Hi, I’m
Robert Shannon Jr.
Dallas,T.X.
Summary
Dynamic, confident and results-oriented professional with 16+ years of advanced academic training in Information Technology Management with intersecting experiences in strategic intelligence operations, private security software contractors, cyber security engineering and public policy. Proven talent for aligning political strategy and objectives with government officials and political diplomats through varying military experiences. Growth-focused thought leader with expertise spanning analyzing and communicating network system administrators with HP Openview and active directory users, strategy development, information assurance, risk management, technical data and event management, risk assessment, and Retina, ACAS and Nessus Vulnerability management. Holds an active Top Secret U.S. security clearance.
Overview
20
years of professional experience
Work History
Bank of America
Cyber Risk Consultant
08.2021 - Current
Job overview
- Responsibilities include utilizing digital and graphical presentations as well as interpersonal communication skills to cater to a wide group of clients both local and international
- Ensures that income targets and budgets are met while designing and developing marketing plans
- Ensures that leading officials are properly briefed about their objectives, tasks and roles
- Independently monitors, tests and assess first line controls and control performance using second line tools to ensure information security risks are effectively managed
- Reports control performance formally through Risk Committees and to company leadership and external regulators through monthly, quarterly, annual GRM reporting
- Reviews and challenges of high severity first-line issue resolution ensure completeness and sustainability of audit issues
- Advises supporting teams on their risk management to align with regulatory and audit expectations.
Bylight Professional IT Services
Information Assurance Engineer
06.2021 - 08.2023
Job overview
- Assisted in management role of Information Assurance Team for unit
- Responsibilities include leading negotiations independently, while managing caseloads, particularly in complex scenarios requiring high judgment and policy interpretation
- Proposed and formalized teams through complex work across multiple systems and operates in high-volume, highly matrixed environments
- Lead small scale projects independently, provides support for larger projects, and continuously updates stakeholders of milestones, roadblocks, and overall progressions
- Generated and utilized tools, such as Host-Based System Security (HBSS), Assured Compliance Assessment Solution (ACAS), and System Center Configuration Manager (SCCM) to provide infrastructure protection for software development teams
- Accelerated Risk Management Framework (RMF) support, and Automated Information System Accreditation support for software development teams and other applicable tenants; while assessing risk analysis of resources, controls, vulnerabilities, threats while evaluating the impact of losing systems' capabilities on the mission objective; facilitating decisions to implement security countermeasures or mitigate risk; implementing countermeasures; and periodically reviewing programs
- Familiarized IAVA compliance and compliance monitoring of all network connected assets
- Interpreted and prioritized vulnerability scan results into remediation actions.
Namauu Technological and Industrial (FEDITC)
Security Control Auditor
10.2020 - 06.2021
Job overview
- Responsibilities included modernizing experience with Information Assurance Controls (IAC), common vulnerabilities, DISA STIGs, familiarity with FISMA and the Risk Management Framework
- Implemented, assessed, tested and evaluated security controls per NIST 800-53/53a/37
- Evaluated threats and vulnerabilities, documents and reports findings while assessing recommendations for improvement
- Instituted Air Force Intelligence, Surveillance, Reconnaissance weapon system
- Performed surveillance using a broad range of methodologies and technologies, including basic, static, mobile foot and vehicle, advanced surveillance, and personal security techniques
- Consolidated paperwork and case files submitted by leading officials to verify accuracy and conformance to strict policies
- Formulates both immediate and long-term responses to intelligence; produces reports and studies based on collected information
- Delivers support through analytics, judgments, and recommendations in effort to mitigate threats.
Alion Science & Technology
Cyber Security Engineer & Architect
12.2019 - 08.2020
Job overview
- Responsibilities included administering and drafting detailed memo reports
- Implements and formalizes department preparations, and audit functions
- Directs the preparation of all instituted statements, including governmental agency reports
- Pioneered profits and losses, devised and oversaw any necessary adjustments to future projections and budgets
- Mitigated risk while accurately analyzing and evaluating criminal information
- Capitalized and charted performance monitoring technologies providing data for Air Force 33rd Network Warfare Squadron's situational awareness including Riverbed, Infovista and Netcool
- Incorporated Air Force-wide Incident Response via Splunk Security Incident and Event Management tool evaluating potentially malicious sources and attackers
- Customized information together to determine timeline of events and weed out false positives and negatives.
NCOIC, Plans and Programs (USAF)
Project Manager
01.2015 - 06.2018
Job overview
- Managed team of project managers, IT admins, help desk technicians
- Responsibilities included mitigating risk, accurately analyzed and evaluated information while processing war capacities
- Developed process to capture, integrate and maintain data supporting field information applications
- Trained and mentored field officers while assisting team lead to identify skills, problem areas and opportunities for staff development and improvement
- Strengthened traceability and developed organizational systems for case logs, records, reports and agendas
- Coordinated Network Attack Operators with technical capabilities required for Computer Network Attack (CNA) missions
- Engineered Project+/JIRA to complete/oversee 15+ projects to increase war fighting capabilities down range.
Education
Trident University International
Bachelor of Science in Information Technology Management
01.2021
Skills
- Data Analytics
- Google Suite
- Remote Work
- Operations
- Networking and System Administration
- Surveillance and Covert Operations
- Information Security
- Risk Analysis
- Cloud Security
- Metasploit Pen Testing
- Symantec Endpoint Detection & Response
- Wireshark
- Nmap
- OSI Model
- Cross Site Injection
- Cross Site Forgery
- Clickjacking
- IT Auditor experience
- Information Assurance
- RMF Engineering
- Information Security Landscape
- Client Risk Levels
- Based Risk Assessment
- IT Auditing
Clearancescertifications
- Top Secret SCI
- Security+ (09/2022)
- Associate of (ISC) 2
- Certified Ethical Hacker (Expires: 03/2021)
- CASP
- CRISC
- CompTia Security+
- GIAC Security Essentials (2013)
- GIAC Certified Incident Handler Training
Leadership Experience
- Mentor and Ambassador, Air Force Wounded Warrior Program, 2015, Present
- Project Manager, Altruistic Green Dot Program Implementer for Air Force, 2016, Present
Timeline
Cyber Risk Consultant
Bank of America
08.2021 - Current
Information Assurance Engineer
Bylight Professional IT Services
06.2021 - 08.2023
Security Control Auditor
Namauu Technological and Industrial (FEDITC)
10.2020 - 06.2021
Cyber Security Engineer & Architect
Alion Science & Technology
12.2019 - 08.2020
Project Manager
NCOIC, Plans and Programs (USAF)
01.2015 - 06.2018
Trident University International
Bachelor of Science in Information Technology Management