Summary
Overview
Work History
Education
Skills
Certification
Timeline
Clearance
Clearance
Generic

Rickiesha Tanner

Bolingbrook,IL

Summary

Proficient in implementing, maintaining, and configuring various security policies and devices to ensure they meet industry standards and compliance requirements. Focused with extensive knowledge of threat detection, prevention and analysis. Detail-oriented leader and proactive communicator dedicated to protecting against threats. Strategic Sr.Cyber Security Engineer skilled in risk assessment and safeguarding company data through stringent enforcement of security protocols to reduce network vulnerabilities. Skilled in adapting to new situations and challenges to best enhance the organizational brand.

Overview

10
10
years of professional experience
1
1
Certificate

Work History

Sr. Cyber Security Engineer

Science Applications International Corporation (SAIC)
06.2021 - Current
  • Experience in managing, and maintaining ATO packages, implementation narratives and associated artifacts, POA&Ms, SOPs, and FISMA security documents
  • Monitor all configuration change requests to verify changes do not adversely impact confidentiality, integrity, or availability of Department of Veterans Affairs (VA) data and provide input to VA on proposed discrepancies
  • Assist with maintenance/review/validation of documentation, such as Authorization to Operate (ATO), Interim Authorization to Test (IATT), Federal Risk and Authorization Management Program (FedRAMP), Plan of Action and Milestone (POAM), Web Application Security Assessment (WASA), Technical Impact Assessment (TIA), Memorandums of Understanding/ Interconnection Security Agreements (MOU/ISA), Federal Information Processing Standards (FIPS) 140-2 certification, System Security Plans, Information System Contingency Plans, Disaster Recovery Plans, Privacy Threshold Assessments (PTA), Privacy Impact Analysis (PIA)
  • Participates with the client in the strategic design process to translate security and business requirements into technical designs
  • Provides security investigation and evaluation of assets, vulnerability management and response, security assessments, customer support and provides guidance on security issues
  • Ensures that the appropriate security features and safeguards have been implemented on all information systems as required by VA policy and directives, and industry best practices
  • Review proposed changes and provide an assessment of the potential service impact, risk, or vulnerability to the VA
  • Gathers and analyzes data (e.g., measures of effectiveness) to determine effectiveness, and provide reporting for follow on activities
  • Monitoring and evaluating a system's compliance with VA security, resilience, and dependability requirements
  • Monitors and reports on metrics in a variety of media types, communicating status and threshold limits effectively to peers and Leadership
  • Document the security posture, capabilities, and vulnerabilities against applicable VA policy and controls
  • Document preliminary and/or residual security risks for system operation
  • Participates in and coordinates the development of strategic and tactical plans for CSOC
  • Reviews CSOC programs and projects and provides recommendations for improvements based on Initiatives and KPIs
  • Work with team to provide solutions and to ensure continued functionality of systems within the VA Framework
  • Identify, assess, and mitigate system security threats/risks throughout a system’s lifecycle, validate system security requirements, formulate, and maintain documentation and system certification and accreditation activities (planning, testing, assessing, and coordinating)
  • Assist in managing VA memorandums and cooperative agreements
  • Utilize all applicable regulations, policies, and procedures for verification of change request
  • Collaborate with a variety of VA CSOC departments to ensure that all request components are completed in a compliant manner
  • Provide support to various configuration changes with the drafting of investigation and preparation of change request materials
  • Provide ongoing support to the VA
  • Communicate with internal and external parties, conducting research and analyses, developing plans to attain project requirements, and procuring materials according to standards
  • Reviews mitigation plans and execution of risk reduction strategies for system stakeholders and ensures compliance with security audit requirements
  • Coordinates and leads reviews to measure IT system performance based on established work statements.

