SUMMARY:

• High - performing and dedicated professional with more than 15 years of experience in Information Technology. Solid background in Software Development Life Cycle (SDLC) including but not limited to Planning, Analysis, Design, Development, Implementation, Testing, Deployment and Maintenance.
• Reinvented technical skills into the Information Security profession over the past few years. Possess hands-on experience in Information Security coupled with extensive on the job and classroom . Obtained the following s: CompTIA Security Plus, (ISC)2 Certified Information Systems Security Professional (CISSP), and Certified Scrum Master (CSM). Familiar with COBIT (IT Governance Framework), ISO 27000 series (Information Security Function and Assurance), ISO 42010 (Systems Architecture), CMMI, ITIL, Waterfall and Agile (for software development) framework. Proven ability to manage
• IT projects with extensive experience managing large scale projects from project initiation to project completion. Extensive experience in Federal, DoD, and private sector consulting. Highly skilled at relationship building with clients and intra-organizational teams; excellent writing, presentation and interpersonal communication skills. Have a Bachelor’s of Science degree in Computer Science and Master of Information Management (MIM). Have an active Secret Clearance.

TECHNICAL SKILLS:

Software /Application / Tools: SQL Plus 9i, Toad, Mercury Quality Center, Mercury Test Director, Citrix 9.0 (Developer Application), Serena Team Track, Hummingbird, SAP, Infomatica, Remedy, Discoverer, SQL Navigator, Dimensions RM, Dimensions CM, Oracle Express, Microsoft XP Office Suite, Window NT, DOS, MS Project, MS Visio, PL-SQL, Oracle, HTML, C++, Visual Basic, PHP, Primavera, Quick Test Professional, Rational Requisite Professional, LoadRunner, PVCS Tracker, Oracle Graphic Builder, Microsoft Office Visio, Serena Version Manger, Serena Change Manager, Oracle Warehouse Builder, Microsoft Project, Oracle Forms/Reports Builder, ProVision 6.2

Hardware: PC ConfigurationPC Windows

PROFESSIONAL EXPERIENCE:

Confidential, College Park, MD

Systems Security Engineer

Responsibilities:

• Implement STIG (Security Technical Implementation Guides) to harden multi-purpose Navy Safety Management web-based COTS application by disabling/removing unwanted/unnecessary services, utilities, and applying latest patches
• Develop, update and review security accountability and acceptable use policies, guidelines, standards and procedures based on organization objectives
• Conduct structure walkthrough of the COOP (Continuity of Operations) Plan to finalize the plan and to ensure that the disaster recovery process is well documented.
• Maintain current knowledge of available patches and decide what patches are appropriate for particular systems
• Work with system administrators and network team to ensure that patches are installed properly and help to document all associated procedures, such as specific configurations required
• Assist Enterprise Architect with system design and software issues with a solid understanding DoD frameworks
• Assist in the testing of DR policy and frequency based on enterprise risk and functional priorities
• Determine operational feasibility by evaluating analysis, problem definition, requirements, solution development, and proposed solutions
• Prepare and installs solutions by determining and designing system specifications, standards, and programming
• Improve operations by conducting systems analysis; recommending changes in policies and procedures

Confidential, Bellevue, NE

Information Assurance Analyst / Asst. Project Manager

Responsibilities:

• Developed high-level security policies, practices, standards and programs in line with organization objectives.
• Worked with management, IT personnel and system owners to improve security awareness within the organization through proper for internet use, internal system use, identifying and preventing all types of social engineering e.g., phishing/pharming attack
• Performed and assisted in BCP/DRP tests including, but not limited to, call tree exercises, tabletop walkthroughs, functional tests, integrated tests and workspace recovery
• Developed and implemented quality control methodologies to ensure compliance with quality assurance standards, guidelines, and procedures in a computer-based organization.
• Liaised with network team and reviewed SAN and VM logs for abnormalities and monitored VPN usage
• Established and maintained a process for evaluating hardware, software, and associated documentation and/or assists in the evaluation.
• Documented and updated operational support procedures required for maintaining the information system, and to effectively track data protection and security actions
• Conducted and/or participated in formal and informal reviews at pre-determined points throughout the development life cycle.

Confidential, Baltimore, MD

Project Manager / Information Assurance Specialist

Responsibilities:

• Developed and implemented Information Assurance and Quality Assurance best practices including but not limited to IT Processes and Procedures and Risk Management Assessment as required by DoD standards
• Managed and led project team to ensure project is on schedule (delivers on time) and within budget
• Monitored Information Assurance vulnerability to ensure proper protective/corrective measures are implemented
• Developed and reviewed Disaster Recovery/ COOP plan which included strategies and procedures for recovery, continuity, and the sustainment of vital business functions and technology resources
• Ensured documentation of information security procedures, processes, guideline and policies were accurate and in line with organization objectives
• Interfaced with the network team and developed and reviewed compliance and exception reports for software security patches.
• Monitored and audited information systems activities (logs) to confirm information security policy compliance; provided management with security policy compliance assessments and system monitoring reports
• Liaised with system administrator and network specialist to plan and resolve network issues relating to setting up V-LAN, resolving IP, Active Directory and Firewall issues
• Worked with the development team to ensure proper controls and governance assurance is built into packaged solutions.
• Performed System Integration Test (SIT), Security Test, Load Test and Performance Test on several IT systems/applications (Windows 2008R2, SQL 2008R2, JBoss 7.0, .NET 4.0x )
• Monitored and controlled project activities to ensure project team meets expectation

