SUMMARY OF QUALIFICATIONS

• A results-driven IT Professional with extensive 30-year-experience in the deployment, configuration, engineering, administration, security, Information Assurance, testing and support of the complex, multi-platform information systems. Demonstrated record of excellence in supporting clients both in the commercial and federal government IT environments. Strong hands-on technical knowledge with the focus on IT systems security, and their FISMA compliance. Proven ability to lead and motivate project team members.
• Experience consists of 30 years of exposure to IT Systems, 24 years in IT Systems administration, engineering and support, 20 years in information security/assurance, 10 years in software development, validation and testing, 8 years in supporting the government clients, 6 years in configuration management, 5 years in database development and administration.
• Education includes Master's Degree in Computer Science in 1985 , and several IT certifications: Certified Information Systems Security Professional CISSP , Certified Authorization Professional CAP ,
• CompTIA Security , and Microsoft Security Professional MCP .
• Active clearances: TS/SCI, Public Trust.

Information Security and Quality Assurance skills:

• Categorized as the IAT Information Assurance Technical Level III and the IAM Information Assurance Manager Level II - by the DOD Department of Defense Directive 8570. Familiar with most aspects of the security assessment processes for Federal IT systems, including the details of Certification and Accreditation C A process, System Development Life Cycle SDLC , and the information security/assurance guidelines contained within: FISMA Federal Information Security Act , NIST National Institute of Standards and Technology Special Publications - 800 series, FIPS Federal Information Processing Standards publications, DIACAP Department of Defense Information Assurance C A Process , DOD Department of Defense Instructions 8500 series, DHS Department of Homeland Security 4300A: Sensitive Systems Handbook, DCID 6/3 Director of Central Intelligence Directive 6/3 and ISO International Standards Organization 27000 series.
• Experienced in all steps necessary to provide secure and accredited IT system: defining CONOPS Concept of Operations , creating the System Security Plan SSP , System Security Authorization Agreement SSAA and Security Controls Assessment Plan SCAP , performing system vulnerability analysis, conducting Security Test and Evaluations ST E , applying security access controls, firewalls, Intrusion Detection Systems IDS , customized Group Policy Objects GPOs and audits, implementing effective patch and antivirus update management, preparing system for the Certification Engineer CE Tests and Vulnerability Assessment Tests VAT , mitigating tests findings with Plan of Action and Milestones POA M and other remediation strategies.
• Very thorough in emphasis on other Information Assurance IA activities, following the Authority To Operate ATO status, such as: creating the Security Categorization SC , Risk Assessment Report RAR , Contingency Plan CP , Disaster Recovery Plan DRP and Continuity of Operations Planning COOP , maintaining the FISMA compliance and mitigation solutions for the Information Assurance Vulnerability Assurance IAVA alerts.

Systems/Network Administration and Engineering skills:

Extensive experience in the full life cycle of the systems and network development, network requirement analysis, architecture, design, specifications, configuration, test, simulation, implementation, development, integration, operation, maintenance, system administration, system performance optimization, software and hardware diagnosis and troubleshooting, and products research and evaluation. Demonstrated success in multi-platform networking, domain migrations and upgrades/patching virtualization of systems, deployment of the modular/scalable SAN storage, effective assets/resource management, utilization of the Configuration Management CM methods and tools.

TECHNICAL EXPERTISE

• Security Security processes, policies, standards and guidelines: A A formerly C A , CONOPS, SSP, SSAA, ST E, IV V, POA M, DRP, RAR, SAR, BCP, COOP, ITDR, ATO, DAA, IAVA, STIGs, DISA Gold Disk, SP, QA, IA, DIACAP, DCID 6/3, NIST SP 800 series, FIPS publications, FISMA, HIPAA, DHS 4300A, DOD 8500 series, DOD 8570.01 M, ISO 27000 series, IS, CM.
• OS Platforms Windows Server 2003/08, Windows XP/Vista/7, Red Hat Linux, Cisco IOS, VMware ESX, Novell Netware, DOS.
• Hardware HP and Dell regular and blade servers, Cisco and Brocade routers and switches, 32/64-bit
• workstations, SAN storage, HP MSA storage, Extron A/V Pro streaming encoders and switchers.
• Networking LAN, VLAN, WAN, DNS, DHCP, NAT, LDAP, NetBEUI, TCP/IP, UDP, Fibre Channel, FTP, TFTP, Telnet, VPN, IPSec, PKI, SSH, SSL, port forwarding, firewalls, OSI and TCP/IP layers, 802.11b, WLAN, WEP, WAP.
• Tools Cyber Security Assessment Management CSAM , Xacta IA Manager, E-eye Retina Digital Scanner, McAfee Vulnerability Manager MVM , HP WebInspect,WASSP, Nessus, DISA Gold Disk, SSH, DameWare, Compusec Toolbox, Active Directory, Registry, WSUS Windows Server Update Services , MS SMS Microsoft Systems Management Server , SharePoint, ManageEngine, VMware, MBSA Microsoft Baseline Security Analyzer , AVG, Norton Endpoint Protection Suite, McAfee Antivirus/Antispyware, Remedy, DPAS, WinSCP, PuTTY, MS Access and SQL, ARCServe.
• Applications MS Office Suite, MS Visio and Project, IBM Lotus Notes, MS Sharepoint, MS Outlook/Exchange, Rational Clear Case/Clear Quest, QTM, PVCS, Matlab, Mathcad, ENVI, SocetSET, SocetGXP, ArcGIS, ESRI Imagine, RemoteView, Palette.
• Languages Visual Basic, C , Pascal, Fortran, Matlab, SQL, XML, SOAP, WebLogic, scripting

languages.

