Leslie Sands

• Company Overview: U.S. Marine Corps (USMC) – Marine Corps Cyberspace Operations Group (MCCOG), 1st Network Battalion - Marine Corps Air Station (MCAS) Miramar Detachment - Cyber Security Team (Present – August 2020)
• Administer and implement US Marine Corps (USMC) cybersecurity policy to patrons of MCAS Miramar and its local tenants- ensuring the confidentiality, integrity and availability of USMC information systems (IS), ensuring cybersecurity reciprocity is achieved.
• Maintain management and documentation of user access controls- general, privileged-access, elevated-access and cyber security workforce (CSWF) staff. Created a local user database to document and manage classified/unclassified network access, foreign national affiliation, system access requests, background investigations, mandated annual training, privileged user IA responsibility certification and appointment letters.
• Policy Planning/Documentation: Internal – Created: CY Personnel Continuity Binder, CY Service Catalog, User Database and Account Access Guide, CSWF-IT Staff Guide, Traditional Security Program/Guide, IA Vulnerability Management Program (covered IA scanning/patching tools, reporting & remediation, etc.), Personal Electronic Device Guide, Data Breach/Spillage SOP.
• External – Created: Acceptable Use Program, Customer Service Catalog, MS SharePoint liaison for document dissemination.
• Supervisor: Larry Bryant (858-307-2200)
• Okay to contact this Supervisor: Contact me first

Company Overview: U.S. Marine Corps (USMC) – Marine Corps Installation West (MCI-W), MCAS Miramar – Station 6 (S6), Information Assurance (IA) Team (August 2020 – March 2013)

· Ensure cybersecurity reciprocity is achieved by safeguarding the confidentiality, integrity and availability of USMC information systems (IS).

· Record and maintain dynamic documentation of user access controls, privileged/elevated-access, and cyber security workforce (CSWF) staff.

· Created a local user database to document and manage classified/unclassified network access, foreign national affiliation, system access requests, background investigations, mandated annual training, privileged user IA responsibility certification and appointment letters.

· Policy Planning/Documentation:

-Internal – Created: CY Personnel Continuity Binder, CY Service Catalog, User Database and Account Access Guide, CSWF-IT Staff Guide, Traditional Security Program/Guide, IA Vulnerability Management Program (covered IA scanning/patching tools, reporting & remediation, etc.), Personal Electronic Device Guide, Data Breach/Spillage SOP.

-External – Created: Acceptable Use Program, Customer Service Catalog, MS SharePoint liaison for document dissemination.

· Supervisor: Larry Bryant (858-307-2200)

· Okay to contact this Supervisor: Contact me first

• Company Overview: VA Regional Office- San Diego
• Principal IT Security Advisor to the Veterans Affairs (VA) Regional Office (VARO), in San Diego, CA. Managed the VA INFOSEC program on behalf of 700+ VA employees based throughout southern California (to include 4 counties/9 locations). Built and supported ISO/employee/customer relations by promoting information security awareness. Trained regional office on VA IS acceptable uses, new-hire orientation, cyber awareness, digital encryption, social engineering, social media best business practices and provide feedback on the newest technological trends and strategies used to protect veteran data.
• Managed information security posture by analyzing traditional security controls and investigations- upon review, document and provide reports, as required. Ensured VA-approved security controls were in place to protect confidentiality, integrity and availability of sensitive data. Ensure compliance with federal security regulations are appropriately documented and local security policies and standard operating procedures (SOPs) are up to date. Investigated, documented and reported all information security incidents until remediated. Recommended corrective action, ensuring data integrity. Maintain software access control lists, audit security logs for IS violations & breaches. Key Infrastructure (PKI) support/setup/training; assist with media sanitization/disposal; audit software security logs for violations and breaches. Maintained ATO status by keeping all IS artifacts, including: System Security Plans (SSP) and Contingency Plans, network architecture diagrams, Risk Assessment (RA), Continuity of Operations Procedures (COOP), Disaster Recovery Plans and current (local) Standard Operating Procedures.

