Objective Seeking a Security Analyst, Information Assurance or Cyber Security position with a company that provides exposure to a positive work environment that encourages and supports career development and advancement. A position where my organization skills and abilities will be fully utilized in fulfilling the organizations mission and goals

Highlights of Qualifications

• 9 years of monitoring, supporting, and securing LAN/WAN networks
• Experience in Certification and Accreditation
• Extensive knowledge of system security and network troubleshooting techniques
• Highly inquisitive, creative and resourceful skilled in communication and collaboration
• Outstanding people skills sensitive in assessing technical and individual needs
• Enthusiastic and quick learner
• Team Player

Confidential

Professional Experience

Confidential

Sr. Network Security Engineer

• Ensure entries in the Army Certification and Accreditation Tracking Database remains current
• Provide compliance with DOD and Army guidelines including Security Technical Implementation Guide STIG
• Knowledge of scanning tools Retina, Assured Compliance Assessment Solution ACAS Nessus, Security Content Automation Protocol SCAP and Security Compliance Checker SCC
• Maintain weekly IAVA/IAVB
• Maintain open vulnerabilities on the Plan of Action and Milestone POA M

Sr. Network Security Engineer

• Providing security support for project development and existing applications
• Acting as a security liaison to the application developer and project management groups
• Leading the incident response team, including directing engineers and analysts in triaging security incidents and keeping the Security Manager appraised of incident status
• Assist with updating and implementing the annual security awareness training, annual developer training, and annual administrator security training
• Working with the IT program groups and IT support vendors to evaluate and improve IT vendor security posture
• Validating remediation efforts of findings related to vulnerability and system configurations
• Responding to day-to-day IT operations and internal requirements requiring security support
• Assist in identifying security initiative gap assessments
• Implementing, testing, and maintaining defined security solutions
• Defining desired state for people, process, and technology solutions that are to be utilized to support other IT efforts
• Other duties, as assigned

Information Assurance Security Analyst

• Interpret DIACAP controls accurately with regard to system security posture, policy updates and configuration for servers with regard to security and event logs
• Provide IA technical insight and regulatory guidance in the areas of system security and planning
• Review proposed system changes and determine if the changes affect the DIACAP package
• Provide oversight and execution of the DIACAP processes to the Government POC for review and approval
• Knowledge of NIST 8500-53 and NIST 800-37 Information Assurance controls
• Knowledge of Army Regulation AR-25 Information Assurance
• Experience in developing risk assessments-based on DoD 8500.2 Information Assurance controls
• Familiarity with vulnerability assessment and DISA automated tools such as Gold Disk, Security Readiness Review scripts, and Security Technical Implementation Guides

Sr. Analyst, Information Security

• Serve as the Information Assurance and Security Engineering Directorate IASED for the US Army
• Provide support to the Project Director Reserve Component Automation System PD RCAS
• Provide IA technical insight and regulatory guidance in the areas of system security and planning
• Review proposed system changes and determine if the changes affect the DIACAP package
• Provide oversight and execution of the DIACAP processes to the Government POC for review and approval
• Update the DIACAP package and artifacts based on system changes to ensure that the DIACAP package is accurate and up to date
• Ensure entries in the Army Certification and Accreditation Tracking Database remains current
• Maintain the Certificate of Networthiness CON modification request
• Conduct Security Test Evaluation ST E and reviews of RCAS development system
• Provide compliance with DOD and Army guidelines including Security Technical Implementation Guide STIG
• Knowledge of scanning tools Retina, Nessus, Security Content Automation Protocol SCAP and Security Compliance Checker SCC
• Review results of assessments performed on the RCAS system
• Document assessment results in the Security Assessment Report SAR
• Maintain Information Assurance Assessment results in the DISA Vulnerability Management System VMS
• Review and modify Statement of Work SOW from third party venders to determine work requirements
• Review and modify Request for Proposal RFP process for third party contractor's

Information Assurance Officer

• Appointed as Information Assurance Officer for the Vision Center Of Excellence
• Coordinate local system security with local security policies and procedures as required complying with DoD IA policies and directives
• Ensure that network, site, system, or application Information Systems are certified and accredited
• Ensure that accreditation and/or certification support documentation packages for systems are developed, maintained, and updated as required
• Ensure that all IA related processes are monitored and accessible only to properly authorized individuals
• Ensure that all users have the requisite security clearances and need-to-know and are aware of their responsibilities before granting them access to an Information System
• Ensure that IA and IA enabled software, hardware, and firmwares comply with the appropriate security configurations
• Responsible for analyzing and/or administering security tools and controls for information systems based upon NIST SP800-53 Rev. 3 requirements
• Researches, evaluates, tests, recommends, communicates and implements new security software or devices
• Advise and assist with the Lifecycle Certification and Accreditation C A process and developing a Systems Security Plan SSP
• Ports, Protocols and Services Management PPSM
• Monitor and track C A activities through Authorization to Operate ATO
• Maintain documentation repositories where C A project documentation and artifacts are stored
• Read and analyze SSPs and develop understanding of systems and applications into security test plans
• Understanding of modern computer threats and attacks and an ability to weigh complex operational and network defense need
• Knowledge of certification and accreditation frameworks DIACAP, DCID 6/3, etc.
• Knowledge of the following scanning tools Gold Disk, Retina Scan, AppDetective, and WebInspect
• Ability to review IA Compliance Validation Tests and Reports
• Ability to analyze and report security findings in the realm of patch management, configuration management, password management, and auditing
• Monitor weekly Information Assurance Vulnerability Alerts IAVA for system vulnerabilities
• Serve as a member of the Internal Control Board ICB for all System Change Request

