Jason Cambridge

• Proficiency in managing Trellix ePolicy Orchestrator (ePO) for centralized policy management.
• Implementing and maintaining Trellix endpoint security policies across the organization.
• Continuous monitoring for suspicious activity and investigating potential security incidents within the Trellix platform
• Daily updating AMCORE Virus Scan updates and content packages included.
• Maintain master and distribution repositories, (SADRs) Super-Agent Distribution Repositories.
• Plan and conduct Trellix software deployments and upgrades to clients.
• Scavenging of inactive agents on the workstations and removal of inactive agents on workstations from the console.
• Trellix account management, responsible for creation and removal of user accounts and assignment of privileges.
• Creation of dashboards for all users based on user group approved roles.
• Creation of policies in accordance with USCYBERCOM OPORD 16-0080 compliance and applicable guidance. Tailoring policies to SOUTHCOM environment to prevent system tampering or address local threats to the network.
• Continuous monitoring ENS events and determine normal operational behavior.
• Analyze alert data and develop strategies on how to address threats.
• Continuous monitoring of Rogue system detection and DLP incident management.
• Responsible for drafting Practices dangerous to information memorandums as a part of user agreement violation investigation. Reporting all finding to USSOUTHCOM's Information Systems Security Manager.
• Create or generate reports as needed for any events identified the Battle Watch Captain or Security Teams for proper monitoring.
• Conduct and pass A&A inspections for unclassified, classified, and CENTRIX enclaves to successful 96% and above compliance ratings.
• Conducted security audits to identify vulnerabilities using Trellix tools.
• Compliance queries to report levels of compliance and provided to stakeholders.
• Determine and implement firewall rules based on the needs of customers and the approval of applications by the Security division.
• Creation of exceptions or exclusions by JDOC Operations and the Security division
• Configuration of Data Loss Prevention (DLP) and access granted as approved by the Security division.
• Manage application blacklisting/ whitelisting.
• Provided recommendations for mitigation of cybersecurity deficiencies.
• Evaluated the security posture of computer system configurations identified deficiencies, and recommended courses of action and mitigation strategies.
• Responding to malware outbreaks and other security threats detected by Trellix.
• Collaborating with the Incident Response team to analyze threat intelligence and refine security policies.
• Ensure DISA STIGs are implemented and enforced on all Trellix managed endpoints.
• Reduced risk of cyber-attacks by conducting regular vulnerability assessments and undergoing penetration testing assessments.

• Provides subject matter expert analysis, evaluation, and recommendations based on National Institute Standards of Technology (NIST), industry best practices.
• Provided recommendations for mitigation of cybersecurity deficiencies.
• Evaluated the security posture of computer system configurations identified deficiencies, and recommended courses of action and mitigation strategies.
• As ISSO assists the ISSM with development and implementation of RMF policies and procedures.
• Updated Certification and Accreditation (C&A) packages to maintain Authority to Operate (ATO) on Marine Corps Enterprise Networks (MCEN).
• Provided information system security engineering guidance for satellite compliance, and new technologies.
• As ISSO responsible for tracking and updating SSP's for guest system ATO packages via Xacta database.
• Provided security and RMF oversight for MARFORCYBER and subordinate commands.
• Ensured information ownership responsibilities are established for each information system, including access approvals, and special handling requirements.
• Responsible for continuous monitoring of Marine Corps Compliance and Authorization Support Tool (MCCAST) utilized to process Marine Corp authorization to operate (ATO).
• Provides advisory expertise in the areas of risk analyses, vulnerability assessments, incident response, security architecture, physical security, business continuity and disaster recovery, enterprise mobility, threat intelligence and analysis, security awareness and online safety, and resolution of highly complex security projects and issues.

Ensured information ownership responsibilities are established for each information system, including access approvals, and special handling requirements

Responsible for continuous monitoring of Marine Corps Compliance and Authorization Support Tool (MCCAST)

Provides advisory expertise in the areas of risk analyses, vulnerability assessments, incident response, security architecture, physical security, business continuity and disaster recovery, enterprise mobility, threat intelligence and analysis, security awareness and online safety, and resolution of highly complex security projects and issues

Supervised Information Security Support Center Tier II support for local and remote sites

Managed customer service measurement tools, analyzing and distributing to all information technology managers to resolve 3,640 trouble tickets to customer satisfaction

Designing, and implemented information security, data protection, and risk management programs

Provided advisory expertise in the areas of risk analysis, vulnerability assessments, incident response, security architecture, physical security

Oversaw enterprise teleworking and collaborative applications

Managed operational readiness of naval networks and systems for 285 forward deployed units and 117 shore commands

Responsible for CTO tasking for DOD network compliance and operational policies to subordinate commands

Responsible for global Network Operations proper execution and reporting to senior executive officer in a timely manner

