HIGHLIGHTS:

• Exceptional communication skills effective at all organizational levels.
• Seasoned team leader
• 10 years of cyber security expertise
• Problem solver with a documented track record of success.
• Skilled at working under pressure and performing multiple tasks at once.
• Dedicated professional, with a reliable and solid work ethic.
• Project management for large DoD cyber security programs.
• Cyber security for critical infrastructure SCADA/ICS/NERC/CIP
• Cyber Security FISMA for US Government DoD DIACAP/RMF
• Advanced cyber intrusion analysis/detection/forensic rootkit, malware, etc
• Software Design Life Cycle SDLC expert

EXPERIENCE:

Confidential

• Conduct project management activities for SCADA and FISMA accreditation activities.
• Track and manage reporting of IA and FISMA compliance to CIO G6
• Prepare technical guidance and communication with HQUSACE, and USACE Districts and Divisions
• Develop and deliver SCADA, FISMA, and other information assurance training materials and content
• Development information assurance project requirements, milestones, and other technical requirements
• Conduct and document annual assessments of IA and USACE systems accreditation
• Review certification and accreditation in accordance with DoD Information Assurance Certification and Accreditation Process DIACAP
• Provide guidance and priorities regarding IA/CND support to supporting RCERT or TNOSC.
• Manage over 145 IT security projects to ensure projects were within scope, budget, and time.
• Enforce the use of Army approved procedures for clearing, purging, reusing, and releasing system memory, media, output, and devices.
• Ensure DAAs maintain a repository for all systems' C A documentation and modifications.
• Ensure that security violations and incidents were reported to the servicing RCERT in accordance section VIII, Incident and Intrusion Reporting., and ensured that RCERT directed protective and corrective measures are implemented for vulnerabilities or incidents remediation.
• Perform IT auditing services C A for over 225 IT systems spread across various government agencies using NIST, NERC CIP, SCADA DoD DIACAP guidelines.
• Asses and report on the security posture within the USACE Enterprise, enclaves, Supervisory Control and Data Automation Systems, and Industrial Control systems.

Confidential

• Develop new repeatable, sustainable processes for the execution of vulnerability assessment scans and delivery of consistent artifacts to the Information Assurance Engineering team for use in DIARMF package development.
• Conduct vulnerability assessments against target systems for verification purposes and generates report content for inclusion in DIARMF documentation for delivery to Air Force Space DAA.
• Provide system-level projects with direction and guidance on development and implementation of cyber security requirements for system/project design, engineering, and architecture.
• Identify reliable, elegant solutions as required to modify current system designs for the implementation of proper system hardening and security implementation.
• Provide project teams and program leadership with input and subject matter expertise on matters regarding FISMA, DoDD 8500.1, DoDI 8500.2, DODI 8510.01, NIST SP800-53, NIST SP 800-30, NIST SP 800-37, CNSS/NSTISSP-11, CNSS/CNSSP-6, NISPOM, ISO 17799/27000 series.
• Develop and deliver DIARMF package artifacts SIP, ConIP, SSP, Scorecard, POA M, etc. in accordance with DoDI 8510.01, with review and remediation of package contents based upon review by primary customer, secondary customers, CA, and AA
• Manage the installation and deployment of PKI, SolarWinds, Spectrum, InfoVista, IP-SLA, Passive Monitor, Splunk, vCenter, Schnozz TCP/DUMP , Syslog/DataOrchestrator
• Manage the installation, support and deployment of the Management Firewall Juniper SRX 5800 , Management site2site VPN CISCO ASA 5585 , Management IPS Tipping Point 7500 .
• Perform enterprise wide network traffic analysis, correlate data log events and perform network forensics on to identify security incidents.
• Implement and maintain internal team tools such as malware sandboxes, malware repositories, indicator databases, honeynets, and various internal custom toolsets.
• Utilized aircrackng, metasploit framework, sqlmap, wireshark, tcpdump, netcat, arachni, nessus, saint, openvas, setoolkit to coduct vulnerability management.
• Configuration and scheduling of Backups using a combination of shell scripts and SQL to perform nightly exports, nightly hot backups, weekend cold backups, and parallel exports, etc.
• Test the validity of production backups by moving files to development, re-creating the database, and performing tests.
• Unix, Linux, SQL, and Windows administration skills.

