PROFESSIONAL EXPERIENCE

Senior Security Engineer

Confidential

Responsibilities:

• Performed incident response activities using the Symantec (Netskope and Skyhigh) DLP tools (across network, VPN, e - mail system, at rest storage, file shares, etc.
• Performed detailed analysis of DLP events during the incident process, combining sound analytical skills with advanced knowledge of IT security threats
• Conducted ongoing review of existing DLP business rules, making recommendations for enhancements, and built automation processes to facilitate incident response and incident remediation
• Monitors all networks, IDSs, and Security tools for network intrusions, unauthorized access and indicators of compromise.
• Assists and participates in all incident response (IR) efforts.
• Research’s and distributes cyber threat intelligence to protect all of the Authorities networks. Detect, identity, respond, contain and remediate all information security incidents.
• Provides information security metrics and key performance indicators (KPI’s).
• Manages Incident Response Team (IRT)
• Assists the Chief Information Security Officer (CISO) to address any network security corrective actions and work with Information Technology & Engineering Staff in accordance with Cyber Security Project Plan.

Confidential

Information Assurance Analyst

Responsibilities:

• Analyzes proposed system design(s), and system security documentation for adherence to security practices in accordance with Intelligence Community directives, NIST publications, and industry best practices to determine:
• Possible effects of system design vulnerabilities, weaknesses, and implementation choices on mission accomplishment and;
• Possible impacts of security breaches operating environments
• Performing network and operating system assessments
• Performing wireless assessments

Cyber Information Assurance Manager

Confidential

Responsibilities:

• Performed Symantec Data Loss Prevention (DLP) tool implementation, configuration, and integration with other technologies, e.g., Encryption, logging and ticketing tools
• Developed incident response remediation workflow for DLP alerts and incidents
• Review/Perform Cyber assessments as required by the NRC/FERC/NERC cyber security programs
• Conducts log analysis to identify malicious activity and anomalous behavior.
• Reviews security events that are populated in a Security Information and Event Management (SIEM) system.
• Analyze a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident. Responsible for building a layered approach to all plant security systems and prioritizing efforts.
• Windows and UNIX/Linux Operating Systems knowledge
• Responsible for the development of periodic scanning reports, risk assessments, vulnerability assessment reports and/or standards and policies across multiple IT platforms, including: Mainframe, Client Server, and Web-based systems
• Responsible for Plant IT infrastructure designing from the processes, hardware, software, networks, vendors, to the customer interfaces. Integrate and interface with site major projects organization to ensure compliance with site procedures and processes

Information Assurance Program Analyst-PM

Confidential

Responsibilities:

• Monitors and analyzes network traffic and IDS alerts
• Trains users and promote security awareness to ensure system security and to improve server and network efficiency.
• Coordinates implementation of computer system plan with establishment personnel and outside vendors.
• Monitors use of data files and regulate access to safeguard information in computer files.
• Performs risk assessments and execute tests of data processing system to ensure functioning of data processing activities and security measures.
• Encrypts data transmissions and erect firewalls to conceal confidential information as it is being transmitted and to keep out tainted digital transfers.
• Reviews violations of computer security procedures and discuss procedures with violators to ensure violations are not repeated.
• Maintains permanent fleet cryptologic and carry-on direct support systems required in special land, sea surface and subsurface operations

Intelligence/ Signal Officer

Confidential

Responsibilities:

• Schofield Barracks Hawaii 2009-2011- Collected operational intelligence reports from various agencies recommend approval/disapproval regarding the dissemination of operational intelligence information, analyze raw, primary and secondary data from various sources such as databases, intelligence reports, communications, case files and other sources
• Assessed and provided analysis of technologies and solutions, provides analysis recommendations, researches and builds technical papers, and supports INSCOM and NSA analysis operations
• Fort Drum New York 2003-2005- Conducted research and analysis of counterintelligence, counter-terrorism or foreign military forces, operations, capabilities and trends to support all source intelligence and threat production.
• Iraq 2005-2006- Provided analysis and research for industry, infrastructure, technology, country, geographic area, biographic and targeted vulnerability
• Prepared assessments of current events based on the sophisticated collection, research and analysis of classified and open source information
• Fort Gordon Ga 2006-2009 (Commander D 369)- Company Commander and Manager for over 545 Initial Entry Soldiers and 10 Cadre Members.