PROFESSIONAL EXPERIENCE:

Confidential

Cybersecurity Engineer ISSO, Lead

• I provide cyber security engineering support for DoD programs. As Lead, I manage the information security engineering of the certification and authorization Risk Management Framework (RMF) process for two independent accreditations for the Security Cooperation Enterprise Solution (SCES).
• Currently I am performing the migration from an enterprise DoD DIACAP accreditation to the DoD RMF eMASS application/accreditation and authorization process utilizing FISM 800 - 53 rev 4 security controls.
• Other duties include POA&M reporting, HBSS scanning, document development, training, COOP, Network development and other duties as assigned by the program manager of DoD Security Manager.

Confidential

Cyber Security Information Analyst

• Assigned to DISA at Fort Meade Maryland my duties include providing ISSO duties for the C&A activities for Non Classified and Classified information systems.
• Computer Systems Security Analyst/Security Engineer
• I was providing security engineering guidance in the form of certification and authorization activities to the London Metropolitan Police Service, Command and Control Project. Duties include full life cycle security management, security scans of servers and applications and development of reports.
• Additional responsibilities include development of technical response’s to nonfunctional system requirements (NFR’s) .

Confidential

Certification and Authorization Engineer Lead

• I created and developed continuous monitoring solutions for the FAA Cyber Security Management Center. I was Lead Certification & Authorization Specialist responsible for insuring that NIST, FAA Orders, FISMA and DOT policies and procedures are enforced. Develop C&A packages; maintain the Cyber Security Assessment & Management (CSAM) data base.
• Additionally, I provide engineering security guidance to all the engineering groups at CSMC regarding secure baseline images for OS and database applications. I assist with network security appliance configurations and the development of network security architecture.
• As a member of the COOP team I am responsible for the annual testing the CSMC Information System Contingency Plan (ISCP) and the testing of that plan. I also developed the Business Impact Plan for CSMC/IDPS.
• Other duties include chairing two on going meetings and attending a variety of other meetings, providing security white papers and responding to IS security issues for the ISSM, CSMC Director, and the Authorization Officials.

Confidential

Principal Security Engineer Lead

• Provided security-engineering services in the form of Certification and Accreditation in accordance with NIST, FAA Orders and FISMA policies and procedures as it pertains to FAA Systems and Programs. At present I am a member of the Office of Information Services and Chief Information Officer, Office of Information Systems Security, Awareness, Training, Compliance & Evaluations Division. My primary role is to review and evaluate current FAA programs and system authorizations as a Lead engineer on the Compliance Program Review Team, providing guidance and recommendations to all FAA Lines of Business and Staff Offices.
• Prior to joining the Compliance Team, I developed and maintained security-engineering solutions for the FAA Prototyping Group, (ATO-P AJP-67). Achieved Certification and Authorizations for Surface Decision Support Systems, Prototype (SDSS) in August 2009, Developed Annual Security Assessment, (ASA) documents for the SDSS project in August 2010 and developed the ASA for the TRAMS project in February 2010. My last authority to operate was issued to the Low Cost Ground Surveillance project in December 2010.
• I was also a Lead Project Security Engineer for all of my assigned projects. Some of my additional duties includes but is not limited to the mitigation of POA&M activates, including the construction of all program level security documents.
• Serving as a member of the FAA Surface Trajectory Based Operations (STBO) Architecture Team it was our responsibilities to addresses logical security issues that pertain to FAA Next Gen efforts within the National Airspace System (NAS). In addition I was also a member of the FAA Next Gen Test Bed working group charged with the development of a FAA extranet to support FAA and Industry Partners connecting to the FAA NAS.
• This effort included recommendations as to types of Enterprise Security Management functionalities necessary to protect the FAA NAS by manes of IDS, firewalls, routers, switches, proxy servers and packet capture technologies. In addition I provided security training to the group regarding Certification and Accreditation activities.

Confidential

Information Security Specialist, Lead

• I provided security-engineering services to Tri Care for US military health care centers throughout the United States regarding compliance for DIACAP certification and accreditation.
• Primary responsibilities included performing system and database scans, POA&M management, policy enforcement and scan remediation.

