Information Systems Security Manager Resume
3.00/5 (Submit Your Rating)
PROFESSIONAL EXPERIENCE
Confidential
Information Systems Security Manager
Responsibilities:
- Prepare and review Change Control Board Charter, Standard Operating Procedures, System Security Plans, Rules of Behavior, System Security Policies, Business Continuity Plans, and Risk Mitigation Plans as part of eMASS SSP package preparation.
- As Chairperson of the Change Control Board, review Change Requests and issue final recommendation for approval.
- Participate in System Vulnerability Analysis Reviews with the DCSA Security Controls Assessor (SCA).
- Assist ISSOs and System Administrators with system hardening in accordance with Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and DCSA guidelines.
- Performed system vulnerability scanning utilizing Security Content Automation Protocol (SCAP), DISA STIG and system checklists, and Tenable software. Mentored and assisted junior team members with researching and resolving various security related issues.
Confidential
Enterprise Security Engineer
Responsibilities:
- Prepared Management Action Plans (MAPs) and Executive Summaries for presentation to the CIO Council including plans for remediation and recommendations for improving the overall Enterprise Security posture. Coordinated local market activities and responses for the Virginia, Kentucky, and Maryland regions.
- Prepared and reviewed Standard Operating Procedures, System Security Plans, Rules of Behavior, System Security Policies, Business Continuity Plans, and Risk Mitigation Plans as part of the FISMA package preparation. Assisted Systems Administrators with system hardening in accordance with FISMA, NIST, PCI, & HIPPA guidelines.
- Performed system vulnerability scanning and penetration testing utilizing BackTrack and Nessus software.
Confidential
FISMA Information Systems Security Manager
Responsibilities:
- Presented recommendations for remediation, and prepared POA&Ms as required for monthly review. Coordinated DoJ activities and planned response.
- Prepared and reviewed Standard Operating Procedures, System Security Plans, Rules of Behavior, System Security Policies, Business Continuity Plans, and Risk Mitigation Plans as part of FISMA package preparation.
- Participated in Disaster Recovery and Business Continuity exercises.
- Performed system vulnerability scanning utilizing Gold Disk, DISA and NSA system checklists, and Nessus software.
- Worked with other members within the Information Assurance community when researching and resolving security issues.
Confidential
Information Systems Security Manager
Responsibilities:
- Compiled and submitted accreditation packages for achieving DSS Certification and Accreditation.
- Researched, developed, and implemented Standard Operating Procedures, System Security Plan, Rules of Behavior, and System Security Policies.
- Performed system hardening in accordance with NIST, NISPOM, DCID, DSS ODAA, and DISA STIG guidelines.
- Performed system vulnerability scanning utilizing Gold Disk, Retina, DISA SRR, and other customized scanning scripts.
- Performed systems hardening disabling unused accounts, ports, and services in accordance with NIST, NISPOM, DCID, and DISA STIG guidelines.
- Initiated user account auditing and logging on servers as specified by NISPOM requirements.
- Administered HP - UX, IRIX, Red Hat Linux, Solaris, and SuSe Linux Enterprise systems supporting High Performance Computing (HPC) platforms.
Confidential
Senior UNIX Systems Administrator
Responsibilities:
- Performed vulnerability testing and eradication, user account setup, and privilege assignment based on Security Best Practices.
- Initiated user account auditing and logging on servers as required by DCID 6/3 standards. Initiated and maintained systems configuration documentation and system bare metal backups for Continuity of Business and Disaster Recovery planning.
- Ensured system accessibility, functionality, and stability through daily administration. Supported both the Enterprise Production and Development environments.
- Implemented multi-site solutions focused on security, reliability, and maintainability. Audited system logs for system performance and intrusion detection information.
- Reviewed vendor security bulletins and advisories as related to security bugs and fixes.
- Reviewed, tested, and updated security patches as required resolving security related issues in a proactive manner while adhering to industry best practices.
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
