Summary
Overview
Work History
Education
Skills
Certification
Affiliations
Timeline
Generic

Evan P. Miller

Lancaster,OH

Summary

Dynamic IT Cybersecurity Specialist with extensive experience at the Defense Information System Agency, excelling in security assessments and incident response. Proven ability to enhance network security and manage vulnerabilities effectively. Skilled in Active Directory administration and adept at collaborating with teams to optimize processes, ensuring robust protection against cyber threats.

Overview

25
25
years of professional experience
2
2
Certification

Work History

IT Cybersecurity Specialist (SYSADMIN/INFOSEC)

Defense Information System Agency (DISA)
Columbus, Ohio
02.2019 - Current
  • Performed security assessments on new technologies to identify potential threats and vulnerabilities in the system.
  • Managed user accounts within Active Directory environment ensuring appropriate access rights are granted or removed when necessary.
  • Meeting or exceeding DoD Directive 8140/8570 requirements within the career field.
  • Assist mission partners with mobile device VPN connectivity debugging, user account and device management, and troubleshooting system/service access issues.
  • Create and schedule monthly Authorized Service Interruptions (ASI), via NIPR and SIPR IT Service Management Suite (ITSM), to perform configuration updates and maintenance activities to patch, secure, and maintain systems.
  • Respond to and help analyze issues that degrade system or network performance to minimize downtime.
  • Address complex technical issues using internal Standard Operating Procedures (SOPs), and collaborate with Tier III team members.
  • Create and update SOPs, and tactics, techniques, and procedures (TTPs) documentation for common issues and processes to contribute to the team’s knowledge base.
  • Provide input on ways to optimize processes and improve the efficiency of the environment.
  • Support occasional after-hours maintenance, and be available for 2-hour onsite callback support for critical issues.
  • Experience troubleshooting issues with software applications, networking, Windows OS, or Linux OS.
  • Experience performing system administration tasks: installing, maintaining, monitoring, recovering, rebuilding, upgrading, and patching.
  • Experience researching technical solutions beyond internal SOPs.
  • Maintain log retention systems for the network, web, and various systems.
  • Configure and maintain network devices: switches, routers, firewalls, and VPNs.
  • Regularly utilize scripting and automation tools.
  • Skilled in working with VMWare - ESX/ESXi, vCenter, and vSphere environments.
  • Experience with Active Directory (AD), Domain Controllers (DC), SCCM, and DNS.
  • Knowledge of networking concepts such as the OSI Model, LAN/WAN, IPv4/IPv6, subnetting, and VLANs.
  • Experience maintaining systems and services in an air-gapped environment.
  • Maintain network and system security utilizing DoD STIGs, IA tools (SCCVI, SCRI, Host-Based Security System), program, and Risk Management Framework.
  • Monitors and evaluates systems, compliance with IAVA/B/TA, and IT security policies and requirements.
  • Skilled in working with the Assured Compliance Assessment Solution (ACAS) system, which is comprised of the Security Center, Nessus Scanner, and the Nessus Network Monitor.
  • Apply weekly plug-ins for the ACAS system. Perform weekly scan policy analysis and configuration to determine the impact of vulnerability scanning against target devices.
  • Experience with the Veritas NetBackup application, Dell EMC Data Domain, and HP Primera for managing, creating, and restoring/recovering network server backups, and storing data.
  • Worked closely with other members of the IT team to ensure proper implementation of new hardware and software solutions into production environments is completed securely.
  • Performed vulnerability scans using automated tools such as Nessus or QualysGuard to detect any weaknesses in the system that could be exploited by attackers.
  • Implemented firewalls, intrusion detection systems, anti-virus software and other related technology to protect organizational assets.
  • Maintained up-to-date knowledge of cyber security trends and best practices.

Senior Network Security Analyst (INFOSEC)

