Summary
Overview
Work History
Skills
Certification
Timeline
Generic

Mark Duong

Cybersecurity Engineer
Sierra Vista,AZ

Summary

Ambitious Cybersecurity Engineer committed to formulating innovative solutions to challenges while optimizing processes. Expertise in developing and implementing security plans and procedures and developing strategies to respond and recover from security breaches. Expertise in analysis through data-sets to detect threats and anomalies and administering metrics to maintain security processes and controls. Willingness to take on added responsibilities to meet team goals.

Overview

9
9
years of professional experience
10
10
Certifications

Work History

Cybersecurity Engineer

Business Mission Edge
03.2021 - Current
  • Develop, manage, and maintain the formal United States Army Central (USARCENT) Cyber Security Incident Handling and Response program.
  • Enforce DoD, United States Central Command (USCENTCOM), US Army, and USARCENT Cyber Network Defense (CND) policies, regulations, and directives while developing command-unique processes, procedures, and policies as needed.
  • Represent the System Authorizing Official (SAO) in all matters of Information Assurance Vulnerability Management (IAVM) and ensure that Cybersecurity personnel implement Information Assurance Vulnerability Alerts (IAVA), bulletins, and advisories that affect the security of their respective information systems.
  • Ensure that all Cybersecurity Workforce personnel are in compliance with DOD 8140/8570.01-M certification requirements and are adequately trained to perform appointed duty positions.
  • Provide Incident Handling and Response guidance and support to all USARCENT subordinate units operating within the Southwest Area (SWA) Area of Responsibility.
  • Conduct Cybersecurity assessments and audits.
  • Create automation scripts for auditing cybersecurity compliance.
  • Enhanced auditing capabilities by creating real-time alerting using Change Auditor for Active Directory. Create custom alerts for notifying cybersecurity teams for situational awareness in protection of high visibility assets.
  • Assist the Program Information System Security Manager (P-ISSM) to identify and validate Cybersecurity resource requirements.
  • Create policies and procedures for emerging security technologies and proposals.
  • Develop security metrics and technical analysis to give insight into performance and trends.
  • Create frameworks by designing and developing technical solutions.
  • Worked with teams to develop company-wide information assurance, security standards and procedures.
  • Provide any additional Cybersecurity support as required by the P-ISSM.

Cybersecurity Engineer

Mission 1st
08.2019 - 03.2021
  • Develop, manage, and maintain the formal United States Army Central (USARCENT) Cyber Security Incident Handling and Response program.
  • Enforce DoD, United States Central Command (USCENTCOM), US Army, and USARCENT Cyber Network Defense (CND) policies, regulations, and directives while developing command-unique processes, procedures, and policies as needed.
  • Represent the System Authorizing Official (SAO) in all matters of Information Assurance Vulnerability Management (IAVM) and ensure that Cybersecurity personnel implement Information Assurance Vulnerability Alerts (IAVA), bulletins, and advisories that affect the security of their respective information systems.
  • Ensure that all Cybersecurity Workforce personnel are in compliance with DOD 8140/8570.01-M certification requirements and are adequately trained to perform appointed duty positions.
  • Provide Incident Handling and Response guidance and support to all USARCENT subordinate units operating within the Southwest Area (SWA) Area of Responsibility.
  • Conduct Cybersecurity assessments and audits.
  • Create automation scripts for auditing cybersecurity compliance.
  • Enhanced auditing capabilities by creating real-time alerting using Change Auditor for Active Directory. Create custom alerts for notifying cybersecurity teams for situational awareness in protection of high visibility assets.
  • Assist the Program Information System Security Manager (P-ISSM) to identify and validate Cybersecurity resource requirements.
  • Create policies and procedures for emerging security technologies and proposals.
  • Develop security metrics and technical analysis to give insight into performance and trends.
  • Create frameworks by designing and developing technical solutions.
  • Worked with teams to develop company-wide information assurance, security standards and procedures.
  • Provide any additional Cybersecurity support as required by the P-ISSM.

