SUMMARY:

25+ years of experience in Program and Project Management, Information Assurance, Information Technology and Operations Active Top Secret clearance w/SCI eligibility.

PROFESSIONAL EXPERIENCE:

Confidential

Sr. IT Infrastructure Service Provider (ISP) Technical Project Manager

Responsibilities:

• Support Government overarching acquisition plans and strategies for customer’s IT Managed Services and Information Technology Enterprise Managed Services (ITEMS) contract portfolio
• As part of ITEMS PMO team provide thought leadership, senior level technical and cybersecurity planning; As the IA and Cybersecurity SME supporting customer’s acquisition strategies through RFP release, service transition and operations integration; assess potential impacts and changes to customer’s IT Managed Services baselines; Drafted Analysis of Alternatives in support of IC ITE DTE in support of customer draft Task Order planning and work scope as part of the acquisition lifecycle
• Tracked and reported status, impacts and completion of 30+ Cyber and Enterprise Management projects contract transitions from legacy contracts to ITEMS Enterprise Management/Cybersecurity Services (EM/CSS) contract; Monitored, tracked and reported modifications, changes and impacts to EM/CSS post - award baselines including PWS revisions, Service Level Agreement (SLAs), technical issues, documenting lessons learned, new projects and work scope adjustments; Participated in SLA Technical Exchange Meetings, Enterprise Management and Cyber Security Integrated Process Teams (IPTs)
• Led team in collecting, analyzing and presenting metric data as mapped to 11 draft PWS service areas in alignment with follow on ITEMS TS Acquisition strategy and draft Service Catalog; Approach included assessing and analyzing project artifacts such as Independent Government Cost Estimates ( Confidential ), PWS/SOWs, Change Requests (CRQs), Remedy Tickets, Incumbent Proposals and Project Plans in mapping level of effort (Labor hours), Project Scope, ODCs; Reviewed draft RFI ITEMS TS II work statement prior to industry release to include Government Wide Acquisition and Federal Schedules considerations as potential commercial services requirements.
• Supported reviews and assessing Enterprise Management inputs and requirements to Agency’s IC ITE DTE (Ph. 2) Task Order efforts; included coordination with senior Enterprise Management personnel in identifying current ITSM workflows and tools as part of proposed work scope and PWS statements; Maintained and updated Contractor Bidder’s Library (CBL) in support of acquisition effort; Reviewed and submitted comments and recommendations for draft ITEMS TS Request for Information (RFI) documents for industry release.
• Assist with planning and development of pre-award acquisition documentation including Acquisition Plans, RFIs, PWSs, SOOs, SOWs, RFPs and RFQs, CDRLs, QASPs, Performance Requirement Summaries, RFIs, Confidential and Cost Benefit Analyses; Leverage understanding of technical and programmatic issues across IT Enterprise, ensuring optimal plans and solutions meet strategic initiatives, technical requirements and budgetary constraints

Confidential

Program Manager/Subject Matter Expert

Responsibilities:

• Proposed Program Manager for contingent award Confidential Security Operations
• Supported Business Development efforts, including input to Proposal Tech Volume, conducted review of Cost Volume and interview of proposed Key Personnel
• Led and delivered Oral Presentation to Government Technical Evaluation Board (TEB) as part of proposed technical response submission
• Capture Management and Cybersecurity SME associated with business pursuits and contract bids; Reviewed RfP requirements, participated in corporate gate review process of new business
• Led company’s Highly Adaptive Cybersecurity Services (HACS) Special Items Numbers (SINs) project associated with adding cybersecurity services to company’s GSA Schedule 70 contract portfolio
• Drafted and submitted Cybersecurity and IT related responses to Government Request for Information (RFI) and Sources Sought; includes recommendations, potential solutions, contract vehicles and company capabilities
• Program Management (Subcontracts) support for E-SITE, NGA Mohave, GTACS, and USSOCOM Enterprise Operations and Maintenance (EOM) Contract/Contract Vehicles; includes pricing, staffing, technical / task order inputs and responses
• Supported Capture and Proposal Processes for (prime) business pursuits exceeding total potential revenues ~$63M; Includes Alliant, GSA IT Schedule 70 and DISA contract vehicles and Task Orders

Confidential

Task Order Program Manager

Responsibilities:

