo Alto, PIX, CISCO, SNORT, ArcSight Suite, FW1, MS, Blue Coat (9000, AV1400, Proxy SG Series), Juniper SSG550, Blackberry, CISCO (MCS 7800, ASA, 3750, 3945 Gate Keeper, 4400 Wireless Controller) Log logic ST4020, KVM - ACS 5048, LX4020, Big IP, F5, AS400, DB2, VoIP, DNS)

Confidential

Sr. MANAGER OF DATA CENTER OPERATIONS & PROJECT MANAGER

Responsibilities:

• Manager of National Data Centers serving as manager of direct reports concerning Enterprise Network, IT Security, Policy & Privacy), Manager of Physical Security/Guard Staff contractor services, Sr. Facilities Manager, Sr. Helpdesk Services & Call Center Manager
• Sr. Advisor on Executive Advisory Board Member for Business Development Services (ITaaS) as Technical Principal
• Network Operations Center Management to include: 24x7x365 NSOC operations, Remote Network & Security Management, Network Monitoring, IDS management (Port and services scanning utilizing SNORT, IIS and other blocking or tackling intrusion prevention.), Disaster Recovery, Contingency Planning, Application Hosting & Computer Security Incident Response Teams Principal business/technical Manager.
• Provided Sr. technical support, maintenance and administration of MS Exchange email software suite.
• Sr. Manager of Helpdesk, Call Center Services and Support (Call center, backup services, levels 1-3 support, Etc).
• Designed complex enterprise-scale solutions, integrated into larger network security architectures.
• Provide system administration support for network components, including server configurations, backups, emergency restoration services, and maintenance.
• Sr. Level project manager responsible for C&A, Product Evaluation of all COTS and GOTS, Testing, Security Assessment.
• Established documentation developed and executed COOP, Risk Assessment, and SSAA meeting NETWARCOM and NMCI directives.
• Designed, developed and implemented Business Continuity Plan consulting services that include COOP and Disaster Recovery services to Navy, DISA, DLA, and others.
• Provided Information Assurance, Security Engineering, Continuity of Operations design and management implementation for the USAF and other DoD - all in support of the BRAC and GWOT.
• Integrated server monitoring tools and scripts to minimize downtime and increase resource efficiencies.
• Provided, sustained and executed Active Directory Administration.
• Performed network vulnerability assessments using tools on Unix/Linux and windows based systems.
• Analyzed, designed and developed network security policies and plans for various high profile DOD Agency networks.
• Assessed emerging security technologies, clarifying the pros and cons for clients.
• Lead Remedy IT Application development, testing, training & support team in enhancement, maintenance, & upgrade of latest versions of BMC Remedy & Atrium Solutions.

Confidential - Reston VA

Senior GRC Policy Controls Manager & Technical Controls Analyst

Responsibilities:

• Management of regulatory mapping of standards to regulatory policies, procedures and technical controls
• Sr. POC for strategic partner content development & Compliance Testing controls (Atlantic Systems Group and PWC.)
• Sr. POC, Compliance Analyst & Technical Engineer for technology partners (MS, SAP, Oracle, ASG, Cisco, Juniper, Nokia) technical control development and technical control alignment.
• Sr. POC, Compliance Analyst & Technical Engineer for customer services and collaboration for Chevron, Confidential, Coke, Burlington Northern.
• Responsible for researching evolving holistic enterprise technologies for compliance dashboard suite selection and associated risk, policy or configuration/procedure.
• Development and management of content product quality assessment and release distribution
• Responsible for management of vendor/ strategic partner SLA’s, associated product alignment agreement oversight and RFP principal contributor.
• Support platform integration, engineering and project management.
• Product Quality Assurance and Release Management for compliance, software dashboards policy, procedures, frameworks and technical controls.
• Management of regulatory mapping of standards to regulatory policies, procedures and technical controls
• Analysis of best of breed industry technical control content for the construction of software cross-platform queries (technical translations for control data)
• Designed managed Software Configuration Management (SCM) release structure and SCM operational services.
• Customer/Post Sales services, end user product training, policy/content gap analysis and development of post implementation strategies.
• Authored all of Company automated IGRC product tools dashboard (Industry watchdog Gartner rated best of breed) Policy, Procedure and Technical controls content.
• Co-development of multi vendor platform queries for integration into automated compliance assessment dashboard with the Sr. Engineering team.

Confidential - Ft Worth Texas

Network Security & Privacy Manager

Responsibilities:

• Security Management of 30,000-workstation upgrade project - replacing systems that average 12 years old to new Intel based windows XP systems.
• Established Policy, Procedure and controls for partner transactions concerning worlds largest credit card clearing house.
• Oversight and development of security awareness programs, and security custom compliance and security audit dashboard.
• Global enterprise management and administration of corporate enterprise email security, web availability and integrity.
• Sr. Member of Threat/Patch management program - team responsible for patch management assessment and deployment.
• Developed security strategy for corporate policy, procedure, technical controls assessment and risk matrix.
• Responsible for Network security testing, client/server hardening, diagnostic or forensics review of cross platform systems.
• Responsible for firewall architecture, web server security, VPN and application configuration.
• Responsible for remote (Authentication hardware and account oversight) and local Access and Identity Management, edge computing technology platform evaluation and selection.
• Responsible for Sr. administrative enterprise Security processes (Security Awareness Training, Documentation updates, Annual Audits, IG Investigative support) .
• Ecommerce security (PKI, EDI), Intrusion Detection, Cyber Crime Incident Response and Forensics.
• Created Steering Committee and Incident Response Team consisting of corporate communications, privacy, IT security, finance, HR-health, corporate security, General Council and other Sr. Executive staff.
• Sr. Principal and POC for IT oversight of outsourced services for (Flight Reservation Systems, Weights & Balances).
• Sr. Principal and POC for enterprise computing with principal vendors (EDS, PWC, Saber, UUNET) at AA Corp, Airline Hub, Tech Com, EDS-Tulsa.
• Directed IT Security organization in collaboration with legal counsel and executive staff all organizational privacy and confidentiality consistent with current organization and legal practices or requirements.
• Developed and implemented, compliance monitoring of all trading partner and business associate agreements, to ensure all privacy concerns, requirements, and responsibilities are addressed.
• Established and Sponsored 1st annual Aviation Industry collaborative conference on industry security, privacy and compliance post 911.
• Establishes and administered process for receiving, documenting, tracking, investigating, and taking action on all complaints concerning the organization's privacy policies and procedures in coordination and collaboration with legal counsel.
• Served as CEO and Sr. Vice President of corporate employee diversity (AAERG) principal sponsor AA COO and Board Member Founder Earl Graves.
• Instituted Employee diversity culture building program in collaboration with Dallas Dinner Table Foundation.
• Represented Confidential as fundraising spokesman for National Sickle Cell and Future Aviators.