| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidateCandidate's Name
Street Address E Isaacs Ave, Apt. I303,Walla Walla, Washington, Street Address
Mobile: PHONE NUMBER AVAILABLEE-mail: EMAIL AVAILABLELINKEDIN LINK AVAILABLEand10820 113th Court NE Apt H205Kirkland, Washington, 98033and6621 Wakefield Drive Apt. 211Belleview, Virginia, 22307EMPLOYMENTIT Specialist (INFOSEC), GS-2210-12/1, Office of Information Security (OIS), Enterprise Security Operations (ESO), Department of Veterans Affairs (DVA), Station (WW103), Walla Walla, Washington, September 10, 2023, to Present.CERTIFICATIONSISC Certified in Governance, Risk and Compliance (CGRC, formerly CAP), certification.CompTIA Security+ CE Certification.Certified Space Security Specialist Professional (CSSSP) Certification.COMSEC Account Manager (CAM), 4C-F22/160-F-23 Diploma.EMPLOYMENT HISTORY SUMMARYArtist (//2-Candidate's Name .pixels.com/), TAOD LLC, April 15, 2023-September 6, 2023.Private Security Officer, Securitas, July 30, 2021-April 11, 2023.Desktop Support Rep. I, Lancesoft, December 13, 2021-July 29, 2022.Property Investment Manager, Inquire Solutions Inc., September 15, 2019-June 3, 2021.IT Specialist (SYSADMIN, INFOSEC), GS-11, DOD, NGC-R & RNEC-NCR, 10/30/2017 09/15/2019.System Administrator, LB&B Associates, December 17, 2018-December 28, 2018.RMF Assessor, Infotree Inc. and KBRWyle Inc., September 17, 2018-October 7, 2018.Information Assurance Engineer, OBXtek Inc. & Ennoble First, February 22, 2016September 29, 2017.E-Commerce Manager, TAOD LLC, December 23, 2014-December 1, 2017.Information Assurance Specialist, ManTech International, February 1, 2016-February 8, 2016.Cyber Watch Officer, Newberry Group, November 24, 2015-December 18, 2015.Threat Intrusion Analyst, BAE Systems Intelligence & Security, August 31, 2015-November 22, 2015.Cable Technician, Insight Global, July 31, 2015-August 2, 2015.Continuous Monitoring Analyst, L-3 National Security Solutions, May 5, 2015-July 10, 2015.Property Investment Manager, Inquire Solutions Inc., June 17, 2014-May 3, 2015.Security Control Assessor, CACI Enterprise Solutions Inc July 2, 2012-June 18, 2014.Security Engineer, Telos, June 4, 2012-July 10, 2012.Property Investment Manager, Inquire Solutions Inc., November 24, 2011-June 3, 2012.IT Specialist, GS-11, DON, NAVSEA, NSWCDD, August 15, 2011-November 23, 2011.MDA FSET, ITT Corporation, June 6, 2011-June 16, 2011.Information System Security Engineer/ISSR, DigiFlight Inc., February 1, 2010-April 21, 2011.Property Investment Manager, Inquire Solutions Inc., September 4, 2009-January 31, 2010.Information System Security Representative, IntePros Consulting, July 6, 2009-September 3, 2009.Incident Handler/COMPUSEC Representative, Northrop Grumman, January 5, 2009-July 13, 2009.System Data Technician, Solers Inc., August 1, 2008-January 2, 2009.Cryptologic Tech. Comms/Info. Sys. Tech., Active Duty Enlisted, USN, November 1, 1995-August 11, 2008.SPECIALTIESInformation Assurance/Information Security/Cyber Security (18 years)Cryptography (12 years)Cryptologic/C4I System operations (11 years, 4 months)Defense Messaging (11 years)Information Technology support /Automated Data Processing: (13 years, 6 months)Telecommunications (11 years)Physical Security (12 years)Information Technology Asset Management (4 years)E-commerce (1 year)Property management (1 year)CYBER SECURITY, INFORMATION ASSURANCE & INFORMATION SECURITY EXPERIENCESecurity Controls Authorization & Risk Analysis (A&A, C&A, IV&V): 01/2009-03/2009; 02/2010-09/2010; 07/2012-06/2014; 02/2016-09/2017, 09/2023-Present. (5 years)Info. Sys. Security Engineering: 09/2010-04/2011; 06/2012-06/2014, 02/2016-10/2017 (4 years, 2 months)Virtual machine (Cloud) software test environment: 02/2010-04/2011; 07/2012-06/2014 (3 years, 2 months)CND/Network Security/Incident Response: 03/2000-04/2004, 03/2009-09/2009; 05/2015-12/2015 (5 years)Computer Security (SCAP): 08/2011-11/2011 (3 months)Terminal Area Security Officer (TASO): 06/2005-12/2006 and 05/2007-08/2008 (2 years, 9 months)Communications Security: 04/1996-08/2008; 10/2017-09/2019 (12 years, 3 months)Cryptologic Communications Operational Support: 04/1996-04/2004: (8 years)Information