Muhammad Zeeshan
Woodbridge,VA
Summary
System Engineer/Cyber Security Analyst, with more than seven years’ experience working with end-users and professionals and four years’ experience of CCRI Inspections and seven years’ experience of validation for DOD on multiple Military and non-Military locations. Adheres to high level of service ethics, demonstrating customer-oriented communication skills and quick grasp of client requirements. Holding Active Top Secret Clearance IT Training & Certifications CompTIA Security+ earned in Dec 2014
Overview
10
10
years of professional experience
1
1
Certification
Work History
Cyber Security Analyst
HQ, Belvoir, IP Plus Inc
07.2021 - Current
- Provides expert cybersecurity support, research and analysis of complex problems, and related processes
- Conducts Risk Management Framework (RMF) activities within Enterprise Mission Assurance Support Services (eMASS) in compliance with Defense Logistics Agency (DLA) policies
- Serves as technical expert to the Cybersecurity Assessment Program providing technical direction, interpretation, and alternatives to complex problems
- Comprehensive reviews and feedback within the dedicated timeline, which includes the A&A validation, test procedures, associated validation Artifacts, Plan and Procedures with supporting documentation and test results
- Thinks independently and demonstrates exceptional written and oral communications skills
- Applies advanced technical principles, theories, and concepts
- Contributes to the development of new principles, concepts, and methodologies
- Works on unusually complex technical problems and provides highly innovative and ingenious solutions
- Recommends cybersecurity software tools (STIGs) and assists in running the software tool in targeted area
- Works under consultative direction toward predetermined long-range goals and objectives
- Assignments are often self-initiated
- Determines and pursues courses of action necessary to obtain desired results
- Reviews the Security Plan (SP), Implementation Plan, System Annual Summaries, and Assists in granting the ATOs to the systems
- Expertise is in the area of cybersecurity and evaluations.
Information Security Analyst
Defense Information Systems Agency, TWM Associates INC
07.2015 - Current
- Worked indirectly for DOD on multiple locations
- Analyzed their systems for cyber security purposes across the country
- Helped every SITE to improve their SSP and security situations and directed them to achieve maximum possible security in following areas:
- MS, Risk Management Framework
- Developed a method in which data metrics from the Evaluator Scoring Metrics (ESM) can be translated and implemented into the Enterprise Mission Assurance Support Service (eMASS) framework
- Analyzed the eMASS control system and operations to gain an understanding of implementation
- Controls Development: Inherited common controls and created some additional controls according to the requirements of client
- Implemented the ESM into the eMASS system by developing the framework of data metrics
- Deconstructed data metrics from ESM and reconstructed under the eMASS framework guidelines
- Validated controls on eMASS for different programs and systems
- Thus, assuring future CSSP Validations, and evaluations are able to proceed efficiently
- Developed a process in which CCRI Data for DODIN Readiness and Security Inspections can be reviewed and pre-validated by Cyber Review Division (RS12)
- Also created SOP with each step-in detail for the process
- Tested Pre-Inspection Validation Process Including verifying all necessary files are present and making changes SharePoint Data Processing and sending system generated e-mail messages
- As a CCRI, A&A, and SAV Inspector, continuously monitored and graded the sites
- Also helped the Sites to hardened their hardware and software situations by applying the STIGs from IASE website by using different tools.
Analyst
Conetsco Inc
Washington, DC
01.2019 - 06.2021
- Conduct A&A activities through Risk Management Framework (RMF) and DoD Information Assurance Certification & Accreditation Process (DIACAP) for the Defense Business Systems (DBS), Research, Development, Test and Evaluation (RDT&E), and Platform Information Technology (PIT) information systems and networks within Navy Enterprise Mission Assurance Support Service (eMASS) or its successor in accordance with current DOD, DON, and NAVSEA A&A policies
- Conduct in-depth technical reviews of A&A documentation from NAVSEA Program Executive Offices (PEOs) and field activities seeking authorization and/or accreditation from the Functional Authorizing Official (FAO) in accordance with the appropriate policies and procedures and develop recommendations accordingly
- Complete reviews and provide appropriate feedback within the timelines dictated by appropriate policies and procedures
- This shall include a review of A&A Validation including their associated validation test procedures; associated validation artifacts; validation plan and procedures; compliance status; validation tests; validation results/report and supporting documentation with the intended results of obtaining Authorization to Operate (ATO) or PIT Risk Assessment (PRA)
- Assist NAVSEA HQ and NAVSEA field activities in preparing their A&A documentation for submission to the Navy AO/FAO
- Schedule and facilitate collaboration meetings between the SCA, FAO, NAVSEA Echelon II representatives and appropriate program offices
- Conduct Independent Verification and Validation (IV&V) functions at NAVSAE filed activities in support of NAVSEA audits and inspections to ensure security controls are properly implemented and validated by the onsite validator in accordance with DoD/DON policies
- Maintain the Enterprise Data Warehouse (EDW) database, used to record the present status of all NAVSEA accredited/authorized packages as well as storing/archiving information on packages already received and systems that have since been inactivated
- The database shall be updated daily as required to ensure accuracy and currency
- Provide other reports as required such as, but not limited to, weekly metrics regarding A&A packages
- Provide project management and operations support of information technology programs
- Provide technical support to develop required control plans, schedules, implement and execute project activities
- Provide materials and data for internal reviews, task order reviews and evaluations, and assist in drafting Standard Operating Procedures (SOP’s) for all required Command Information Office (CIO) processes to include all processes associated with RMF
- Provided concurrence as a SCAL to the RMF packages after reviewing the technical details.
