We provide IT Staff Augmentation Services!

Program Manager Resume

PROFESSIONAL SUMMARY:

Diverse, customer - focused IT risk management and IA/CyberSecurity professional with 20+ years of experience working as a vice president, business owner, project manager, team lead, network administrator, and instructor. Expertise in information assurance, DIACAP / RMF, C&A, consulting, threat/vulnerability management, administration, curriculum/courseware design, and instruction within DoD, commercial, and educational environments. Experience working for, consulting with, and training multiple military branches (U.S. Army, Confidential, Air Force, Marines, Army Reserve, Air National Guard) at numerous worldwide CONUS and OCONUS facilities.

  • Experienced Compliance Officer and Auditor familiar with multiple CyberSecurity and Risk Management frameworks: NERC CIP, DIACAP, NIST RMF, HIPAA, ISO and others.
  • Leader and team player with a strong work ethic who contributes to a high-performing, positive work environment; works well in group situations and independently; and is adept at breaking complex problems down into simpler forms, enabling effective resolution.
  • Information System Security Officer (ISSO), DIACAP/RMF Program Manager, and Project Manager providing guidance, coordination and leadership for a team of CyberSecurity Engineers, Auditors, and Analysts; Utilizing DoD and military regulations; contributing to organizational tactical and strategic goals and objectives to obtain/maintain current 3-year Authority to Operate (ATO) and successfully pass CCRI/DAIG inspections.
  • Natural talent in building strong trusting relationships with Senior Military and DoD civilian personnel; interacting with internal/external on-site customers; communicating with on-site resources; multitasking and working several complex and diverse tasks with near simultaneous deadlines; determining methods and procedures to be utilized on projects; and maintaining accountability for completion of high-quality deliverables.
  • Participates in strategic design process to translate security and business requirements into effective risk mitigation strategies; integrating CyberSecurity requirements to proactively manage computer and information security throughout the global enterprise.
  • Strong written and oral communicator currently working on Doctoral degree. Extensive experience interpreting, creating, review, editing and maintenance of Policies, Procedures, POA&Ms, and other documentation; effectively presenting information to active duty military, government, contract, and civilians, facilitating IA/CyberSecurity and business success.
  • Seasoned Mobile Travel Team instructor instrumental in standing up military training program for Federal government civilians, including creating presentation materials for the Project Management Professional (PMP) program facilitating DoD civilians and FA53 ISM active duty personnel with utilization of proper project management techniques for support of global military missions.

TECHNICAL SKILLS:

Platforms: Windows NT/2K/2K3/Vista/7, HP-UX, Red Hat Linux 7/8/9/EL3, Novell 4.x

Networking: Routers/Switches, Firewalls, Proxy Servers, VPN, IPS/IDS, SAN, Wireless

Applications: MS Office/Project/SharePoint, HP OpenView, SMS 2K3, VMWare, NetApp Data ONTAP, Ethereal/Wireshark, Network Monitor

Environment: Microsoft, Cisco, Juniper, Aruba, McAfee, FireEye, ArcSight, Bluecoat, Ironmail

Military/DoD: DIACAP / RMF, FISMA, NIST, Army ITC/ABIC (April 2010)

PROFESSIONAL EXPERIENCE:

Confidential

(DIACAP/RMF Program Manager, ISSO and IA/Cybersecurity Team Lead)