Security Jobs/Roles Experience:Information Technology Specialist (INFOSEC, SYSADMIN) 09/15/2019, TSSC System Administrator 12/28/2018, RMF Assessor 10/07/2018, Information Assurance Engineer 09/30/17, Information Assurance Specialist 02/08/2016, Incident Response/Threat Intrusion Analyst 11/22/2015, Continuous Monitoring Analyst 07/10/2015, Security Control Assessor 06/17/2014, Security Engineer 06/30/2012, Information Technology Specialist 11/23/2011, Information System Security Engineer 09/18/2011, Information System Security Representative 09/17/2011, Security Administration 09/03/2009, Incident Handler 07/13/2009, Computer Security Representative 03/27/2009, Terminal Area Security Officer 08/01/2008, Communications Security Material System Custodian 04/30/2007, Information Management Officer 12/09/2006, Certification Authority Workstation Certificate Authority/Information System Security Officer 04/20/2006, Terminal Area Security Officer 04/20/2006, Sensitive Compartmented Information-Networks Operator 04/30/2004, Tactical Intelligence Operator 04/30/2004, Special Intelligence Communications Watch-stander 05/01/1998.Information System Security Tools, Systems, Applications, and Ticket Tracking Experience:McAfee ESM, Retina, Gold Disk, Security Readiness Review (SRR), DUMPSEC, Secure CRT, CENTAUR, XACTA, DTA, CACAMs, BUSTER, ACAS, eMASS, SCAP, MMC Security-snap in, remote desktop, managed artifacts, Remedy, Service Now, VOLT, Joint CERT database, Blue Ridge Networks Border Guard 1000, Solar Winds, CPT, WSUS, ITDR database.Information Security Control Programs, Reports and Documents Experience:CMCS, FAM, RMF, DIACAP, NISCAP, C&A, A&A, RMF, ICD-503, DODIIS C&A guide, DJSIG, JDCSISSS; CNSSI-1253, NIST SP 800-137, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-37, NIST SP 800-39, DCID 6/3 and JAFAN 6/3; SSP, TAMP, CtF, SCTR, RFS, SPID, MEMOGRAM, TECHGRAM, OPSGRAM, SECGRAM, Simplified EZ, STIG, POA&M, SSP, SSAA, OATT, ATC, ATO, IAVM, IAVA, IAVB, IAVT, FEN, SEN, CCR, SCF, eRA, ISCP, PIA, Standard Form 85R, and DLAH Form 1728.COMMUNICATIONS SECURITY EXPERIENCECommunications Security Material Control System (CMCS); Electronic Key Management System (EKMS); ARMY Key Management System (AKMS):RNEC-NCR COMSEC ACCOUNT MANAGEMENT (CAM): 07/2019-09/2019ISAF HQ NATO CRYPTO Cell Alt. CMS Custodian: 12/2006-04/2007CMS user: 04/1996-05/2008Certification Authority Workstation (CAW) and Public Key Infrastructure (PKI):Trusted Agent, Security Token Issuance Documents: 10/30/2017-04/22/2019Common Access Card Personal Identification Number Reset System (CPR) Operator: 10/30/2017-04/22/2019.PKI implementation and support: 06/2006-11/2006Certification Authority (CA) for CAW: 06/2005-06/2006United States Government Type 1 Cryptographic Equipment Operational Support:Broadcast Security:KWR-46Secure Data:KG-194, KG-84C, KG-84A, KIV-7Secure Telephone:STU-III, STU-IIB, STE, Motorola Secure Cell Phone, Iridium Secure Satellite Phone, Sectera vIPer Universal Secure PhoneSecure Voice:KYV-5, KY-58, KY-57; ANDVT, STICS-TRIBNetwork Encryption:NES 4001A, TCE-621, KG-250Crypto Fill Device/security token:KSD-64A, FORTEZZA card, KOV-14, KOI-18, KYK-13, CYZ-10, AN/PYQ-10 Simple Key loader.PHYSICAL SECURITY EXPERIENCESecuritas Unarmed Private Security Officer, SOC ops & security officer patrol duty: 07/29/2021-04/11/2023.ONI POOW, security screening, military protocol, & access control: 06/2004-04/2006 and 05/2007-08/2008.Convoy security, OEF-A armed escort duty, M-16A2 rifle: 05/2006-04/2007.POOW, shipboard quarterdeck security watch, M-9 pistol: 06/1998-01/2003.Pier Security, access control and security watch, M-870 shotgun: 06/1998-04/2004.Topside Rover, shipboard-topside security watch, M-14 rifle: 06/2001-01/2003.SPINTCOMM Watch-stander, monitored SCIF security systems, verified security clearances: 05/1996-05/1998.DEFENSE MESSAGING EXPERIENCECRITICOMM, COI-101, COI-104 CRITIC messages: 04/1996-06/2005 DSSCS SI, DOI-103 full format and abbreviated format record messages: 04/1996-04/2004 GENSER, JANAP-128/ACP-127 full format record messages: 05/1998-04/2004; 11/2017-04/2019DOI-101 and DOI-102 DAG and PLA database support: 05/1996-06/2000ECGS, ACP-128, Message