SUMMARY:

• Experience in the fields of Identity & Access Management, PKI, and Information Security with regards to developing, implementing, and overseeing the protection of information, information systems and (IT) requirements. Including actions, services and planning employed for preventing and mitigating computer fraud and/or modification of information, whether in storage, processing or transit of information systems or their contents, or theft of information including those measures necessary to detect, document and counter such threats.

TECHNICAL SKILLS:

• Experienced with Active Directory
• Experienced with JPAS, e - Qip, SWFT & E-Fingerprinting
• Experienced with EPAS, HP Service Manager, and BMC Remedy Ticketing System
• Microsoft: FIM, SharePoint, Excel, Access, Outlook and PowerPoint

PROFESSIONAL EXPERIENCE:

Confidential, Washington, DC

Identity & Access Management Administrator

• Supports FBI IdAM and Active Directory services across 4 enclaves SCINET, BLACKNET, FBINET, and UNET
• Use and knowledge of Microsoft Forefront Identity Manager (FIM), Forefront Unified Access Gateway (UAG), and Threat Management Gateway (TMG)
• Functions as Tier 3 to include troubleshooting connectivity issues with firewall endpoints, access and publishing points with consideration of the outward lying network technologies
• Implementation of PKI, certificate services, and single sign on
• Performs PKI/Registration Authority duties for Messaging Directory Services Unit to include: Issue, revoke, renew and recover certificates for the CAC/PKI in compliance with FBI policy
• Understanding of protocols used for web traffic and troubleshooting tools to diagnose connectivity issues
• Use and knowledge of load balancing and replication techniques as they relate to high availability systems
• Works with LDAP, Secure LDAP, and Power Shell
• Knowledge and experience using Microsoft AD Services
• Usage of Microsoft Windows Server (i.e. 2012 r2, 2008 r2, and 2003, including AD)
• Working understanding and ability to restrict shared network drives and map shared network drives to the end users workstation
• Configure shared group mailboxes and restrict them based on a produced Security Group and/or Distribution Group

Confidential, Washington, DC

Identity & Access Management Administrator

• Supports FBI IdAM and Active Directory services across 4 enclaves SCINET, BLACKNET, FBINET, and UNET
• Use and knowledge of Microsoft Forefront Identity Manager (FIM), Forefront Unified Access Gateway (UAG), and Threat Management Gateway (TMG)
• Functions as Tier 3 to include troubleshooting connectivity issues with firewall endpoints, access and publishing points with consideration of the outward lying network technologies
• Implementation of PKI, certificate services, and single sign on
• Performs PKI/Registration Authority duties for Messaging Directory Services Unit to include: Issue, revoke, renew and recover certificates for the CAC/PKI in compliance with FBI policy
• Understanding of protocols used for web traffic and troubleshooting tools to diagnose connectivity issues
• Use and knowledge of load balancing and replication techniques as they relate to high availability systems
• Works with LDAP, Secure LDAP, and Power Shell
• Knowledge and experience using Microsoft AD Services
• Usage of Microsoft Windows Server (i.e. 2012 r2, 2008 r2, and 2003, including AD)
• Working understanding and ability to map shared network drives to the end users workstation
• Designated Registration Authority for ITID unit