Confidential, Baltimore, MD

Information Assurance Analyst / Asst. Project Manager

Responsibilities:

• Performed validation assessment to ensure Information Assurance Vulnerability Alert (IAVA) policies are implemented
• Developed and implemented Information Assurance and Quality Assurance best practices: IT Processes and Procedures and Risk Management Assessment as required by DoD standards.
• Developed and coordinated patching process for new and existing systems (e.g. Windows Operating systems) and validated the acceptance of applied patches each month
• Coordinated with the development team, software testing team to resolve critical issues affecting the performance and successful implementation of systems deployment in an ITIL environment
• Conducted Laboratory Configuration Audits (LCA) of application, database and web servers
• Coordinated with Information Assurance team to review results from STIGs using DISA Application Security Checklist for remediation
• Applied and implemented SDLC best practice couple with information assurance policies and procedures to achieve project objectives
• Assisted Project Manager with daily project operations within the Project Management Life Cycle framework
• Worked within the confines of ISO 9000 - Quality management to ensure products and services meet customers' needs
• Created software test artifacts; test plans, test cases, test scripts, test scenarios and test reports using HP Quality Center and Requisite Professional.
• Administered change control process, reviewed, sought authorization, and tracked all change requests.
• Performed System Integration Test (SIT), Security Test, Load Test, Performance Test, Independent Verification and Validation (IV&V) Test on Windows, UNIX, Linux - Red Hat, Sun Microsystems - Sun Solaris, FreeBSD, and Mac OSX platforms using HP Quality Center, LoadRunner and HP Quick Test Pro

Confidential, Fredericksburg, VA

Quality Assurance Manager/Information Assurance Analyst

Responsibilities:

• Instructed users, stakeholders and partners on system and data security best practices
• Managed processes to perform regular security assessments of existing and new infrastructure; includes scans, research, remediation, and implementing fixes.
• Document policies, develop and maintain detailed procedures related to security products or tasks
• Worked with client, data owners and systems/technology partners to ensure controls were in place and executed
• Managed and led a team of 5 people to provided quality assurance support, programming, analytical and technical support and Information Assurance support to the entire project
• Liaised with clients and stakeholders to gather systems/technical requirements and created Requirements Traceability Matrix (RTM)
• Performed enterprise application level testing; installation, smoke, functional, acceptance, load, stress, performance, and regression testing
• Provided technical, analytical and programming support to development team for the development and implementation of software application (TeamConnect)
• Conferred with users to discuss security violations, computer data access needs, and programming/software changes

Confidential, Alexandria, VA

Quality Assurance Manager / Config. Manager

Responsibilities:

• Managed and led a team of 4 people to perform Quality Assurance and Information Assurance activities
• Performed variety of software application testing; system integration testing, performance testing, and load testing, using HP Quick Test Pro, HP Quality Center and SQL Toad
• Developed security plans to safeguard computer systems against unauthorized modification, destruction, or disclosure and to meet emergency data processing needs
• Performed comprehensive back-end queries on systems database using SQL Navigator that mimic Oracle Express reports to properly test and verify the report data supplied by Infomatica Powercenter
• Created software defect reports as defects were detected and shepherd them through to resolution using Serena Team Track
• Developed test standards and generated ad hoc reporting capabilities from new and existing data sources in a data warehouse environment using Infomatica Powercenter.

Confidential, La Plata, MD

IT Professor

Responsibilities:

• Prepared course lesson plans, provided comprehensive course outline and administered quizzes, tests and exams
• Conducted weekly class activities and lectures; provided detailed instructions for course requirements and promptly responded to student inquiries

Confidential, Reston, VA

Quality Assurance Lead/Test Lead

Responsibilities:

• Managed and led a team of 3 testers to perform various types of testing activities
• Performed regression, unit, functional and system integration (SIT) testing using SQL TOAD and Oracle 9i
• Created test plans, test cases, test scripts for several systems utilizing Mercury Quality Center and Serena Team Track
• Provided production support and for 10-plus end-users
• Created software defect reports and shepherded defects through to resolution using Serena Team Track

Confidential, Columbia, MD

Information Technology Specialist

Responsibilities:

• Performed software testing on critical web-based business application built on Java, HTML, C++ and other object oriented languages
• Provided helpdesk support to customer service department and maintained computer network
• Maintained company's intranet and internet systems

Confidential, West Orange, NJ

Helpdesk Analyst

Responsibilities:

• Configured, installed, and maintained computer hardware components and software applications
• Analyzed, troubleshot and corrected network problems; reported server utilization and disk space allocation; assisted in the development of policies for remote and onsite access and maintained daily operation of ATM

Confidential, Edison, NJ

Software Test Engineer (Contractor)

Responsibilities:

• Designed and performed software application development of records management software application
• Performed unit and regression testing and created comprehensive software quality assurance reports
• Created prototypes, functional specifications, and other documentation for software project; built use cases for GUI systems and tested system algorithms and software applications