Joshua J. Dill
Carlisle,PA
Summary
Cybersecurity leader with experience in implementing, overseeing and maintaining comprehensive information security strategies. Strengths include strong leadership skills, deep understanding of risk management processes, and ability to effectively communicate complex technical information to non-technical stakeholders.
Overview
6
6
years of professional experience
1
1
Certification
Work History
Acting Chief Information Security Officer
Defense Security Cooperation Agency (DSCA)
07.2025 - Current
- Facilitated cross-functional collaboration between Cybersecurity, PEO's, and IT operations teams by organizing regular meetings, clearly communicating goals, and aligning efforts to prioritize compliance-related tasks.
- Secured $5M annual funding from DoW CIO to implement zero trust architecture, strengthening agency security posture.
- Achieved 15% reduction in risk exposure by remediating non-compliant controls across all DSCA portfolios within six months.
- Directed a creation of a common control framework, consolidating redundant per-system control responses into a unfied structure, streamlining risk management processes across DSCA.
- Strengthened DSCA's inspection readiness baseline, reducing audit preperation time and enhancing the organization's ability to address emerging cybersecurity threats.
Cybersecurity Risk Lead
Defense Security Cooperation Agency (DSCA)
09.2021 - 06.2024
- Exhibited mastery in applying NIST and DoW cybersecurity frameworks, including STIGs, SRGs, and Best Practice Guides, to assess, mitigate, and manage risks across diverse IT systems and environments.
- Integrated processes in assessing risks within Cloud environments (SaaS, PaaS, IaaS) based on DoW standards and implementing control automation for security pipelines allowing code to be secured prior to being implemented in production.
- Lead security control assessment staff in managing cybersecurity risks and monitoring system milestones to ensure compliance with federal and DoW policies while optimizing team schedules and resources.
- Conveyed complex cybersecurity concepts and risk scenarios to diverse audiences, aligning with internal policies, regulatory requirements, and organizational objectives.
- Formulated and interpreted complex policies, analyzed program effectiveness, and prepared authoritative reports on agency security metrics, trends, and compliance outcomes.
Cybersecurity Compliance Lead
Defense Security Cooperation Agency (DSCA)
09.2021 - 06.2024
- Implemented an automated compliance workflow tool to help track and assign cybersecurity task orders eliminating a manual process and improving response time by 20%.
- Created standardized cybersecurity system security plan templates across departments, streamlining control implementation and review cycles by 25%.
- Developed standard operating procedures for eMASS usage, ensuring consistent information entry across systems, enhancing assessment and reporting efficiencies for DSCA.
Cybersecurity ISSM
Chickasaw National Industries
01.2020 - 09.2021
- Managed information systems as the Information System Security Manager (ISSM) of IL5 and IL6 clouds by working with stakeholders to establish and maintain compliance with IT and cybersecurity controls.
- Oversaw twelve cyber security contractors, coordinating tasks and projects to ensure timely completion while adhering to regulations and compliance requirements.
- Applied project management methodology to effectively implement cyber security initiatives.
- Conducted security analysis of IT activities, verifying compliance with cybersecurity controls.
- Designed a security controls matrix that delineated organization, system, and application responsibilities to help reduce Risk Management Framework package overhead and help systems onboard to the SC-Cloud.
Education
Master of Business Administration -
Shippensburg University
Shippensburg, PA12-2018
Bachelor of Science - Information Science
University of Pittsburgh
Pittsburgh, PA05-2005
Skills
- Cybersecurity frameworks
- Zero trust architecture
- Cloud security management
- Risk management
- Project management
- Strategic planning
- Team leadership
- Critical thinking
- Incident response
- Stakeholder engagement
Certification
- Certified Information Systems Security Professional (CISSP)
- Certified in Risk Information System Control (CRISC)
Timeline
Acting Chief Information Security Officer
Defense Security Cooperation Agency (DSCA)
07.2025 - Current
Cybersecurity Risk Lead
Defense Security Cooperation Agency (DSCA)
09.2021 - 06.2024
Cybersecurity Compliance Lead
Defense Security Cooperation Agency (DSCA)
09.2021 - 06.2024
Cybersecurity ISSM
Chickasaw National Industries
01.2020 - 09.2021
Master of Business Administration -
Shippensburg University
Bachelor of Science - Information Science
University of Pittsburgh