Confidential, Fort Belvoir, VA

Identity & Access Management Specialist

• Supports the Army Cyber-Security Directorate Identity Management Directorate in the areas of Army Communications Security to include Cryptographic Modernization, Key Management Infrastructure (KMI), Common Access Card (CAC) and Public Key Infrastructure (PKI)
• Provides specialized expertise as a IdAM Specialist which includes assisting the Local Registration Authority personnel in creation of SIPR (Classified) and NIPR (Unclassified) PKI tokens and/or certificates
• Executes training sessions with new IdAM specialist utilizing DoD practices, policies, procedures and standards as outlined in the RPS (SIPR/Classified) and CPS (NIPR/Unclassified)
• Issue, revoke, renew and recover certificates for the CAC/PKI office in compliance with DoDI 8520.2
• Manages end-to-end lifecycle of Army digital identities and access controls
• Creates PKI Mobile-Code Signing, Group, Role Based Certificates and PKI GO (General Officer) tokens
• Operate, maintain, and ensure successful implementation of the IdAM/PKI program
• Understanding of how the NIST 800.53 v4 security controls are implemented in relation to IdAM
• Registers and/or terminates of Local Registration Authorities (LRAs) to perform their duties
• Establishes and maintains certificate distribution, alternate CAC tokens, and CAC pin reset for locations globally
• Resolves customer issues related to smart cards and supports the CAC/PKI service desk coordinator
• Manages smart card process for SIPR (Classified) and NIPR (Unclassified) environments
• Generates ASCL tokens which enables a single, universal sign-on and optimized sign-on infrastructure
• Performs third party key recovery and approving issuance of certificates to network Non Person Entities (NPEs)
• Create ASCL token lifecycle tracking records and DoD PKI ASCL pins and unlock codes
• Coordinates with Trusted Agents for token request and distribution and/or conducts face-to-face user validation for the issuance of PKI certificates

Confidential, Arlington, VA

Security Specialist/IT Asset Manager

• Supported Facility Security Officer (FSO) with overall security program management for over 300 Government employees in a fast-paced environment
• Enforced standards for a secure environment for the protection of personnel, property and information
• Understanding of the NIST 800-53v4 security controls and of activities required for NIST 800-37 R1 Risk Management Framework, FIPS 199, and POA&M
• Analyzed basic security findings to include sending alert notifications and security incident reports
• Provided support to organization in developing strategies that protect information and counter IT security threats
• Provided on-site incident response to security and cyber incidents
• Managed access to company facilities and secured areas via Datawatch and Kastle secured systems
• Initiated, processed, and reviewed all documentation relating to personnel security clearance investigations using e-QIP and JPAS
• Conducted prescreening eligibility interviews and provided recommendations on subject’s clearance acceptability
• Managed and processed required badges and access requirements through Visitor Authorization Requests (VAR)
• Provided counsel to executive and senior management on security guidelines for Federal contract vehicles
• Provided security briefings, debriefings, and awareness training for site personnel
• Maintained personnel security records, reports, and correspondence as required by Defense Security Services
• Conducted self-inspections for Annual DSS inspections along with any other inspections required per the GCA
• Managed the maintenance of Government Furnished Equipment (GFE) ensuring property was properly identified and tagged
• Managed GFE inventory via SharePoint in accordance with Federal Acquisition Regulations
• Processed requests (via Remedy) for U.S Government IT equipment
• Coordinated periodic CEPO/Surplus pickups and proper destruction/disposal of unused GFE
• Coordinated all government audits & CST Asset Management Quarterly Reports to ensure accuracy
• Developed and maintained standard processes and procedures to support Asset Management activities
• Worked with vendors to ensure best pricing for IT procurement and followed up to secure delivery dates
• Assisted with the establishment of IT procurement strategies, processes, and procedures consistent with company policy, best practices and other requirements (such as government regulatory, etc.)
• Managed supplier relationship(s), resolving and escalating problems and providing vendor performance feedback
• Installed, configured, troubleshoot/fixed, and imaged computer workstations/laptops
• Setup users, troubleshoot connectivity issues, and patch network cables
• Basic Active directory creation, deletion of user accounts and password compliance

Confidential, MD

IT Support & Asset Manager

• Analyzed system logs and identified potential issues with computer systems
• Introduced and integrated new technologies into existing data center environments
• Performed routine audits of systems and software
• Performed general maintenance tasks, troubleshoots, and repairs of computer systems and peripheral equipment
• Performed computer hardware and software installations
• Troubleshoot, fix, and image Windows workstations and laptops while maintaining a ready to use inventory
• Implemented and maintained network security, TCP/IP protocols and computer hardware and software
• Installed, programmed and maintained CCTV equipment such as IP and Dome Cameras, PTZ, Analog, and DVR
• Tier I Help Desk and Technical support
• Planned and oversaw physical inventory maintaining quantity on hand, stock rotation, and monthly inventory
• Performed asset discovery and inventory, managed asset tracking, and completed lifecycle disposal of assets
• Windows XP MS Office 2010 Migration, Installation, configuration, and maintenance