SUMMARY:

Information security, management, technical, customer support professional with 20+ years IT experience spread out thru government (Department of Energy) and private sectors (Engineering, Manufacturing and Banking); designing, developing, and managing comprehensive security policies and controls for business management systems, server and application administration. Strong customer service skills and experience managing corporate/regional helpdesk technical support infrastructure. Strong leadership skills, particularly in the area of team building and working in a matrix oriented project team environment. I am eligible for Department of Energy and Department of Defense Security Clearances. Past 2 term Mayor of Confidential . Current Constable, Confidential .

PROFESSIONAL EXPERIENCE:

Confidential

Information System Security Manager

Responsibilities:

• Responsible for the IT Security management of the Department of Defense classified IT program. Information Assurance (Audit, Certification and Accreditation) for Windows 7, Windows 8.1, Server 2008/2012, McAfee EPO, SolarWinds LEM, Red Hat Linux 5,6and 7.x Servers and workstations, various engineering software (over 100 systems), StealthSeek, Nessus Security Center
• Provide support for East Region secure facilities on classified systems
• Provide support for East Region NOFORN security plans and system development and support.
• Past responsibility for the IT Security management of the Department of Energy classified IT program.
• Provide support to Facility Security group on daily basis
• Incident Management, Vulnerability Management, Policy Creation, System Administration, Certification and Accreditation, Information Assurance, Maintenance and Support on both classified and unclassified systems

Confidential

Responsibilities:

• Originally brought in to oversee and coordinating the vulnerability management for the 5th largest bank in the US. Working with inputs from Pen Testing, Vulnerability Scans, Application Scans as well as public and private inputs about vulnerability and patching requirements, lead a team that takes the discovery, performs assessment, develops remediation plan, performs mitigation and handles all reporting and coordination toward the solutions determined to best fit PNC’s architecture. In early December 2012, I was moved to the PNC Cert SOC to provide first level support with the effort to combat and repel the DDOS attacks that had been going on against the nation’s largest banks by al - Qassam Cyber Fighters. Overall, we were one of the top banks in defending against the attacks with the least down time and impact to our customers and the banks online operations. I led the group for creation, updating, enhancement of policy and procedures for the Event and Incident Team and performed installation and setup use of Arcsight and writing procedures for use at PNC. I utilized Arbornet for monitoring Verizon and AT&T circuit data, receiving feeds from all firewalls, Netscalers and FireEye devices as well as utilizing OpNet software for use in the Security Operations Center (SOC).

Confidential

AVP / Corporate Security Officer

Responsibilities:

• Responsible for overseeing and coordinating physical and information security across all Bank divisions and departments; preparing and updating the Bank’s physical and information security policies; researching and implementing solutions and procedures to ensure that all information system are secure and safeguarded though the Bank and in compliance with privacy and information security regulation and laws. Reason for leaving was that daily commute was too great and I wasn’t able to relocate due to wife’s work. Washington Financial was one of the best organizations I have ever been associated with.

Confidential

Cyber Security Information Assurance Team Lead

Responsibilities:

• The ITES contract was awarded to a new Prime contractor in April 2010. I was brought over to the new Prime and during the reorganization of the Cyber Security Team, my title and specialized role changed from Technical Lead to Information Assurance Team Lead.
• All duties remain the same as below
• Support of Platinum Solutions Department of Defense contracts

Confidential

Cyber Security Manager

Responsibilities:

• The ITES contract provides IT services and engineering for the Department of Energy (DOE) National Energy Technology Lab (NETL) at Morgantown, Pittsburgh, Houston Texas and Albany Oregon locations including enterprise engineering, software application development and sustaining engineering, desktop support, networks, cyber security, and computing facility operations in support of approximately 1800 users.
• Registration Authority for PKI - Entrust security certificates, individual and web SSL certifications.
• Responsible for Project Management for the completion of Plan of Action and Milestones and Action Items generated from Certification &Accreditation, vulnerability, audit reviews.
• Perform yearly reviews of existing NETL and ITES procedures for updates and changes.
• Creation of new NETL Orders, Procedures, Operating Plans and Forms
• Prepare updates for the Program Cyber Security Plan, RTM, Risk Analysis, COOP/Disaster Recovery documents.
• On a daily basis, work with DOE-CIRC and US-CERT security notifications
• Performed Security Impact Analysis (IT audits) for activities going through the Change Control Board.
• IT Contingency Plan ITES coordinator
• Member of the IT Architecture Board
• Member of Technical Architecture Review Board (TARB)
• Member of the Change Control Review Management (CCRM) team
• RSA token, appliance and user administration
• Lead investigations - web violations, targeted spear phishing, intrusions, legal violations, malware etc
• FISMA, OMB, FISCAM, DOE Data Call, audit reporting
• Perform Certification and Accreditation of NETL’s systems
• Led a team of 5. Responsibilities include Checkpoint Firewall, IBM ISS IDS/IPS, NESSUS, general vulnerability scanning, vulnerability review, technical writing, audit, logical security for NETL
• Provide Cyber Security support as needed for other Prologic supported contracts including to the Department of Transportation
• Department of Energy Clearance (L) Secret

Confidential

IT Audit - Compliance

Responsibilities:

• Contracted thru TekSystems, audit of Telecommunication groups’ projects for 2004 to bring them into compliance for Sarbanes-Oxley and PriceWaterhouseCoopers requirements. Reviewed ASAT tests for the year and updated/corrected them to make them compliant and to make certain that future tests would be brought into compliance. Reviewed and updated software groups’ activities involving asset tracking supporting them in achieving better contract terms and compliance.

Confidential

Helpdesk/Technical Manager/Assistant North Region CSC Manager

Responsibilities:

• Performed the duties of the Customer Service Center North Region Manager in his absence.
• Responsible for physical tracking of all IT Assets. Software/Hardware Audits required for Norton, Microsoft, Novell, Autodesk, Microstation etc using Assetmetrix and Zenworks.
• Created Service Level Agreements for IT service to the Business.
• Project Management included Y2K for entire Baker Corporation including International and US. Worked with internal/external auditors to provide as much information to prove Best Effort. Met with all levels of management to review their needs and requirements to fulfill obligations.
• Oversee the activities associated with the identification, prioritization, and resolution of reported problems.
• Ensures that all phases of help desk support are coordinated, monitored, logged, tracked and resolved appropriately. 2400 end users
• Assigns personnel to various operations and directs their activities.
• 8 direct reports, 15 indirect
• Establishes help desk system for task management and tracking selecting the appropriate database and workflow tools.
• Creates long-term strategies for growth and maintenance of the help desk department making budgetary recommendations to upper management.
• Confers with staff, users, supervisors and managers to determine requirements for new or modified software and hardware.
• In charge of and ran the Change Management meetings.
• Hosted bi-weekly North Region staff meetings attended by all Digitals Service agents and representatives from Procurement, Business Solutions, Architecture, and Infrastructure to coordinate our efforts.
• Carried on below responsibilities as Helpdesk Manager.