Your Name
Summary
I am a dedicated cybersecurity professional with over 15 years of experience in information security, network engineering/operations and system administration/troubleshooting. I am a “Go to” problem solver with a strong ability to diagnose/solve complex technical and non-technical problems. I also possess a strong ability to train, supervise, and lead others to follow the highest standards.
Overview
19
19
years of professional experience
Work History
Security Control Assessor
Nes Associates
06.2018 - Current
- Assess 38 USAF Simulator Programs Office information systems to obtain/maintain an Authority to Operate (ATO) throughout the System Development Lifecycle (SDLC).
- Analyze the implementation of the Risk Management Framework (RMF) IAW all DoD/AF Policy and NIST Publications.
- Assess information systems based on the planning and implementation of System Security Plans (SSP) to include all technical and non-technical baseline and overlay security controls.
- Daily use of Enterprise Mission Assurance Support Services (eMASS) – application that supports and automates all cybersecurity program management and RMF activities.
- Develop, coordinate and document security evaluation testing projects in the Assessment and Authorization (A&A) process with all required personnel.
- Conduct hands on security testing, analyzes results and document system risk to identify appropriate security countermeasures and mitigation strategies.
- Assess the implementation of Security Technical Implementation Guides (STIGs) and Security Requirements Guide (SRGs).
- Audit networks and security systems to identify vulnerabilities using Assured Compliance Assessment Solution (ACAS), Nessus, and Security Content Automation Protocol (SCAP) Compliance Checker (SCC).
- Ensure integrity of IT systems by identifying and mitigating potential avenues of exploitation, including system level attacks and user level attacks.
- Knowledge and understanding of mission/business processes, enterprise architecture, information security architecture and environment of operations and their relation to the overall risk management strategy.
- Effective communication; establish good working relations with all stakeholders to identify the goals and expectations.
Information System Security Manager
General Dynamics
04.2017 - 06.2018
- Manage assigned USAF Simulator Programs Office information systems to obtain/maintain Authority to Operate (ATO) throughout the System Development Lifecycle (SDLC).
- Utilize risk management techniques with a holistic approach that addresses risk from the strategic level to the tactical level.
- Identify accreditation boundaries and categorize PIT systems based on impact evaluations of confidentiality, availability and integrity.
- Effectively develop and establish baseline security controls and overlays based
on the categorization of data types within each PIT system. - Develop, implement and maintain security practices that ensure the
accountability of all baseline security controls and overlays. - Utilize network security engineering practices to advise information system security officers on techniques to secure information system networks, identify vulnerabilities and mitigate risks.
- Use Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRG) as configuration standards on information system networks.
- Conduct vulnerability scanning using the following tools: DISA Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol (SCAP) Security Compliance Checker (SCC) and Tenable Nessus Scanner.
- Ensure the overall confidentiality, integrity and availability of the information system.
- Develop and implement Plan of Action and Milestones (POA&Ms) that facilitate a prioritized approach to addressing remediation tasks to correct weaknesses/deficiencies within the information system.
- Use security status reporting, ongoing assessments, and impact analysis to monitor changes to the information system and operating environment to include effectiveness of deployed security controls.
- Maintain Enterprise Mission Assurance Support Service (eMASS) records throughout the system development lifecycle.
- Knowledge and understanding of mission/business processes, enterprise architecture, information security architecture and environment of operations and their relation to the overall risk management strategy.
- Effective communication; establish good working relations with all stakeholders to identify the goals and expectations.
Information System Security Officer, TSGT
Harris County
05.2005 - 04.2017
- Non-Commissioned Officer in Charge – Perform all management functions for a work center containing ten personnel.
- Management and Implementation the Information Assurance (IA) Program.
- Protect and maintain the availability, integrity, confidentiality, and accountability of information system resources and information processes throughout the system’s life cycle.
- Review, analyze, and validate equipment certification and accreditation packages to obtain and maintain an Authority to Operate (ATO).
- Perform risk analysis, security testing, and certification due to modifications or changes to computer systems.
- Continuously identify and analyze threats and vulnerabilities to information systems to maintain an appropriate level of protection.
- Oversee the installation of physical and technical security barriers to prevent others from improperly obtaining such information.
- Report to Major Command (MAJCOM), Air Force Communications Agency (AFCA), and National Security Agency (NSA) all incidents involving viruses, tampering, or unauthorized system entry.
- As the Communications Security (COMSEC) Manager - maintained COMSEC program, Cryptographic Access Program (CAP) and Air Force Key Management Infrastructure (KMI) program.
- Formulate and develop communications security criteria and requirements for inclusion in mobility, contingency, and exercise plans.
- Maintain accountability for sensitive cryptographic materials and related COMSEC information.
- Oversee issuance of COMSEC materials and maintains COMSEC inventory on the Computerized Management of COMSEC Material (CM2) database.
- Prepare and evaluate written plans for emergency actions and ensures personnel are fully qualified in the execution of plans.
