Summary
Overview
Work History
Education
Skills
Accomplishments
Certification
Languages
Timeline
background-images

Choo "Daniel" Jeong

Arlington,VA

Summary

Security professional with strong background in safeguarding assets and personnel. Known for developing and implementing effective security strategies, fostering collaborative team environment, and adapting to changing security needs. Reliable and focused on achieving results through proactive risk management and team coordination.

Overview

10
10
years of professional experience
1
1
Certification

Work History

Security Manager

Securigence/Chenega
Arlington, VA
01.2025 - Current
  • Security Vision: Develop and evolve a comprehensive cybersecurity strategy that aligns with DARPA's mission, technological landscape, and evolving threat environment, utilizing experience mapping critical information systems to business objectives and ensuring security through process resiliency.
  • Risk Management: Lead the identification, assessment, and mitigation of cybersecurity risks, balancing operational needs with security requirements, drawing on your experience conducting site assessments, and developing logistical plans.
  • Policy Development: Establish and maintain security policies, procedures, and standards that meet or exceed DoD and industry best practices, leveraging your expertise in developing and enforcing cybersecurity policies for performers and military organizations.
  • Compliance: Ensure adherence to all relevant security regulations, including NIST RMF, DoD STIGs, and other applicable mandates, building on experience leading successful CCRIs and achieving high compliance scores in cybersecurity inspections.
  • Security Advocacy: Promote a strong security culture within SecuriGence and DARPA, fostering awareness and proactive engagement through training programs and knowledge sharing, similar to your experience implementing volunteer training programs.
  • Team Leadership: Lead and mentor a team of cybersecurity professionals, fostering a high-performing and collaborative environment, drawing on your extensive experience managing teams of contractors, civilians, and military personnel in various capacities.
  • Incident Response: Develop and implement an effective incident response plan, ensuring swift detection, containment, and remediation of security incidents, utilizing your experience in resolving critical security incidents and minimizing operational disruptions.
  • Vulnerability Management: Establish a robust vulnerability management program that exceeds the DOD mandate of regular scanning, assessing, and remedying vulnerabilities. Leverage your experience in managing cybersecurity vulnerabilities and implementing security controls.
  • Security Monitoring: Oversee 24/7 security operations, including continuous monitoring of networks, systems, and data for anomalies and potential threats, building on your experience managing security operations centers and monitoring critical network infrastructure.
  • Threat Intelligence: Stay abreast of emerging threats and vulnerabilities, adapt security strategies and controls as needed, and draw on your experience in cyberspace planning and conducting threat analysis.
  • Security Architecture: Design and implement secure architectures for systems, networks, and applications, incorporating defense-in-depth strategies, utilizing your experience in engineering and stabilizing enterprise systems through virtualization and tools convergence.
  • Security Assessments: Conduct thorough security assessments and audits, identifying weaknesses and recommending corrective actions, leveraging your experience in conducting site assessments and evaluating technologies to support secure IT architectures.
  • Security Tools: Evaluate, select, and implement security tools and technologies that enhance DARPA’s security posture, drawing on your experience with a wide range of security tools and technologies (e.g., ACAS, AD, DNS, HBSS, TMSM, OCSP, OS Imaging, SCCM, SCOM, SIEM).
  • Security Engineering: Collaborate with engineering teams to embed security into the development lifecycle of new products and services, utilizing your experience in implementing scrum methodologies to improve system reporting and vulnerability compliance.
  • Management tasks and act as the primary point-of-contact for security and contract issues.
  • Responsible for ensuring that practical and effective systems are developed to meet the security and contract requirements.
  • Responsible for ensuring the quality and timeliness of the work performed resulting in process improvements that result in cost effectiveness and savings for the Government.
  • Provide oversight for contractual, project management, technical and security actions on behalf of the Contractor.
  • Managed a team of security personnel, providing regular training for improved performance and professional growth.
  • Oversaw team of security officers and managed scheduling and performance evaluations.
  • Maintained detailed records of security incidents, enabling proper analysis for future preventative measures.
  • Kept team compliant with security protocols and appearance standards.
  • Continuously updated knowledge on evolving security trends and best practices, incorporating relevant strategies to maintain a safe facility.
  • Conducted thorough background checks on potential hires to maintain a safe working environment for all employees.
  • Reduced incidents of theft and vandalism by implementing advanced surveillance systems and access control measures.
  • Investigated incidents and wrote reports.
  • Submitted documentation for weekly payroll, managed schedules, and enforced policies.
  • Evaluated existing security infrastructure, identifying areas for improvement and recommending cost-effective solutions.
  • Improved response time to incidents by developing effective communication protocols within the security team.
  • Organized successful large-scale events, coordinating with multiple stakeholders to ensure optimal safety conditions for attendees and staff members alike.