and Telecommunications Operations: 11/2017-04/2019Legacy Address Directory Service (LADS) support: 06/2000-06/2005DOD ADP/IT SUPPORTJWICS, SIPRNET, and NIPRNET: 06/1998-08/2008, 01/2009-09/2009, 11/2017-04/2019CENTRIXS: 06/2006-12/2006CRYPTOLOGIC/C4I SYSTEMS EXPERIENCEECGS, NGC-R, SYSADMIN and Message Operations support: 11/01/2017-04/22/2019DMS Administrator, logistics and field engineering notice support: 06/2004-04/2006SCI-Networks (SCI-ADNS) SI message operator: 03/2000-04/2004Automated Message Handling System (AMHS) SI Communications Operator: 06/1998-04/2004Tactical Intelligence Exchange System (TACINTEL) SI Communications Operator: 06/1998-04/2004ABOVEBOARD SI Communications Operator: 05/1996-05/1998CRITICOMM Message Processing Operator: 02/1996-06/2005SPINTCOMM Watch-stander/support: 05/1996-05/1998; 06/2004-07/2008AUTODIN, Message Processing Operator: 02/1996-06/2005 and 05/1996-04/2004Joint Special Imagery Processing System Navy (JSIPS-N), IT and CMS support: 06/1998-05/2004GCCS-M, Intelligence, IT and CMS support: 06/1998-05/2004SOFTWARE OPERATIONS EXPERIENCEWindows 10 VDI: 11/2017-04/22/2019LINUX: 08/2008-01/2009Windows NT: 03/2000-04/2004UNIX: 06/1998-04/2004DOS: 05/1996-05/1998COMPUTER NETWORKING OPERATIONS EXPERIENCECISCO 4500M router: 03/2000-04/2004Blue Ridge Networks BorderGuard 1000: 03/2000-04/2004TELECOMMUNICATION OPERATIONS EXPERIENCEVideo teleconference and collaboration systems:SCI-VTC: 06/1998-04/2001, 02/2003-04/2004TANDBERG VTC: 02/2003-04/2004Polycom VTC: 02/2010-09/2010Information Workspace (IWS): 06/2006-12/2006Satellite Communications (SATCOMM):Fleet Broadcast: 06/1998-04/2004Demand Assigned Multiple Access (DAMA): 06/1998-04/2004.Special Intelligence SATCOMM teletypewriter: 06/1998-12/2003.Sensitive Compartmented Information UHF SATCOMM: 05/1996-04/2004.Sensitive Compartmented Information SHF SATCOMM: 06/1998-04/2004.Scalable Transportable Intelligence Communication System/TRIB: 06/1998-12/1999.International Marine Satellite (INMARSAT): 06/1998-04/2004 and 12/2006-04/2007.IRIDIUM: 06/2006-11/2006.Fleet Satellite Communications (FLTSATCOM): 06/1998-04/2004.Ultra-High Frequency Follow-On (UFO): 06/1998-04/2004.Defense Satellite Communication System III (DSCS III): 06/1998-04/2004.Radio and teletypewriter systems:High Frequency Voice: 06/1998-04/2004.High Frequency teletypewriter: 06/1998-12/2003.Navy Order Wire (NOW): 06/1998-04/2004.Sensitive Compartmented Information VHF LOS: 05/1996-04/2004.Sensitive Compartmented Information UHF LOS: 05/1996-04/2004.Secure telephone, secure data device, and secure dialup:STU-IIB, STU-III, and STE: 05/1996-04/2008.Motorola secure cell phone: 12/2006-04/2007.AT&T SD-1910: 05/1996-05/1998.Secure Newsdealer Dial in (SNDI): 06/1998-01/2003.Satellite Phones and Cellular Phones:IRIDIUM satellite phones: 05/2006-12/2006.Thuraya satellite phones: 05/2006-12/2006.GSM cellular phones: 05/2006-12/2006.NAVY PRIMARY OCCUPATIONSInformation Systems Technician (IT): 10/01/2006-08/11/2008.Cryptologic Technician Communications (CTO): 04/26/1996-09/30/2006.Seaman (SN): 11/01/1995-04/25/1996.NEC DESIGNATIONS9720: Comm. and Intel Specialists, 0000 CTO: Cryptologic Technician Communications, 9185: TACINTEL, 2782: Defense Message System Administrator, 90NI: Naval Individual Augmentee Combat Training SkillsJOB EXPERIENCESeptember 10, 2023, to PresentDepartment of Veterans Affairs (DVA), full time, Walla Walla, Washington.Job Title: IT Specialist, (INFOSEC), GS-2210-12/140 hours per weekJob Description: IT Specialist (Infosec), at the Deputy Assistant Secretary (DAS) Information and Technology, within the Office of Information Security (OIS), Enterprise Security Operations (ESO) of the Department of Veterans Affairs (DVA) for IT- Station 103, located in Walla Walla, Washington; to perform the work of an Information System Security Officer (ISSO) by providing support for the Jonathan M. Wainwright Memorial Veterans Administration (VA) Medical Center on specified program areas of responsibility and report to the Information System Security Manager (ISSM). Actively participates in network and system design to ensure implementation of viable system security policies and procedures. Conducts systems