Confidential

• Applied PMI processes for all Cyber Security project, redesigned the cyber security processes within the IMCOM structure.
• Directed and maintained DIACAP certification and accreditation C A for over 225 DoD IT systems.
• Responsible for establishing, managing, and assessing the effectiveness of all aspects of the IA program within IMCOM HQ in accordance with DoD and Department of Army Information Polices.
• Developed, managed, and maintained s a formal IA security program for over 225 DoD systems, that includes defining the IA personnel structure and ensuring the appointment of an Information Assurance Network Manager IANM , information assurance network officer IANO , information assurance manager IAM , and an IASO at subordinate levels.
• Enforces Army and DoD IA policies, developing command-unique procedures as needed, including DISA STIGS, Army Best Practices BBP , AR 25-1, AR-25-2, and SIRG.
• Ensured that IT system owners and personnel implemented vulnerability remediation bulletins and advisories that affected the security of their ISs.
• Ensured that all IA personnel received the necessary technical and security training to carry out their duties and maintained their certifications.
• Served as the primary point of contact for Information Assurance-related actions. This includes IAVM reporting, compliance vulnerability assessments, and feedback to Army staff on current and upcoming IA policies.
• Provided guidance and priorities regarding IA/CND support to supporting RCERT or TNOSC.
• Managed over 225 IT security projects to ensure projects were within scope, budget, and time.
• Managed the IMCOM HQ cyber security team on various cyber security projects.
• Ensured the development of the system C A documentation by reviewing and endorsing such documentation and recommending action to the DAA.
• Enforced the use of Army approved procedures for clearing, purging, reusing, and releasing system memory, media, output, and devices.
• Ensured DAAs maintain a repository for all systems' C A documentation and modifications.
• Ensured that security violations and incidents were reported to the servicing RCERT in accordance section VIII, Incident and Intrusion Reporting., and ensured that RCERT directed protective and corrective measures are implemented for vulnerabilities or incidents remediation.
• Performed IT auditing services C A for over 225 IT systems spread across various government agencies using NIST, NERC CIP, SCADA DoD DIACAP guidelines.
• Conducted announced and unannounced IA assessments and Higher Headquarter Assessments HHA across the Department of Army.
• Performed digital investigations for workstations and servers
• Analyzed, correlated, and reduced 20million security logs
• Programmed, managed, executed, and reported over five million dollars in MDEPs MS4X and MX5T funding resource requirements annually.
• Served as a member of the IMCOM HQ Configuration Control Board CCB .

Confidential

• Served as the government action officer for the Littoral Combat Ship LCS , CVN-78, Joint High Speed Vessel JHSV , LHA-6, A-10C, AC-130 U/H, P-8, Joint Range Extension JRE , JICO Support System JSS , E-6B, VH-71 Presidential Helicopter, and various other Department of Defense DoD projects and programs of varying scope and complexity.
• Provided administrative and management guidance to government computer system analysts, computer scientists, electronic engineers, and computer engineers also provided management direction to contractor computer analysts, engineers, mathematicians, and operations research analysts for planning, coordination, and execution of business functions, resource allocation, and production.
• Established priorities, milestones, and objectives of the program, and managed program schedule, and resources effectively
• Estimated costs of contractor and government labor, travel, support equipment and other direct costs through research and in-house software programs.
• Obtained two million dollars annually in reimbursable funding based on cost proposals.
• Presented mission briefs on programs under my direction to Defense Information Systems Agency DISA and the Joint Interoperability Test Command JITC upper chain of command, and executive level leadership for each DoD program under my lead.
• Designed, planned, coordinated and executed the Test and Evaluation T E of 35 ACAT 1 DoD Information Technology IT and National Security Systems NSS .
• Managed various IT security projects to ensure projects were within scope, budget, and time. Managed a cyber security team on various cyber security projects.
• Ensured the development of the system C A and Joint Interoperability certification documentation by reviewing and endorsing such documentation and recommending action to the DAA and Chairman Joint Chiefs of Staff CJCS .
• Enforced the use of DoD approved procedures for clearing, purging, reusing, and releasing system memory, media, output, and devices.
• Ensured DAAs maintained a repository for all systems' C A documentation and modifications.
• Ensured that security violations and incidents are reported to the servicing RCERT in accordance section VIII, Incident and Intrusion Reporting.