Defense Information System Agency (DISA)
Columbus, Ohio
01.2012 - 02.2019
  • Meeting or exceeding DoD Directive 8140/8570 requirements within the career field.
  • Serves as the DISA Tier II Cybersecurity Defense Service Provider (CDSP) for DISA and DoD agencies under the area of responsibility (AOR). Works to protect network assets and respond to network intrusion events.
  • Interprets, analyzes, and reports all events and anomalies in accordance with Computer Network Directives (CND), including initiating, responding, mitigating, and reporting discovered events.
  • Provides leadership and direction as a senior network security analyst and shift Net Assurance Watch Officer (NAWO) to junior analysts and external CDSPs.
  • Protects the Department of Defense Information Network (DoDIN) and DOD Enterprise Email (DEE) customers from external and internal threats through monitoring the FireEye Console, Enterprise Email Security Gateway (EEMSG), SourceFire, and other IDSs (NIDs and HIDs).
  • Performs log and packet-level (PCAP) analysis, media analysis, forensics, and malicious code analysis found in intrusion detection systems (IDS) and intrusion protection systems (IPS) (e.g., SNORT, SourceFire, ArcSight, Cisco MARS, FireEye, IronPorts, McAfee HBSS, and ePolicy Orchestrator (ePO)).
  • Expert at recognizing TTPs (e.g., blackhole events, cross-site scripting (XSS), SQL injection, viruses, worms, Trojan horses, rootkits, and backdoors) utilized by malicious entities and nation-states.
  • Experience in protocol analysis, router configuration, file systems analysis, firewall technology, network management and administration, network applications, various operating system platforms (e.g., UNIX, Linux, MS Windows), networking protocols, and network sniffers (e.g., Splunk, NetScout, Noesis, Silk, Wireshark, tcpdump).
  • Collects and analyzes event information, and performs threat or target analysis duties. Provides operations for persistent monitoring on a 24/7 basis of all designated networks, enclaves, and systems.
  • Manages and executes first-level responses, and addresses reported or detected incidents. Reports to and coordinates with external organizations and authorities (e.g., Navy, Army, DISA Command Center (DCC)).
  • Coordinates and distributes directives, vulnerability, and threat advisories to identified consumers (e.g., TIPPERs, SARs, SITREPs, email correspondence).
  • Provides daily summary reports of network events and activities, and delivers metric reports to DCC and DISA leadership.
  • Utilizes SharePoint, the Joint Incident Management System (JIMS), and the NIPR & SIPR IT Service Management Suite (ITSM) to track previously identified Information Assurance Vulnerability Alerts, Bulletins, and Technical Advisories (IAVA/B/TA), threats, and discrepancies, and coordinate responses with appropriate external organizations.
  • Recommend and validate corrective actions to ensure vulnerabilities are eliminated, and discrepancies are resolved, as defined either internally or externally by organizations, including but not limited to DISA, U.S. Military branches, and other DoD agencies.
  • Manage FOIA, email, and data requests from internal and external agencies conducting law enforcement and counterintelligence (LE/CI) investigations. Process requests and initiate searches authorized by DISA legal counsel, and deliver requested data by secure methods.
  • Partner with legal staff, professional's office and other law enforcement agencies to optimize favorable outcomes.
  • Develops policies and procedures in the form of TTPs and Quick Reference Guides (QRGs) to ensure information systems reliability and accessibility, to report incidents to appropriate CNDSPs, and to prevent and defend against unauthorized access to systems, networks, and data.
  • Monitors and evaluates systems, compliance with IAVA/B/TA, and IT security policies and requirements.
  • Provides advice and guidance in implementing IT security policies and procedures in the development and operation of network systems.
  • Conducts risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs.
  • Coordinate systems, security contingency plans, and disaster recovery procedures with continuity of operations plan (COOP) sites.
  • Assisted in the development of disaster recovery plans in case of a breach.
  • Researched emerging threats and vulnerabilities related to networks and applications.
  • Investigated cyber-attacks by analyzing log files and identifying malicious activities.
  • Monitored network traffic for suspicious activity and identified security threats.
  • Ensured compliance with industry standards such as HIPAA, PCI DSS, GDPR.
  • Responded promptly to all reported security incidents by investigating them thoroughly and taking appropriate action where necessary.
  • Monitored network traffic for malicious activity, identified abnormal behavior, and responded accordingly.
  • Reviewed system logs regularly for suspicious activities or anomalies that may indicate an attempted breach.
  • Analyzed malware samples using automated tools such as VirusTotal or Hybrid Analysis to determine its intent and possible methods of mitigation and prevention.
  • Researched emerging technologies that can improve the overall level of protection against cyber attacks.
  • Investigated computer security incidents as they occurred, analyzed root cause of incidents, documented findings and recommended corrective actions.

Cyber Operations Officer (Major)