• Program management, strategic development, cybersecurity governance, technical implementation and day to day execution of twelve task areas and 28 FTEs supporting, Program/Project Management, Risk Management, Governance, Compliance, IA Policy, IA Training, Incident Response, E-Discovery, Section 508, and Privacy Program.
• Managed contractual requirements for deliverables, staffing, budget, and resources; Responsible for Program P&L and business goals; Developed and created efficient processes and procedures aligned with CMMI-2 (SVC) practices in tracking actions, risk and issues
• Developed Project Management Plan (PMP), Task Order Management Plan, Quarterly Lessons Learned, Monthly Task Order Performance Reports & plans in managing resources and track tasking; Maintained operations with multiple priorities to include Integrated Master Schedule, Risks/Issues Log, Work Breakdown Structures, Gap Analysis (People Processes and Technology)
• Developed and executed of CISOs IA Strategic Plan aligned with Federal CIOs Cybersecurity Implementation Plan (CSIP) and Client’s CIO 5-year IT Strategic Plan; Executed 38 action items supporting four (4) IA mapped objectives; significantly improving security posture and Privacy processes aligned with System Development Lifecycle (SDLC); Coordinated with CIO teams associated with Security Architecture views, technical risks and tool implementations aligned to improving enterprise security risk posture
• Developed executive level framework and roadmap across Information Assurance and Privacy task areas aligned with NIST Cybersecurity Framework; Provided client tactical and strategic level view and roadmap in assisting with business decision within the organization
• Scope included coordination of all Security Assessment and Authorization (SA&A) activities encompassing 6 distinct portfolios consisting of 45 individual Major Applications (MA), General Support Systems and 88 global missions.
• Supported corporate level CMMI Level 2 and ISO 9001 processes and frameworks

Confidential

Information Security Specialist, Principal

Responsibilities:

• Staff support to an Intelligence Agency’s Chief Information Officer (OCIO) Cyber Security Department
• Project Lead for Agency’s external Information Security compliance, reporting and audit reviews. Facilitated Agency’s Quarterly and Annual FISMA CIO reporting; Includes NIST and ICD 503 security control related compliance and metrics reporting.; Trusted advisor in representing client at Monthly FISMA Working Group as chaired by ODNI
• Key member of Leadership Team (Government and Contractor) in obtaining full operational baseline of client’s Cyber Security Compliance Enterprise Readiness Cell (8 FTEs); included internal coordination across Directorates and Key Component Stakeholders in drafting and establishing SOPs, Process Workflows, Integrated Master Schedule, Secure Operational Baselines and Milestones in accordance with Confidential, DISA and CYBERCOM Task Order directives across classified and unclassified Network Enterprises
• Coordinated and drafted responses to Notice of Findings and Recommendations (NFRs) associated with Agency Office of the Inspector General (OIG) FISMA Information Security Annual and FISCAM compliance reviews; assessed and facilitated quarterly reporting to Key Information Sharing Safeguard Information (KISSI) reports
• Provided support for the Agency’s tracking, compliance, and reporting associated with USCYBERCOM Task Orders, Fragmented Orders (FRAGOs), Communication Task Orders (CTOs) and Operation Orders (OPORDs)
• Drafted, submitted and briefed Comparative Report Analysis Report to Agency Leadership and Intelligence Community CIO in recommending efficiencies.
• Established and managed centralized SharePoint workspace associated with USCYBERCOM Directives and Cyber Orders compliance within the Agency
• Established and facilitated Agency Level Plan of Action and Milestones (POA&M) specific to Enterprise level security risks and recommendations identified from internal and external inspections and audits. Validated compliance in mitigating closure of 55% identified IA weaknesses across the agency’s IT enterprise environment

Confidential

Sr. Systems Security Eng/Team Lead

Responsibilities:

• Direct support to the Office of the Director of National Intelligence (ODNI)/ Chief Information Officer (CIO) / Security Coordination Center ( Confidential ); Key member of Confidential team in obtaining Initial Operating Capability (IOC) milestone on program
• Provided Program Management Consultant support to senior level government decision makers in evaluating security requirements associated with IC ITE; Participated in Government Chaired, Senior/CIO level IC ITE Working Groups and Technical Exchange Meetings; Assessed, reviewed and recommended fiscal year operating budgets and baselines associated with Confidential requirements such as use cases, tools and processes. Drafted briefs in support of Confidential outreach efforts and Confidential Program Management Monthly reviews
• Provided security reviews in all aspects of Information Assurance and Information Security ( Confidential ) Engineering. Assessed system security threats/risks throughout the program life cycle; validated system security requirements definition and analysis as well as verified processes, procedures and best practices
• Assisted in the review, development and publishing of Confidential Concept of Operations ( Confidential ), Business, Implementation, Data Management and Program Management Plans
• Reviewed, assessed and provided recommendations to Intelligence Community Cyber Security related Standards, Directives and Congressional Level correspondences as well as senior level weekly reporting activities

Confidential

Senior Program Manager/ Deputy Director IT Div / Acting General Manager

Responsibilities:

