PROFESSIONAL SUMMARY:

• Over 5 years of experience in Information Technology services supporting security initiatives for government and commercial customers.
• Work experience encompasses threat analysis, incident response, network surveillance, Data mining, Risk Management Framework (RMF), National Institute of Technology ( Confidential ), System Development Life Cycle (SDLC), Information security documents, developing and promulgating Security Assessment Plans (SAP) and Security Assessment Reports (SARs).

COMPUTER & SOFTWARE PROFICIENCIES:

• Microsoft Office Suite
• Adobe
• Qualified Typist (70wpm)
• Nessus Vulnerability Scanner (SC - 5)
• MS Project
• Splunk
• Websense
• FireEye eMass
• ACAS
• CISCO Firepower
• Confidential
• TCP/IP, DNS, LAN,WAN
• Cisco Routers & Switches
• Windows (10,8,7, Vista, XP) Linux
• FEDRAMP

PROFESSIONAL EXPERIENCE:

Confidential, Arlington, Va

Information Assurance Security Analyst

Responsibilities:

• Support the information system owner in selecting security controls for the information system
• Participate in the selection of the organization's common security controls and in determining their suitability for use in the information system
• Review the security controls regarding their adequacy in protecting the information and information system
• Apply knowledge of Cybersecurity and privacy analysis and consulting throughout the security assessment and compliance life cycle process.
• Analyze and finalize Cybersecurity and privacy policies, programs, compliance artifacts, and standards to support government and industry security compliance, systems accreditation, and management.
• Analyze the development of the documentation, validation, and accreditation processes necessary to ensure systems meet security and privacy requirements.
• Assess the effectiveness of an organizations IT security and privacy program, including conducting social engineering exercises to ensure remains consistent with current Cybersecurity and privacy threats and policies and assist with achieving full compliance with any or all laws and regulations.
• Provides configuration management (CM) for information system security software, hardware, and firmware and coordinating changes and modifications with the ISSM, Security Control Assessor (SCA), and Authorizing Official (AO)
• Review system security audit logs and leveraging network scanning software to perform vulnerability or risk assessment analysis for the RME, including maintaining vulnerability scanning tool compliance, such as HBSS or ACAS and patch management, such as IAVM to ensure IT staff pushes patches to all systems in an effort to maintain compliance with all applicable directives, managing system changes, and assessing the security impact of those changes
• Interface with information assurance managers, including reviewing documentation, such as systems security plans (SSPs), risk assessment reports, C&A packages, and Plan of Actions and Milestones (POA&Ms)
• Manage Cybersecurity activities that must be performed by system owners, including annual refresher CS or awareness briefings or requires a personal interface, including incident response or data transfers
• Support security authorization activities, including transitioning from the legacy Information Assurance and Accreditation Process (DIACAP) to compliance with the DoD RMF

Confidential, Arlington, Va

Information Assurance Security Analyst

Responsibilities:

• Performs computer and/or network security vulnerability A&A assessments to identify, evaluate and mitigate security risks, threats and vulnerabilities. Designs, implements, integrates, configures and tests computer and network security solutions to manage the network/system’s firewalls and intrusion detection systems. Provide 24/7 support of specific functions.
• Provides engineering analysis, design and support for firewalls, routers, networks and operating systems. Performs vulnerability scans using vendor utility tools. Monitors security audit and intrusion detection system logs for system and network anomalies.
• Monitors user access process to ensure operational integrity of the system. Enforces the information security configuration and maintains system for issuing, protecting, changing, and revoking passwords.
• Develops technical and programmatic assessments, evaluates engineering and integration initiatives and provides technical support to assess security policies, standards and guidelines. Implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications.
• Performs product evaluations, recommends and implements products/services for network security. Validates and tests security architecture and design solutions to produce detailed engineering specifications with recommend vendor technologies.
• Develops, tests and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools.
• Reviews and recommends the installation, modification or replacement of hardware or software components and any configuration change(s) that affects security.
• Provides enforcement of security directives, orders, standards, plans and procedures at server sites. Ensures system support personnel receive/maintain security awareness and .
• Maintains data and communicates to management the impact on business/customer caused by theft, destruction, alteration or denial of access to information