Ohio Air National Guard, 178th Operations Support Squadron
Springfield, Ohio
04.2011 - 08.2013
  • Developing an extensive understanding of the cyberspace domain and leveraging the combined analysis of all Intelligence, Surveillance, and Reconnaissance (ISR) operations disciplines in and across all domains.
  • Work specifically to ensure 24/7 ground network operations for the General Atomics MQ-1 Predator drone system.
  • Supervised a team of ground technicians responsible for maintaining network systems and equipment, ensuring seamless connectivity between MQ-1 operators and remote MQ-1 drones located overseas.
  • Communicate orally and in writing. Frequently brief and address pilots, new hires, subordinates, VIPs, CEOs, and higher-ranking officers. Provide customer support via e-mail, telephone, and in person.
  • Work consistently to answer technical questions about software or network issues, Air Force Instructions (AFIs), Technical Orders (TOs), TCNOs, TCTOs, information assurance (IA), network security, spectrum management, Secret Internet Protocol Router Network (SIPRNet), Non-classified Internet Protocol Router Network (NIPRNet), communications equipment procurement, and ensuring squadron and mission goals are met in a timely manner.
  • Ensure personnel get proper training and meet DoD Directive 8140/8570 requirements within their career field. Counsel and reprimand subordinates and personnel.
  • Participate in staffing decisions concerning recruiting, hiring, training, and supervising staff. Meet with department heads, managers, supervisors, vendors, and others to solicit cooperation and resolve problems. Consult with users, management, vendors, and technicians to assess computing needs and system requirements.
  • Supervised a team of subordinate personnel involved in various aspects of operations.
  • Ensured compliance with applicable laws, regulations and standards related to operations.
  • Created training programs to help staff understand operational policies and procedures.

Network Operation Security Center (NOSC) Service Desk Analyst

Defense Logistics Agency (DLA) with EyakTEK
Columbus, Ohio
02.2011 - 01.2012
  • A single point of contact for incoming calls and e-mails from DLA end users reporting network problems at sites around the world.
  • Generate, compose, update, and submit Immediate INFOSPOTs in writing and via e-mail to alert DLA leadership and key personnel of important network interruptions.
  • Generate, compose, update, and submit INFOSPOTs in writing, via ITSM, for Daily Operations Updates (DOU) reports, to communicate systems and network outages to leadership and key personnel.
  • When appropriate, open trouble tickets via ITSM, and forward them to the correct Level 2 support. Coordinate and communicate via Jabber instant messenger (IM) and in person with the DLA Network Management Office (NeMO) and DLA Computer Emergency Response Team (CERT) to resolve network, security, and application performance-related issues.
  • Utilize ITSM to manage network maintenance and trouble tickets. Includes opening, closing, and updating tickets, as well as reporting the status of maintenance and open tickets.
  • Coordinate the installation, operation, and maintenance of hardware, software, operating systems, and supporting telecommunications.
  • Use CA eHealth Live Exceptions, ArcSight, HP Business Availability Center, HP Network Node Manager, and NeuralStar Integrated Network Management System (INMS) to monitor the status of networks, intrusion detection, and applications.
  • Proven reliability and dependability, along with strong interpersonal, communication, and organizational skills.
  • Strong attention to detail, excellent verbal and written communication skills, and the ability to problem-solve.
  • Extensive knowledge of Microsoft operating systems and Microsoft Office software. Capable of setting up an e-mail account through MS Outlook, arranging slide presentations through MS PowerPoint and Adobe Acrobat Pro, and managing spreadsheets in MS Excel.
  • Utilize Adobe Acrobat Pro to manage and put together slide presentations.
  • Knowledge of UNIX, Veritas, Citrix, MS Exchange, and McAfee.
  • Solid network support experience. Utilize SSH Tectia to resolve and troubleshoot network connectivity and equipment activity.
  • Capable of working well with others in a team environment, while promoting an open flow of information, so that all concerned are well informed.
  • Organizes time effectively, and determines the right resources needed to perform job assignments effectively.
  • Maintained accurate records of customer interactions, inquiries, and resolutions in the helpdesk database.
  • Responded promptly to customer emails regarding any IT related queries.
  • Provided telephone support to staff members who require assistance with their computers or network connections.
  • Routed, tracked and managed client's service desk tickets from inception to close and documented issues and results.
  • Resolved issues on initial call of time using internal knowledge base, troubleshooting skills, experience, and team resources.

Communications Officer (Major)

