• Strong Organizational Skills

• Information Security Management

• Microsoft Operating Systems Management

• Exchange Server Management

• BlackBerry Enterprise Server Management

• Internet Security Acceleration Server 2006 Management

• Active Directory Management

• Group Policy Management

• VMware vCenter Server Management

• EqualLogic Systems Management

• CommVault Systems Management

• BlackBerry Enterprise Server Management

• Project Management

• Goal Oriented Leader

• Excellent Interpersonal / Written Communications

• Active DoD Secret Security Clearance TS eligible

Architecture:

Windows XP, 7, 2K, 2K3, 2K8 VMware vCenter Server version 4.1.0 vSphere 4 Enterprise Plus

Systems:

Exchange Server 2K3, 2K7, 2K10 BlackBerry Enterprise Server 4.1.x, 5.0.x Microsoft Active Directory Application Mode Internet Security Acceleration Server 2006

Hardware:

Dell PowerEdge 2950, R610, R710 EqualLogic PS6000, PS6500 Quantum Dxi 4500 PowerVault NX3000

Software Tools:

Exchange Systems Manager Exchange Management Console Windows/Exchange PowerShell ExBpa ADSIedit

Professional Experience

Confidential

Secur IT e Owner/Founder, Principal IT Security Consultant

• Deliver expert level, tailored on-site, and/or remote, IT Security consultative services to small, medium, and large enterprise environments.
• Provide: IT Vulnerability Assessment and Remediation Plan Development IT Risk Management Assessment and Mitigation Strategy Development IT Security Policy Development, Implementation and Review IT Systems Secure Configuration Development, Implementation and Review IT BCP/DR Development and Review
• IT Security Solutions Engineering and Implementation Review IT Security Incident Response Management Plan Development, and Implementation FISMA Compliance Review, and Submission Preparation DIACAP Compliance Review, and Submission Preparation NIST Compliance Review, and Submission Preparation and Provide oversight of SIEM, Anti-Virus, and logging systems such as ArcSight, McAfee EPO Suite, Symantec EndPoint Protection, Splunk, SolarWinds

IT Security Training

Confidential

International SOS Assistance, Inc. Information Assurance Manager / Data Security Analyst

Managed TRICARE Overseas Program's comprehensive Information Assurance program, which covered operations in the United States, United Kingdom, Hungary, Singapore, Republic of the Philippines, and Australia. Managed reviews of security bulletins, and determine impact to program systems. Managed assessments of personnel policies and procedures, as related to information security. Lead internal technical security assessments, and took sponsorship role for external IT security audit engagements. Oversaw and reviewed the use of compliance tools used to perform scans of technology platforms for vulnerabilities e.g. Retina, HBSS, Gold Disk, SCAP . Documented remediation requirements for implementation by technical support organizations. Managed compliance Plans of Action and Milestones. Continually assessed best security practices for inclusion in the program. Lead system accreditation efforts. Ensured system logs from Intrusion Detection Systems, Firewalls, servers, and networking equipment, etc. are reviewed in accordance with documented procedures. Oversaw the creation of risk management plans, based on adherence to security controls. Leveraged comprehensive knowledge of DoD regulatory policies relating to Information Assurance IA , DoD Information Assurance Certification and Accreditation Process DIACAP , National Institute of Standards and Technology guidance, and Information Assurance Vulnerability Management IAVM products in determining regulatory requirements for systems under my influence.

Confidential

Sr. Network Administrator

Provide dedicated, on-site, Tier III messaging Subject Matter Expert SME technical support for all OCONUS Navy Enterprise Network ONE-NET Bahrain MS Exchange 2003/2007 Enterprise servers, and BlackBerry Enterprise Server 4.1.x servers, which encompass six geographically separated sites and 12000 user mailboxes. Participate in requirements analysis, design, engineering and build-out of the regional messaging infrastructure. Ensure that all assigned Windows 2003/2008 servers physical and VMware virtualized , EqualLogic PS6000, PS6500 , Quantum Dxi 4500, and PowerVault NX3000, operate in accordance with ONE-NET Enterprise/SPAWAR standards, and US NAVCENT, CENTCOM, DoN and DoD IA guidance. Participate in the generation of local SOPs, and provide input for local and Enterprise-wide Request for Change RFC initiatives. Utilize DoD provided Security Technical Implementation Guides STIGs , checklist, and IA tools Gold Disk, SCAP, RETINA, HBSS, Symantec Mail Security for MS Exchange 6.5, and Anti-Virus clients to ensure that all assigned systems are properly configured, patched, and capable of minimizing the risk of malicious activity. Coordinate trouble-shooting of CISCO CSIDS deployed at NCTS Bahrain. Assist local Information Assurance personnel with certification documentation DIACAP , compliance monitoring, compliance data research, inspections, and response to file and/or email data spills.

