Summary

Information Security Manager/CISO

Veteran IT professional with over 17 years of experience. Well versed in driving organization growth and advancement through the development and implementation of advanced technology systems, solutions, architecture, and applications. Natural leader who thrives in challenging environment. Superior interpersonal communication skills, with ability to successfully build and foster rapport within internal and external networks. Applies leadership skills to support mission of organization.

Areas of Expertise

Key Skills Assessment

• Strategic Planning and Positioning Collaborate with cross-functional teams for strategy planning activities, focusing on short and long term IA solutions with an emphasis on efficiency, budget, flexibility, and stability.
• Information Systems Subject Matter Expert Evaluate, analyze, and implement security solutions and emerging security technologies, aligning with future vision of organization infrastructure and IT best practices.

Professional Experience

Confidential

Information Assurance Manager

• Communicates with stakeholders e.g. senior leaders, management officials and works on a broad range of matters related to science and technology
• Accomplished at performing full DIACAP/NIST based Certification and Accreditation C A efforts
• Responsible for identifying requirements needed to successfully execute the information systems program, estimate activity duration, and develop schedules and staffing plan
• Responsible for reviewing employees work to ensure compliance with policy and procedures and to ensure objectives are met
• Experience performing Privacy Impact Assessments PIA and knowledge of best practices protecting Personally Identifiable Information PII and Protected Health Information PHI
• Experience directing remediation efforts, building Residual Risk Reports and tracking POA Ms
• Practical experience using Nessus, Retina, Rapid7, Gold Disk, SRR scripts, Wireshark, STIGs, and Nmap
• Establishes metrics, key performance indicators, and service level agreements to drive system performance
• Collaborates with customers to identify, develop, and implement strategic plans and requirements that ensure the information system are protected against threats to confidentiality, integrity, and availability
• Provides advice on security and technology related issues
• Key role in implementing agile management into IA activities
• Familiar with IA Best Practices relating to the following technologies Windows Operating Systems, Oracle/WebLogic Databases, Web Technologies, Network Infrastructure, Hardware Virtualization, and Unix Operating Systems
• Recruited, trained, and mentored IA staff

Confidential

Senior Information Assurance Engineer

• Served as project manager/team lead, responsible for planning, directing, and implementing information technology policies
• Interpreted DoD IA policies and provide IA support for U.S. Navy systems following Navy, DoD, DoN, FISMA, and NIST guidelines
• Communicated with stakeholders e.g. senior leaders, management officials and worked on a broad range of matters related to technology
• Prepared RFPs, analyzed proposals, recommended purchases, select services, and managed new approaches in development processes
• Reviewed employees work to ensure objectives were being met
• Performed Independent Verification and Validation IV V testing of systems to ensure adherence to FISMA and other regulatory guidelines
• Created, updated, and maintained C A artifacts to include System Security Plans, Incident Response Plans, Security Test Evaluation Plans, Contingency Plans, Risk Management Plans and Vulnerability Management Plans using NIST/DIACAP guidelines
• Developed IA staff capabilities through restructuring according to knowledge, skills, and abilities of resources

Confidential

Systems Information Analyst II

• Shift lead responsible for improving situational awareness of Navy Medicine networks and providing technical and subject matter expertise SME to assist with administration of network security devices
• Provided innovative information systems products and services to projects through effective and efficient program management, ensuring the privacy of customers and compliance to state and federal regulations
• Managed perimeter security for 26 global sites, which included 26 Cisco 7200/3800 perimeter routers, Cisco 6509 FWSM, Cisco PIX/ASA firewalls, McAfee sensors and IDS monitors
• Daily duties included log analysis, STIG reviews, creating and maintaining router configurations, and updating documentation
• Developed working relationships with customers and employees, facilitating the resolution of problems, providing strategic IT direction, and management of project phases
• Mitigated issues, potential risks, and deficient audit results through on going system analysis and security reviews

Information Security Analyst IV

• Served as team lead of 3-4 personnel, deploying internationally to facilitate healthcare systems upgrades
• Evaluated the functionality of the IT infrastructure, and communicated issues, potential risks, and audit results to key personnel
• Provided installation and support of Composite Health Care Systems AHLTA worldwide
• Configured and installed Windows 2000 servers, workstations, Internet Information Servers, and Tardis.
• Monitored network and firewall configurations, researched action to prevent system/security complication, and made recommendations when needed
• Utilized Link Analyst, WireShark, and Network Instruments Observer to create graphical LAN/WAN mappings and solve LAN/WAN network problems
• Conducted briefings with military customers, facilitating needed information and documentation

Confidential

• Training Development Specialist II/Cisco Networking Academy Instructor
• Provided Cisco Networking Academy Programming instruction to U.S. Air Force personnel
• Maintained lab network as System/Network Administrator,
• Taught Internetworking technology courses, including Basic Routing and Switching, Advanced Routing and Switching, Cisco Network Design, and Network Security
• Configured and performed IOS upgrades for extensive selection of Cisco routers and switches.
• Reviewed and evaluated the functionality of systems and IT infrastructure, ensuring they aligned with organizational goals and training program standards
• Evaluated the design and implementation of security controls to ensure that information assets were safeguarded

Confidential

Commander, Logistics/Information Assurance

• Primary responsibilities include leadership, strategic planning, cross-functional teaming, collective training, and accountability for all personnel and resources.
• Developed and implemented IA policies, procedures, and workforce structure to maintain secure environment.
• Managed large-scale projects and programs, developing and verifying resource allocation, benchmarking, funding, and deliverables.