• Support to two business units with 100+ IT, Confidential professionals and direct reports in support of various Confidential and IC agencies; Managed, communicated and mentored employees, including exempt and non-exempt employees, in support of programs and Confidential customers throughout the Continental United States and areas outside the Continental U.S
• Provided day to day oversight and P&L for Confidential federal contract portfolio which included seven projects/contracts totaling annual revenue in excess of $30M; Managed, budgeted, manpower and scheduling oversight of Time & Material (T&M), Cost Plus Fixed Fee (CPFF) and Firm Fixed Price (FFP) contracts in support of prime customer and corporate objectives
• Over a three-year period grew active business/contracts 20+% in support of customer IT and IT Security needs and requirements
• Managed direct / indirect budgets associated with corporate divisional revenues, and day to day management of divisional overhead budget exceeding $400k
• Supported corporate business development activities in marketing meetings and proposals including technical writing and pricing estimates and reviews, technical lead, capture support activities, bottoms-up pricing and workforce estimates
• Utilizing Shipley’s methodologies, briefed and presented new business opportunities through business review gates such as InI, PnP and BnB
• Authored and maintained Program Management Plans of supported programs/contracts as part of corporate ISO 9000:2008 certification; Authored and executed Risk Management Plans specific to staffing and operational requirements in support of customer/contractual obligations
• Interacted and briefed C-level executives monthly on active programs including finances, program risks, manpower staffing goals, billing & invoicing as well as new business opportunities and pursuits aligned with core business strategies
• Created and authored organizational SharePoint System Security Plan (SSP)

Sr. Info Security Eng

Confidential

Responsibilities:

• Certification & Accreditation (C&A) Project Lead for the accreditation of 38 external sites; Responsibilities include baselining; collecting, managing and coordinating C&A site documentation in accordance with DCID 6/3, JDCISSS, FISMA, Organizational policies and directives. Efforts included tracking, managing and closing outstanding liens for Enterprise systems associated with Authority to Operate (ATO) processes
• Direct liaison with Program Management, DAA Staff and Information Security Management in collecting, documenting and maintaining information for production, enterprise networked systems. Coordinated with government client Designated Accrediting Authority (DAA) staff, Information Security Management, System Program Management Offices (PMO) in identifying system protection levels, levels of concern, system documentation requirements as well as coordination of C&A processes
• Authored and completed site/system SSAAs (XACTA tool), collected and processed SSAA appendices for large, complex systems/platforms, included Disaster Recovery Plan/Information Technology Disaster Recovery (ITDR) Plan, Memorandums of Agreement (MOA). Coordinated with site personnel/system developers in tracking and mitigating POA&Ms; Security Traceability Matrix (SRTM); information flow diagrams and Ports, Protocols and Services (PPS), supporting mission critical Production Systems satisfying Authority to Operate (ATO) requirements
• Authored Remote External Site/System C&A checklist for contract personnel and Concept of Operations ( Confidential ) documentation in support of site/system C&A registrations, DCID 6/3 and Agency accreditation efforts
• Drafted and authored Information Assurance and C&A contract technical proposals in support of corporate contract bids of various federal agencies’ Task Orders and Request for Proposal (RfP) requirements

Confidential

Sr. IA Engineer (Project Lead)

Responsibilities:

• Provided technical and documentation support to Confidential ’s CIO-G-6, Network Enterprise Command (NETCOM) Public Key Enabling/Digital Signatures programs supporting NIST FIPS 140, Homeland Security Presidential Directive (HSPD) 12, Confidential 8500 series instructions and Confidential x.509 certificate policies
• NETCOM representative for Confidential ’s IA Software Working Group. Charter includes IA review of hardware and software Commercial-Off-The-Shelf (COTS) tools
• Member of Office of Secretary of Defense (OSD) and Department of the Confidential level CAC/PKI working groups. Participation includes Certificate Practice Management discussions, External Certificate Authority package reviews, SIPRNet Analysis of Alternative token/access discussions. Provide recommendations to Confidential -level Program Management Office (PMO) and Confidential CIO/G-6 representatives
• Served as Action Officer, prepare and deliver presentations and briefings to high-level management within a multi-team environment

IA Team Manager

Confidential, Fort Belvoir, VA

Responsibilities:

• Managed highly skilled IA team supporting 4000+ users for Government Client. Responsible for reporting and validation of IA Compliance, C&A processes and packages in accordance with Confidential Information Technology Security Certification and Accreditation Process (DITSCAP) and Confidential Information Assurance Certification and Accreditation Process (DIACAP)
• Drafted, reviewed and delivered 10 System Security Plans, 23 Appendices, and 4 System SSAAs and 2 Security, Testing and Evaluation (ST&E) Plans and 1 Information Security Plan (ISP) which led to the Confidential obtaining first ever Authority to Operate (ATO)
• Authored 2 Implementation Plans in support of Confidential -mandated Communication Task Orders for classified and unclassified networks.
• Drafted Anti-Virus and Secure Configuration Tool Suite (DISA patch management solution initiative) Confidential ; Developed agency approved Vulnerability Management and IA Test Lab Standard Operating Procedures (SOP) documentation
• Technology Review Board and Standard Software Working Group member with charter to provide security analysis and recommendations for new software, hardware, systems and IT project requests
• Supported corporate contract pre-planning/notional re-compete efforts