Confidential

• Analyzed, reviewed, and commented on systems Joint Capabilities Integration Development System JCIDS documentation to ensure the information supports CJCSI 6212 guidelines.
• Led Government/Contract teams to develop and execute detailed test plans and procedures for Air Force System Interoperability Testing AFSIT and Certification process. Organized and de-conflicted planned test schedules between multiple programs and government organizations. Made final decisions for Air Force system interoperability certification on 30 different programs.
• Served a team leader or team member on projects and programs of varying scope and complexity.
• Resolved difficult or highly controversial policy, doctrinal, or conceptual matters associated with test plans, procedures, test conduct, and analysis/evaluation of test results.
• Represented the Air Force at highest level of DOD conferences and meetings, providing expert opinion relative to T E of DOD systems.
• Managed a 700 thousand dollar budget for the 46th Test Squadron to conduct Situational Awareness Data Link SADL AFSIT for the Air Force.
• Managed the interoperability testing for Command and Control C2 and Non-C2 systems for the Air Force.
• Supported 30 programs, which include the Joint Interface Control Officer JICO Support System JSS , Joint Air Defense System Integrator JADSI , and the Joint Range Extension JRE .

Confidential

• Lead instructor/training manager for the Interface Control Officer ICO course of instruction at the Center for Surface Combat System CSCS Damneck, VA.
• Provided training to personnel, 0-5 and below, assigned to Strike Group staff on how to perform Interface Control Officer duties in a Joint Operation environment.
• Provided operators E-9 and below extensive training on multi-service Tactical Data Link TDL systems and capabilities and how to design a Joint Multi-TDL architecture.
• Flawlessly administered a 3 million budget for a state of the art classroom upgrade which provided students the ability to operate tactical data links in a real world environment.
• Lead navy-wide review of TDL and GCCS training. Impact: 1.5m in infrastructure savings. Developed system software KPPs, technical specifications and acquisition plan for 2m TDL simulation PC training system.
• Master Trainer Guest instructor to the Army's JTAMD and AEGIS PCO courses for TDL and IAMD C2 tactics. C2M2 for the CEC and ADSI TACOPS courses. Responsible for integrated master schedule, scope of work generation, technical evaluations, and curriculum development.

Confidential

• Assistant Joint Interface Control Officer A-JICO - Seamlessly integrated the USS Mount Whitney, the Commander Task Force 150, and Combined Joint Task Force Horn of Africa command and control systems with existing forces to, support requirements of the Theater, Component, and Coalition Commanders assigned to the region.
• Managed all data-link systems providing near flawless coverage of a theater spanning over 4.3 million square miles which contributed directly to the USS Mount Whitney and Combined Joint Task Force of Africa being able to sail ready to take the Global War on Terrorism to the Horn of Africa Region.
• Managed a 1.1 million dollar Air Defense Systems Integrator and Joint Range Extension upgrade onboard the USS Mount Whitney in order to support the Combined Joint Task for of Africa mission.
• Advises executive level 3 star Admiral lead fleet collaboration team. Provides insight into the fleet's top interoperability issues, gap analysis, and operational impacts for TDL, GCCS, and C2. Impact: CNO re-programmed 50m FY10 towards service oriented architecture, functional enhancements, component design improvement, and DOTMLPF solutions.
• Managed all aspects of tactical data link systems acquisitions processes, concept of operations development, and installation scheduling for the Commander Second Fleet flag staff.
• Provided critical insight, analysis and program management to the Commander of the Second Fleet and Systems Command in the development of key tactical data and network components.
• Contributed to the development of transformational documentation to include Joint Tactical Radio System JTRS , Wide Band Networking Waveform WNW , Joint Airborne Networking- Tactical Edge JAN-TE , Tactical Data Link Transformation, and Joint Command and Control Systems.
• Provided aggressive resolution of complex fleet combat systems technical issues, enhancing the overall mission of meeting operational requirements within a Net-Centric Warfare Environment.
• Supervised and trained 43 junior personnel on Global Command and Control System Maritime GCCS-M database management, Air Defense Systems Integrator ADSI operations, Multi-TDL operations, and various Joint Operations Center JOC sub systems.