Jeremy Lovell

• Led end-to-end OT network security assessments, identifying risk in protocols, devices, and industrial data flows.
• Designed and implemented firewall policies, VLAN segmentation plans, and security hardening controls across multi-site deployments.
• Developed Python-based tools to automate inventory discovery, VLAN classification, and STIG compliance tracking.
• Aligned OT systems to NIST 800-53, 800-82, and ISA/IEC 62443 controls, producing tailored security documentation.
• Advised system owners and engineers during remediation and audit preparations.

Lead vulnerability management activities, identifying, tracking, and reporting security risks across 136 Veterans Affairs hospitals.

• Perform log analysis and monitor events to detect anomalies, providing actionable insights to security operations teams.
• Create and maintain 500+ security artifacts, including Risk Assessment Reports, System Security Plans, and Business Impact Analyses.
• Drive continuous improvement by analyzing control gaps within the NIST 800-53 framework, recommending corrective actions, and verifying implementation of over 400+ controls.
• Conducted risk assessments to identify vulnerabilities and recommend appropriate mitigation strategies, reducing overall system risks by 25%.

• Supported operations of the Security Program, including malware response, vulnerability management, and log monitoring processes.
• Reduced the attack surface by 25% through active identification, analysis, and remediation of vulnerabilities.
• Provided technical analysis of security solutions and offered recommendations to enhance operational security posture.
• Produced tracking reports and dashboards to communicate vulnerability remediation status and security metrics to leadership.
• Supported FedRAMP and NIST compliance efforts through continuous monitoring activities.

• Led security assessments of Industrial Control Systems (ICS), analyzing vulnerabilities, log data, and system configurations.
• Supported malware prevention initiatives by configuring endpoint protections and monitoring threat intelligence.
• Managed vulnerability scanning and patch validation processes across 600+ ICS and IT assets.
• Evaluated third-party vendors'' security posture during contract negotiations, ensuring adherence to organizational requirements and minimizing risk exposure.

• Performed log analysis and security event monitoring on mission systems, finding suspicious activities and coordinating incident responses.
• Ensured continuous operation of critical communication systems on 12 classified air platforms through vulnerability assessments and patch management.
• Produced security risk reports and validated security control effectiveness through routine audits.
• Conducted audit review of over 80 systems monthly to ensure the confidentiality of these critical systems,

• Managed Authorization & Accreditation (A&A) for nine information systems utilizing NIST Risk Management Framework.
• Administered LAN/WAN networks, including hardware, software, group policies, McAfee ePO configurations, and backup solutions.
• Developed and supported system security policies and addressed Plan of Action and Milestone (POA&M) items.
• Coordinated incident response efforts, ensuring timely resolution of security breaches and minimizing impact.
• Collaborated with cross-functional teams to ensure compliance with federal regulations (NIST-800-53) and standards (CNSSI 1253).

• Trained 73 users annually on security procedures for COMSEC and equipment management.
• Sustained COMSEC audit program by managing 176 security violation investigations and reporting to the NSA.
• Directed semi-annual security assessments across 23 organizations, achieving 100% compliance during inspections.
• Developed and maintained strong relationships with key stakeholders to enhance collaboration.