Summary
Overview
Work History
Education
Skills
Skillsets
Affiliationsandawards
Clearanceandcertifications
Personal Information
Training
Affiliations
Certification
Timeline
Generic

Johanne Marthone

Huntsville,AL

Summary

Watchful professional offering comprehensive, hands-on experience identifying, investigating and responding to information security alerts. Expertise in searching through data-sets to detect threats and anomalies and administering metrics to maintain security processes and controls. Focused on helping businesses safeguard sensitive data from hackers and cyber-criminals.

Overview

21
21
years of professional experience
1
1
Certification

Work History

Cybersecurity Engineer

Davidson Technologies
09.2017 - 11.2022
  • Served as primary POC for IAVM distribution and compliance reporting to GML
  • Served as GMTE System package owner
  • Maintained ATO packages by using NIST SP documents 800-37, 800-171, and 800-35
  • Served as POC for IRIS incident reporting for PP&S
  • Served as Primary POC for Cyber Tasks Order (CTO) weekly and report applicability status to GML
  • Responsible for transferring Classified data to unclassified format by performing Trusted Download (TD)
  • Performed alternate safe custodian tasks
  • Serve as Master technical document owner, I review and update the document with recent information such as Diagrams, hardware/software, policy/procedures, and Control Correlation Identifier (CCI)
  • Initiate collaboration with multiple Integrated Product Team IPT within Boeing, Northrop, Orbital and ARIS to complete a task/project
  • Researched and documented SIEM product vs CIMS tool
  • Attended Weekly ISSM/ISSO meetings and brief Cybersecurity lead
  • Attended 90 day quarterly meeting with the Integrated Product Team to discuss patch development, planning, testing and implementation
  • Initiated meetings with government customers to transform suggestions/information gained into valuable product conveyance.

Cybersecurity Engineer

ARCHARITHMS
03.2023 - 09.2023
  • Primary POC for HBSS Trelix ePO/ ESS Monitoring and troubleshooting
  • Performed Risk Assessment for Program products by reviewing Fortify scans, Developer Workbooks, and POAM
  • Reviewed and processed software assurance requests for COST, GOST, and FOSS
  • Reviewed and collected projects from Gitlab
  • Participated in daily morning Scrum meetings
  • Updated MacAfee/Trellix agents on Windows servers 2012, 2016, 2019, and 2022
  • Researched information about Splunk functions and security management
  • Researched documented benefits of OpenNMS vs Nessus
  • Performed Monthly Scorecards
  • Reviewed/Monitored Tenable Nessus/ACAS vulnerabilities.

Cybersecurity Engineer

Davidson Technologies INC
11.2022 - 03.2023
  • Performed Risk management-related tasks
  • Responsible for Hannibal Node ATO Package through DCSA
  • Used NISPOM as a guide in support of Classified systems
  • Managed HBSS/Trellix ePO Console
  • Used VMware ESXi environment to perform daily duties
  • Researched SolarWinds Monitoring and Network Analyzer
  • Short-time monitoring
  • Participated in morning scrum stand-up
  • Researched and reviewed vulnerability scans in Gitlab
  • Patched Windows VMS on a bi-weekly basis via Manage Engine
  • Assured Security Technical Implementation Guide (STIG) compliance.

IT Specialist - ISSO

US ARMY, NETCOM
02.2016 - 09.2017
  • Served as Local NEC-R Liaison to Detroit, Ft Rucker, and Pine Bluff
  • Performed Administrative functions in Active Directory (AD)
  • Assessed and monitored security controls in eMASS
  • Managed users and computers via Win Admin tools group policies (GPOs)
  • Administered and maintained NETCOM Certification and Accreditation (C&A) for audit log files and IA controls
  • Supported NEC-R and LNECs in the transition of DIACAP to RMF in eMASS
  • Utilized Risk Management Framework (RMF) to create Cybersecurity SOPs and assessments for multiple controls
  • Developed Tactics, Techniques, and Procedures (TTPs) guidance as requested for many IA processes and functions
  • Reviewed TSP packages to verify Tenant Security Plans (TSPs)
  • Conducted periodic audits: 10%, ATCTS, and AD and submitted to management monthly
  • Local site visit to Pine Bluff during their SAV to provide hands-on guidance as needed with their RMF documents: Contingency Plan, COOP, Hardware/Software, and QA/QC list
  • Reviewed the Security Plan in eMASS for Detroit and Pine Bluff during their SAV and noted the findings in the QA-QC documents
  • Performed Primary Safe Custodian duties
  • Provided ATO, ATD, and OIS status from assigned LNECs to NEC-R management
  • Processed/Report OPORD-201202-104- 10% Monthly Audit
  • TASKORD-160728-362 - General and Privileged User Access to Army Information Systems (AIS), Networks and Data (U)
  • OPORD 201608-101- Trip Report- Reporting daily to NEC-R management on the Pine Bluff Site visit for SAV-A.