ISSO, DIACAP/RMF Program Manager, and On-site IA/CyberSecurity Division compliance branch project manager for a 10-person USARC G-6 IA/Cybersecurity team supporting a large scale global enterprise network with 1000+ sites, approximately 50,000+ assets and 150,000+ users for Networx Managed Network Services (MNS) contract. Demonstrating subject matter expertise and working cooperatively and cohesively in a dynamic fast-paced multi-disciplinary setting of SMEs, vendors, contractors and clients where project deadlines are critical and multiple projects run in parallel. Providing supervision, guidance, and conflict resolution for IAVM, Networthiness, PPSM, and IA/Cybersecurity Engineering personnel. CND-SPM/IAM II compliance officer managing 100+ project team members in ATCTS. Coordinating and completing assigned tasks with team, resolving minor concerns/issues, Assisting with UDCI incident response using SIPRNET. Working with IA/CyberSecurity government (IAPM, IAM, IANM) and contract personnel of the Policy, Compliance and Network branches to mitigate risks; help ensure continuous operation of the Army Reserve network throughout the system development life cycle (SDLC), and successfully maintain current 3-year Authority to Operate (ATO). Preparing for upcoming CCRI/DAIG inspections. Requirements definition and gathering related to organization mission, goals, and strategies. Evaluating current security products (hardware and software), programs, and trends. Analysis, design, development, engineering and implementation of security solutions to comply with multi-level organizational security needs. Security principles include Security Trends, Information Security, Risk Management, Access Controls, Security Architecture and Design, Physical and Environmental Security, Telecommunications and Network Security, Cryptography, Business Continuity Planning, Regulations and Compliance, Applications Security, Operations Security, Certification and Accreditation, Web Security, Authentication, Messaging Security, PKI, Access Security, Ports and Protocols, Network Security, Wireless Security, Remote Access Security, Auditing/Logging and Monitoring, Vulnerability Testing, and OS Defense in Depth, PPSM, DAPE, DMZ Separation of Duties, Least Privilege, and Hardening. Coordinating/consulting with engineers in Enclave Computing environment to help ensure strong Defense in Depth implementation of DoD, Army, and USARC regulations, and policies. Application of DoD 8500 series, AR25-2, DAIG, and NIST SP 800-53 Rev 4 controls, along with Army BBPs and DISA Security Technical Implementation Guides (STIGs). Management of DIACAP/RMF documentation (SIP, DIP, Scorecard, POA&M), including C&A TdB database uploads. Creation and maintenance of supporting Certification and Accreditation artifacts (Policies, STIG waivers/POA&Ms, SSP, SOPs, MFRs, Project Plans, etc.). Preparing PowerPoint presentations for Weekly In-Progress Reviews (IPRs) and coordinating with Senior Military, DoD Civilian, and Contractor personnel. Development of documentation and training to assist Subject Matter Experts (SMEs) with hardening and applying DISA STIGs. Assisting CIO G-6 Agent for the Certification Authority (ACA) personnel with facilitation of on-site Security Testing and Evaluation (ST&E). Interfacing with CIO G/6 Certifying Authority Representative (CAR) as part of IA/CyberSecurity team remediating ACA findings. Escalating identified high-risk issues to MNS Program Manager and customer POCs. Interfacing with Data Center, Applications Branch, SOC/CIRT, NOC, Telecom, Security, Plans, and IMO divisions of USARC G-6. Project Lead for Enterprise Subordinate Certificate Authority (CA) standup. Cyber Security duties include interfacing with USARC Information Assurance/Cybersecurity, Security Operations, Network Operations, Incident Response, Unified Communications, Services and Applications, Enterprise Operations, Plans, and Information Management Divisions, along with Networx/MNS Contract Program Manager regarding technical, security and project issues.

Confidential 2010-2011

(Vice President of Operations, Project Manager and Lead Technical Instructor)

Management of instructors, delivery operations, scheduling, budgeting, and processes for DoD contractor. Providing expert-level advice, analysis and functional expertise to tasks. On-site delivery of Project Management Professional (PMP) courses to U.S. Army FA53 Information Systems Managers at Confidential IDMD SIT meeting DoDI 8570.01-m IAT and IAM Level I, II, and III requirements. Review requirements and task documentation for accuracy and applicability. Project manager for DoD iPhone and Android mobile applications development. On-campus delivery of PMP and MS Project courses. Project Management principles included Initiating, Planning, Executing, Monitoring/Controlling, Closing, Integration, Scope, Time, Cost, Quality, Resources, Communications, Risk and Procurement. Strong focus on applicability of principles to DoD environments and the Military Decision Making Process (MDMP), sensitivity of information, and workflow.

Confidential

(Technical Instructor/Writer for Confidential SIT IDMD/CP34 program)

Technical instruction in Microsoft MCSE/MCITP 2003/2008, WSS, MOSS, SCCM, ITIL v3 Foundations, PMP, MS Project, and NetApp courses for U.S. Army and DOD civilian personnel in order to meet meeting government security and DOD