PROFESSIONAL EXPERIENCE

Confidential

Senior Information Assurance Analyst IT Systems Security Assessor - Lead

• Served as the Senior Assessor Team Lead on multiple security assessments for many IT systems deployed and owned by the Aviation Safety AVS , and Air Traffic Organization ATO divisions of the FAA
• Performed system vulnerability analysis for more than 20 IT systems annually using array of tools such as: McAfee Vulnerability Manager MVM/Foundscan , HP Webinspect, MBSA
• Created technical architecture diagrams, spreadsheets and other documents depicting the technical details of the assessed systems
• Chaired more than 100 assessment-related meetings annually, including the Assessment Kickoffs, System Security Plan SSP Interviews, Security Control Analysis SCA Walkthroughs, Findings and Recommendations F R meetings either in person, or remotely, using Lotus Notes SameTime sessions.

Confidential

Senior Information Systems Security Representative ISSR

• Served as the primary liaison between Project Manager IT system owner , Systems Administrators, Information Assurance Officers IAOs and Information Assurance Manager IAM .
• Created the Certification and Accreditation C A packages, starting with System Security Authorization Agreement SSAA and then periodically updated/maintained them in the Xacta IA Manager database with all supporting documents: network and connection diagrams, floor plans, hardware and software lists.
• Performed system vulnerability analysis using array of tools such as: DISA Gold Disk, MBSA, WASSP, and E-eye Retina Digital Scanner.
• Applied security access controls including firewalls, IDS, subnetting, DMZ, routing tables, port filtering, customized GPOs and audits.
• Implemented the strategies and means of the OS hardening, effective patch and antivirus/antispam update management, frequent upgrades of popular applets which are prone for exploitation like Adobe Reader, Adobe Flash, Java, and Mozilla Firefox .
• Prepared and updated IT system for the periodic Vulnerability Assessment Test VAT testing proposed and executed the mitigations of its findings and recorded them in the POA M in Xacta .
• Developed strategies centered on addressing/mitigating the vulnerabilities reported periodically in IAVAs and findings from the DISA Gold Disk/MBSA scans.
• Proposed to Management, discussed it over, and then implemented and updated the System's Contingency Plan CP , Disaster Recovery Plan DRP , and Continuity of Operations Planning COOP .
• Performed scans for viruses and other malware on removable media CDs/DVDs and external hard drives upon request from users Media Trusted Agent function .
• Copied/moved/transferred data between different domains, following all necessary prerequisites and procedures. Used Compusec Toolbox's Buster tool to verify the unclassified contents of the images and documents transferred to the lower-classification networks.

Accomplishments include:

• After introducing the rigorous security and updates policies to the stand-alone 70 users system, it had received the very rare by agency's C A standards 3-year Authority To Operate ATO status.
• Successfully passed an unscheduled FISMA audit in 2010 .

Senior Systems/Network Administrator / Subject Matter Expert SME / Task Leader

• Built, configured and maintained the Defense Information Systems Agency DISA -compliant hardware infrastructure of the 3 different classification-level JWICS, SIPR, NIPR networks, hosting about 250 users.
• Set up LANs and VLANs utilizing up-to-date network technologies and protocols, configured Windows 2003/08 and RH Linux servers, Cisco switches/routers and SAN storage.
• Oversaw domain transitions of the older and stand-alone segments of network s . Deployed new client workstations and Virtual Machines VMs , securing them with STIGs, hardened GPOs, SSH Secure Shell .
• Using scripts and remote tools, like DameWare, provided superb customers support, especially regarding the customized applications installations and licenses administration.
• Requested the trial versions of software from vendors and evaluated them, conferred with vendors on the customized installations, maintained and frequently updated the database/repository of the applications licenses Application Licenses Administrator function .
• By utilizing the ITIL-compliant ManageEngine tool and the DPAS database, provided the Information System Configuration Management CM and the Assets Management/Inventory Control functions.
• As a Task Lead delivered weekly and monthly progress reports to the Contract Program Office.

Accomplishments include:

• Proposed and championed the consolidation effort for the entire division's software licenses,
• reducing many, and transitioning others from node-lock to the floating platform. That resulted in
• savings of more than 150K/year.
• Pioneered the utilization of 64-bit client systems which required customized configuration for most of the specialized applications. Supplied expert guidance on such customizations.

Confidential

Senior Database Developer and Administrator DBA

• Designed, created and maintained an MS Access-based database of the NGA Library's replacement/spare hardware components, for usage of its Maintenance and Support Team.