Information Assurance Specialist III

Vista Technical Services, LLC/ Alutiiq LLC Redstone Arsenal
02.2015 - 02.2016
  • Processed CTO 10-133 Waiver requests and administration
  • Provided technical support by removing or adding SIPRNet (SIPR) user accounts to Active Directory (AD)
  • Utilized and administered ATCTS to perform various tasks
  • Provided weekly OPORD updates
  • Processed numerous service requests via ITSM
  • Authorized partial or completed suspension of user accounts and operations upon detection of non-compliance with their Security training and Cyber Awareness
  • Supported NETCOM Redstone in the current transition of DIACAP to RMF in eMASS
  • Utilized Risk Management Framework (RMF) to create Cybersecurity SOPs and assessments for multiple controls
  • Developed Tactics, Techniques, and Procedures (TTPs) guidance as requested for many IA processes and functions
  • Provided monthly auditing reports on Baseline Certification, CE, and Cyber Awareness
  • Performed quarterly user privilege auditing for all users on the Redstone domain.

Information Assurance Specialist

Alutiiq
12.2012 - 02.2015
  • Reviewed event notifications and utilized various automation tools
  • Provided technical expertise in the area of information and system security
  • Performed Retina Scans weekly/monthly for workstations, printers, servers, and other devices – per customers’ request
  • Performed all necessary duties to protect the infrastructure from abuse and harmful intrusion
  • Actively monitored network activity and performed extensive reviews of activity logs
  • Monitored the output of various Intrusion Detection Systems (IDS), security applications, and output from various network devices
  • Analyzed parts of the system and provided recommendations to the Information System Security Officer (ISSO) on areas of improvement regarding future expansions of systems, networks, and data
  • Produced incident reports that included specific details, backup, and research regarding all network threats encountered
  • Monitored output from multiple IDS and various network devices and applications to ensure customer internet use adhered to all security and privacy policies
  • Worked in a team environment with clients, customers, and other IT personnel to provide help and support as needed.

Information Security Officer

Kingfisher Systems Inc/Hewlett Packard/ Marine Corps Logistics Base (MCLB
05.2009 - 11.2012
  • Served as MCLB's IAO, developing policies for SIPRNet Token, Check-In/Out, C&A, and CLO
  • Researched and interpreted trends and developments to improve approaches to the information system
  • Managed MCLB Access Control Database
  • Conducted risk and vulnerability assessments of information
  • Promoted IA and SIPR token awareness of security issues among management
  • Performed mitigation actions for HRO workstations (TMS) server, NIAGARA SERVER
  • Created and modified SAAR Renewal, CPR, C&A, and SIPRNet Token to enforce command IA policies and procedures
  • Assisted Green Team members with monthly OPDIR and Audit scans for MCLBA
  • Monitored and evaluated compliance of HRO and BASE systems with IT security requirements
  • Developed/updated SOPs for security Contingency of Operations Plans (COOP) and disaster recovery for SIPR Token, C&A, and CLO SOPs for MCLB IA
  • Created network and systems design for SIPRNet, including diagrams to ensure the implementation of appropriate systems security policies
  • Managed IA Remedy Queue by coordinating with customers, scheduling requests, and following up with tickets
  • Worked collaboratively with Base IAM to validate requirements for and define IA strategies, programs, and plans.

IT System Technician/Admin

Hewlett Packard/ Marine Corps Logistics Base, Communications and Information Systems Division (CISD) Albany, GA
05.2008 - 03.2009
  • Served as MCLB SIPRNet system administrator and primary point of contact for servers that serves as the primary means of receiving, processing, and transmitting secure message traffic
  • Managed AD group policies (GPOs) via Win Admin tools
  • Developed plans, policies, and procedures for implementing, utilizing, and upgrading DMS at MCLB, Albany, GA, and supported tenant organizations over the short and long term
  • Loaded anti-virus software updates
  • Ensured all network operations equipment complied with all MCNOSC Operational Directives (OPDIRs) as directed
  • Maintain security updates for MS Office, Adobe, JAVA, Flash Player, and Microsoft Operating System
  • Managed SIPERNET user’s accounts, ensuring compliance with applicable information assurance policies and procedures
  • Served as primary action officer for implementing Public Key Infrastructure (PKI) based secure messaging and data transfer within the directorate
  • Assisted the SIPRNET Information Assurance Officer (IAO) with threat and vulnerability assessments to assess risks and determine effective corrective measures
  • Assisted with the review and evaluation of security impacts on system changes
  • Duties were accomplished through a comprehensive approach involving close coordination with the SIPRNET IAO.