Confidential

Science Applications International Corporation - Network Systems Administrator/Information Assurance Manager

Provided Sr. Level IT support to Military Sealift Fleet Support Command's MSFSC , Ship Support Unit - Bahrain SSU-Bahrain , and Military Sealift Command's MSC , SEALOGCENT, organizations. Primary responsibilities are to ensure that MSC users and systems are able to fully employ the IT capabilities that have been provided them by either the One-Net program or MSC. Responsible for all NIPR, SIPR, CENTRIXS and DMS technical support functions, regarding all LAN, PC and WAN issues. Ensure that all SSU-Bahrain Windows 2003 Small Business Servers IIS, SharePoint Services, Exchange Server 2003, Windows Server Update Services, ISA Server 2004, SQL Server 2005 , XP and Vista workstations, SonicWall appliances, CISCO switches, and network peripherals, are administered and secured in accordance with all applicable DoD, Navy and MSC guidance. Administer MS WSUS and Symantec Anti-Virus servers. Perform periodic network scans utilizing DoD's SCCVI eEye Retina to ensure MSC systems meet DoD IAVA and recommended STIG requirements. Maintain all local MSC Active Directory and Share permissions on the ONENET networks. Provide technical coordination with MSFSC N6, ONE-NET Bahrain, NAVCENT N6 IAM, MSC Global Helpdesk and the MSC DMS Support Center. Represent SSU-BAHRAIN at all meetings involving SSU-Bahrain's IT issues at various NAVCENT, NCTS, and NSA Bahrain sponsored meetings. Ensure that current capabilities and future needs were assessed and planned for, as well as leverage current equipment and future budgets to ensure the best possible technical solutions are available for SSU-Bahrain's mission. Coordinate escalation and response to ONENET, and or MSCGHD, for any IA incidents involving IT assets or personnel assigned to MSC in the CENTCOM area of responsibility. Provide IA awareness to all MSC staff and ensure that they complete all mandated IA training and certification requirements in a timely manner. Assist NAVCENT IAM with IA issues and participate in all IA panels assembled within the NAVCENT organization. Also coordinate DISA DVSG VTC issues and ensure that the VTC suite, and associated devices, are properly configured for all scheduled and ad-hoc VTC session's for MSC and CTF-53 users.

Confidential

Sr. Information Assurance Representative

Responsible for providing senior level Information Assurance support to the DISA-CENT Field office and the CENTCOM J6 Staff Forward . Focal point for vulnerability and incident response between the DISA IA staff and the DOD CERT, Central Regional CERT, Global Network Operations Support Center, and the Joint Task Force for Computer Network Operations. An integral working member of the DISA Information Operations Cell for the planning, coordination, and support between DISA and key elements within CENTCOM. Also responsible for the coordination and planning for DISA Information Assurance Readiness Review and Security Readiness Review processes, leveraging technical and operational support within DISA, to enhance DISA's IA posture. Coordinated installation and trouble-shooting of USCENTAF's CISCO CSIDS deployed throughout the CENTCOM AOR. Assist CENTCOM with INFOSEC education, training, and security awareness to include IA tools and systems fielded by DISA network administrators, Information Assurance Officer IAO , Information Assurance Manager IAM and the Designated Approval Authority DAA . Work closely with the DISA staff on network life-cycle support, to include: configuration management, contingency plans, system requirements, architecture Defense in Depth , engineering, design, integration, DoD Information Technology Security Certification and Accreditation Process DITSCAP , Secret Internet Protocol Router Network SIPRnet connection security approval process, and installation, operation, and maintenance of CENTCOM's computer networks.

Confidential

Sr. Systems Administrator

Performed System/security administration duties for all Windows 2000 servers, workstations and Windows XP workstations used by DISA-Central TNC, JDCS-INMS program. Administered various server applications: Internet Information Server 5.0, Microsoft SQL Server 2000, DNS Server 2000, WINS Server 2000, AI Metrix Neuralstar, Veritas BackupExec, Executive Software Diskeeper, and Symantec System Center. Determined and maintained overall security posture of all computer systems under the direct control of the JDCS program at DCR-TNC. Responsibilities include physical security, intrusion detection and intrusion prevention measures deployment. Utilized NSA National Security Agency , DISA Defense Information Systems Agency and DOD CERT security templates and baselines to secure JDCS systems. Ensured compliance with applicable DISA security standards utilizing, DISA FSO, Gold Disk and SRR scripts to verify security implementations. Maintained close communications with DCR-TNC CERT and IA representatives to ensure the highest adherence to applicable DOD and industry current security standards. Administered appropriate equipment configurations and implementation timelines in coordination with the JDCS-INMS Central Development Activity. Recommended equipment modifications and provided technical consultation and system requirements assessment. Supported: Dell PowerEdge 1650, 2650, 6650 server, StorageTek L20 Tape Library and various Dell Optiplex Dimension workstations.

