SUMMARY OF QUALIFICATIONS:

• Recognized for excellent customer interface skills, both verbal and written. Strong experience identifying stakeholder requirements and collaborating amongst mixed teams of contractors, DoD and foreign personal to define scope and track implementation of desired output. Thorough knowledge of change management best practices, team building, and assess management with innate ability to work in mixed level environments to identify environmental, project and resource needs. Has Extensive experience addressing Senior Leadership, team chiefs and conducting information /decision briefs.
• independently motivated and able to identify and complete goals, track and report on progress, deliver on schedule or strategize solutions and communicate revised milestones in response to unforeseen challenges. Able to analyze both Technical and high level plans and diagrams to formulate schedule of effort and devise plans of action.
• Strong experience working with NFS storage systems Netapp/EMC preferred , NFS client configuration, CIFS, remote data replication. Experience working in a mixed Windows/Unix environment. Familiar with Industrial Security Facilities Database ISFD , DSS Counter Intelligence Analytical System DCIAS , Unclassified Data Network UDN , Classified Data Network CDN , SIPRNET, Tandberg, Xacta IA Manager tools, Identity Management IdM , and Mission System Infrastructure MSI .
• 20 years overall Information Systems Security, Information Assurance, Secure Network systems protection, Forensics, Design and management experience from high level multilateral defense perspective. Utilize various multivendor equipment: Cisco, Juniper, Barracuda IDS/ IDS, VPN and virtualization technologies to secure, monitor and Protect critical systems and data.
• 10 years of overall Certification and Accreditation C A experience
• 2 years C A experience for the Defense Security Service DSS Team Lead
• 7 years of Incident Handling Risk Management experience
• 5 years Mcfee: SEIM, HBSS system installation design, configuration, basic and advance administration ePO Management v 3.0, 4.1, 4.5. Vulnerability scanning With Retina and Various DOD tools
• 15 years of experience developing policies and procedures

WORK HISTORY:

Confidential

Principle Lead Senior Secure Systems Engineer: Provides direct Information Assurance IA support to the Information System Security Manager ISSM and Information System Security Officer ISSO for Defense Security Services. Duties include, developing IA policies and procedures, Risk and Threat Assessments, Performing certification and accreditation C A functions in compliance with DIACAP standards. Providing DoD and NSS PKI support, and System security assessments. Conduct and supervise DISA Security Readiness Review testing w/Retina and other DSS/DISA approved tools. Create Plan of Actions and Milestones POA M for assigned connections. Provide Supervisory and technical support to Computer Network Defense CND team. Conduct Security Research, create IA Team and system reports. Maintain Information Assurance Schedule/tasks, conduct technical and senior staff /Director level briefs and analysis of security requirements. Performed secondary task as Computer Network Defense analysis, forensic specialist and Network Systems Security consultant. Provided IA support reports to NGA while transitioning between type systems and virtual migrations.

Confidential

Security / Principle Secure Systems Engineer

• Provided Certification and Accreditation C A support to USFK systems in accordance with government security requirements and guidance DCID, NIST, NSA, FISMA, OMB, Presidential Directives, US Army 25-2, etc. . Performed security analysis and research provided mitigation strategies created and updated security documentation researched new technologies provided risk analysis performed threat assessments acted as security Representative to Non-Government agencies and all US in country support Organizations. The Information Assurance Section tracked system status managed Plan of Action and Milestones POA M facilitated C A effort with system owners, ISSO's, ISSM's, Certification Leads, Accreditation personnel, and Acquisition Security personnel. I worked a wide range of systems Unclassified, GCCS, CENTRIX, Coalition, SECRET/SCI, SAP, SAR, TS/SCI , conducted special Forensic Analysis with CID and Data at rest, security applications, hardware research, policy review, Network security engineering, High Assurance Guards management, cross-domain implementation and operations, OCONUS PDA Policy, New technologies, etc . 95 of my work was with CLASSIFIED, Joint , combined, 5 eyes, Level, State Department Intelligence, and National Security programs. Designed, configured and managed, and team lead for in-country Secure systems programs/ with CDS, Routers Firewalls, HBSS, HIPS/HIDS ePO Management Suite IDS/IPS between coalition and USFK, and multinational Organizations. Subject matter Expert SME for Firewalls, IDS/IPS, Wireless implementation, detection and defense, and multivendor virtualization platforms.
• worked with Certification and Accreditation units to develop new Industrial Security procedures for Special Access Programs SAP .
• Contributed to various programs through the C A process to obtain required ATOs.
• Improved communication with system owners. And Senior Leaders conducted numerous briefs to Chiefs of Staff, CINC and State Department Representatives
• Improved documentation and tracking of secure systems
• Developed documentation to facilitate the C A process.
• Improved standard SSP creation guidance for Industrial ISSMs and ISSOs.
• Provided expertise to many programs and Industrial Security systems as technical subject matter expert.
• Provided Incident Handling and Digital Forensics technical and policy support to the USFK Forensic and CID sections.
• Developed security and procedural documentation to assist with COOP and COOP training.
• Developed formal tracking process for active C A efforts.
• Improved client communication and relationships.
• Cultivated relationships with other agencies/and coalition forces via info sharing to boost security knowledge and procedures..
• Member of Configuration and Control Board CCB .
• In country Information systems Trainer for Level II, DAA, CISSP boot camps, and IA basic courses.
• Primary Wireless discovery agent Conducted War driving systems monitoring to detect rogue wireless devices on the US Forces Korea installations within the AOR
• HBSS Configuration and administration of Servers. View reports to help monitor deployments, vulnerabilities and protection levels. ePO Management Suite , HBSS SIM Connector, Asset Publishing Service APS , Operational Attribute Module OAM . On client side, install, configure and monitor Antivirus/Antispyware AV/AS , McAfee Agent MA, Asset Baseline Monitor ABM , Device Control Modules DCM , Host Intrusion Prevention System HIPS , Rogue System Detection and the Policy Auditor PA .