security evaluations, audits, and reviews; and develops Automated Information Systems (AIS) security contingency plans and disaster recovery procedures, as part of the local business continuity team. Monitors and tracks controlled access programs to ensure implementation and viability of appropriate systems security policies, as well as the acquisition of IT security tools. Investigates local AIS programs to identify possible breaches of security and/or other violations. Conducts vulnerability analysis and risk assessment studies of planned and installed information systems to assure that local AIS security plans and policies that are established are adequate for protection needs and compliances as required by statute. Utilize eMASS to create, monitor, assess and submit for ATO approval SSPs and associated POA&Ms and associated reports to support VA systems in the A&A SDLC within the RMF IAW NIST 800-53 Rev 4 and FISMA security controls, standards, and policies.Skills: Information System Security Analysis, eMASS, A&A, RMF, ServiceNow, Incident Response.April 15, 2023-September 6, 2023TAOD LLC, Kirkland, Washington.Job Title: Artist (self-employment, online sales)2 hours per weekJob Description: Original artwork specializing in digital photography, drawings, prints and pastels of birds, natural scenes, and landscape scenes. //2-Candidate's Name .pixels.com/July 30, 2021-April 11, 2023.Securitas, SeaTac, Washington.Job Title: Security Officer16 hours per weekJob Description: As assigned, drive to client sites, and stand security guard duty on a shift schedule. Maintain a safe and secure environment for contracted clients by actively monitoring the premises, including patrolling a variety of locations. Preserve order, enforce client regulations and directives at the client site pertaining to personnel, visitors, and the area. As needed, provide customer service and information to the clients employees and customers. Stand security shifts in SOC, monitor, and respond to alarms, write incident reports, and conduct security and safety patrols to monitor site equipment, facility, fire, safety, environmental and HVAC alarms. Monitor telephones, CCTV and maintain perimeter security and assist facility personnel and screen visitors, contractors and deliveries as required. Maintain and operate security monitoring control and alarm systems and maintain security and safety in accordance with standard operating procedures, safety and security plans and local directives.December 12, 2021-July 29, 2022Lancesoft, Herndon, Virginia.Job Title: Desktop Support Rep. I,40 hours per weekJob Description: At Expedia headquarters in Seattle, Washington, provide desktop representative support by reading technical manuals, conferring with users, or conducting computer diagnostics to investigate and resolve problems or to provide technical assistance and support. Onsite work includes maintaining records of daily data communication transactions, problems and remedial actions taken, or installation activities. Set up of equipment for employee use, performing or ensuring the proper installation of cables, operating systems, or appropriate software. Installation and performance of minor repairs to hardware, software, or peripheral equipment, following design or installation specifications. Oversee the daily performance of computer systems. Answer user inquiries regarding computer software or hardware operation to resolve problems. Inspect equipment and read order sheets to prepare for delivery to users, and develop training materials and procedures, or train users in the proper use of hardware or software. Skills: Macintosh and Lenovo Laptop Configuration, Service Now Ticketing, Customer Service Support, FedEx Account shipping.January 2021 April 2021International Society of Space Security Specialists (IS4)Belle View, VirginiaJob Title: Cyber Operations Advisor12 hours per weekJob Description: Freelance-Provided advice and developmental support for Space Cybersecurity Certifications training course curriculum development. As assigned, I wrote, edited, presented, and submitted Information Assurance training curriculum for Space cybersecurity certification training