Summary
Overview
Work History
Education
Skills
Accomplishments
Certification
Timeline
Generic

Jerald Hillard

North Las Vegas,NV

Summary

Results-driven GRC and Cybersecurity Specialist with over a decade of experience in enhancing enterprise security through risk-informed governance and compliance strategies. Proficient in FedRAMP, NIST 800-53, RMF, and ISO 27001 frameworks, demonstrating expertise in managing internal audits, control validations, and POA&M remediation. Skilled at fostering collaboration between technical teams and executive stakeholders to synchronize cybersecurity efforts with business objectives in both hybrid and cloud environments.

Overview

13
13
years of professional experience
1
1
Certification

Work History

Lead Information Systems Security Officer

Insight Global / Department of Energy
12.2024 - Current
  • - Lead enterprise vulnerability and risk management programs aligned with NIST and FedRAMP.
  • - Oversee POA&M lifecycle and continuous monitoring across classified and unclassified systems.
  • - Develop executive-level dashboards to report risk posture and remediation status.
  • - Facilitate cross-team efforts to resolve high-impact audit findings.
  • -Managed the day-to-day operations of a team of 4 ISSOs

Senior Cybersecurity Analyst

Nevada National Security Site
11.2023 - 12.2024
  • - Supported the Information System Security Manager (ISSM) and ISSOs in the execution of Risk Management Framework (RMF) compliance activities and cyber operations.
  • - Participated in the secure design, development, and validation of enterprise networks and systems in alignment with federal security policies, accreditation standards, and best practices
  • - Conducted vulnerability scans, configuration compliance checks, and remediation tracking using tools such as Nessus or SCAP scanners.
  • - Applied knowledge of Windows, Linux, and Mac operating systems, as well as TCP/IP and packet capture analysis with tools like Wireshark.
  • - Analyzed cyber threat intelligence and applied mitigation strategies to reduce attack surface and enhance organizational resilience.

Information Systems Security Officer

Dell Technologies
07.2021 - 11.2023
  • - Managed FedRAMP compliance operations for cloud platforms including audit prep and evidence collection.
  • - Led vulnerability remediation tracking and GRC tool integration.
  • - Maintained risk register and coordinated internal controls testing.
  • - Optimized secure access controls by implementing multi-factor authentication solutions across all critical systems.
  • - Contributed towards reducing overall enterprise risk by consistently analyzing and refining the organization's risk appetite and tolerance levels.
  • - Maintained compliance with NIST standards by enforcing strict protocols and controls.

Information Systems Security Officer

The Mori Associates
07.2020 - 06.2021
  • - Performed vendor risk reviews and automated compliance tracking via RSA Archer.
  • - Led POA&M and vulnerability management workflows using Nessus and Archer dashboards.
  • - Delivered weekly vulnerability assessment briefings to leadership, summarizing findings, risk levels, and remediation progress.
  • - Contributed towards reducing overall enterprise risk by consistently analyzing and refining the organization's risk appetite and tolerance levels.
  • - Lead security control assessments and risk analysis in obtaining and maintaining ATOs under the NIST RMF framework.

Information Systems Security Officer

The Boeing Company
03.2020 - 07.2020
  • - Executed RMF lifecycle control validations for cloud systems.
  • - Enhanced audit preparedness through evidence collection and STIG/SCAP compliance.
  • - Optimized secure access controls by implementing multi-factor authentication solutions across all critical systems.
  • - Increased user awareness through targeted cybersecurity training programs tailored to employee roles.
  • - Served as an active member of the Control Management Board, providing input on security control implementation, assessment, and risk acceptance decisions.

Cybersecurity Specialist / ISSO (Various Roles)

United States Air Force and Others
01.2013 - 01.2020
  • - Conducted ST&E testing, RMF compliance validation, and weekly vulnerability scans.
  • - Developed security documentation and performed incident response across classified systems.
  • - Maintained up-to-date knowledge of emerging threats, providing proactive solutions for potential vulnerabilities.
  • - Reduced cyber risks by conducting regular vulnerability assessments and penetration tests.
  • - Implemented multi-factor authentication methods to enhance user access controls, reducing unauthorized system access incidents.
  • - Managed patch management procedures effectively, ensuring timely updates to mitigate vulnerabilities in the organization''s systems.

Education

Bachelor of Science - Cybersecurity and Information Assurance

Western Governors University
06.2026

Associate of Science - Information Technology

Community College of The Air Force
Montgomery, AL
05.2015

Skills

  • Proficient in NIST 800-53 compliance
  • POA&M and risk register oversight
  • Control assessment and compliance
  • GRC tool proficiency
  • Compliance and risk assessment
  • Collaborative leadership
  • Continuous Monitoring
  • Log analysis
  • Access control oversight
  • Security architecture
  • Patch management
  • User awareness training

Accomplishments

  • - Reduced POA&M backlog by 35% through implementation of automated tracking system.
  • - Improved audit readiness scores by 20% via gap analysis and team coordination.
  • - Developed FedRAMP ATO documentation supporting successful authorization of a cloud platform.
  • - Created GRC dashboards in RSA Archer to enable real-time compliance visibility for executives.

Certification

  • - Certified in Risk and Information Systems Control (CRISC) - ISACA
  • - Certified in Governance, Risk and Compliance (CGRC) - ISC2
  • - CompTIA Security+

Timeline

Lead Information Systems Security Officer

Insight Global / Department of Energy
12.2024 - Current

Senior Cybersecurity Analyst

Nevada National Security Site
11.2023 - 12.2024

Information Systems Security Officer

Dell Technologies
07.2021 - 11.2023

Information Systems Security Officer

The Mori Associates
07.2020 - 06.2021

Information Systems Security Officer

The Boeing Company
03.2020 - 07.2020

Cybersecurity Specialist / ISSO (Various Roles)

United States Air Force and Others
01.2013 - 01.2020

Bachelor of Science - Cybersecurity and Information Assurance

Western Governors University

Associate of Science - Information Technology

Community College of The Air Force

Similar Profiles

  • Roberta J. Graham

    Roberta J. GrahamRoberta J. Graham

    Project Controls Specialist at Global Insight working at Puget Sound EnergyProject Controls Specialist at Global Insight working at Puget Sound Energy

  • Jasmine Brown

    Jasmine BrownJasmine Brown

    K12 Funding Project Specialist at STATE OF KANSAS: KANSAS DEPARTMENT OF HEALTH AND ENVIRONMENT - INSIGHT GLOBALK12 Funding Project Specialist at STATE OF KANSAS: KANSAS DEPARTMENT OF HEALTH AND ENVIRONMENT - INSIGHT GLOBAL

  • Alexia Johnson

    Alexia JohnsonAlexia Johnson

    Epidemiologist at Insight Global - Colorado State Health DepartmentEpidemiologist at Insight Global - Colorado State Health Department

  • Guadalupe Cupa

    Guadalupe CupaGuadalupe Cupa

    Caregiver Attendant at Blue Sky ManorCaregiver Attendant at Blue Sky Manor

  • Leticia Cardoza

    Leticia CardozaLeticia Cardoza

    Utility Porter at Boyd GamingUtility Porter at Boyd Gaming

CREATE PROFILE
Jerald Hillard