Director of A&A

I-Assure LLC
Remote
07.2022 - Current
  • Create all documentation required for achieving and maintaining a Risk Management Framework (RMF) Accreditation for various government clients.
  • Ensure systems have been scanned and have the appropriate Security Technical Implementation Guides (STIGs) evaluated with all risk identified and reported into the Enterprise Mission Assurance Support Service (eMASS) record.
  • Ensure appropriate mitigation/remediation actions are taken to harden systems.
  • Review all documentation created by I-Assure personnel and ensure compliance with requirements prior to submitting to clients for approval
  • Schedule and coordinate meetings with clients and program managers to ensure systems are maintained and risk has not been elevated
  • Ensure all projects are completed and delivered on time to clients
  • Manage Policy Team and delegate tasks
  • Coordinate with I-Assure project management team on a daily basis to ensure status updates are accurate and billing can be submitted as scheduled.
  • Coordinate with development team on innovating automation tools.
  • Create and Disseminate up-to-date security policies for company and client use.
  • Schedule and coordinate re-authorization efforts to maintain and achieve authorizations according to the mission schedule.
  • Attend weekly collaborations to discuss process improvements for RMF within the Navy.
  • Provide strategic input to clients for resolving various issues with high priority systems.
  • Lead discussions with clients to provide status updates and guidance for future implementations.

Lead Information Systems Security Engineer

Strategic Data System, LLC
San Diego, CA
03.2021 - 08.2022
  • Create all documentation required for achieving and maintaining a Risk Management Framework (RMF) Accreditation for US Navy clients.
  • Ensure systems have been scanned and have the appropriate Security Technical Implementation Guides (STIGs) evaluated with all risk identified and reported into the Enterprise Mission Assurance Support Service (eMASS) record.
  • Ensure appropriate mitigation/remediation actions are taken to harden systems.
  • Schedule and facilitate weekly collaboration meetings between the Security Controls Assessor (SCA), NAO, NAVWAR Echelon II representatives, and appropriate program offices
  • Ensure traceability and accurate representation of the systems’ security postures
  • Train teammates on the RMF process and how to properly create documentation
  • Provide guidance and input on the creation of new projects and developments
  • Provide guidance and input on the creation of automation tools to save time and money on the RMF process.

Senior Information System Security Engineer Promoted to Policy Lead

I-Assure LLC
Remote
03.2019 - 03.2021
  • Create all documentation required for achieving and maintaining a Risk Management Framework (RMF) Accreditation for various government clients.
  • Ensure systems have been scanned and have the appropriate Security Technical Implementation Guides (STIGs) evaluated with all risk identified and reported into the Enterprise Mission Assurance Support Service (eMASS) record.
  • Ensure appropriate mitigation/remediation actions are taken to harden systems.
  • As Policy Lead, all of the above responsibilities were maintained and the following have been added:
  • Review all documentation created by I-Assure personnel and ensure compliance with requirements prior to submitting to clients for approval
  • Schedule and coordinate meetings with clients and program managers to ensure systems are maintained and risk has not been elevated
  • Ensure all projects are completed and delivered on time to clients
  • Manage Policy Team and delegate tasks
  • Coordinate with I-Assure project management team on a daily basis to ensure status updates are accurate and billing can be submitted as scheduled.
  • Coordinate with development team on innovating automation tools which have so far reduced 100 hours of work to 10.