Confidential, Manassas, Va

Junior SOC Analyst

Responsibilities:

• Responsible for incident response work including analyzing events, identifying false positive vs. real threats, identifying host involvement, comparing scan results, analyzing logs, and prioritizing incident/events. Helps to solve Tier II incidents and events.
• Responsible for Malware Analytics & Vulnerability Assessments by investigating events similar in complexity to Bash attempts and SQL injections.
• Worked with Forensic Support by working with remote contractor sites to extract data requested by our government SOC counterparts. Helped to develop materials.
• Utilized Security Tool Management (Splunk, Fire Eye, Websense, and Firepower) troubleshoots and supports the restoration of security tool degradation and outages.
• Through network monitoring worked on the identification of resource management, hung processes, and routing configuration issues.
• Incident Response Tasks: Identify false/real threats, analyze tool alerts, identify Host involvement, compare scan results, identify incident/events, determine priority level(s), analyze logs, initiate appropriate Host scan, validate IP addresses, identify customer POC, remedy an Incident creation, enact a recall list, open a Triage Line, document incidents, communicate incidents, and gather incident details.
• Remedy Incidents Assignments: Timely follow-up, create a Remedy incident, provide incident details and assign to appropriate groups.

Confidential, Rockville, MD

IT Security Analyst

Responsibilities:

• Review authorization documentation for completeness and accuracy for compliance.
• Facilitate Security Control Assessment (SCA) and monitor activities.
• Executed examine, interview, and test procedures in accordance with Confidential SP A Revision 4.
• Ensure cyber security policies are adhered to and that required controls are implemented.
• Validated information system security plans to ensure Confidential control requirements are met.
• Assist team members with proper artifact collection and detail to client’s examples of artifacts that will satisfy assessment requirements.
• Review security logs to ensure compliance with policies and procedures and identifies potential anomalies.
• Update and review A&A Packages to include Core Docs, Policy & Procedures, Operations and Maintenance Artifacts, SSP, SAR, Confidential 200, Confidential 199, and POA&M.
• Collect Operation and Maintenance artifacts on an ongoing basis so that Security Control Assessment (SCA) is seamless.
• Upload supporting documentations into the System’s Artifact Libraries, Google Docs, and Confidential .
• Manage vulnerabilities with the aid of Nessus vulnerability Scanners to detect potential risks on a single or multiple assets across the enterprise network.

Confidential, Rockville, MD

Information Security Analyst

Responsibilities:

• Ensure proper system categorization using Confidential and Confidential 199; implement appropriate security controls for information system based on Confidential rev 4 and Confidential 200.
• Conduct security assessment interviews to determine the Security posture of the System and to
• Reviewing, maintaining, and ensuring all assessment and authorization (A&A) documentation is included in the system security package.
• Perform information security risk assessments and assist with the internal auditing of information security processes. Assessed threats, risks, and vulnerabilities from emerging security issues and also identified mitigation requirements.
• Tests, assess, and document security control effectiveness. Collect evidence, interview personnel, and examine records to evaluate effectiveness of controls.
• Review and update remediation on plan of action and milestones (POA&Ms), in organization’s cyber security assessment and management ( Confidential ) system. Work with system administrators to resolve POA&Ms, gathering artifacts and creating mitigation memos, residual risk memos and corrective action plans to assist in the closure of the POA&M.

Confidential, Washington, DC

Helpdesk Specialist

Responsibilities:

• Have utilized Microsoft Office applications to create reports, spreadsheets, proposals, editing and documents.
• Have become proficient active directory functions such as resetting user’s passwords, implement security policies, computer usage time on/off.
• Have conducted installs, configures, and maintains server hardware/software, operating systems, applications, and supporting peripherals
• Have used and become familiar with Windows, MAC, VMware, VM, windows server platforms, SSL-VPN and IPSEC cisco based firewalls, intrusion detection, Linux operating system, IDS/IPS, content filtering security devices such as network and host-based firewalls which include DDoS, abnormal activities from worms, Trojans, viruses.
• Served as the initial point of contact for trouble-shooting hardware/software PC and printer problems.