Confidential

Provided Information Assurance subject matter expertise managed IAVM compliance managed physical security policies Maintained security procedures performed system hardening, configurations and operations ensured compliance with DoD Army regulations provided security research and conducted security scans assessments. Provided security expertise in support of COOP, Incident response, security monitoring, perimeter security, disaster recovery, and computer forensics. Managed STIG compliance for two major network systems executed DISASRR scripts providing security awareness training, CM CCB security review, supported all DIACAP C A efforts C A documentation, vulnerability assessments, security scans, etc . Managed security testing policies procedures, provided encryption configurations in accordance with FIPS requirements, and provided for secure destruction of sensitive and classified data/media. Provided Information Assurance technical support for CMMI level 3 effort UNISYS . Certified as a DoD Information Assurance Security Officer IASO .

Accomplishments:

• Coordinated development of an Incident Response SOP.
• Greatly enhanced the programs knowledge of military security requirements and best business practices.
• Met client expectations for Service Level Agreements and improved contractor/government communication.
• Because of intimate systems knowledge, expertise and background with SIPRnet and Coalition systems was the designated trusted agent for all Red/ External Team assessments in the and relations with supporting security assessment efforts.
• Provided security policy and procedures guidance that Directly influenced the creation or modification of Army regulations within 8th US Army and 2nd Infantry Division.
• SME projects included Storage Area Network security, FIPS encryption algorithms, Network systems security, Wireless security, Solaris OS hardening, DISA, NSA, Army, NIST, OMB. . Performed security scans using DISA tools, NESUS, CIS tools, NMAP, as well as many open source tools.

Accomplishments:

• Developed an array of security policies procedures for various DoD agencies.
• Performed security audits, assessments, and research to DoD and government agencies.
• Improved security awareness and security awareness training.
• Improved knowledge of threats and risks to DOD systems and provided guidance to enhance system and network security posture.
• Improved physical security procedures.
• Improved agencies knowledge of overall security requirements, best business practices and scanning procedures.
• Performed DITSCAP Certification Accreditation efforts which resulted in enhancements to overall system and network security.

Confidential

• As part of the team design, configure, maintain a Homogenous SIPR, NIPR, and multi country coalition Network system architecture for Joint Forces command Korea Headquarters. Provide physical and Information System security functions for all aspects of the organization. Areas of focus included Fault Tolerance, Load balancing, Disaster Recovery, and incident response and Response management. Work with various venders to Designed, implemented and maintained network host based security. Performed technical research on many topics including security, automation, software solutions, and new hardware technologies Provided security training to IT staff and end users Performed hardware repair of equipment facilitated IT vendor agreements contracts Developed network physical/logical diagrams, created security documentation Performed project management and planning
• Provided technical analysis, implementation, and troubleshooting.
• Maintained heterogeneous network of Solaris, Linux, and Windows systems OS, Cisco and Juniper router, switches, firewalls and Other Multi-vendor firewalls, virtual solutions, remediation tools, logging reporting and alert systems.
• Provided overall Cyber Physical security for the site.
• Performed network research, design, and implementation
• Designed implemented perimeter security, monitoring and auditing capabilities.
• Provided layered security via encryption, firewalls, NIDS, accounting, VPN solutions, etc
• Developed and maintained Fault Tolerance COOP plans daily network maintenance / troubleshooting
• Maintained SendMail, Apache, Samba, NFS, SSH, and RAID servers
• Maintained CVS Bugzilla.
• Performed bash shell scripting, ensured Unix/NT connectivity.
• Designed and built enterprise IT infrastructure.
• Researched and incorporated new technologies.
• Maintained OS security, patch management, security scans, end of day checks, etc.
• Provided documentation, network diagrams, physical elevation diagrams, facility diagrams, for review reference and implementation.
• Created/conducted technical briefs, Researched new technologies.
• Defended against hacker attacks.
• Trained other Information Assurance staff, Performed duties as help Desk Tech, support desktop and servers repairs