A&A Analyst Promoted to Lead A&A Analyst / Senior Cybersecurity Consultant

TM3 SOLUTIONS INC
Washington D.C.
04.2017 - 02.2019
  • Assist NAVSEA HQ and NAVSEA field activities in preparing their A&A and/or C&A documentation for submission to the NAO/FAO (Navy/Functional Authorizing Official)
  • Schedule and facilitate weekly collaboration meetings between the Security Controls Assessor (SCA), NAO, NAVSEA Echelon II representatives, and appropriate program offices
  • Conduct Independent Verification and Validation (IV&V) functions at all NAVSEA field activities, remotely or on-site, in support of NAVSEA audits and inspections to ensure security controls are properly implemented and validated by the on-site validator in accordance with DoD and DON policies.
  • Identify potential risks associated with system configurations; advise Department of Navy (DON) program offices in interpreting and applying mitigation strategies
  • Maintain cybersecurity policy and processes as assigned
  • Assisted on quick transition of DoD Information Assurance Certification and Accreditation Process (DIACAP) to Risk Management Framework (RMF) by implementing up-to-date images and ensuring timeline integrity is kept.
  • Only reviewer to manage the Cyber Security Resource Desk mailbox for my team (assign packages, oversee workflow, answer policy and guideline questions)
  • Assigned role as the lead on Team responsibilities and trainer, helping to ensure all team members are current in their knowledge of policies and documentation and have been assigned rotating responsibilities by the Contractor
  • Developed the first A&A Standard Operating Procedures for all types of RMF package requests (ATO, IATT, Use Case Requests, CARs)
  • Created checklists used by the A&A group for reviewing RMF packages - Echelon II Reviewer for the first full ATO achieved through RMF within the NAVSEA organization.
  • Created an innovative solution to allow program offices to ensure DISN CPG compliance for their accreditation boundary diagrams.
  • Leading all reviewers in approved package requests under RMF with currently over 130 approved package requests.
  • Took over PM’s role as the primary reviewer for IATTs and Core Networks.
  • Chosen to give two presentations on the RAR and Step 5 requirements at the

Cybersecurity Assessor

EMAGINE IT
Falls Church, VA
09.2016 - 02.2017
  • Identify and collaborate with key stakeholders for Assessment and Authorization (A&A) efforts to ensure system documentation reflects current system security configurations, to include hardware and software components, data flow, interconnections, ports, protocols, and services
  • Conduct status meetings to facilitate moving systems toward successful A&A efforts
  • Identify potential risks associated with system configurations; advise DHA program offices in interpreting and applying mitigation strategies
  • Develop and implement detailed test plans to determine readiness for Independent Verification and Validation (IV&V) assessments
  • Conduct IV&V assessments and analyze test results for accuracy, compliance, and adherence to DoD and Federal cybersecurity requirements
  • Produce risk assessment and mitigation plan artifacts for residual risks identified during IV&V
  • Use DoD cybersecurity tools such as Assured Compliance Assessment Solution (ACAS) and Enterprise Mission Assurance Support Service (eMASS) for communication of the security posture of systems
  • Conduct thorough reviews of all vulnerabilities, architecture, and defense in depth strategies; report findings in plan of action and milestones (POA&M) documents
  • Maintain cybersecurity policy and processes as assigned
  • Assisted on quick transition of DoD Information Assurance Certification and Accreditation Process (DIACAP) to Risk Management Framework (RMF) by implementing up-to-date images and ensuring timeline integrity is kept.
  • Build servers and virtual machine images for test environments (Red Hat Linux, 2008/2012, Debian Linux)

