Summary
Overview
Work History
Education
Certifications and Courses
Tools/Skills
Timeline
Generic

Christopher Joel Novick

Senior Cybersecurity Engineer - IT Manager | MSCSE | CISSP |
San Antonio,TX

Summary

TS/SCI Cleared Cybersecurity Engineer, CISSP, Army Veteran and IT Manager . Detail-oriented, bilingual IT Security Professional regarded for developing and deploying complex infrastructures and technical solutions both on-premises and cloud implementations. High expertise in directing risk management initiatives while establishing, implementing and enhancing key information security objectives and control frameworks. Proficient in determining system requirements and resolving technical issues quickly. Skilled in providing effective leadership in fast-paced, deadline-driven environments.

Overview

10
10
years of professional experience
5
5
years of post-secondary education

Work History

Cybersecurity Engineer - GS13

DHS-Cybersecurity & Infrastructure Security Agency
12.2022 - Current
  • Represent CISA technical security interests to partners federal agency's to provide bi-directional flow of technical information and best practices in information security.
  • Applied leading theories and concepts to development, maintenance and implementation of information security standards, procedures and guidelines.
  • Planned and oversaw configuration changes for federal security infrastructure platforms.
  • Coordinated with third-party security information and event management (SIEM) providers to maintain protections and predict threats.
  • Applied Center for Internet Security (CIS) benchmarks to verify performance of ongoing security measures.
  • Implemented security measures to protect vital business data.
  • Set up and controlled user access levels across databases to protect important data. (Oracle, MS SQL)
  • Conducted tests to identify issues and make necessary modifications.
  • Implemented necessary controls and procedures to protect information system assets from intentional or inadvertent modification, disclosure or destruction.
  • Maintained strict adherence to regulations such as payment card industry (PCI) data security standard.
  • Liaised with third parties to respond to security events and understand threat landscape.
  • Collaborated with cross-functional teams to deliver database solutions that met business requirements.
  • Improved IAM security by conducting regular audits and assessments of user access rights.
  • Worked closely with stakeholders understanding their requirements translating them into IAM policies and controls tailored to their specific needs.
  • Conducted training sessions for end-users and IT staff on proper usage of IAM tools and best practices, increasing overall compliance rates.
  • Established comprehensive risk management policies, reducing exposure to cyber threats in the organization''s cloud infrastructure.
  • Maintained up-to-date knowledge on emerging threats and attack vectors relevant to cloud environments, proactively adapting strategies as needed.
  • Spearheaded the adoption of new technologies that enhanced overall database efficiency, such as automation tools or advanced analytics features.

IT Technical Instructor

ACI Learning / CompTIA Academy
09.2022 - Current
  • Delivered engaging curriculum through diverse methods of classroom instruction, computer lab activities and online learning systems.
  • Prepared Students for CompTIA A+, Network+, Security+, CySA+, PenTest + and CISSP certification exams.
  • Compiled reading lists and other relevant assignments to bolster student understanding of class concepts.
  • Delivered clear, effective feedback to improve quality and efficiency of student-written computer programs.
  • Compiled, administered and graded examinations or assigned work to others.
  • Tracked student progress, frequently checking in with struggling students and identifying root causes of problems.
  • Evaluated and revised lesson plans and course content to achieve student-centered learning.

Cybersecurity Specialist - GG13

834th Cyberspace Operations Squadron
02.2021 - 11.2022
  • Mission element Lead of 800 Cyber Protection Team (CPT) conducting cyber operations CONUS and OCONUS, supporting Air Force Cyber Command and United States Strategic Command.
  • Perform duties related to mission partner engagement, network analysis, system analysis, security investigations, vulnerability assessment, penetration testing, threat hunting, incident response, malware analysis, memory forensics, and risk identification and mitigation.
  • My primary mission is to search for and eliminate advanced threats from cyber network environments, with missions ranging from risk assessments of small enclaves to hunting adversaries on entire military base infrastructures.
  • Responsible of creating documentation like Mission Plans, Mission Defense Plans, Final Mission Reports and Initial Operations Planning briefs among others.
  • Resolved conflicts and negotiated mutually beneficial agreements between CPT, Mission Partner and other Stakeholders.
  • Provided technical leadership focused on validating and verifying system security requirements definitions and analyzed system security designs.
  • Developed, implemented and documented nation-wide federal security programs and policies and monitored compliance across multiple federal agency's.
  • Liaised with third parties to respond to security events and understand threat landscape.
  • Counseled senior-level management on current privacy and security trends and recommendations to mitigate risk.
  • Managed database security by implementing appropriate access controls, maintaining compliance with industry regulations and company policies.
  • Validated and verified system security requirements definitions and analyzed system security designs.
  • Established monitoring systems to proactively identify potential weaknesses in cloud infrastructure, enabling early detection of vulnerabilities or breaches.
  • Collaborated with cross-functional teams to develop comprehensive cloud security strategies and policies.
  • Streamlined incident response procedures, minimizing the impact of security breaches on business operations.
  • Ensured database security by establishing access controls, backup procedures, and auditing protocols.
  • Identified, analyzed and resolved infrastructure vulnerabilities and application deployment issues.
  • Conducted regular audits of database security measures, addressing vulnerabilities proactively to maintain confidentiality and compliance standards.

