SUMMARY of QUALIFICATIONS

CISSP Certified Information Assurance IA professional with a DOD Top Secret TS Security Clearance and over ten years of Information Security IS and Information Technology IT Administration experience.

• DOD Top Secret TS , and NATO Cosmic Top Secret CTS security clearances
• DISA STIG and IAVA compliance assessments
• Assessments of network infrastructure, routers, firewalls, switches, etc
• Vulnerability management tools HBSS, DISA Gold Disk, AppDetective, Retina, Nessus
• Network policy assessments incident handling, documentation, etc
• SRR, CCRI, ST E assessments on many DOD networks
• Information system design, procurement, installation, and maintenance
• Microsoft Active Directory, Group Policy, SSL, VPN, Office, DFS, User Scripts, Domain Privileges
• Symantec NetBackup 5.1, 6.0, and 6.5, Backup Exec, and EMC Avamar products
• Cisco, 3Com, Linksys, and Symantec switches, routers and firewalls
• Microsoft Windows Server 2003, 2000, NT, XP, Vista, Netware, and Linux operating systems
• Microsoft SMS, SUS, Altiris, Symantec, and other patch and application deployment solutions
• Various software-based data recovery, forensic, and authentication tools
• McAfee ePolicy Orchestrator and various intrusion detection and anti-malware products

Professional speaking, and written communications experience to include: POA M, Statements of Work, procurement forms, network design, inventory control, project management, disaster recovery planning, IT security policy, Cost/Benefit analysis, incident response, and network vulnerability documentation.

WORK EXPERIENCE

Confidential

Lead Information Assurance Engineer

As Lead Engineer of traveling information security auditing teams, assess Military Tricare Systems/Tricare Management Authority MHS/TMA contractor network enclaves to evaluate their security posture. Complete DIACAP audits of site's security posture include desktop and server configuration, network topology, event logging and alerting, and applicable policies and procedures. Assessments are to validate compliance with DOD Defense Information Systems Agency DISA Security Technical Implementation Guides STIG in order to maintain a contractor's Authorization to Operate ATO . As Lead Engineer, assign assessment roles to fellow engineers, and provide guidance as needed. Prepare evaluation documentation to include Security Test Plan and Evaluation Reports STP ER , Mitigation Strategy Reports MSR , IA Controls, and Plan of Action and Milestones POA M . Assess site documentation and network diagrams to provide understanding of topology and security posture relating to enterprise wide data flow. Maintain an understanding and a broad knowledge of the technology solutions and strategies needed to comply with federal regulations. As an auditor, evaluate whether organizations comply with federal regulations, and help develop strategies to become compliant. Report site compliance to Certifying Authority CA and Designated Accrediting Authority DAA . Document security vulnerabilities and related mitigating factors.

Confidential

DISA Information Security Inspector

As part of a traveling information security inspection team, perform security assessments of DOD and other facilities to evaluate their effect on the security posture of the Global Information Grid GIG . Inspections performed include Command Cyber Readiness Inspections CCRI , Enhanced Compliance Visits ECV , Security Test and Evaluations ST E , Security Readiness Reviews SRR , and Certification and Accreditation C A . Assessments are based on compliance with Security Technical Implementation Guide STIG checks as released by colleagues at DISA FSO, and DoD Information Assurance Vulnerability Alerts IAVA . Provide actionable recommendations to local network and system administrators, suggesting configuration changes related to security and STIG compliance. Brief findings to the site's leadership to include Flag-level Officers and Joint Task Force Global Network Operations JTF-GNO .

• Specialization in assessments of security infrastructure design architecture, network infrastructure routers, firewalls, switches, etc , vulnerability scans Retina , and network policy incident handling, documentation, etc .
• Reporting performed via DISA Vulnerability Management System VMS tool, and post inspection out-brief to site command officers.
• DISA classroom training in Network Infrastructure assessment, Retina vulnerability scanning, Windows Gold Disk assessment, and VMS reporting.