• In-house project: designed/created a database tracking the timesheets of GDIT employees and creating weekly/monthly reports for the Financial Department.

Accomplishments include:

• The spare/replacement parts database shortened the response time to the maintenance calls and significantly streamlined the O M contract renewal process.
• The timesheet tracking database was highly recognized and awarded by the GDIT top management.

Confidential

Senior Systems and Software Test Engineer

• Supported the software development project called VKB/HF, utilizing for test purposes both mock data and the real GEOINT data.
• Conducted testing of the software products both high level portal interface and on low level Web services , utilizing advanced technology tools: WebLogic, XML, SOAP, and Rational Clear Case.
• Prepared the testing strategies, well-defined testing procedures and plans, test reports using Rational Clear Quest and documentation.
• Provided vulnerability assessments for consecutive prototypes of the tested portal/interface platform.
• Verified the accessibility and integrity of the mock test data, stored in the VKB database.

Accomplishments include:

• Established standardized testing methodology for the portal interface prototype.
• Using extensive knowledge of world's geography was able to verify/validate integrity of the data test batches.

Confidential

Independent Principal Consultant and IT Systems/Network Configuration Specialist

• Researched and recommended for purchase appropriate IT hardware for clients' information systems.
• Deployed and configured LANs including wireless components, based on customers' needs.
• Installed and configured applications, upgraded Operating Systems, rebuilt systems after crashes.
• Secured the segments of entire IT systems with firewalls, antivirus/antispam packages and patch management tools.
• Scanned IT systems for vulnerabilities and deployed mitigation solutions as needed.

Confidential

Principal Software Configuration Manager CM and Information Assurance/Validation Analyst

• Oversaw the software build and integration process.
• Implemented Configuration Management and Change Control methodologies and tools to the version/change control and release procedures within software development department.
• Designed and implemented the comprehensive system of SOPs for software development, compliant with FDA's GAMP standards.
• Released and delivered to customers the Beta and final versions of software products, supplied documentation and manuals, provided troubleshooting support.
• Created, maintained and secured on network the shared Software Repository.

Accomplishments include:

• Achieved Y2K and CFR21/11 compliance for company's software products.
• Successfully passed three external software audits, conducted by major pharmaceutical companies. As a result, the lucrative and long-term contracts with pharmaceutical clients were signed.

Senior Systems/Network Administrator

• Administered, maintained and secured the 30 users network based on Windows NT/2000 and Novell NetWare 5.1 servers.
• Configured LAN using TCP/IP networking, provided system backups and anti-virus protection for entire infrastructure and company's customized email system.
• Tested IT systems integrity, identified IT Security vulnerabilities and provided expert guidance in the implementation of remedies, when needed.
• Provided excellent Desk Help support for the users.

Accomplishments include:

Successfully oversaw company's effort towards Y2K compliance of its IT systems.

Confidential

Systems/Network Engineer and Database Administrator DBA

Recommended, researched, purchased and installed equipment plus cabling for the company's first Local Area Network LAN . Tested IT security vulnerabilities and maintained integrity of the main office's entire Information System, introduced the mitigating solutions addressing those vulnerabilities. Researched for and then designed the infrastructure and security principles of the Information System for company's European subsidiary: Genova System in Lodz, Poland. Created and administered/maintained the database of the articles being exported.

Accomplishments include:

• The database helped enormously in streamlining the inventory control, shipment and invoicing processes.
• While in the office, JBAMV Associates Ltd. was voted the Maryland's Exporter of the Year 1995 .

Confidential

Software Engineer-Analyst, IT Systems Consultant

Developed applications supporting company operations and updated documentation for them. Created and maintained company's database of the international business contacts and information on the training seminars/conferences as well as trade events/shows. Secured company's IT assets with antivirus/antispam software, performance monitoring and audits strategy. Consulted company's international partners on the IT infrastructure and applications solutions. Served as a translator/interpreter during training sessions. Confidential

Programmer-Analyst, Computer Specialist

• Designed and developed engineering software for the coal mining industry, using C, Pascal and Fortran.
• Supervised the computational side of the payroll process .
• Designated by Institute's management as representative in the exclusive MERA 400 Minicomputer Users international organization.

Accomplishments include:

• Successfully advocated for the usage of first Computer Aided Design CAD applications in company's design projects.
• Proposed and designed the first LAN, based on the minicomputer PDP-11 with XENIX OS, and the PCs as the workstations.

Confidential

Junior Programmer and Minicomputer Tech Support

• Provided the thorough support and maintenance for the MERA 400-based minicomputer system.
• Introduced first PCs with MS DOS to the Institute's computing division.

ADDITIONAL SKILLS

• Foreign languages proficiency: Polish native , Russian excellent .
• Free-lance English Polish and Polish English translator and interpreter.
• Clients include: Inlingua Language Services in Arlington, VA Circuit Courts in Maryland.
• Experienced in the international business aspects of the IT industry. Well-recognized volunteer organizer of the group hiking trips and outdoor physical activities in the MD, VA, PA and D.C. area. Volunteered time and leadership/organizational skills to the People to People Student Ambassador Programs.