Confidential

Lead Security Engineer

• Provided security engineering services to the U.S. Department of Army in support of the Army Knowledge Online and Defense Knowledge Online project primary role was DIACAP certification, system security engineering and development.
• Performed security scans on applications, OS, and database’s residing on Secret Internet Protocol Router Network (SIPRNet) and National Internet Protocol Router Network (NIPRNet). As a member of the Authorization and Accreditation team my role was to provide technical solutions to current POA&M items.

Confidential .

Information Security Specialist, Lead

• I provided duties as an Information Systems Security Officer and Certifying Agent supporting U.S. Customs and Border Protection, Department of Homeland Security. As a member of the Security Technology and Policy Division, primary responsibilities included oversight for Major Applications, Development of Security Information Accreditations that in corporate FISMA, DITSCAP, and DIACAP. I also provide the security review for New Technology Insertion review board. I have developed all required documentation necessary to support the DAA and the Information System Security Manager to make informed decisions regarding the level of risk associated with classified information systems and classified networks for the U.S. Department of Homeland Security and U.S. Customs and Border Protection. Advised, trained and supported other ISSO’s, Network Engineers and development engineers of DHS and CBP regarding all levels of security compliances.
• Developed the XP Windows Secure Baseline Configuration Guide in use by CBP for National and International deployment.
• Developed the Secure Laptop Security guide for Certification and Accreditation in accordance with DIACAP. The laptops are accredited to the level of SECERT.
• A member of the CBP Windows XP Development Group, Technology Solutions & Desktop Management Group, I was the Certifying Agent for the following CBP systems and programs;
• Enterprise Data Warehouse, National Finance Center, National Data Center UNIX Server Farm and the National Data Center (NDC) Windows Server Farm. Developed Certification Package for National Data Center Public Branch Exchange (PBX) including the Voice over Internet Protocol, (VoIP). Certified for the use of CBP the FIPS 140-2 Cryptographic Modules, Secure USB Flash Drives with 256-bit AES encryption.
• I have provided formal training to the U.S. Department of Homeland Security and U.S. Customs and Border Protection regarding Disaster Recovery and Business Continuity planning.

Confidential

Lead Information Security Engineer

• Provided management and engineering support to multiple US Government Civilian and DoD Agencies on behalf of Qwest Government Services, Inc.
• Primary responsibility was to ensure that sound security policies and procedures were built into all customer networks. I am involved in all aspects of Network and Information Security by providing direction and guidance to multiple programs both Civilian and DoD classified programs. I respond to new business requirements for RFP’s, RFQ’s and RFI’s as it pertains to Network Security, insuring Qwest meets or exceeds the needs of the DoD as well as other Federal Government Agencies.
• Prepare Security documentation for SSAA, DITSCAP, NIACAP, FISMA and NIST compliance for Qwest customers.
• As Lead Information Security Engineer I work with Qwest Customers and Qwest Senior Engineering Staff to identify all information and network security requirements for the design of complex NOC/SOC operations. Provide high level network design and engineering support for the creation of complex DoD security networks including advanced state of the art network security devices and process . Perform network penetration testing and application Harding.
• Constantly reviewing program requirements to insure that SSAA and other security documentation is current and accurate and reflects most recent change orders that impact network information and network security performance.
• Perform risk assessments and analyses of applications for Qwest and its customers. Respond to
• Security alerts insuring remediation or mitigation is provided for continued secure operation of network infrastructure, applications, hardware and platform specific operating systems. Create, test and deploy secure routing environments that meets or exceeds DoD requirements.
• Create strong working alliances with outside vendors and business units within Qwest to ensure a high level of security is engineered into all phases of customer network design and system life-cycle.
• I also performed as the Business Continuity Manager for Qwest GSD, and possess a strong working knowledge of disaster recovery procedures.

