BRIAN FEWLASS

• Evaluated emerging cybersecurity technologies for potential adoption into company's security framework (e.g., Zscaler for ZTA initiatives)
• Skilled at working independently and collaboratively in a team environment.
• Established strong relationships with customer through clear communication, trust-building, and consistent followup.
• Led cross-functional teams in identifying potential vulnerabilities and implementing proactive safeguards to mitigate risks.
• Promoted a positive work environment by fostering teamwork and open communications.
• Coached team members in techniques necessary to complete job tasks.
• Coordinated penetration testing exercises, using results to inform future strategies for mitigating potential vulnerabilities.
• Collaborated with IT department to ensure seamless integration of security systems with existing infrastructure.
• Enhanced network security by implementing advanced threat detection and prevention measures.

• Directed a large team of ISSOs, ISSM, and ISSEs, overseeing operations and performance metrics. Utilized PowerBI to create dashboards visualizing team performance and management objectives.
• Ensured best practices in cybersecurity were applied across the organization, aligning with a robust compliance framework set by Government leadership.
• Led tiger teams in authorizing DevSecOps CI/CD pipelines and other critical systems, achieving key organizational priorities on tight schedules.
• Managed responses to high-visibility requests for information and data calls, often with quick turnaround times. Leveraged API pulls, Excel, and Python to provide additional metrics for leadership.
• Contributed to Security Scrums to outline new system requirements and participated in strategic planning.
  Mentored and trained team members to cultivate a culture of continuous learning and skill improvement.

Achievements:

• Awarded NTT Data's Monetary Award for Excellence in Security Management for outstanding support of customer in cybersecurity, 2023.

• Managed the Cyber Intelligence Security Operations Center (CYSOC), focusing on cybersecurity infrastructure, tools, and data.
• Implemented and maintained Host Based Security System (HBSS) for continuous network monitoring and protection.
• Applied STIGs and SCAP for system hardening and vulnerability scanning, enhancing security posture.
• Led efforts in Splunk for threat identification and root cause analysis, developing dashboards and alerts for improved data visualization.
• Initiated and managed the Security Knowledge Enhancement Platform (SKEP), a Docker-based application stack on a Linux server, serving as an incident response and ticketing system integrated with Splunk. Included TheHive, Cortex, NiFi, Elasticsearch, etc.
• Modernized and refreshed outdated Tenable appliances and installations across multiple US-based Research Labs, ensuring operational readiness and compliance.
• Configured and automated plugin updates and rollouts for Tenable, providing robust operational support across various environments.
• Acted as engineering POC, ensuring compliance with industry and customer policies.
• Administered enterprise security tools like Splunk, Tenable, and RedSeal, contributing to a layered defense strategy.
• Provided application support, implemented security standards, and managed Linux and Windows server deployments, including system hardening.
• Utilized Bash/Shell and Python for automated server setup and security tasks.
• Engaged in weekly communications with stakeholders, providing status updates and support.
• Integrated and supported data from various CYSOC systems and tuned applications for optimal security configurations, such as Palo Alto Firewalls, Firepower IPS/IDS, and FireEye systems.

• Finished supporting USAID E3/ED bureau by advising government program managers on security testing methodologies and processes proactively, without direct supervision.
• Supplied path forward for Authorization to Operate (ATO) for TEAMS system, supplying effective completion of all documentation from beginning to eventual approved authorization.
• Provided subject matter expertise in various
  aspects of security, such as: system analysis, system audits, system monitoring, security control assessment/testing, package development, risk management, vulnerability scanning, and incident response.
• Met with stakeholders to ensure Azure architecture has necessary security controls.
• Led coordination between USAID and various organizations (Software Development Firm, DHS, and Department of State) leading to proactive support of authorization efforts for interconnected systems.
• Supplying evaluation of IT threats to decide whether
  the need for added safeguards was implemented.
• Instituted continuous monitoring activities that align and follow organizational and FISMA requirements for reporting.
• Applied technical and extensive knowledge of security engineering have helped steer stakeholders to consider security concerns and helped decide successful path toward meeting acceptable requirements.
• Met with senior management and stakeholders throughout USAID on weekly basis supplying clear communication on status, and any needs for successful outcome.