Systems Administrator

GDIT
12.2018 - 08.2019
  • Provide End User IT services to the Department of Defense (DoD) and Defense Logistics Agency (DLA) Business Continuity resulting in high quality customer support, data management, and telecommunication services
  • Orchestrated integration and communication of software upgrades.
  • Configured and tested Windows Server operating systems with roles features.
  • Contributed to development, administration and testing of disaster recovery plans.
  • Tested software remotely and onsite for server sets to maintain operational readiness.
  • Delivered Tier 2 and Tier 3 support for problem identification, diagnosis and issue resolution.
  • Attended meetings to deliver status reports to key stakeholders.
  • Implemented, developed and tested installation and update of file servers, print servers and application servers.
  • Diagnosed and resolved hardware and software issues.
  • Devised scripts and automation tools to improve system efficiency.
  • Planned and implemented upgrades to system hardware and software.
  • Installed and configured network printers and other peripheral devices.
  • Researched and recommended new technologies and strategies for improving system performance.

Senior Systems Engineer

Northrup Grumman
09.2016 - 12.2018
  • Provided administrative and operational Directory Services support for the U.S. Army Regional Cyber Center Europe (RCC-E)
  • Responsible for a wide range of tasks for the operations and maintenance of the U.S. Army Europe Enterprise-level Active Directory networks to include: providing technical assistance and consulting to users, recommending and implementing system enhancements to improve the performance and reliability of the enterprise in designing, developing, engineering, implementing, patching, and maintaining Active Directory Domain Controllers, and other enterprise level servers
  • Domain Controller troubleshooting (replication issues, authentication, etc.)
  • DNS Administration
  • Operated and managed Public Key Infrastructure (PKI)
  • Online Certificate Status Protocol (OCSP) servers, Certificate Revocation Lists, PKI enrollment/registration, Axway/90 Meter clients, etc.)
  • Managed Change Auditor for Active Directory
  • Active Directory Administration (creating objects, delegating permissions, Organizational Unit Structure, etc.)

Active Directory Systems Engineer

Vectrus Inc.
04.2015 - 09.2016
  • Provides administrative and operational Directory Services support for the U.S. Army Regional Cyber Center South West Asia (RCC-SWA)
  • Performed troubleshooting/resolution on all high-level issues in regards to Active Directory, DNS, and Group Policy Objects (GPO)
    within a Windows Server 2012 R2 environment with varying classification levels.
  • Top-level OU administration of Active Directory, DNS, Group Policy Management
  • Upgraded Domain Controllers from Windows Server 2012 R2 to Windows Server 2016 domain and forest functional levels.
  • Hardened servers according to DISA STIG compliance on multiple DoD enclaves
  • Operated and managed Public Key Infrastructure (PKI)
  • Created and installed PKI certificates
  • Troubleshoot PKI authentication across multi-domains within the Enterprise
  • Operated and managed Axway/Online Certificate Status Protocol (OCSP) servers
  • Created, tested, and implemented GPO’s
  • Used ACAS daily to ensure systems were meeting IAVA compliance
  • Conducted research to test and analyze feasibility, design, operation and performance of equipment, components, and systems.
  • Wrote, reviewed and edited technical document in accordance with template requirements.

Skills

Access Control

Compliance Management

Patch Management

Incident Response

Network Security

Vulnerability Assessment

Application Security

Cryptography

Network Security Management

SIEM Provider Management

Incident Logging Oversight

Compliance Monitoring

Internal Auditing

Analytical Thinking

Problem-Solving Abilities

Self Motivation

Team Collaboration

Customer Communication

Attention to Detail

Conducting Investigations

Certification

Certified Information Security Manager (CISM)

Timeline

Certified Information Security Manager (CISM)

08-2021

Certified Chief Information Security Officer (CCISO)

07-2021

Cybersecurity Engineer

Business Mission Edge
03.2021 - Current

Certified Data Privacy Solutions Engineer (CDPSE)

06-2020

Certified Ethical Hacker (CEH)

09-2019

Cybersecurity Engineer

Mission 1st
08.2019 - 03.2021

Securing Windows Server 2016

08-2019

Systems Administrator

GDIT
12.2018 - 08.2019

Microsoft Certified Solutions Associate: Windows 10

10-2018

Senior Systems Engineer

Northrup Grumman
09.2016 - 12.2018

Microsoft Certified Solutions Expert: Windows Server 2016

08-2016

Microsoft Certified Solutions Expert: Windows Server 2012

04-2016

Active Directory Systems Engineer

Vectrus Inc.
04.2015 - 09.2016

CompTIA Advanced Security Practitioner (CASP)

12-2014

Security+

12-2011

Similar Profiles

CREATE PROFILE
Mark DuongCybersecurity Engineer