Confidential Instructor Qualified (ITC/ABIC). Assisted with standup and execution of CP34 program for education of U.S. Army personnel. Duties included technical instruction and courseware design of PMP, MS Project, Microsoft MCSE/MCITP 2003/2008, WSS 3.0 /MOSS 2007, SCCM 2007, ITIL v3 Foundations, PMP, and NetApp courses for U.S. Army and DOD civilian personnel. Target audience included government civilians, and active duty FA53 ISM’s, 254 Warrant Officers, 442, Confidential SIT personnel, and Eisenhower hospital personnel. Requirements definition and gathering related to organization mission, goals, and strategies. Evaluated current security products (hardware and software), programs, and trends. Analysis, design, development, engineering and implementation of security solutions to comply with multi-level organizational security needs. Security principles included Web Security, Database Security, SharePoint Security, Cryptography, Authentication, Messaging Security, DAC, RBAC, PKI, Access Security, Ports and Protocols, Network Security, Wireless Security, Remote Access Security, Auditing/Logging and Monitoring, Vulnerability Testing, Organizational Security, Business Continuity, TCP/IP, and OS Hardening. Project Management principles included Initiating, Planning, Executing, Monitoring/Controlling, Closing, Integration, Scope, Time, Cost, Quality, Resources, Communications, Risk and Procurement. Cyber Security duties included hardening and security of Windows XP Workstations, 2003 Domain Controllers and Member Servers in multiple-forest/multiple-domain configurations, SharePoint 2007 Servers, SCCM 2007 Servers, SQL 2005 Servers, IIS Web Servers, VMware, Virtual Server, and NetApp Storage.

Confidential

(Contract Technical Instructor and Consultant)

Provided MTT DoD mandatory initiative 8570.1 IAT and IAM Level I and Level II security plus Computing Environment training to Air Force and Confidential IT personnel at various CONUS and OCONUS military facilities, allowing them to properly utilize and support the components for the LAN/WAN infrastructure necessary for operations of United States military forces domestically and in overseas countries where. This instruction and facilitation was necessary and mandatory in many cases for DOD personnel to maintain their employment with the federal government. Requirements definition and gathering related to organization mission, goals, and strategies. Evaluated current security products (hardware and software), programs, and trends. Analysis, design, development, engineering and implementation of security solutions to comply with multi-level organizational security needs. Security principles included Web Security, Cryptography, Authentication, Messaging Security, DAC, RBAC, PKI, Access Security, Ports and Protocols, Network Security, Wireless Security, Remote Access Security, Auditing/Logging and Monitoring, Vulnerability Testing, Organizational Security, Business Continuity, TCP/IP, and OS Hardening. Cyber Security duties included security of DOS, Windows 95, 98, NT 4.0, 2000 and XP Workstations, Windows 2000 and 2003 Domain Controllers and Member Servers in multiple-forest/multiple-domain configurations, and IIS Web Servers.

Confidentia

(Contract Technical Instructor and Consultant)

Provided MTT DoD mandatory initiative 8570.1 IAT and IAM Level I and Level II, plus Computing Environment security and operational training to Marine and Confidential personnel at various CONUS facilities, allowing them to properly utilize and support the components for the LAN/WAN infrastructure necessary for operations of United States military forces domestically and in overseas countries. This instruction was necessary in many cases for DOD personnel to maintain federal government employment. Requirements definition and gathering related to organization mission, goals, and strategies. Evaluated current security products (hardware and software), programs, and trends. Analysis, design, development, engineering and implementation of security solutions to comply with multi-level organizational security needs. Security principles included Web Security, Cryptography, Authentication, Messaging Security, DAC, RBAC, PKI, Access Security, Ports and Protocols, Network Security, Wireless Security, Remote Access Security, Auditing/Logging and Monitoring, Vulnerability Testing, Organizational Security, Business Continuity, and OS Hardening. Cyber Security duties included security of Windows XP Workstations, Windows 2003 Domain Controllers and Member Servers in multiple-forest/multiple-domain configurations, and Exchange 2003 Mail Servers.

Confidential

(Contract Technical Instructor and Consultant)

Contract professional IT networking and security training for CISSP certification to professionals in the Research Triangle Area. Requirements definition and gathering related to organization mission, goals, and strategies. Evaluated current security products (hardware and software), programs, and trends. Analysis, design, development, engineering and implementation of security solutions to comply with multi-level organizational security needs. Security principles included Security Trends, Information Security, Risk Management, Access Controls, Security Architecture and Design, Physical and Environmental Security, Telecommunications and Network Security, Cryptography, Business Continuity Planning, Regulations and Compliance, Applications Security, Operations Security, Certification and Accreditation, Web Security, Authentication, Messaging Security, PKI, Access Security, Ports and Protocols, Network Security, Wireless Security, Remote Access Security, Auditing/Logging and Monitoring, Vulnerability Testing, and OS Hardening.

Hire Now