Ohio Air National Guard, 121st Communications Squadron
Columbus, Ohio
10.2000 - 03.2011
  • Utilize the HP Overview to analyze network architecture for security vulnerabilities in order to identify, evaluate, and design solutions to address network vulnerabilities, from links to internal and external networks, and implement effective solutions.
  • Manage backup, security, and user help systems.
  • Work specifically in IT security systems. Familiar with devices, procedures, and policies as applied to the field of vulnerability scanning, intrusion detection, and penetration testing.
  • Have solid knowledge of security requirements for computer software and hardware, such as physical access control systems, encryption, and virus protection.
  • Work extensively with security requirements for computer software and hardware, such as physical access control systems (i.e. Common Access Cards (CACs), encryption equipment (used in telephone, radio, and computer networks), and virus protection (i.e. Software and firewalls).
  • Experience working with the Hyperion Performance Suite. Utilize Brio and Oracle databases.
  • Document, design, and manage technical reports to initiate database installations, upgrades, patches, hotfixes, and service packs to XP, Vista, Windows 7, and other software, and monitoring applications.
  • Manage multiple development, test, and production environments; address issues such as security, monitoring, performance tuning, analysis and design, and application release management.
  • Client support requires analysis, recommendations, and solutions for creating, upgrading, integrating, and managing database systems in a distributed environment.
  • Communicate orally and in writing. Frequently brief and address pilots, new hires, subordinates, VIPs, CEOs, and higher-ranking officers. Provide customer support via e-mail, telephone, and in person.
  • Work consistently to answer technical questions regarding software issues, Air Force Instructions (AFIs), Technical Orders (TOs), TCNOs, TCTOs, information assurance (IA), network security, spectrum management, Secret Internet Protocol Router Network (SIPRNet), Non-classified Internet Protocol Router Network (NIPRNet), communications equipment procurement, and ensuring squadron and mission goals are met in a timely manner.
  • Review and analyze plans for postal, telephone, computer, and radio networks within base infrastructure.
  • Ensure personnel get proper training and meet DoD Directive 8140/8570 requirements within their career field. Counsel and reprimand subordinates and personnel.
  • Participate in staffing decisions concerning recruiting, hiring, training, and supervising staff.
  • Meet with department heads, managers, supervisors, vendors, and others to solicit cooperation and resolve problems.
  • Consult with users, management, vendors, and technicians to assess computing needs and system requirements.
  • Maintained updated and thorough understanding of COMSEC best practices, procedures and technology.
  • Maintained ultra-high frequency, high frequency and radioteletype communication circuits.
  • Operated INFOSEC secure voice and data products and maintained accountability for receipt, custody, safekeeping and destruction of material.
  • Trained and mentored personnel on security protocol adherence and compliance with safety guidelines.
  • Verified personnel credentials and monitored training for regulatory compliance.
  • Verified proper handling and routing of communications and classified data.
  • Performed classified data and communications management and routing.
  • Coordinated delivery of encryption devices and keying materials to customers, bolstering security of classified networks.

Education

Associate of Arts - Aircraft Systems Maintenance Technology

Community College of The Air Force
Montgomery, AL
05-2000

Bachelor of Science - Aviation Management

The Ohio State University
Columbus, OH
08-1996

Skills

  • Security assessments
  • Vulnerability management
  • Incident response
  • Network security
  • Risk management
  • Active Directory administration
  • Windows and Linux platforms
  • TCP/IP and OSI networking
  • Virus protection tools
  • Network monitoring tools

Certification

  • Security Plus (+) Certification
  • Certified Ethical Hacker (CEH)

Affiliations

  • Manage 5 acre farm with 3 horses.
  • Love outdoor activities, including boating, swimming, and hiking.
  • Enjoy working on projects around home and farm.

Timeline

IT Cybersecurity Specialist (SYSADMIN/INFOSEC)

Defense Information System Agency (DISA)
02.2019 - Current

Senior Network Security Analyst (INFOSEC)

Defense Information System Agency (DISA)
01.2012 - 02.2019

Cyber Operations Officer (Major)

Ohio Air National Guard, 178th Operations Support Squadron
04.2011 - 08.2013

Network Operation Security Center (NOSC) Service Desk Analyst

Defense Logistics Agency (DLA) with EyakTEK
02.2011 - 01.2012

Communications Officer (Major)

Ohio Air National Guard, 121st Communications Squadron
10.2000 - 03.2011

Associate of Arts - Aircraft Systems Maintenance Technology

Community College of The Air Force

Bachelor of Science - Aviation Management

The Ohio State University

Similar Profiles

  • KENNETH OSMAN

    KENNETH OSMANKENNETH OSMAN

    Enlisted Senior Representative at Defense Information System Agency (DISA) HeadquartersEnlisted Senior Representative at Defense Information System Agency (DISA) Headquarters

  • Dr . Valerie V. Tillman

    Dr . Valerie V. TillmanDr . Valerie V. Tillman

    Branch Chief, Reimbursable Support at Defense Information Systems Agency (DISA)Branch Chief, Reimbursable Support at Defense Information Systems Agency (DISA)

  • Jacob Harper

    Jacob HarperJacob Harper

    Classified Mobility Technician at Defense Information systems Agency DISA - EURClassified Mobility Technician at Defense Information systems Agency DISA - EUR

  • Meghan Mugg

    Meghan MuggMeghan Mugg

    Registered Veterinary Technician at Groveport Canal Animal HospitalRegistered Veterinary Technician at Groveport Canal Animal Hospital

  • Caden Shugert

    Caden ShugertCaden Shugert

    Shift Leader at Subway RestaurantsShift Leader at Subway Restaurants

CREATE PROFILE