Service Delivery Analyst/system Administrator

EMAGINE IT
Falls Church, VA
10.2015 - 09.2016
  • Provided enterprise-wide desktop support as the sole service delivery analyst; ensured 100% of incoming service tickets were addressed
  • System Administration through Office 365 by creating and managing user accounts, assigning proper licenses, and managing storage.
  • Ran Quarterly Risk Scans through Retina Vulnerability Scanner for HQ and implemented action plans
  • Maintained corporate network infrastructure security by creating Group Policy Objects (GPOs) and firewall rules
  • Daily network traffic management through Pierce Matrix Software
  • Implemented and monitored the Host Intrusion Prevention System (HIPS) and Network Intrusion Protection System (NIPS)
  • Built servers for testing and for security applications (Windows Server 2008/2012, Debian Linux)
  • Assured systems were up-to-date and maintained ISO certifications, generating reports using Powershell with Windows Server Update Services (WSUS) and Office 365.
  • Established Quality of Service (QoS) on routers for priority traffic
  • Conduct Quarterly Risk Assessments through Retina Network Vulnerability Scanner and mitigate vulnerabilities

Education

Bachelor of Arts - Psychology

George Mason University
Fairfax, VA
12.2014

Skills

  • Report writing
  • Safety and security procedures
  • Safety and security regulations
  • Incident reports
  • General security
  • Incident response
  • Schedule management
  • Security officer development
  • Compliance management
  • Schedule oversight
  • Security team management
  • Security policy development
  • Vulnerability assessment

Accomplishments

  • Achieved over 500 successful ATO requests by completing RMF tasks with accuracy and efficiency through the following roles: ISSM, ISSO, ISSE, SCAL, AODR.
  • Achieved 100% RMF ATO status for clients, allowing the Warfare Center to be the first under the agency with said status.
  • Documented and resolved a 3 year long authorization failure within 2 months of onboard with a major program, allowing the Enterprise Network to achieve a full 3 year ATO.
  • Supervised team of over 50 staff members.
  • Onboarded onto a contract that had been issued a CAP and led the security team to award fee achievements within two months.

Certification

  • CISSP
  • CCSK

Languages

English
Native or Bilingual
Korean
Native or Bilingual

Timeline

Security Manager

Securigence/Chenega
01.2025 - Current

Director of A&A

I-Assure LLC
07.2022 - Current

Lead Information Systems Security Engineer

Strategic Data System, LLC
03.2021 - 08.2022

Senior Information System Security Engineer Promoted to Policy Lead

I-Assure LLC
03.2019 - 03.2021

A&A Analyst Promoted to Lead A&A Analyst / Senior Cybersecurity Consultant

TM3 SOLUTIONS INC
04.2017 - 02.2019

Cybersecurity Assessor

EMAGINE IT
09.2016 - 02.2017

Service Delivery Analyst/system Administrator

EMAGINE IT
10.2015 - 09.2016

Bachelor of Arts - Psychology

George Mason University

Similar Profiles

  • Zyon Johnson

    Zyon JohnsonZyon Johnson

    Classified Inventory Control Technician / Library Technician at Chenega Corporation - Naval Surface Warfare CenterClassified Inventory Control Technician / Library Technician at Chenega Corporation - Naval Surface Warfare Center

  • Jesse Lee

    Jesse LeeJesse Lee

    Warehouse Foreman Marine Corps School of Artillery at Chenega Facilities Management LLCWarehouse Foreman Marine Corps School of Artillery at Chenega Facilities Management LLC

  • Ondine L. Doore

    Ondine L. DooreOndine L. Doore

    Program/Project Manager at Chenega Enterprise Systems & Solutions, LLCProgram/Project Manager at Chenega Enterprise Systems & Solutions, LLC

  • Daniel S. Pooler

    Daniel S. PoolerDaniel S. Pooler

    Server at Various RestaurantsServer at Various Restaurants

  • Takeyha Thompson-Green

    Takeyha Thompson-GreenTakeyha Thompson-Green

    DBA5 Amazon Process Assistant at AmazonDBA5 Amazon Process Assistant at Amazon

CREATE PROFILE