Sr. Cyber Security Analyst

Halfaker & Associates LLC
05.2019 - 06.2021
  • Provide security review, including threat vulnerability analysis, of enterprise configuration change request
  • Develops and reviews cybersecurity communications deliverables including standard operating procedures, playbooks, plans, after action reports (AARs), situation reports (SITREPS) and meeting minutes, coordinating with SMEs and other stakeholders (internal and external) to obtain necessary input data
  • Monitor configuration changes for network security devices to verify changes do no impact normal traffic and functions - Assess the degree of risk in executing security request
  • Evaluate external connection RFCs for impact (security or otherwise) at the TIC gateways, Internet Protocol (IP) addresses, and all port security settings
  • Provide Technical Impact Assessment (TIA), based on the VA CSOC team’s evaluation of the App-ID and URL, to the voting membership through the appropriate venue
  • Participate as voting members of the approval board
  • Identifying security risks, and developing mitigation plans
  • Implement the external connection changes once approved by the approval board
  • Monitor all external connections for compliance with existing federal laws and VA policies
  • Ensure all external connections where required and in compliance with the TIC 2.0
  • Develop and maintain change management procedures and security SOPs
  • Generate service tickets for security investigation involving App-ID and URL unblocks
  • Review and analyze change gear request in the process of approving VA vendor request
  • Audit and update security review findings - Ensure all configuration change request in compliance with the Trusted Internet Connection (TIC)
  • Process and monitor approximately 80 network change requests, monthly
  • Provides management and technical analysis services, including recommendations for process improvements.

Cyber Security Engineer

SalientCRGT
09.2017 - 05.2019
  • Configure Sourcefire device for deployment on the VA Enterprise network
  • Communicated configuration changes on devices and network infrastructure
  • Install Cisco Firepower devices for protection of the VA Enterprise Network
  • Troubleshoot unresponsive devices across the VA Enterprise Network
  • Creation of Splunk Dashboards and Alerts - Event analysis and monitoring of Splunk alerts
  • Recommended change for the potential impact of changes on the network
  • Report weekly status of monitored devices to VA leadership
  • Advised VA security community and stakeholders on threats and vulnerabilities while managing the delivery of Security Review/Recommendation, Policy Review/Recommendation, Impact Analysis, and various reports
  • Update and maintain Palo Alto App-ID whitelist
  • Investigate blocked Palo Alto App-ID in support of business justification and VA policy
  • Review changes to assess impacts to the VA Enterprise network security as it relates to ports, encryption, IP ranges and the protection of PII/PHI to the production environment
  • Review incoming CCB/ESCCB and track in accordance with VA policy and regulations
  • Created a central location for disseminating and archiving all threat information communication, situational awareness, and reporting
  • Attend weekly EECCB/CCB calls providing input for VA decision making
  • Implemented and helped develop VA CSOC security policies and procedures
  • Ensured EECCB/CCB request are connected to business needs and objectives.

Security Engineer

ByLight Professional IT Services
10.2015 - 09.2017
  • Maintain all security settings and configurations for systems and their corresponding or associated software within the SOC’s AOR, including
  • Led and participated on several different projects to decommission outdated devices from the network
  • Maintain and configure devices such as Palo Altos, IPS, Palo Alto Networks, SolarWinds, and Sourcefire IPS, SIEM (Splunk)
  • Created custom IDS signatures to capture malicious content and/or suspicious activity
  • Assist with troubleshooting unresponsive devices and network outages across the VA Enterprise Network
  • Responsible for providing 24×7 support and operational availability of company’s security infrastructure
  • Demonstrate ability to implement product lifecycle roadmaps in support of SDLC projects
  • Validate security products and/or processes to enhance productivity and effectiveness for various plat-form initiatives
  • Assists in the development and implementation of security policies and procedures
  • Creation of a dashboards to monitor Splunk alerts, including event analysis, alert generation, investigations, and reporting Implemented with configuration of enterprise security solutions from security devices such as: ePO, Palo Alto, Site Protector
  • Complete a weekly metrics for delivery to upper management on weekly operations and progress
  • Provides network and security operations technical analysis, assessment, and recommendations to senior level VA personnel in real-time security situation awareness, operational network systems and applications systems security monitoring
  • Working knowledge of MS Office desktop tools (MS Project, MS Word, MS PowerPoint, MS Excel)
  • Experience working with offshore consultants and will have had success in increasing and improving their turn-around times and upgrading skill levels
  • Collaborate with security analysts to configure security solutions to optimize network defense
  • Responsible for reviewing, monitoring, and tracking security configurations.