• Assisting Information System Security Manager (ISSM) in ensuring that Information System Security Officers (ISSO) and other System Stakeholders adhere to Federal Information Assurance policies and procedures to get and support Information System’s Authority to Operate (ATO).
• Provided depth of understanding with The Federal Information Security Management Act (FISMA) of 2002, and followed NIST 800-53 guidelines and NIST-800-53a security controls assessment practices.
• Supplied on-site technical and administrative support services to deliver Security Assessment and Authorization.
• Supporting various systems on IT security continuous
  monitoring using FBI Governance, risk, and compliance (GRC) tool, Risk Vision.
• Developed and delivered clear, written communications to leadership.
• Supplied subject matter expertise on problem solving and various information security architecture conversations.
• Supported AWS implementation, ensuring security compliance.
• Developed efficient review methods of vulnerability and compliance scanning, and security control overview that was adapted by supporting ISSOs (Information Systems Security Officer) and management to supply metrics concisely.
• Supported FBI security and engineering strategies associated with move to cloud-based infrastructure.

• Directly supported the Chief Information Security Officer (CISO), by supplying recommendations and actions that adhere to the vision and direction of the executive leadership.
• Involved throughout the systems development lifecycle (SDLC) in support of organizational and business program needs.
• Responsible for contributing to and managing schedules, planning, design, and testing associated with CIO programs.
• Used familiarity with SANS, NIST, CIS, and DISA STIGs to help supply recommendations on security best practices for various systems and applications.
• Implemented Phishing campaign for security awareness training across the enterprise, and Metasploit for various penetration tests authorized by the CISO.
• Worked with stakeholders using Wireshark for traffic analysis.
• Developed system security hardening (baseline) guides for various Operating Systems (OS) and applications on the enterprise.
• Migrated to new vulnerability management systems (Nexpose to Qualys) when new Senior Leadership (CISO) changed direction based on vendor preferences.
• Implemented and configured the SolarWinds Security Event Manager and IPAM, for analysis and intrusion prevention safeguards.
• Used CrowdStrike Falcon for threat intelligence into endpoint protection and incident investigation.
• Responsible for ensuring all networks have had adequate security to prevent unauthorized access, through review using vulnerability assessment.
• Determined any deviations and supplied recommendations for remediation to the applicable groups.
• Produced compliance reports and managed Enterprise Plan of Action & Milestones (PoA&M) for communicating the various findings with the multiple stakeholders.
• Support organization and satisfied FISMA, CJIS and PCI compliance requirements.
• Helped in developing and supporting security program metrics to measure program effectiveness.

• Managed the Cybersecurity team for ITSS systems.
• Was responsible for approximately 12,000 networked PCs (laptops and desktops); includes systems found primarily within two data centers, and specific file and print servers found at approximately 164 field locations and 258 offices.
• Managed two teams; Information Assurance, and Security Operations responsible for Cyber Network Operations and Incident Response activities coordinated across multiple agencies.
• Participated in cybersecurity exercises and tabletops.

• Provided subject matter expertise, having in-depth knowledge of information systems, telecommunication methodologies, and security architecture.
• Implemented, managed, and supported the DoD Assured Compliance Assessment Solution (ACAS) program for TISCOM.
• Led the deployment, replacement, and operational efforts of the vulnerability assessment application Tenable SecurityCenter's on-premises.
• Deployed Nessus scanners at 52 remote locations in the US (CONUS).
• Handled installation and configuration of Tenable supporting systems and provided detailed documentation.
• Coordinated with DISA Tier III to resolve technical issues, or send build limitations, based on troubleshooting logs and resolutions to end user issues.
• Tested limitations and deployment solutions, which led to developing concept papers, and technical white papers for operational use and user guides.

• Support network migration and implementation of new directives.
• Installed and configured Juniper SSL VPN, Juniper and Cisco routers.
• Coordinated and documented various stages of the development.

• Supported the Information System Security Manager (ISSM) for the ONI NMIC.
• Assessed and reviewed system security packages for systems under the purview of the ONI formal Information Systems (IS) Security Program.
• Implemented and enforced security policies for all three Local Area Networks (SIPRNet, NIPRNet, & JWICS).
• Supplied Information Systems Security (INFOSEC) Management and IA program support to the ISSM in several areas of Certification and Accreditation (C&A).
• Supplied security test support for preliminary security assessments and certification and accreditation of information systems, on each enclave, using knowledge of NIST, and various risk management frameworks (e.g., ICD-503, DIACAP, DCID 6/3).
• Contributed IA program support to the ISSM in several areas of Certification and Accreditation (C&A) process.
• Reviewed security policies and standards for multiple environments and platforms, which included supplying advice and technical guidance to ONI command on system requirements related to security certification and accreditation of new and existing systems.
• Provided assessments compliance based on DoD, DoDIIS, DCI, DON, and Intelligence Community (IC) security policies, and corresponding security tests and evaluation procedures.