• Implemented 291 application whitelist configuration changes
• Implemented 146 network architecture configuration changes to maintain network operability
• Pilot lead for implementing new firewall technology to the TSCE enterprise network
• Developed Cyber IT/CSWF individual training plans for 36 CSWF members
• Maintaining Cyber IT/CSWF qualification
• Developed lesson materials to deliver quarterly cybersecurity awareness and physical security training briefings to 300 ship's force and staff personnel
• Responsible for updating CSWF personnel CEU's within the Total Workforce Management database
• Maintaining quarterly CEU demands
• Responsible for accounting, storage, issuance, inventory, destruction and safeguarding of COMSEC material provided for daily operations
• Created KMI guidelines and policies for two subordinate local elements
• Conducted monthly KMI training for 12 personnel maintaining qualification standards
• Responsible for conducting monthly, quarterly, semi annual spot checks
• For ships and aviation units
• Responsible for developing and maintaining the commands cybersecurity program that identifies architecture; requirements; objectives and policies; cybersecurity work force personnel processes and procedures
• Audited access control for 1,500 documentation submissions across 9 multi-classification networks
• Trained and appointed 15 Information System Security Officers, to include their assigned duties
• Performed monthly cybersecurity spot checks on 8 network system administrators
• Managed major, high impact incidents, generate clear, concise recommendations, and coordinate activities and professional communications across a range of internal and external stakeholders
• Led the defense of 3 naval networks against Red Team attacks with a 96% passing score and minimum defensive break downs

• Responsible for regional coordination, development, and management of all ONE-Net Far East change requests
• Assist the command ISSM with developing and maintaining the command information assurance policy
• Led Fleet Network Support Division, responsible for enhanced network security posture, improved IT services by 96%, information assurance compliance 98%, root cause, and trends analysis
• In support of NCTS Far East Yokosuka Japan
• Supported ONE Net Remedy tickets issues and operations efficient initiatives, covering 4,000 assets
• Provided detailed network health status current status information to Executive Officers
• Coordinated quarterly training for 65 IT personnel to improve theatre-wide international communications and services
• Oversaw 576 request for change forms, developed ONE-Net Far East approved application list and pilot application listing
• Created structured information databases to streamline efforts during ONE-Net Far East's upgrade to Windows 7 OS
• Performed and reviewed findings from Vulnerabilities Assessment Scanning, identified vulnerabilities, and applied mitigation in compliance with Security Standards
• As lead of the ONE-Net Far East IA suite
• Responsible for the maintenance, administration, and operation of three command LAN's
• Conducted integration/testing, operation, and maintenance of systems security
• Managed all policies for training, discipline, and morale for major strategic installation U.S Fleet Forces
• Conducted scans for AIS vulnerabilities and implemented patching countermeasures
• As sys admin managed ISNS Compose 3.0, 4.0, CENTRIXS, and SCI naval networks
• Windows
• Experience with Microsoft Exchange 2007, and 2010, WSUS, PuTTy, and Retina software
• Conducted test on all AIS systems, provide Information Security coordination, and review all system test plans
• As Help Desk supervisor, managed 22 system administrators and coordinated 1500 trouble tickets on 6 ISNS networks
• Led technical and administrative planning conferences attended by 150 personnel from 15 different agencies

• As network security technician, configured policies to monitor and control privileged account activity
• Implemented real time access and authorization, monitoring the access of all clients in accordance with DOD IA policies
• Prepared 2 networks IAW DIACAP 8510 to achieve Authority to Operate (ATO)
• Resolved 50 incident reports involving potential hacking attempts at field sites
• Responsible for implementing and maintaining network security policies and technical controls of ONE- Net Middle East
• Provide tier 2 hardware and software technical support to 4,200 ONE-Net Middle East network customers
• For ONE-Net Bahrain Security Operations Center oversaw the tracking and mitigation of 172 network incidents, 2200 vulnerability alerts, 13 spillages, 160 DNS Black Hole and IP Block list updates to firewalls and network routers
• Experience with Microsoft Exchange 2007, Windows server 2003, 2008 operating systems
• Experience with PuTTy, SecureCRT, Alcatel switches, Sidewinder G2 Firewalls, and Cisco routers
• Prepared 1 networks IAW DIACAP 8510 to achieve Authority to Operate (ATO)
• Managed 17 field service technicians in day-to-day operations servicing 4,200 customers assigned to ONE-Net Bahrain and 71 tenant commands
• Responsible for customer migration and the operation of the Defense Messaging System/ Local Control Center for the Southeast Region
• Ensured ongoing security compliance with baseline security certifications for Fort Meade/Iraq
• Developed and led initiatives to implement compliance for over 500 vulnerability alerts for 5,000 assets on four separate networks covering 22 field sites
• Flag Communicator, served as direct IT and mobility support for 1 General and 2 Vice Admiral Theater operational commanders during the Global War on Terrorism
• Maintained NCTAMS LANT detachment Jacksonville Florida's VPN to include back-ups and Security patches
• Supervised 12 military and civilian personnel providing Tech Control/TSC-COMM, Defense messaging, and Submarine Automated Broadcast Processing System for 1,200 customers

• Coordinated Theater Network Operations Support Center 1,200 hardware refresh for 4 multi classification networks
• Managed the installation Information Work Space software (IWS) enabling real time chat rooms and secure Voice over IP communications
• Experience with Windows server 2000, 2003, and XP operating systems
• Responsible for install, configure, troubleshoot, and maintain server and systems configurations (hardware and software) to ensure their confidentiality, integrity, and availability
• Oversaw security and operations for all networks managing secret and unclassified information on board USS John F
• Kennedy
• Investigated and corrected communications errors, documenting system and process flaws for improvement
• Diagnosed and directed repairs and improvements to malfunctioning equipment
• Assessed and resolved technological and policy issues regarding complex integration of shipboard equipment
• Experience with Windows NT and Windows server 2000 operating systems
• Responsible for maintaining and operating, all HF, UHF, SHF, and EHF external communications
• As an EKMS user, was responsible for the handling and usage of all equipment and material associated to the ships account