Confidential

Senior Network Engineer

• Supported the Malcolm Grow Medical Center with more than 4000 users of Wide, Local, and Metropolitan area networks utilizing more then 80 network and medical applications connected to DOD networks and other Military Treatment Facilities to ensure that the MTF computing and communications infrastructure supports the delivery of quality healthcare services.
• Provided on-site operations, maintenance, and management of LAN/WAN. Responsible for resolving, detecting all occurrences of network faults as well as measuring network performance and connectivity on a daily basis. I was responsible for resolving all TCP/IP issues, deploy routing configurations for Cisco routers, Cisco Switches, Alcatel Switch’s, PIX Firewalls. SideWinder Firewalls, Microsoft and Unix based servers.
• Resolved network trouble issues to include designing new networks, network connections and VLans. Insured hardware and software requirements met with current network requirements. Insured that the network was locked down, deployed and I configured internet security systems.
• Insured network compliance to security policies and identify potential security vulnerabilities. Insure the network is current with DOD, DISA, security requirements. Instructed and trained military personal and support staff.
• Other responsibilities included attending staff, vender, network, and trouble ticket meetings. Install Cat5 cables and fiber in communications rooms. Worked with and supported outside Internet service providers.
• As Senior Network Engineer I provided base specific system design direction for the medical information technology transition migration of the hospital network over to 89th Communications Group. This effort is directed by the US Air Force. Surgeon Generals Office to have one Base one Network Methodology. The requirements are to create a new Base LAN/ WAN that will create one Base network topology. As a lead member of the team, I had to reengineer all switch VLans, IP address space, Firewall configurations, and hardware and software configurations, including security issues. The outcome provided more control of Internet access and services that are delivered to the Hospital.

Confidential

Unix System Administrator

• Supported the US Courts, Administrative Office located in Washington DC as a Unix administrator.
• A national network for DNS and Send Mail, supporting Solaris 8 on Sun Enterprise servers, a complex network with 576 zones using Norton Anti Virus gateway software, SSH key administration for encryption. Primary duties were supporting user account administration over a secure federal government network with a variety of complex server configurations, including contingency planning for disaster recovery and intrusion detection mechanisms to insure reliability of the entire network.
• Deployed off site computers to support the US Courts in the event of disaster. Server installation included hardware, software and power. Installed Sun Enterprise Servers, E250, E450, configured as gateway servers, data warehousing servers, anti virus servers, WEB servers.

Confidential, Fairfax, VA.

Senior Network Engineer

• Senior Network Engineer managing High Speed Internet customers. Supporting the Multi Meg Support Group.
• I was awarded the "Yes I Can Award" for outstanding customer support for resolving very complex network configuration issues promptly. This effort allowed for outstanding customer satisfaction and greatly reduced the amount of money due back to the customer under the SLA, "Service Level Agreements Contract" involving a network outage.
• Additionally, I configured all access tables, routing tables for customers and UUNet.
• Designed all network interfaces for Cisco Routers, Open Route Routers and 3Comm equipment.
• Used Solaris Unix OS for management of access list and Cascade network configuration.
• Resolved IP routing issues on the backbone at peering points with other ISP’s.
• Provided network drawings and customer reports to management.
• Instructed engineers with other companies at the POP and CLEC locations on how to resolve their circuit’s malfunctions.
• Interviewed new employees and trained current personal on the use of Network trouble resolution and Network Monitoring using Net Cool, HP Open View and Cascade.

Confidential, Herndon, VA.

Technical Analyst

• As Technical Analyst I provided engineering support for users of a financial network for banking and mortgage investors. Analyzed system problems; configured and wrote device drivers.
• I Instructed Confidential customers on custom PC and server configurations, consulted with customers on financial network transfers and business solutions. Technical Support for Mornet Plus applications via the internet, including router configuration for HDLC and ATM interfaces.
• Resolved Server database issues with Novell, and supported Windows configuration and applications.

Confidential, Washington DC

System Analyst

• As System Analyst supporting users of Novell, Windows Applications, TCP/IP, and the use of the Internet my responsibilities included configuration of PC’s and laptop hardware. Installing department specific applications, Confidential specific application files and testing of software. Additionally I provided extensive training for Netscape and Web based applications and instructed customers and employees on Microsoft Products.

Confidential, Vienna, VA

Lead Senior Customer Service Engineer

• As an Engineer I supported Prime Computers hardware and software products on site at customer’s locations. Responsibilities were to install, configure and maintain the systems throughout the life cycle of the computer systems.
• Provided advanced software and hardware support for tape, disk, network, and TTL/ECL computer logic and subsystems.
• Advised customers on how to build computer rooms and design power requirements.
• Lead engineer for CAD/CAM "MEDUSA" and Auto Cad running on SUN Micro Systems Hardware.
• Lead engineer for Unix installation, software and hardware support.
• Power and Environmental disaster recovery engineer. Designed and provided to customers plans to achieve full restoration of network services within 24 hours of notification.
• Promoted to MVP Sales Engineer selling Hardware and Software service to customers of Sun Micro Systems as a value added service for Prime Computers Inc.