• Supported the Branch Chief for the DISA Network Services Engineering Special Programs Branch with test and evaluation of various high assurance IP encryption devices (HAIPE).
• Performed interoperability and functionality testing, which needed the setup and configuration of various network devices found globally supporting the global information grid, bandwidth expansion initiative world-wide.
• Coordinated with various vendors and aided operational missions with subject matter expertise support of encryption devices deployed in both CONUS and OCONUS.
• Provided training on software associated with the devices, and management servers for each, to various Government personnel.
• Provided broad technical knowledge and “outside-the-box” thinking to analyze complex problems.
• Determined root cause analysis, or workarounds to networking limitations or performance factors.
• Effectively coordinated with many divisions sharing equipment found in a large test lab environment.
• Actively took part in various workgroups and attended technical conferences interacting with the industry experts supplying lessons learned and research revealed from the testing activities of their products.
• Developed monthly and daily production output plans to deliver on customer service and financial metrics.

• Served as the Installation Information Assurance Manager (IAM) for the FMMC.
• Received a Civilian Achievement Medal for supporting the 33 tenant organizations (DoD, Education, State, and other agencies), through the Director of Information Management office.
• Implemented Information Assurance plans, policies, standards, and architectures, with heavy emphasis on information assurance/security.
• Setup, managed, and assessed the effectiveness of the Information Assurance Program within the FMMC.
• Brought a thorough knowledge of information assurance/technology and system security disciplines.
• Provided a broad knowledge of automation, technology, information systems security and interrelationships and interactions among systems.
• Formulated solutions to meet Information Assurance, Information System Technology requirements affecting DOD, DA, and FMMC Garrison Commander, as it pertained to the FMMC NIPRNet, and SIPRNet.
• Also managed the FMMC Trusted Agent Security Manager for the new Civilian Verification System.
• Presented briefings to 33 tenant organizations throughout the DOIM.

• Supported the director with IT related matters.
• Created structured usable printed reports, graphs and charts using knowledge of database contents, access authorizations, control methods, and program output options.
• Maintained network administration following local, and Army policies.
• Managed and modified active directory objects and structure, and account management within the UMCD local network.
• Performed maintenance of storage servers.
• Supported organization with troubleshooting for end-user technical problems. Implemented the installation of a Defense Messaging Systems Client (DMS) machine for the UMCD.

• Assisted the Unit Chief in realizing operational standards by reporting deficiencies, recommending corrective action and completing assigned duties.
• Supplied a full variety of duties involved in supporting software and hardware operation by MWR end-users to include: software/hardware installation and configuration, maintenance, and upkeep.
• Provided daily scans of the network for security vulnerabilities using Harris STAT vulnerability scanner software.
• Managed St. Bernard's Update Expert during planned routine system updates to push patches for the deficiencies of the systems on our network.
• Helped support a working system with the best performance to meet the needs of the end-users.
• Planned the sequence of actions necessary to become fully compliant, or to simply update end-users, through interviews and analysis of the organizational needs.
• Maintained all levels of the Information Technology classes needed for system administration, to include CND Level 1: Introduction to Information Assurance,
  Level 2A, Level 2B, and Level 3: Network Security.

• Served my country.
• Supported the Supreme Headquarters Allied Powers Europe (SHAPE) community as an IT specialist.
• Supported many areas of IT; helpdesk to system integration, and security efforts with computer network defense (CND).
• Some duties included shifts at a Telecommunications Control Center (TCC), which involved the processing of information over a vast array of telecommunications equipment and associated COMSEC devices.
• Provided attention to detail for the analysis and error correction of highly sensitive classified communications.
• Performed multiple couriering runs of classified documents, using proper security practices.
• Processed message traffic by ensuring that it was routed to the proper destination which dealt with National Security and regulated standards and quality.
• Installed, ran, and performed strapping, re-strapping, PMCS and unit level maintenance on COMSEC devices.
• Configured information processing equipment such as cryptographic devices (E.g. KG84a, STU III, and KIV-7's), modems, routers, servers, and workstations.
• Performed senior operator and systems administrator duties on assigned computer systems.
• Trained soldiers in the installation and maintenance of information-processing equipment.
• Used advanced knowledge of Microsoft Operating Systems, and Office Suites. (E.g. 2000, XP, 2000 Server, Exchange, Office 2000, Office XP) in support of various military missions.

240 credits completed BS course work - Information Technology