OBJECTIVE:

Position related to Information Assurance Manager, using skills in Leadership, Problem Solving, Technical Expertise, analysis and vulnerability testing.

SUMMARY:

Proven senior manager and leader with extensive managerial and technical experience. More than 6 years supporting Information Assurance, Certification and Accreditation.

TECHNICAL SKILLS:

Operating Systems: Microsoft Server 2008, Windows XP, Windows 7, Cent OS, Cisco IOS, VMware vSphere 5

Networking Concepts: Data Cabling and Management, Router/Switch configuration and management, Subnetting, TCP/IP, Active Directory, DNS, DHCP

Security concepts: Vulnerability assessment, System hardening, Knowledge of Intrusion Detection/Prevention systems, Firewalls, Knowledge of Snort rules Nexus scanner, MBSA PC Repair and Maintenance, Desktop Support and Troubleshooting, Microsoft office applications (word, excel)

WORK EXPERIENCE:

Confidential

Information Assurance Manager

Responsibilities:

• As IAM, serve as a trusted agent for and reports to the Confidential Certification Authority designated representative for certification purposes, while working with the Program Manager (PM), and the government representatives. Responsible for conducting the validation procedures to confirm or establish by testing, evaluation, examination, investigation, or competent evidence that a Confidential Information System (IS) assigned Security Controls are implemented correctly and are effective in their application.
• Assist CNIC for providing the CA and the DAA with an accurate technical evaluation of the application, system, or network, documenting the security posture, capabilities and vulnerabilities against relevant Security Controls, security best practices, and assist in drafting certification determination (CD). Perform information assurance validation of the 911 - RMS and assist in preparing the accreditation package in accordance with DoD Directive 8500.2 and the DoD Information Assurance Certification and Accreditation Process ( Confidential ) Handbook)
• Perform automated security scans utilizing Nessus on 911-RMS equipment every 30 days). Provide network architectural design and System IAVA compliance guidance in accordance with DoD specification for Information Assurance as specified in DoD Instruction 8500.1. Follow all applicable Security Implementation Guidelines (STIGS) and Security Checklists in accordance with DoD Instruction 8500.2.)
• Maintain a Test Lab Confidential Contractor’s facility to test mitigation recommendations prior to applying patches to network.

Confidential

Information Assurance Engineer

Responsibilities:

• Analyze Certification and Accreditation (C&A) documentation to support the Confidential Certification Authority in determining the overall system risk for a system going through the Confidential DoD Information Assurance Certification and Accreditation Process ( Confidential ). Ensure Confidential documentation complies with the provision of DoD 8510.01 ( Confidential ), and DoD 8500-series IA policy directives. Provide documentation security analysis and review; summarize required information in a Certification Determination (CD) to support CA risk determination. Provide subject matter expertise regarding Confidential documentation and certification evidence of programs, sites, and users. Provide risk assessment critiques and evaluations relative to NIST 800-30. Understand DoDI 8500.2 IA controls and common vulnerabilities and exposures (CVE). Be able to perform Test & Evaluation procedures in accordance with DISA guidelines and perform risk assessments based off of that testing.
• As the Lead Confidential Certifying Authority Liaison for both NAVAIR and NAVSEA, analyzes and assists programs in over 250 certification and accreditation packages. Provides detailed technical expertise to program mangers seeking system accreditation. Closely works with the program Information Assurance Managers (IAM) and the ODAA Action Officers to facilitate the accreditation of networks, application, and weapons systems. Coordinates with system engineers and Validators during the review of accreditation packages to provide technical expertise and recommendations for closing or mitigating vulnerabilities in applications, afloat, or shore-based networks. Prepares Certification Determination (CD) Letters for systems, programs, networks, and applications fielded by NAVAIR and NAVSEA with the risk determination decision, assisting the Designated Approving Authority (DAA) in awarding an Interim Authority to Operate (ATO), or an Authority to Operate (ATO).
• Ensures comprehensive evaluations of both technical and non-technical security features of information technology (IT) systems are conducted and establishes the extent an IT implementation meets specified security requirements. Provides guidance and high-level oversight and standardization or use in development of C&A supporting documentation, including information assurance manuals, and training requirement guidance to the C&A community. Advises program managers throughout the C&A process in accordance with DoDI 8510.bb Information Assurance Certification and Accreditation Process ( Confidential ).