Certified Help Desk Analyst

Apollo Health Street, Americus, GA
09.2007 - 04.2008
  • Monitored and recorded incoming problems and requested and updated customer cases following help desk management applications
  • Recorded, resolved, or escalated customer requests or problems by standard operating procedures (SOPs) and pre-defined case recording or escalation guidelines
  • Reviewed and actively pursued a resolution to all cases under my assignment
  • Notified customers of scheduled outages, known problems, and other updates
  • Researched, resolved, and responded by SOPs to all requests and contacts received via telephone, mail, chat, and e-mail
  • Provided functional and technical support in troubleshooting and diagnosing Windows applications
  • Installed and troubleshot VPN software and connectivity and remotely assisted users in installing and updating software
  • Installed, troubleshot, and mapped printers on different sites
  • Resolved Windows and Internet Explorer issues on desktops and laptops.

IT Technician

Atlantic Associates/TEK systems
09.2002 - 01.2007
  • Performed multiple short-term contracting jobs, which included: Migrated users from old server to new server: Windows 2000 and NT
  • Changed and renamed domain
  • Provided local administrator access
  • Transferred users’ profiles, cleaned up disk space and configured Microsoft Outlook
  • Participated in the redesign of the City of Boston Web Site
  • Coordinated various complex and challenging software security issues with the Server Manager
  • Set up shared and server printers
  • Hooked up PCs in different classes
  • Drove “ghosting” utilizing Symantec software
  • Performed software installation of Linux, NT, Windows 98, 2000, XP Professional, and 2003 server
  • Added users in the Windows 2000 domain, created profiles and granted permissions
  • Troubleshoot hardware problem.

Education

BSBA - Computer Information System -

Thomas Edison State University
01.2024

AS - Computer Information System Specialist -

Bunker Hill Community College
01.2006

Skills

  • Network Security
  • Firewall Management
  • Endpoint Protection
  • Operating System Security
  • Compliance Management
  • Public Key Infrastructure
  • Patch management
  • Vulnerability Assessment
  • Incident Response
  • Access Control
  • Two-Factor Authentication

Skillsets

  • Windows/servers Active Directory
  • Manage Engine
  • Azure
  • Environment Agile/JIRA
  • Gitlab
  • VMWARE
  • NESSUS/ACAS
  • HBSS/Trelix ePO
  • EMASS
  • Fortify Scan
  • VSM
  • PO&AM
  • STIGs
  • IAVM
  • Scorecard
  • Network Security


Affiliationsandawards

Diversity Leadership Colloquium (DLC), Member of Albany State University AMC Student Chapter, Customer Awareness Certification 2007, Apollo Health Street, Mission Change, Habitat for humanity, Food Bank, Big Brother Big Sister of Alabama

Clearanceandcertifications

Active-Top Secret /(SCI), CompTIA-SECURITY + CE, COMP001007780885, 04/01/15, EC-Council- CEH, ECC49209701987, 07/30/13, EXIN, ITIL Foundations, 06/21/08

Personal Information

Title: Cybersecurity Engineer/Analyst

Training

  • GMD Basic Course 2/5/18-2/9/18
  • Certified Authorization Professional (CAP) 4/25/16 -4/29/16
  • Risk Management Framework (RMF) 7/20/15 – 7/24/15
  • Certified Information System Auditor (CISA) 11/15
  • Assured Compliance Assessment Solution (ACAS) 4/14
  • CX-I AMN – STIGs 3/14
  • Vulnerability Management System (VMS), 1/14
  • Host-Base Security System (HBSS 201) 9/12
  • Lean Six Sigma White Belt 9/11

Affiliations

  • Diversity Leadership Colloquium (DLC) Activity: Member of Albany State University AMC Student Chapter. Award: Customer Awareness Certification 2007, Apollo Health Street. Volunteer: Mission Change, Habitat for humanity and Food Bank Mentoring: Big Brother Big Sister of Alabama

Certification

CompTIA- Security + CE

EC-Council - CEH

Timeline

Cybersecurity Engineer

ARCHARITHMS
03.2023 - 09.2023

Cybersecurity Engineer

Davidson Technologies INC
11.2022 - 03.2023

Cybersecurity Engineer

Davidson Technologies
09.2017 - 11.2022

IT Specialist - ISSO

US ARMY, NETCOM
02.2016 - 09.2017

Information Assurance Specialist III

Vista Technical Services, LLC/ Alutiiq LLC Redstone Arsenal
02.2015 - 02.2016

Information Assurance Specialist

Alutiiq
12.2012 - 02.2015

Information Security Officer

Kingfisher Systems Inc/Hewlett Packard/ Marine Corps Logistics Base (MCLB
05.2009 - 11.2012

IT System Technician/Admin

Hewlett Packard/ Marine Corps Logistics Base, Communications and Information Systems Division (CISD) Albany, GA
05.2008 - 03.2009

Certified Help Desk Analyst

Apollo Health Street, Americus, GA
09.2007 - 04.2008

IT Technician

Atlantic Associates/TEK systems
09.2002 - 01.2007

BSBA - Computer Information System -

Thomas Edison State University

AS - Computer Information System Specialist -

Bunker Hill Community College

Similar Profiles

CREATE PROFILE
Johanne Marthone