Confidential

- Sr. Principal Analyst

• Performed system/network administration duties for all UNIX/LINUX, Windows NT 4.0/2000 servers, workstations and networking equipment used by HQ, USEUCOM, ECCS-OR. Administered various Microsoft server applications: Internet Acceleration Server, Internet Information Server 4.0/5.0, Microsoft SQL Server 7.0/2000, Microsoft Systems Management Server 2.0, Exchange Server 5.5/2000, DHCP server NT4.0 /Win2k, DNS Server NT4.0/Win2k and WINS Server NT40/Win2k. Determined and maintained overall security posture of all computer systems/networks under the direct control of ECCS-OR. Responsibilities included physical security, intrusion detection and intrusion prevention measures deployment. Utilized NSA National Security Agency , DISA Defense Information Systems Agency and RCERT-E security templates and baselines to secure ECCS-OR systems. Ensured compliance with applicable DISA security standards utilizing, DISA-FSO, SRR scripts to verify security implementations. Maintain close communications with DISA's EUR RCERT organization, HQ EUCOM J6 network personnel and security personnel to ensure the highest adherence to applicable DOD and industry current security standards. Specify computing equipment, hardware and software. Determined appropriate equipment configurations and implementation timelines. Recommended equipment modifications. Provided technical consultation, system requirements assessment, vendor sourcing and life cycle fiscal forecasting. Specified, design, implementation, configuration and maintenance of LAN equipment hubs, switches, routers, firewall applications and systems.
• Systems Supported: Silicon Graphics INDIGO2, SUN SPARCSTATION 5, 20, ULTRA SPARC 1, 2, 60, ULTRA ENTERPRISE 2 and ENTERPRISE 450 server, Dell PowerEdge 2300/2400/2500 servers, various Dell Optiplex Dimension workstations, tape storage and backup systems, raid storage systems and CD storage systems.

Confidential

- Network/Security Manager

Ensured all Joint Total Asset Visibility JTAV SUN servers were able to communicate via the LAN transmission facilities provided by HQ, US EUCOM, ECJ6 at Patch Barracks, Stuttgart, Germany, to and through the larger Defense Information Systems Agency DISA , SIPR and NIPR networks to reach client as well as peer computer systems. System administration for Solaris UNIX and Netscape Suite Spot Web Server. Established UNIX user accounts and Netscape client accounts. Performed extensive diagnostic techniques to diagnose and take corrective actions for problems that arose with either element network/security/server hardware . Performed security evaluation, implementation and auditing to prevent unauthorized access to JTAV systems throughout the European operation. Utilized Omniguard/ESM, Axent, RAPTOR firewall and SUN Solaris ASET and Basic Security Module BSM programs. Worked with clients and remote technical staff personnel to assist in penetrations of firewalls and routers to enable access to the SUN server systems. Worked in close coordination with U.S. government clients, both in-theater and in the United States.

Systems Supported: SUN Enterprise 5000 servers, SUN SPARC 1000 servers and several PC based systems of the system were included in tasking.

Confidential

Project Manager

Selected candidates for open positions. Coordinated employee overseas transitions. Formulated start-up and shutdown procedures for a 2400 user, Novell Ethernet LAN, maintenance and repair facility. Designed, installed, configured, modified and maintained all user work-stations PCs, Printers, etc. , network transmission equipment Cabletron, Cisco, Modems, etc. , fiber optic and copper cabling systems, and various other office ADP items Secure Non-Secure Fax Systems, High Speed Printers, etc. . Installed and configured DOS, Windows, Word Perfect and various other PC based applications. Major projects include re-engineering Secret and Unclassified, Ethernet and Fiber Optic, cable plants at HQ, US, EUCOM. Worked in close coordination with U.S. government clients, both in-theater and in the United States.

Confidential

Sr. Field Engineer

Provided dedicated on-site and field systems administration, configuration and engineering support for DEC, VAX 11/7XX, 8XXX and MicroVAX, IBM, PC to PS/2 systems and compatibles, and associated peripherals. Performed field modifications, preventive and corrective maintenance routines.