Network Security Engineer

• Responsible for implementing and supporting security operations in a multi-vendor enterprise-class networked environment
• Conduct defense-in-depth security assessments of various enterprise-class networks, recommend mitigation steps and work closely with existing operations personnel to assist in mitigation and network re-design
• Assist team in performing security assessments and analyses, mitigation steps as a result of security analyses and interact with existing operations staff in designing and implementing mitigation steps
• Evaluate, design and deploy security tools to fill identified security gaps including but not limited to technologies such as network-based IDS/IPS Sourcefire, Snort , Cisco , network infrastructure Cisco, Juniper, Checkpoint , packet capture Netwitness, Wireshark , Security Information and Event Management systems Arcsight and SSL content proxy Bluecoat, Websense
• In-depth knowledge of enterprise class network design in a heterogeneous environment, with focus on operational security
• Experience working with UDSA and/or NIST based cyber security policies and guidance
• Cyber security experience in managing, developing, and implementing enterprise IT and cyber security policies and governance
• Provided periodic reviews of USDA cyber security policies and provided recommendations for enhancements based on Federal compliance mandates and current and emerging cyber security threats
• Develop and evaluate security system plans and risk assessments
• Update IT security documentation for C A packages
• Experienced and knowledge of in implementation and maintenance of network and security appliances such as Cisco switches and routers 28xx, 28xx, 72xx, 35xx, 45xx, and 65xx ASAs, VPNs, Juniper, Checkpoint, IPS, IDS, VPNs, Proxies, Web Security Gateways, etc
• Strong understanding of TCP/IP, Netflow, ACLs, Zone Based Firewall, OSPF, BGP, EIGRP, SNMP, other networking protocols
• Work with Project Manager and team members to meet or exceed deliverables to customer on time
• Knowledge of industry best practices NIST, DISA, Vendor, CIS, etc
• Familiarity with the SANS 20 CAGs
• Excellent verbal, documentation, research, collaboration, verbal, written skills
• Experience in using Office Suite
• Provide Tier 3 WAN operational maintenance support to the Army National Guard Bureau

WAN Engineers

• Provide Tier 3 troubleshooting of network data systems to include Cisco and Foundry devices
• Configure and support Bluecoat proxy SG appliance 800 and 8100
• Configure and support Cisco router 7200
• Configure and support Cisco switches 2900, 4500, 3750 and 6500
• Configure and support Foundry switches
• Designs and develops LAN/WAN infrastructure documentation
• Maintains LAN/WAN topology and cabling specifications
• Monitor the Army National Guard network using Netcool/OMNIbus software
• Knowledge of OPNET Technology Ace Live, Ace Analyst, VNE Server and NET Doctor
• Provide asset/chassis inventory on network equipment using OPNET VNE Sever for all states
• Receive and analyze network alerts from various sources within the Army National Guard Bureau and determine possible causes of such alerts
• Perform analysis of log files from a variety of sources within the Army National Guard Bureau to include individual host logs, network traffic logs, firewall logs, Router logs, Switch logs and intrusion detection system logs
• Characterize and analyze network traffic to identify anomalous activity and potential threats to network resources
• Monitor external data sources e.g. CND vendor sites, Cisco, Bluecoat, Foundry and DISA to maintain currency of CND threat condition and determine which security issues may have an impact on the Army National Guard Bureau
• Notify CND managers, CND incident responders, and other team members of suspected CND incidents and articulate the event's history, status, and potential impact for further action
• Create, edit, and manage changes to network access control lists on specialized CND systems e.g., Routers, Switch, Bluecoats and intrusion prevention systems
• Knowledge of routing protocol BGP

Network Engineer

• Provide Tier 2 monitoring and operational maintenance support for LAN/WAN systems of the FDIC
• Provide Tier 2 troubleshooting of network data systems to include Cisco and Juniper devices
• Provide support and configuration of Cisco routers 2800, 3745, 3800, 7200 and 7500 series
• Provide support and configuration of Cisco switches CATOS and IOS 3550, 3560, 3750, 4500, 4900 and 6500 series
• Basic knowledge of Cisco VOIP systems using call Manager/Unity version 4.1
• Basic knowledge of Avaya phone systems.
• Knowledge of routing protocols RIP, EIGRP, OSPF and BGP
• Knowledge of Wide Area Application Services WAAS
• Knowledge of Cisco Content Service Switch load balance CCS
• Monitor FDIC network Routers, Switches, Sprint Circuits, Servers and UPS for outages using Netcool/OMNIbus software
• Coordinate with vendors for network outages on the MPLS cloud Sprint and Verizon
• Collect network data bandwidth, network outages etc using Virtual network and E-Health software
• Configure network equipment for out-of-band dial-in for remote offices
• Knowledge of Wireshark network protocol analyzer.
• Knowledge of Opnet ACE Analyst
• Knowledge of putty for TACAS access
• Knowledge of Procom for out-of-band dial-in
• Manage IP address assignment using Inflobox IPAM
• Knowledge of DHCP, DHCP, FTP, SSH
• Knowledge of Microsoft Visio and Visio Stencils for Cisco Systems
• Ability to perform subnetting and understand CIDR and inverse masking
• Provide cable management for network devices using Cat 5, Cat 6 and Fiber
• Extensive knowledge of asset management within the Federal Government
• Extensive Knowledge of ticket tracking system Remedy 5.5, 6.3 and 7.0
• Provide RFE for weekly SLA reporting
• Assist with after hours maintenance when needed