programs.September 15, 2019-June 3, 2021Inquire Solutions Inc., Everett, Washington.Job Title: Property Investment Manager2 hours per weekJob Description: Self-Employment-Managed property investment accounts. Managed rental properties, tenants, leases and coordinated with vendors and contractors to initiate repairs and maintain property.October 30, 2017-September 15, 2019DA, 21st Signal BDE, 114th Signal BN, NGC-R, RRMC and RNEC-NCR, Fort Belvoir, Virginia.Job Title: IT Specialist (SYSADMIN), (INFOSEC), GS-2210-1140 hours per weekJob Description: Shift lead providing Command and Control Network support and Incident Response, in a Windows 10 VDI environment. Network failover response to support changes to critical telecommunication services including LAN and WAN incident response support for NGC DMS ECGS, ACP-127 and ACP-128 message system. As needed, I also served as a senior technician within the Network Enterprise Center providing installation customers a single point of contact in resolving computer and network related issues for: Trusted Agent PKI support, Common Access Card Personal Identification Number Reset System (CPR) operational support; Information Technology Service Management (ITSM) Remedy system support to customers in multiple areas of information system management. Responsibilities also included providing Windows 10 Virtual Desktop Infrastructure, NIPRNET, and SIPRNET network environment system administration support, Sectera vIPer Universal Secure Phone and Audio/Visual systems support as required. At RNEC-NCR; I was a COMSEC Clerk, assisted the COMSEC Account Manager with CMS inventory, CMS destruction, COMSEC material transport, and COMSEC reports and files. I also utilized BMC Remedy and eMASS to track update and close Information Assurance trouble tickets for installation command customers.December 17, 2018-December 28, 2018LB&B Associates Inc.; Dept. of Navy, NAS Whidbey Island, Oak Harbor, Washington.Job Title: Training System Support Center (TSSC) System Administrator40 hours per weekJob Description: Provide Maritime Communications support for the P-8 Poseidon TSSC at NAS Whidbey Island, Washington. Maintain, administer, and provide technical support for operating systems within the respective site IAW with mandated DoD cybersecurity requirements and DoD IA workforce requirements.September 17, 2018-October 7, 2018Infotree Inc. and KBRWyle Inc., Norfolk, VAJob Title: RMF Assessor40 hours per weekJob Description: Perform assessment and authorization tasks, such as supporting CNIC/NAVY process and procedure development. Provide support as a primary liaison with CNIC (Commander Naval Installation Command) for assessment and authorization (A&A) efforts.February 22, 2016-September 29, 2017OBXtek, Vienna, Virginia and Ennoble First, McLean Virginia.Job Title: Information Assurance Engineer (IAE)50 hours per weekJob Description: Serve as the primary security lead for High, Moderate, and Low impact systems that support Visa, Passport, American Citizen Overseas or Certification Authority for major applications. Provide support for the overall Assessment and Authorization (A&A) life-cycle process in accordance with the Department of State CA/CST System Development Lifecycle (SDLC) and including the following functional areas. Security Guidance: provide guidance to System Government Task Managers (GTM) and System developers supporting the RMF A&A process using both the National Institute of Standards and Technology (NIST) Special Publication (SP) 800 series and Department of State Foreign Affairs Manual (FAM) guidelines. Assist and advise system GTMs and system developers in the design and development of secure systems architecture as well as industry best practices and information systems technologies available to meet AIS security requirements. Authorization to Operate: Gather required information to support system authorization by organizing technical working groups, conducting fact-finding interviews, attending system demos, assessing system security categorization levels, establishing system security control baselines, and acting as a security advisor to the systems GTM during the security controls implementation