Confidential

Restoration Engineer

• Implement Dell/Symantec/EMC/Procedo solution to catalog and index data for a high urgency, high profile DOD project, working in a highly secured environment.
• Process data from tapes generated using various NetBackup versions up to 6.5.
• Ingest data into virtual tape library using FreeBSD Unix based servers.
• Index recovered data via Symantec NetBackup 6.5 Enterprise Vault Discovery Accelerator.
• Process over five thousand Classified and Unclassified LTO back-up tapes to provide Enterprise Vault database to US DOD Joint Task Force.
• Maintain Data Loss Prevention DLP best practices.

Confidential

Server Administrator - Global Support Team

• Install, configure, secure, and harden hundreds of servers in a global corporate infrastructure.
• Build virtual servers and hosts using VMWare, Microsoft Virtual Server, and Citrix Xen.
• Administer Servers, blades, MSA SANs, Tape Libraries, Cisco networking equipment, etc.
• Track system up-time, availability and health using HP Systems Insight Manager.
• Manage enterprise backup solution using Symantec/Veritas NetBackup and EMC Avamar products.

Confidential

Network Administrator

Provide network support to Department of Homeland Security personnel using Classified and Unclassified information systems. Procurement, installation and maintenance of systems on a DHS Certified and Accredited network. Server and desktop backups, respond to network security vulnerabilities, maintain Plan of Action and Milestones POA M , and Statements of Work SOW for major IT initiatives. Develop and implement of Information Security Incident Response Plan. Deploy and administer secure domain authenticated web accessible applications through IIS front end servers. Manage Cisco and 3Com network devices, domain privileges, group policy, and Active Directory settings.

• Work with Symantec engineers to design an enterprise backup solution using NetBackup 6.0 including capacity and retention policy planning, performance tuning, adherence to Symantec established Best Practices, and process and documentation development.
• Support the following technologies: SQL Server 2005, Blackberry Enterprise Server BES , Symantec Gateway Security firewall, Nortel CallPilot phone manager, Backup Exec, Symantec VPN, RSI SecurID, SSL Security Certificates, and many other COTS products.

Confidential

System Analyst

Provide full-spectrum Information Systems support to US Navy civilian employees, military personnel, and contractors. Complete Command migration from NT to 2003 based Exchange server environment while assuring compliance with applicable infosec regulations. Deploy Department Of Defense CAC card single sign on SSO system, while mitigating intrusion lockouts, and various application security issues. Enhance local security posture using firewalls, and Symantec AntiVirus products. Use Active Directory to support DOD users in a Windows Domain. Effectively communicate information security concerns and their solutions to end-users with widely varying technical prowess.

Network Technician

Using Active Directory, support international users in a Windows Domain. Provide formal training to end users in the secure use of information resources. Secure and configure wired and wireless network equipment. Evaluate and test Helpdesk software options for international, company-wide, deployment.

PC Analyst

Support 800 on and off-site SodexhoUSA personnel in a Windows Domain. Local and remote system administration and support. Perform diagnostics, service, maintenance, and upgrades of hardware and software. Create and maintain knowledgebase through department Wiki.In a 90 user environment, independently perform maintenance and support for all networked desktop, laptop, and printer equipment. Installation, configuration, maintenance, inventory, backup, upgrades, imaging and repair of Windows-based computer hardware and software. Support MS Windows 9x/2K/XP, Office, GroupWise, McAfee VirusScan, Citrix, and Ghost in a mixed Microsoft/ Novell Netware environment.

IT Support

Support and maintain over 1000 workstations and servers provide leadership, management, training, and supervision of interns. Desktop, Server, and Network administration diagnostics, service, maintenance, and inventory of classroom and office IT resources. Create and deploy system images for use in offices, classrooms, and computer labs. Active Directory administration and end users training. Assist students with use of the lab equipment and assignments. Work prior to February 2002 was on part time basis