Metal Group, Computer Tech
04.2013 - 11.2016
- Data Entry by utilizing MS Excel and prepare the daily business summary on MS Word
- Provided maintenance, troubleshooting and resolutions to the computer hardware and software problems
- Provide the Desktop and Network support including devices connections, communications between the devices, and upgrades
- Participated in the development of test strategies, devices and systems
- Works from specifications to assist in developing and modifying operating systems
- Directed, and checked the work of other systems engineering personnel
- Participated as project leader for projects with small budgets or limited duration
- Performed quality assurance reviews evaluations of new and existing software products
- Served as top level technical expert in one or more highly specialized phases of systems engineering
- Provided work leadership and training to lower level
- Performed other duties as assigned.
Help Desk Support Analyst
The Signature Group
10.2014 - 03.2015
- Creates incident tickets, follow up with incident, resolve the incidents and write a detailed report for future use
- Set up RDP Connections, Troubleshoot existing RDP Connections
- Addresses and resolves following incidents and requests for clients:
- Create and remove accounts, Password resets, E-mail setup
- Troubleshoot Microsoft Office, and reset the MS Outlook through remote connection
- Create data sheets on MS Excel
- Troubleshoot and setup printer settings through remote connection
- Troubleshoot all the software, hardware, and network incidents
Staples, Computer Tech
02.2014 - 10.2014
- Worked closely with clients to analyze IT system requirements, clients information technology needs and their resources in order to plan IT objects and fulfill clients expectations
- Developed IT system specifications for client’s nature of work and business volume after evaluating
- Solved IT issues, determined changes, recommended quality software, project modifications of software, hardware, and networking
- Other Key Performance:
- Install and configure a Router for businesses and domestic use
- Install anti-virus into the network for safety from any attack
- Troubleshoot the Pc’s, laptops, and devices including hardware and software
- Replace the broken hardware with new ones
- Recommended the purchasing of new IT systems, Presented new IT features/software
Computer/Network Tech
Virtual Tech Source
12.2012 - 04.2013
- Installed different software and hardware as per requirement including following operational performance:
- Managed and configured existing network routers to facilitate usage
- Ensured data integrity and security
- Documented reports on daily activity and functioning devices.
Education
Associates of Science degree - Computer Information Science, Network Security
ECPI University
01.2013
Associates of Fundamental Science degree - Mathematics, Statistics and Economics
Government DS College
03.2004
Skills
- DOD Certifications
- Domain Name System (DNS)
- MS Exchange
- MS Windows
- MS Windows/Web
- MS SQL DATABASE
- ACAS
- Apache Server
- HBSS
- RMF
- Peak Solutions
- Networking Course, 2005
- Microsoft Office Course, 2005
- Technical & Language Skills
- Apply consulting methods to design and implement IT system solutions for clients
- IT Hardware and Software network infrastructure
- TCP/IP and DNS
- 2 years’ experience in TCP/IP Network and Windows Server
- Participated in projects of Routers, Switches, C, C, HTML, Databases, MS Office 2010, Various Computer & Software Applications in School
- Efficient troubleshooter and problem solver
- Windows 98, XP, Vista, Windows 7; Windows Server 2003/2008/2012, Domain Controllers and Mac OS
Certification
ISACA CISM earned in Sept 2020
CompTIA CASP+ earned in Nov 2020
Languages
Timeline
Cyber Security Analyst
HQ, Belvoir, IP Plus Inc
07.2021 - Current
Analyst
Conetsco Inc
01.2019 - 06.2021
Information Security Analyst
Defense Information Systems Agency, TWM Associates INC
07.2015 - Current
Help Desk Support Analyst
The Signature Group
10.2014 - 03.2015
Staples, Computer Tech
02.2014 - 10.2014
Metal Group, Computer Tech
04.2013 - 11.2016
Computer/Network Tech
Virtual Tech Source
12.2012 - 04.2013
Associates of Science degree - Computer Information Science, Network Security
ECPI University
Associates of Fundamental Science degree - Mathematics, Statistics and Economics
Government DS College