phase. Develop and update the following system security documentation which is maintained within the Consular Affairs Certification and Accreditation Management System (CACAMS): Security Categorization Form (SCF), E-Authentication Form (eRA), System Security Plan (SSP), Information System Contingency Plan (ISCP), and Privacy Impact Assessment (PIA). Continuous Monitoring: monitor assigned systems weekly, conduct weekly or monthly meetings with GTMs and developers. Schedule and facilitate boundary meetings, RMF step 1-3 Kick-off meetings, RMF step 6 Kick-off meetings, and attend RMF step 4 Kick-off and POA&M meetings. Plan of Action and Milestones (POA&M): review, monitor, and report system POA&M status to all stakeholders including PM, ISSP GTM, System GTM, System Development Team, and System Operations Teams. Coordinate with appropriate personnel to ensure that POA&Ms are remediated in a timely manner and report closed findings to the POA&M Manager. Assign and track POA&M findings via Remedy Tickets. Configuration Management: analyze, complete, and submit Configuration Change Requests (CCRs) by conducting security impact analysis and initiating required actions to maintain security posture, managed artifacts and ATO status. Skills: Information System Security Analysis; RMF 1-3 Analysis and support; SSP development and analysis; POA&M analysis; Remedy ticket support; Configuration Change Request (CCR) support and analysis.February 1, 2016-February 8, 2016ManTech, Stafford, VirginiaJob Title: Information Assurance Specialist40 hours per weekJob Description: Perform work as an ISSO to research, develop, implement, test, and review an organization's information security posture to protect information and prevent unauthorized access. Inform users about security measures, explain potential threats, install software, implement security measures, and monitor networks.November 23, 2015-December 18, 2015Newberry Group, Columbia, MarylandJob Title: Cyber Security Watch Officer40 hours per weekJob Description: At Fort Meade, DISA HQ, Joint-DODIN J33 Watch floor, responsibilities included, Identifying, and managing internal and external all-source Military Operations, including both analytical and collection requirements from across the Military Operations community. Reporting to the Survey Analysis Center Chief and work alone or with DOD civilians and military personnel performing activities in one or more of the following and/or related areas: interface with other offices and agencies to ensure the timely and effective completion of tasks, identify target requirements and task them to the appropriate collection elements and verify that responses meet requirements.August 31, 2015-November 22, 2015BAE Systems Intelligence & Security, McLean, VirginiaJob Title: Incident Response/Threat Intrusion Analyst40 hours per weekJob Description: At the MWEOC SOC responsibilities included providing 24/7 incident management support tracking all reported security events/incidents, incident escalation, incident resolution and reporting of events/incidents using proper procedures. Prepared and provided developed assessments and reports, documenting weekly trends of incidents, and security events. Coordinated strategic analysis in support of computer security incidents by utilizing McAfee ESM and SEN tickets to help to identify patterns in reported compromises and identify additional threats as part of the same incident. Aided senior personnel in performing forensic analysis of digital information and physical evidence and provided specialized support by gathering, handling, examining, preparing, entering data, searching, and retrieving, identifying and/or comparing digital and/or physical evidence. Utilized forensic procedures to determine results and observed proper evidence custody and control procedures, documented procedures, security findings and prepared comprehensive written notes and reports. Analyzed network/computer threats and mitigated vulnerabilities while limiting operational impact. At the FEMA MWEOC SOC I applied Federal, DOD, and industry information security requirements, and standards, and working knowledge of best practices, network architectures, current