- Investigate security incidents to determine the possibility of compromise to COMSEC materials and ensures documentation and reporting to appropriate channels.
- Perform destruction, receiving, issuing, and inspecting COMSEC material within the most stringent timelines.
- Perform semi-annual functional reviews of all COMSEC user accounts, physically inspecting the user’s COMSEC facilities, reviewing procedures, and audit of all cryptographic holdings.
- Configure/Validate strapping and configuration options of cryptographic units such as KIV-7Ms, KIV-19s, KG-175Ds, etc.
- This includes system configuration and operation of the Local Management Device, Data Transfer Device, and Key Processor.
- Initializes the system, performs system backups, determines operator access, and control functions (privilege management), reloads and configures the operating system’s parameters.
- Installs or oversees installation of local COMSEC account hardware and software, including training alternates in the AF KMI operations.
- Domain-Level System Administrator.
- Provide support for computer and networking systems/components for mission critical areas.
- Install, configure, and maintain multiple Microsoft Windows server functions including Domain Controllers (AD DS), DNS, DHCP and file/print sharing.
- Manage domain-level group policies and directory services.
- Manage the distribution of software/security updates and hotfixes utilizing WSUS and configuration manager.
- Manage domain user and administrative privileges.
- Install and maintain VMware virtualization products running Microsoft Servers.
- Installed and maintained two Bluecoat Proxy Servers
- Install/Configure/Maintain two Firewalls to include SmartFilter, split-DNS, sendmail files, IPS signatures, rulesets, audit logs, firewall exemptions requests, etc.
- Maintain antivirus server/client environment utilizing Host Based Security System (HBSS) - McAfee ePolicy Orchestrator, McAfee Agent, McAfee DLP Endpoint, McAfee HIP, McAfee Policy Auditor Agent, and McAfee VirusScan Enterprise.
- Utilize current and future multi-level security products collectively to provide data integrity, confidentiality, authentication, non-repudiation, and access control of the Local Area Network (LAN).
- Utilize strong sub-netting skills to develop network diagrams and layouts for streamline equipment configuration and deployment.
- Perform Cisco routing and switching configurations/troubleshooting to include LAN/VLANs, port interface security, routing tables, access controls lists (ACLs), EIGRP/BGP, physical cabling, etc.
- Facilitate compliance with stringent USAF hardware/software security standards as well as physical security standards.
Network Technician
SkillStorm Commercial Services LLC
02.2010 - 04.2011
- Provided computer and networking systems support for five separate networks.
- Network monitoring/reporting, environmental detection/prevention/resolution.
- Utilized Microsoft Windows Active Directory services.
- Managed user/group accounts and security settings/permissions.
- Performed regular hardware/software installs.
- Deployed fiber optic cabling according to USAF network specific standards.
- Deployed user workstation hardware.
- Provided UNIX administration.
- UNIX / Microsoft correlation.
- Utilized trouble ticketing systems, documented/logged network/system events.
Education
Bachelor of Science - Management Information Systems
Wright State University
Dayton, OHCertified Authorization Professional (CAP)
(ISC)2
Professional Certification06.2017
Security+
CompTIA
Professional Certification03.2011
Computer Systems Operations Craftsman
US Air Force Career Development Course
On-the-Job Training04.2011
Computer System Operations Journeyman
US Air Force Career Development Course
On-the-Job Training10.2009
Communications-Computer Systems Apprentice Course
US Air Force Technical School
Keesler AFB01.2006
Skills
- Risk assessment and mitigation
- Information system security development and coordination
- Risk Management Framework (RMF)
- Enterprise Mission Assurance Support Service (eMASS)
- DISA Assured Compliance Assessment Solution (ACAS)
- Tenable Nessus scanning
- DISA Security Technical Implementation Guides (STIG)
- DISA Security Requirements Guides (SRG)
- Security Content Automation Protocol (SCAP) Compliance Checker (SCC)
- Domain level system administration
- Information system network development
- Customer Service
- Workflow Efficiency and Coordination
- Managing and training personnel
Accomplishments
- Air Force Commendation Medal, 1st Oak Leaf Cluster - 2018
- Air Force Commendation Medal - 2012
- Air Force Achievement Medal - 2009
Timeline
Security Control Assessor
Nes Associates
06.2018 - Current
Information System Security Manager
General Dynamics
04.2017 - 06.2018
Network Technician
SkillStorm Commercial Services LLC
02.2010 - 04.2011
Information System Security Officer, TSGT
Harris County
05.2005 - 04.2017
Bachelor of Science - Management Information Systems
Wright State University
Certified Authorization Professional (CAP)
(ISC)2
Security+
CompTIA
Computer Systems Operations Craftsman
US Air Force Career Development Course
Computer System Operations Journeyman
US Air Force Career Development Course
Communications-Computer Systems Apprentice Course
US Air Force Technical School