Information Technology Specialist - GS12

Naval Computer And Telecommunications Station
05.2019 - 02.2021
  • Served as leader for several initiatives including NCTSSD NOC space reutilization project, identifying functional requirements, stakeholders and processes for 63.000.000 dollars investment
  • Developed a Plan of Action and Milestones (POA&M) for use in Systems Security Plan Development and Mitigation Planning.
  • Managed and tracked NCTSSD IT Portfolio and Network Capabilities.
  • Assisted in developing a Penetration Test Plan in accordance with NIST SP 800-115.
  • Played key role in replacing legacy IT environment hardware with the latest enterprise architecture and technology.
  • Conducted several Systems or Network Vulnerability Scans.
  • Developed a Formal Systems Security Plan (SSP) in accordance with NIST SP 800-18.
  • Created mitigation and implementation strategies to address NCTS most critical vulnerabilities.
  • Performed a cybersecurity Risk/Threat Assessment and wrote a formal Network Risk/Threat Assessment Report
  • Created Mitigation and Implementation Strategies to address the most Critical Vulnerabilities in accordance with NIST SP 800-171/53.
  • Selected and integrated various policies for Contingency and Incident Response as well as determine schedules for IT Hygiene Processes in the form of an Information Security Policy.
  • Provided expertise to Perform Network, Server and Host Hardening.
  • Communicated the status of key activities, risks, and issues to IT teams and project stakeholders.

Sr Network Security Engineer,

Sentar
11.2018 - 05.2019
  • Developed ADNS surface engineering solutions
  • Developed test plans, security Functional Requirements and interface specification documents.
  • Installed network infrastructure devices like switches, routers, hardware firewalls, IDS, IPS.
  • Developed Standard Operating Procedures (SOPs), guides, or process maps related to network operations or problem/incident resolution.
  • Tested operating system deployments and upgrades.
  • Managed and assisted other IT team members in system support and integration tasks.
  • Developed technical evaluations of both applications and IT systems/devices.
  • Interpreted and communicated network-related security requirements
  • Modified network devices configurations to meet security requirements
  • Developed network architecture drawings/plans
  • Diagnosed and resolved complex network performance issues and outages
  • Communicated the status of key activities, risks, and issues to IT teams and project stakeholders.

Network Administrator

U.S Army
02.2015 - 10.2018
  • Managed and maintained Battalions UHN (unit hub node).
  • Maintained FDMA/NCW/TDMA Satcom interfaces for WAN connectivity, utilizing OSPF/OSPFv3 DMVPN as a routing platform on network devices (Cisco)
  • Configured and maintained a virtualized Cisco unified call manager to allow distant nodes VoIP access outside of their local routing area.
  • Performed Hardware & software installation, troubleshooting, management
  • Conducted Computer re-imaging/computer rebuilds
  • Lead Hardware refresh deployment projects
  • Provided Remote assistance
  • Gained expertise on Hard drive encryption
  • Conducted mobile device configuration/client setup
  • Supervised and train personnel on data/voice network
  • Loaded and configured cryptographic devices

Education

Master of Science - Cybersecurity Engineering

Shiley-Marcos School of Engineering San Diego State University
San Diego, CA
04.2020 - 12.2021

Cloud Security And Incident Response

SANS Institute of Technology
12-2025

Bachelor of Science - Network Operations And Security

Western Governors University
Salt Lake City, UT
05.2016 - 11.2019

Certifications and Courses


  • GIAC Public Cloud Security (GPCS)
  • GIAC Cloud Security Essentials Certification (GCLD)
  • CISSP MEMBER ID:786149
  • CISCO CCNA Sec / CCDA / CCNA / CCENT ID: CSCO13325669
  • ITIL FOUNDATIONS V3 ID:GR750492864CN
  • COMPTIA CYSA+/ SECURITY+ / COMPTIA NETWORK+ / COMPTIA PROJECT+ / COMPTIA A+ / COMPTIA CLOUD ESSENTIALS / COMPTIA LINUX ESSENTIALS ID:00102107690
  • Defensive Cyber Operations-Network Analyst ( DCO-NA)
  • Cyberspace Vulnerability Assessment/Hunter (CVA-H)
  • GIAC Certified Intrusion Analyst (GCIA)
  • (ISC)² Certified Authorization Professional (CAP)
  • ISACA Certified Information Security Manager (CISM)
  • NIST DoD RMF
  • Implementing Security Best Practices in SDLC

Tools/Skills

  • Cloud:

   AWS, Azure,  GCP, Terraform, Ansible , IAM services, Containers, Storage Accounts, Key Management, Network Monitoring, JSON rules

  • Vulnerabilty Assesments:

   Nessus , Nmap , Snort, WireShark , Metasploit, OpenVas, Mittre Att&ck, CIS benchmarks, NIST Publications, CMD, Powershell,

  • Experience with RMF, NIST, DISA STIGS.

Timeline

Cybersecurity Engineer - GS13

DHS-Cybersecurity & Infrastructure Security Agency
12.2022 - Current

IT Technical Instructor

ACI Learning / CompTIA Academy
09.2022 - Current

Cybersecurity Specialist - GG13

834th Cyberspace Operations Squadron
02.2021 - 11.2022

Master of Science - Cybersecurity Engineering

Shiley-Marcos School of Engineering San Diego State University
04.2020 - 12.2021

Information Technology Specialist - GS12

Naval Computer And Telecommunications Station
05.2019 - 02.2021

Sr Network Security Engineer,

Sentar
11.2018 - 05.2019

Bachelor of Science - Network Operations And Security

Western Governors University
05.2016 - 11.2019

Network Administrator

U.S Army
02.2015 - 10.2018

Cloud Security And Incident Response

SANS Institute of Technology
Christopher Joel NovickSenior Cybersecurity Engineer - IT Manager | MSCSE | CISSP |