networking technologies, security requirements and features of networks and applications to defend FEMA networks. These activities included: vulnerability assessment, anti-virus administration, DISA STIGs, windows server update services, IDS/IPS configuration/monitoring, E-Mail security, firewalls, TCP/IP packet analysis, log analysis, IT standards; including but not limited to the OSI model, and the methods of exploiting those standards to provide analysis support for incident response and related security issues. Skills: CND, Computer Security, Network Analysis, Network Security, and Incident Response.July 31, 2015-August 2, 2015Insight Global, Woodinville, WashingtonJob Title: Cable Technician40 hours per weekJob Description: Responsible for cabling the back end of servers, arranging equipment, accordingly, racking and stacking servers and switches into cabinets and conducting checks for proper mounting; labeling cables and unboxing packages and putting hardware equipment in the correct location.May 5, 2015-July 10, 2015L-3 NSS, Alexandria, VirginiaJob Title: Continuous Monitoring Analyst40 hours per weekJob Description: Provided coordination, IAW O-8530.1, supporting the Trusted Agent with the local Computer Network Defense Service Provider (CNDSP) and Joint Base Pentagon tenants for external assessment activities to evaluate, obtain, maintain lessons learned, and develop after action reports to ensure remediation plans are implemented to strengthen Joint Base Pentagons security posture. Support the government by developing a communications plan to ensure subscribers communicate with the Trusted Agent when regular external assessments and reports are distributed to the CNDSP to improve network security posture. Develop and maintain an overarching Trusted Agent Mission Portfolio (TAMP) spanning out to, but not limited to a five-year period, including all IV&V, security assessments, continuous monitoring (ConMon), and Red/Blue Team activity, which provides the backbone for all risk management strategic scheduling and resource decisions. Provide collection support for knowledge development during the planning phase to aid in the appropriate allocation of resources across the entire portfolio. Provide planning support for annual assessments, IV&V missions and unique Friendly Network Forces incidents recorded within the TAMP. Utilize eMASS to identify each System Under Test (SUT) as a project and generate a work-breakdown structure, including mission phases, start, completion, timelines, milestones, inch stones, resources, critical paths, and risks managed artifacts. As directed, provide Access Control, Personal Security Control and Awareness and Training security controls audit and assessment Continuous Monitoring (ConMon) support IAW with DOD, DHS, NIST, FISMA standards, policy, and regulations (CNSSI-1253, NIST SP 800-137, NIST SP 800-53, NIST SP 800-53A, NIST SP 800-37, and NIST SP 800-39) within the RMF. Skills: CND, eMASS operations, Continuous Monitoring, IV&V.June 17, 2014-May 3, 2015Inquire Solutions Inc., Lorton, VirginiaJob Title: Property Investment Manager5 hours per weekJob Description: Self-Employment- Managed property investment accounts. Managed rental properties, tenants, leases and coordinated with vendors and contractors to initiate repairs and maintain property.July 2, 2012-June 18, 2014CACI, NGA Campus East, Springfield, VirginiaJob Title: Security Control Assessor (SCA)40 hours per weekJob Description: Provided program independent IA system security controls assessment; coordinated security controls and continuous monitoring assessment testing activities with all system A&A stakeholders. Conducted continuous monitoring assessments to discover vulnerabilities, malware, rogue devices, and ensure that system security controls are maintained and continue to be implemented correctly. Responsibilities included providing analysis of security controls and continuous monitoring assessment results to provide recommendations of corrective actions to reduce or eliminate system vulnerabilities for the Certification Authority (CA); also, conducting security controls assessment testing to accomplish the evaluation of |
