SUMMARY

• Technical expert with 15 years experience in information technology and 7 years in information technology security
• Broad noledge of systems and software such as Windows, Linux/UNIX, Cisco, Mac OSX, desktops, servers, etc.
• In - depth understanding of fundamental security principals; eager to learn and quick to master anything tech-related
• Great team member and team leader, easily communicates with both technical and non-technical personnel

PROFESSIONAL EXPERIENCE

Confidential, Colorado Springs, CO

Senior Information Systems Engineer

Responsibilities:

• Senior Advisor to Air Force network security program manager; developed enterprise-level operational security programs
• Regularly reviewed capability overlaps, drove system/programmatic changes ensuring efficient use of government funds
• Rewrote requirements documents correcting major inaccuracies and ensuring new systems better met enterprise needs
• Significantly improved incident response metrics and developed initial metrics set for risk analysis/assessment function
• Recommended solutions for vulnerability management system deficiencies; facilitated fielding after numerous delays
• Authored versioning methodology and level-of-effort testing guidelines to balance rapid deployment with due diligence

Senior Information Security Engineer

Confidential

Responsibilities:

• Led and participated in 100+ government security tests of Medicare, Defense, Homeland Security and Court organizations
• Tested security of custom web apps, frameworks, and thin-client apps using tools like Burp Suite, Webscarab, and Paros
• Analyzed security of Windows servers and desktops using technical tools, admin interviews, and Group Policy analysis
• Developed new processes and improved existing ones to increase teh efficiency and effectiveness of security assessments
• Provided subject matter expertise on numerous security engineering projects for government agencies and within MITRE
• Made detailed risk determinations from vulnerabilities and provided situation-specific recommendations for remediation
• Communicated findings and recommendations to both hands-on technical personnel and non-technical management
• Authored a common reporting framework, decreasing reporting time and simplifying risk management within organizations
• Updated and maintained existing Linux security testing tools (bash shell scripts) to greatly improve Red Hat compatibility
• Extensively updated security testing tools in Windows using built-in tools and third-party apps in batch and VB scripts
• Developed first security testing tool for Mac OSX using shell scripts and built-in tools to gather configuration information

Technical Director, Information Assurance

Confidential, CO

Responsibilities:

• Led or participated in all information security assessments of Air Force Space Command satellite ground stations
• Developed and refined assessment processes, methodologies, reporting deliverables, and technical testing tools
• Directed critical security control selection, conversion to NIST control framework; authored web application test procedure
• Authored extensive security testing and reporting shell scripts for Red Hat Linux, SGI Irix, and Sun/Oracle Solaris
• Led military personnel, government civilians, and contractors in assessments of network security software and hardware
• Responsible for over $30M in computer and network equipment across six distinct test lab facilities in two locations
• Oversaw testing of IPv6 security, high speed network security (up to 10Gbps), enterprise integration, and telephone security
• Led a team of 9 in an advanced network security effort ensuring security of teh first overseas deployment of teh F-22 Raptor
• Integrated law enforcement/enterprise SOC efforts, ensuring continued in-depth monitoring of high-risk systems
• Implemented a layered security strategy by placing multiple network sensors at mission-sensitive network points
• Technical lead in partnership with defense contractors for sharing threat information related to network security

Chief, Network Warfare Assessments

Confidential, Lackland AFB, TX

Responsibilities:

• Led team of 11 in assessing new network security systems for use in Air Force and Department of Defense networks.
• Managed an $8.5M enterprise simulation laboratory for assessment of network security systems at speeds up to 10Gbps
• Successful strategic planning ensured continued operation and growth through budget cycles providing zero funding
• Technical representative in host-based security source selection for $44M Department of Defense-level acquisition
• Organizational representative to group responsible for developing Air Force-wide Windows workstation configuration
• Directed assessments of $100M Enterprise network redesign; discovered and corrected key shortfall in security architecture
• Cited as #1 of 14 company grade officers by division chief; consistently requested for expertise in high-profile projects
• Led network warfare team for European Theater-wide military exercise, actions rated “Excellent” by Inspector General

Chief, Network Warfare Operations

Confidential

Responsibilities:

• Responsible for a team of 3 personnel addressing all Network Warfare activities from a enterprise and policy level
• Partnered with regional NOSC/SOC, law enforcement, and headquarters to coordinate programs and increase efficiency
• Developed policy for acceptable use of teh network providing manual and technical solutions to reduce network misuse
• Specialty lead for multiple Information Operations planning efforts for US forces across Europe at multiple command levels
• As Deputy Operations Security PM, decreased critical information disclosures by 21%. Praised by higher headquarters PM
• Led team of 5 in administration of a regional center responsible for all US airlift/cargo operations in Europe and Africa
• Responsible for all computer and network systems within teh center. Revived dormant IT technical refresh program

Project Manager and Chief

Confidential

Responsibilities:

• Led team of 5 in implementing complex systems throughout Europe; adapted US systems for multinational environments
• Responsible for 5 major installations of a management information system used for wartime command and control
• Led team of 8 communications personnel in Israel providing communications for PATRIOT missile defense systems
• Developed tailored versions of command and control information systems for numerous unique environments
• Led deployed teams of 3-5 personnel to design, install, integrate, move, and retire large communications systems
• Designed $18M satellite communication systems providing a unique and quickly deployable solution for teh US Navy
• Led team of 3 to Saudi Arabia to repair satellite communications and WAN to LAN communications multiplexing center
• Mentored new personnel and provided on-teh-job training for highly-specialized communications engineering projects

TECHNICAL SKILLS

• Team Leadership
• Security Engineering & Design
• Technical Advisor
• Process/Program Efficiency
• FISMA/NIST Security Framework
• Risk Assessment & Management
• Web Application Security
• Tenable Nessus & eEye Retina
• Burp Suite, Webscarab, Paros
• Linux (Red Hat & other distros)
• Windows Server & Workstations
• Mac OS X
• Shell Scripting, C, C++
• Cisco IOS