Sr. Cyber Security Engineer

Adams Communication & Engineering Technology (ACET)
11.2013 - 10.2015
ePOions and industry best practices
  • Developed configuration management, continuous integration/continuous deployment (CI/CD) practice, developing and implementing appropriate practices across multiple development environments
  • Created and maintained procedure documents detailing security controls and associated processes
  • Performed for maintenance on security devices in reference to updating signature sets, product patches, renewing of license and policies
  • Provided tuning recommendation, custom rules, and signature implementation on Sourcefire devices -Supports various risk management framework activities to increase efficiencies for authorizing and continuous monitoring of VA critical systems
  • Procurement and acquisition support for CSOC contracts including requirements gathering, market research, budgetary planning and monitoring of enterprise level cybersecurity programs and initiatives.

    • Education

    Master of Arts - Military Psychology

    Adler University
    Chicago, IL
    08-2018

    Master of Science - Human Relations

    The University of Oklahoma
    Norman, OK
    12-2016

    Ph.D. - Clinical Psychology

    Walden University
    Minneapolis, MN

    Skills

    • Risk Assessment
    • Security Needs Assessment
    • Software Licenses and Patches
    • Communication
    • Training & Development
    • Supervision and Leadership
    • Teamwork and Collaboration
    • Data Collection
    • Cybersecurity Analysis
    • Process Improvement

    Certification

    Certified Cyber Security Foundation

    CompTIA Security +

    ITIL Fundamentals

    CISSP Diploma

    Timeline

    Sr. Cyber Security Engineer

    Science Applications International Corporation (SAIC)
    06.2021 - Current

    Sr. Cyber Security Analyst

    Halfaker & Associates LLC
    05.2019 - 06.2021

    Cyber Security Engineer

    SalientCRGT
    09.2017 - 05.2019

    Security Engineer

    ByLight Professional IT Services
    10.2015 - 09.2017

    Sr. Cyber Security Engineer

    Adams Communication & Engineering Technology (ACET)
    11.2013 - 10.2015

    Master of Arts - Military Psychology

    Adler University

    Master of Science - Human Relations

    The University of Oklahoma

    Ph.D. - Clinical Psychology

    Walden University

    Clearance

    Public Trust

    Clearance

    Public Trust

    Similar Profiles

    • Nidhi Vij

      Nidhi VijNidhi Vij

      IT Infrastructure Project Management Manager at Science Applications International Corporation (SAIC) under contract to Pension Benefit Guaranty Corporation (PBGC)IT Infrastructure Project Management Manager at Science Applications International Corporation (SAIC) under contract to Pension Benefit Guaranty Corporation (PBGC)

    • Perryn Curtis

      Perryn CurtisPerryn Curtis

      Senior Logistic/Procurement Manager at Science Applications International Corporation (SAIC)Senior Logistic/Procurement Manager at Science Applications International Corporation (SAIC)

    • W. Hampton Haywood

      W. Hampton HaywoodW. Hampton Haywood

      SW Engineer Sr Principal at Science Applications International Corporation (SAIC)SW Engineer Sr Principal at Science Applications International Corporation (SAIC)

    • SHAWN M. SEFFERNICK

      SHAWN M. SEFFERNICKSHAWN M. SEFFERNICK

      Senior Director at Science Applications International Corporation (SAIC)Senior Director at Science Applications International Corporation (SAIC)

    • Lloyd Effah

      Lloyd EffahLloyd Effah

      Delivery Driver at United Delivery ExpressDelivery Driver at United Delivery Express

    CREATE PROFILE
    Rickiesha Tanner