Confidential, San Diego, California

Process Improvement Facilitator

Responsibilities:

• Provided Facilitation of Lean Six Sigma applications in continuous process improvement.
• Assistant Process Improvement Facilitator in 5 separate Rapid Improvement Events. Returned $350,000 of excess inventory back into the Defense Reutilization and Marketing Office, and $327,000 back into Confidential 's Operating Material Supply.
• Well-developed management skills. Utilize all assets and resources available, maximizing employee productivity and performance to achieve corporate goals and objectives.
• Developed a pressurization system for the Life Raft Shop so that they can fill their own air tanks locally instead of spending 1,000 of dollars in avoided contractor costs, which in return, increased productivity and quality of work.

Confidential, San Diego, California

Cable Repair Manager/Microcomputer Course and Repair Supervisor

Responsibilities:

• Trained others on basic troubleshooting and maintenance of computer hardware, software, networks, and security. Managed and supervised the repair of shipboard printers and Fiber Optic/Category Five cabling and connectors. Saved the Navy $761,795 in contractor labor costs by timely installation and repair of 503 fiber optic and category five local area network connections for 23 pacific fleet ships and by streamlining the printer repair process, decreasing turnaround time which saved an average of $200 for every printer repaired. Awarded the Confidential and Marine Corps Commendation Medal for meritorious service in this project.
• Performed repair of computer systems and related equipment by removing and replacing components or reconfiguring and restoring systems.
• Maintained data security and ensured the integrity of any information added to the database.
• Surveyed customers on a periodic basis to ensure concerns are being addressed properly and promptly.
• Demonstrated ability to analyze, evaluate, and resolve hardware and software conflicts.
• Assisted users, and gave training in installed systems and programs.
• Basic Microcomputer Repair Instructor

Confidential, San Diego, California

Information Systems Technician Manager/Computer Security Specialist

Responsibilities:

• Oversaw the operation of all external voice/data communications circuitry and information exchange/ADP systems, and the supervision of 11 personnel.
• Completed Risk Assessment on ships computer systems and turned in required certification and accreditation (C&A) documentation to support the DITSCAP/ Confidential approval process via the DAA.
• Conducted Annual Network Security Training to 350 personnel.
• Managed four Local Area Network Systems consisting of 250 users. One unclassified system with 110 client desktop computers and 15 client laptop computers. One classified system with 35 client desktop computers and 15 client laptop computers and one file server for both LANS. Both Local Area Network Systems consisted of Windows NT 4.0 Operating System, Windows Server 2003, Exchange Server 2003, one Domain Controller, and one Backup Domain Controller.
• With Windows NT 4.0: Created individual and group accounts, distribution lists, deleted accounts, edited accounts, set appropriate security levels, specified privileges.
• Exchange Server 2003: Administered new email accounts, set up email distribution lists, edited accounts, deleted accounts, specified privileges, set size limits.
• Awarded Confidential and Marine Corps Achievement Medal for sustaining a total of four Local Area Network Information Exchange Systems (i.e., one unclassified file server, one classified file server, one unclassified server, three classified servers), throughout two Fifth Fleet Deployments in support of two vital missions.
• Conducted maintenance, repairs, and troubleshooting techniques to ALL computers.
• Implemented a rate training program that facilitated 100% advancement of all eligible Information Systems Technicians for the period of 2 years. The program is currently being used.
• Ensured a flawless execution of a Sea Swap Hull custody transfer with 100% accountability of high value critical systems between two United States Naval Ships.
• Created a computer help desk procedure, assisting users with having problems with fast and reliable solutions.
• Skilled Confidential diagnosing, repairing, and building personal computers.
• Provided Confidential Communication and computer technical support to 250 end-users.