JUSTIN MCGEE

• As an Information Systems Security Manager (ISSM), I excel in the systematic facilitation of system and service acquisition with a strong focus on information security. I expertly categorize, select, assess, and maintain ongoing surveillance of system security risks. My proactive approach includes the periodic revision of policies and controls to ensure the utmost protection of national security interests. My dedicated efforts align with federal security standards and protocols, upholding a commitment to safeguarding vital assets and information.
• In my role, I shoulder the pivotal responsibility of collecting imperative data to attain Authorization to Operate (ATO) from the approving official. This encompasses the comprehensive compilation of essential information, including Ports, Protocols, and Services Management (PPSM) data, a rigorous risk assessment, hardening report, and updated security plans, spanning areas such as incident response, account management, and configuration management. Furthermore, I construct authorization boundary diagrams and ensure the meticulous maintenance of serialized inventories encompassing hardware and software assets. My endeavors align with federal security and compliance standards, reinforcing the security posture of the organization.
• I have cultivated extensive expertise and proficiency in Risk Management Framework (RMF) software, specifically eMASS, a critical tool for automating the Assessment and Authorization (A&A) process. This platform encompasses all six phases of RMF, providing a robust capability for meticulous tracking of essential information. This includes the documentation, associated artifacts, control compliance statuses, and the maintenance of a comprehensive inventory encompassing software and hardware assets. My proficiency in eMASS enhances the efficiency and effectiveness of the A&A process while ensuring strict adherence to federal security and compliance standards.
• I ensure the rigorous implementation and meticulous documentation of all mandatory Security Technical Implementation Guides (STIGs) within the pertinent, current security plans.
• I take the lead and actively participate in Change Control Board meetings, focusing on meeting the software and hardware needs of our internal customers. We promote open dialogues to enhance our configuration management practices and facilitate the gathering of status updates and action items from all participants.
• I collaborate on a daily basis with virtual machine managers, such as vCenter, Windows Hyper-V, and RHEL Virtual Machine Manager. These virtual machines run a diverse range of operating systems, including Windows 10 and Red Hat Enterprise Linux.
• I regularly conduct research and work using a range of authoritative references, including NIST 800-53, 800-53A, 800-60, 800-59, CNSSI 1253, and various DoD manuals, instructions, mandates, and guidelines.
• I led a collaborative, cross-organizational initiative to secure an Interim Authorization to Test (IATT). My dedicated efforts and diligence resulted in obtaining a full Authorization to Operate within the stipulated IATT authorization termination date.
• Revamped and modernized the complete security documentation library for the MQ-9 SDN, rectifying a multi-year lapse and restoring alignment with stringent DoD compliance standards. My diligent efforts contributed to enhancing the security posture and ensuring full compliance with federal regulations.
• As an alternate COMSEC Responsible Officer (CRO), I maintained a perfect record of 100% accountability for all cryptographic equipment, keys, and COMSEC documentation. My unwavering commitment to stringent security standards and impeccable accountability practices upheld the integrity of sensitive assets.

• In my role, I had the critical responsibility of provisioning and securing unclassified and classified DMCC-S/DMUC devices in accordance with DISA/US Government standards. This entailed implementing Mobile Device Management (MDM) and VPN software to enable access to government networks. Additionally, I implemented Network Access Control (NAC) to safeguard network integrity from potential risks due to outdated or misconfigured devices. Furthermore, I installed soft Public Key Infrastructure (PKI) certificates to enable secure NIPR/SIPR email access.
• I played a significant role in the development, support, and maintenance of a new project initiated by the Defense Information Systems Agency, known as WINDAR-S. This project aimed to deliver secure SIPR access to over 1,000 civilian and military officers and managers across diverse positions, who were teleworking during the COVID-19 pandemic.
• Through my occupation, I cultivated and sustained productive working relationships with various base organizations, senior leadership, Department of Defense (DoD) representatives, federal agencies, and related civilian entities, particularly in the context of project and program management. I engaged in regular, nearly daily communication with military and civilian officers to deliver top-notch technical support, ensuring seamless operations and minimal service disruptions.
• I possess the capability to perform comprehensive analyses of network usage, traffic disruptions, hardware and software capabilities, and other pertinent factors. I leverage a range of tools, including ILO on blade servers, MobileIron administrator applications for mobile devices, SIEM systems such as Splunk, and protocol analyzers like Wireshark, with a proven track record of zero interruptions.
• As part of my role, I routinely utilized Mobile Device Management (MDM) software to validate the compliance of government-issued classified and unclassified electronic equipment. This encompassed a wide range of devices, including secure Android devices enabling SIPR access, Windows laptops, and unclassified iOS devices.
• I delivered diverse customer support services, which included diagnosing and resolving issues based on customer-reported incidents, conducting research and evaluations to report trends and patterns in support requirements, configuring and troubleshooting customer hardware and software, creating support procedures and documentation, and delivering customer training.

• During my tenure in the United States Air Force from 2018 to 2020, a significant portion of my role involved the operation, troubleshooting, and maintenance of an extensive array of network devices. This included blade servers hosting both Linux and Windows services, diverse configurations of SAN disk arrays, Cisco switches with the IOS operating system, single-board computers supporting external services, and monitoring software for the continuous assessment of network device health.
• Throughout my career, I gained extensive experience in the installation, configuration, deployment, and maintenance of multiple Red Hat Enterprise Linux servers, smart interface card (SIC) switches and routers, as well as classified virtual machine (VM) servers running a secure version of Windows 10. This proficiency allowed for seamless access to SIPR websites on the E-3 AWACS platform with minimal supervision or assistance.
• I was recognized as an industry expert in my field and had the responsibility of delivering industry-standard training to more than 50 E-3 apprentices. This training encompassed aircraft maintenance, network fundamentals, advanced network troubleshooting, wire maintenance, scripting fundamentals, terminal and command line usage, and comprehensive Windows and Linux proficiency.
• In my role as a Data Integrity Monitor (DIT), I had the ongoing responsibility of presenting status updates, solutions, and addressing current challenges to key personnel on critical, high-visibility issues. As part of my DIT duties, I meticulously managed all IMDS entries for the workplace, overseeing and rectifying more than 300 entries on a weekly basis, all while fulfilling my primary job responsibilities. Our monthly DIT monitor meetings provided a platform to discuss our findings and error rates with the program's chief, contributing to the overall effectiveness of the DIT program.
• I routinely offered recommendations for enhanced methods and procedures, working to coordinate corrective actions that optimized the utilization of existing equipment. Additionally, I initiated and obtained approval for several AFTO Form 22 submissions aimed at refining Air Force Technical Orders. These efforts were instrumental in improving the quality of information and reducing man-hours required for various tasks.

• WGU Excellence award recipient for my Network Operations Center incident report in my Cybersecurity Management II- Tactical course.

Received the WGU Excellence award for exemplary work on my essay for my Managing Information Security Class.