• Company Overview: Air Force Flight Test Center (AFFTC) 95th Communications Group
• Managed IT programs for 200+ specialized Systems/Applications/Platform IT (PIT)/Platform IT-Interconnects (PIT-I) for the Air Force Materiel Command (AFMC), on behalf of the Air Force Flight Test Center (AFFTC). Assisted in the development of local IT strategies to maintain compliancy with USAF regulations. Coordinate/disseminate/report official tasks and metrics reporting to the Secretary of the Air Force (SAF), AFMC and the Air Force Audit Agency (AFAA). Provide project classification guidance and conduct internal audits. Offer instruction, guidance & interpretation to end users on current IT trends, weaknesses and exploits. Facilitate and participate in discussions, meetings, conferences, committees and/or specialized IT projects. Support SAF IT Strategic Direction by auditing, analyzing and presenting AFFTC programs consolidation opportunities. Track and report (annual) IT financial accountability, reported to the SAF- includes IT budget, organizational financial resources, investment plans and IT life cycle replacement. Audit proposed IT contract renewals and current/projected commercial off the shelf (COTS) software licensing /enterprise licensing agreements (ELA) needs. Research emerging technology, IT security trends and best business practices.
• Serve as a technical advisor on acquisition and budget activities. Serve as a stakeholder on 3 separate IT Investment Approval Boards: AFFTC, 412th Test Wing and 95th Communications Group.

• Company Overview: Communications Electronics Command (CECOM)- HQ Information Systems Engineering Command (HQISEC) Mission Support Group
• Assist Information Assurance Manager (IAM), ensure IA/security postures are aligned with US Army directives. Trained all end users on ISEC AUP and IA compliance. Coordinate IT projects between the Ft. Huachuca, Director of Information Management (DOIM) and HQISEC, Systems Administrators (SAs) for IA compliance/troubleshooting. Support IA Vulnerability Alert (IAVA) administer/monitoring, analysis and metrics-reporting to determine required actions and suspense dates. Compile IAVA status and report to Army Computer Emergency Response Team (ACERT) Coordination Center. Developed IA guidance for user-distribution/training; administer new IA technologies for future systems administration uses; received DIACAP/DITSCAP training to assist with Certification and Accreditation (C&A) efforts of the HQISEC local area network.

• Company Overview: Technology Integration Center
• Student/Intern. Duties: IT Acquisition/Procurement, 50%; Systems Administration, 50%. Act as command liaison for IT hardware/software/licensing for desktop computers, servers, laptops/notebooks, printers, wireless communications and additional IT-related hardware, as needed. Manage the command automation budget and IT life-cycle replacement/enhancement and tech refresh- maintain budget records/receipts for on-the-spot audit checks. Ensure adherence to US Army (USA) guidance on IT purchases, technical refresh and contract management via Defense Acquisition Guidebook (DAG) and Federal Acquisition Regulation (FAR). In accordance with the Property Book Office (PBO) and logistics, manage/maintain HQISEC’s wireless communications- including, cell phones, pagers, Blackberry’s, calling cards, wireless internet cards and Global Secure Module (GSM) phones for users in CONUS and OCONUS/temporary duty (TDY) status. Process IT purchases via Government IMPAC card, Military Interdepartmental Purchase Request (MIPR), Job Order Number (JON) and contracting. Assist with Statement of Work, hardware/software contracting, competition and awards. Maintain technical and vendor knowledge of IT evolution; offer suggestions for the research, test and evaluation (RTE) of new technology, its integration and migration with existing legacy systems and requirement/investment validation. Act as Help-Desk Tier/Level, I and III (III, as needed)- via email, phone, walk-in and remote connection. Scan incoming laptops for vulnerability compliance, before reconnection to the network. Scan outgoing laptops and issue Vulnerability Compliance Certification for connection to outside DOD LAN Networks.