PROFESSIONAL EXPERIENCE:

Confidential, Washington, DC

Responsibilities:

• Develop and review NIST 800 - 37 based Authorization and Accreditation packages to include security test and evaluation, system security plans, risk assessments, security control assessments ( 800-53 ), business continuity plans, and contingency plans.
• Led team to implement cyber security continuous monitoring tools to include agent based reporting capabilities for the agency as part of the DHS Continuous Diagnostics and Mitigation (CDM) initiative.
• Conduct on-going vulnerability assessments using Nessus, IBM Tivoli Endpoint Manager/BigFix, McAfee Vulnerability Manager, Acunetix, NMAP, and DbProtect.
• Resolve security vulnerabilities through coordination with system administrators and other security teams for remediation.
• Develop and maintain standard operating procedures for conducting vulnerability assessments, procedures for auditing the use of privileged accounts, and for incident response.
• Audit and monitor agency patch management to include tracking until patches applied.
• Audited use of wireless access points to ensure compliance with department security policy.
• Investigate intrusion alerts via a Security Information Event Management (SIEM) tool and removing compromised host from the network.
• Serve as technical resource for agency Continuity of Operations (COOP) team to deploy to off-site location in the event of an emergency impacting the building, city, or region.
• Brief System Owners and government personnel on status of Information Assurance projects.
• Led effort to procure, install, and configure new security tools for the agency to include vulnerability assessment tools, a web proxy, and a Security Information Event Management (SIEM) tool.

Network Engineer

Confidential, Arlington, VA

Responsibilities:

• Ensured agency compliance with the Federal Information Security Management Act (FISMA) by fulfilling responsibilities of the Chief Information Security Officer (e.g. System Security Plan - SSP, FIPS199, Contingency Plan, Self-Assessment 800-26, Security Assessment Plan and Procedures).
• Served as technical lead for the remediation process to certify, accredit, and mitigate security weaknesses of TSA I.T. systems.
• Conducted vulnerability assessments against major information systems undergoing recertification.
• Evaluated and recommended for purchase new products that included encrypted USB drives, Ethernet over power devices, and Host Intrusion Prevention Systems (HIPS).
• Performed duties and responsibilities as an Information Systems Security Officer (ISSO) to include implementation and maintenance of security controls in accordance with agency policies.
• Assisted in sensitive agency forensic investigations.
• Analyzed, designed, implemented and supported Cisco VoIP system solutions, including multi-service infrastructure, Cisco CallManager, IP gateways, legacy integration with traditional VMS system and other voice components.

Network Engineer

Confidential, Reston, VA

Responsibilities:

• Supported internal LAN hardware and software.
• Designed, installed and maintained network servers, switches and security.
• Analyzed network performance and implemented network monitoring tool to manage servers, switches and routers in Northern Virginia.
• Managed and helped configure Cisco Call Manager Express VoIP network over Cisco AVVID equipment.
• Installed, managed and maintained firewalls, IDS, and application servers.

Network Consultant

Confidential, Reston, VA

Responsibilities:

• Managed project to document software requirements for the consolidation of multiple billing engines into a single engine.
• Met client’s functional requirements through clear documentation and change control.
• Facilitated meetings of internal project team and meetings with client, planned and managed agendas and produced minutes.
• Kept management and project teams informed of project progress through team and project updates as needed.
• Audited Confidential messaging environment to resolve production issues.
• Performed regression and load tests on messaging servers and LDAP directories.
• Produced more than 1,000 pages of documentation for client, including analysis, test results, best practices, and recommendations for operation of the iPlanet messaging system.
• Served as lead analyst and internetworking expert on a three-person team charged with researching and writing the Succession Signaling and Call Set-up portions of Nortel Networks’ VoIP documentation.
• Co-wrote the Succession Asset Market Offering Blueprint and Succession Sales Presentation.
• Monitored and tracked project budget.
• Responsible for design, development and testing of TL1 probes using Cisco Info Center (Cisco-branded version of Micromuse Netcool) to interface with Tellium StarNet WMS and Cisco Transport Manager element management systems, including data stream analysis and creation of unit test conditions and scripts, as part of a cross-functional team charged with creating new business and operational support systems.
• Developed TL1 alarm seed files, containing all relevant rules, properties and include files, for network alarm generators.