Summary
Overview
Work History
Education
Skills
Certification
Websites
Timeline
Andrew Reyes

Andrew Reyes

Henderson,NV

Summary

Experienced and goal-orientated IT security professional seeking to take on new challenges. Diverse array of experiences and skills in varying environments from enterprise, air-gapped, and client facing. Knowledgeable in information technology and cybersecurity concepts, processes, frameworks, techniques and best practices. Adept at analyzing complex problems and discovering solutions with acute attention to detail to master new skills. Ability to prioritize multiple tasks and meet deadlines accordingly. Enthusiastic team member with exceptional interpersonal skills.

Overview

11
11
years of professional experience
5
5

Certifications

Work History

Senior Principal Advisor/Analyst

Gartner
Remote, United States
06.2022 - 08.2023
  • Provided professional services and support in a dynamic work environment.
  • Provided advice and expertise on topics such as security operations, vulnerability and exposure management, security validation, penetration testing, security strategy development, incident response planning, security policy reviews, security program management, organizational structure, and managed security services.
  • Engaged with executive roles such as CISOs, CIOs, Directors, and other senior leadership.
  • Demonstrated excellent communication and presentation skills to deliver insight, value, and impact for clients.
  • Demonstrated strong critical thinking and problem solving skills to break down complex issues.
  • Identified and contextualized client issues to find most appropriate solutions and courses of action.
  • Effectively conveyed complex technical concepts to both technical and non-technical stakeholders.
  • Advised clients on the establishment and enhancement of effective vulnerability management programs.
  • Reviewed security strategy documents, incident response plans, information security policies, and other security-related policy documents.

Cyber Security Analyst/Vulnerability Management

Scientific Research Corp.
Charleston, SC
03.2021 - 05.2022
  • Executed vulnerability scans using Nessus and Security Center (ACAS/Tenable.sc).
  • Updated Security Center Plugins.
  • Analyzed vulnerability scans and provide mitigation actions.
  • Applied Security Technical Implementation Guides (STIGs) to Windows 10 and Windows Servers.
  • Applied Security Technical Implementation Guides (STIGS) to Linux systems.
  • Tested and evaluated Microsoft patches/updates and perform remediation testing/scanning.
  • Installed and deployed Windows updates via Windows Server Update Services (WSUS).
  • Updated third-party software such as Adobe, Java, Firefox, Chrome, etc.
  • Conducted system test plans to ensure proper functionality and capabilities of systems.
  • Installed and updated relevant Signal Intelligence tools and software.
  • Hardened and configured systems in accordance with (IAW) security control framework NIST 800-53.
  • Created PowerShell scripts to install, modify, and update configurations and software.

Information Systems Security Officer (ISSO)

ViaSat
Carlsbad, CA
01.2018 - 01.2021
  • Protected and safeguarded classified information systems.
  • Interpreted the Joint Special Access Program Implementation Guide (JSIG) to determine technical Information Assurance (IA) requirements and ensure proper security implementation of the Risk Management Framework (RMF).
  • Performed system auditing, Assured File Transfers, and hardware/software configuration management.
  • Conducted investigations on IA related security violations and incidents.
  • Provided cybersecurity education and training for system users on appropriate risk mitigation strategies.
  • Maintained and updated System Security Plan (SSP) documentation.
  • Performed vulnerability risk assessments and analysis via SCAP, STIGs, and ACAS (Nessus).
  • Monitored and audited Security Information and Event Management (SIEM) logs.
  • Produced Body of Evidence (BOE) artifacts in accordance with Master Authority to Operate (MATO) agreements.
  • Developed Plan of Action and Milestones (PO&M) to remediate gaps in security/compliance.
  • Configuration Control Board (CCB) member who aided in planning, reviewing and analysis of systems/networks to ensure appropriate changes and improvement actions are implemented as required.
  • Managed daily maintenance and operations of multiple classified networks.
  • Completed periodic hardware and software inventories.
  • Administered Windows and Linux Operating systems.
  • Configured Windows and Linux firewalls.
  • Used Ansible to apply configurations and updates to Linux systems.
  • Used Group Policy to apply configurations and updates to Windows systems.
  • Created accounts and groups in Active Directory.
  • Managed VMware ESXi and vCenter instances.
  • Checked and ensured disaster recovery backups are functioning as intended and in good health.
  • Created, edited, and updated PowerShell and Bash scripts.

Desktop Support Technician

TEK Systems/CACI
Coronado, CA
05.2016 - 01.2018
  • Provided technical support to users regarding hardware, software and network related issues.
  • Installed and configured hardware such as printers, scanners, monitors, keyboards and mice.
  • Troubleshot computer systems to identify and resolve operating system and application problems.
  • Triaged, prioritized, and resolved trouble tickets.
  • Resolved customer service requests in a timely manner according to established SLAs.
  • Configured user accounts in Active Directory for access to corporate resources.
  • Installed and deployed new operating system images.
  • Installed a variety of end user software.
  • Trained new desktop technicians on processes, procedures, and workflows.
  • Performed regular maintenance activities such as virus scans, disk de-fragmentation.
  • Monitored & updated asset inventory to ensure information is accurate and
    current.

Cyber Network Operator

United States Marine Corps
05.2012 - 05.2016
  • Acted as a team leader in group projects, delegating tasks and providing feedback.
  • Managed time efficiently in order to complete all tasks within deadlines.
  • Proven ability to learn quickly and adapt to new situations.
  • Created and implemented new workflows to assist in account creations, service requests, and incidents.
  • Provided onsite and remote technical support.
  • Led a team of Marines supporting ~1,000 end users in an enterprise network.
  • Managed account creation and auditing in Active Directory.
  • Created distribution, security, and application groups in Active Directory.
  • Conduct monthly inspections of network equipment totaling $750,000
  • Performed updates and installations for software in both classified and unclassified networks.
  • Provided technical support for internal staff on network related issues.
  • Configured access controls for users and groups according to established guidelines.

Education

B.S. Information Technology -

University of Phoenix
05.2020

Skills

  • Analytical Thinking
  • Government Policy Compliance
  • Risk Mitigation
  • Risk Assessment
  • Cybersecurity Frameworks
  • Vulnerability Assessments
  • Effective Customer Communication
  • Security Audits

Certification

  • ISC2 Certified Information Systems Security Professional (CISSP)
  • CompTIA CySA+
  • CompTIA Security+
  • CompTIA Network+
  • CompTIA Linux+
  • TS/SCI clearance
  • US Marine veteran

Websites

Timeline

Senior Principal Advisor/Analyst - Gartner
06.2022 - 08.2023
Cyber Security Analyst/Vulnerability Management - Scientific Research Corp.
03.2021 - 05.2022
Information Systems Security Officer (ISSO) - ViaSat
01.2018 - 01.2021
Desktop Support Technician - TEK Systems/CACI
05.2016 - 01.2018
Cyber Network Operator - United States Marine Corps
05.2012 - 05.2016
University of Phoenix - B.S. Information Technology,

Similar Profiles

CREATE PROFILE
Andrew Reyes