Stuart E Chase

Company Overview: This is a federal job

• Serving as team lead of the Specialized Device Cybersecurity Department (SDCD) Enterprise Cybersecurity Management Program (ECMP). The ECMP team consists of 5 government employees and 64 contract support staff of Information System Security Officers (ISSO), System Stewards (SS), and Authority to Operate (ATO) Support personnel. ECMP supports 57 distinct ATO systems, which include a Medical Device Legacy boundary containing over 136,000 medical devices. As team lead, develop, review, and implement Incident response plans, Information system contingency plans, and disaster recovery procedures. Represents ECMP and SDCD with greater Office of Information Security (OIS) or VA work groups focused on issues affecting system security within the VA.
• Primary ISSO for 16 VA systems authorized using the Risk Management Framework (RMF). Ensuring security compliance by security control reviews and responding to ISSO support service requests from VA stakeholders for VA Enterprise specialized devices and systems and specialized ATO systems. Acts as the ISSO to maintain the day-to-day security posture of systems, provides continuous monitoring in following the VA's implementation of RMF and helps ensure systems and applications achieve and sustain their ATO. Created Plans of Action and Milestones (POA&M) to document vulnerabilities in a system.
• In the role of Team Lead, evaluates the effectiveness of existing processes and programs. Focusing on finding new or enhancing security techniques and approaches to upgrade the security posture of systems. Maintains an awareness of new Executive Orders, NIST Guidance, and lessons learned from peers.
• Resolve integration issues related to implementing new systems within the existing infrastructure. Review proposed new systems, networks, and software designs for potential security risks.

KEY ACCOMPLISHMENTS

• Created an ISSO resource tool to aid ECMP ISSOs performing information security functions within the VA.
• Received numerous kudos for drafting and presenting strategy to key leadership.
• Developed an Access Database, integrating custom VBA code that ingested eMass reports and presented the data to the ISSO in a manner that made it vastly easier to perform security control reviews.
• Drafted the Enterprise Risk Assessment Scoring Methodology guide. This guide provides an overview of the scoring methodology used for Enterprise Risk Analysis and serves as a reference guide for RA, Tool administrators, and Tool developers.

Company Overview: This is a federal job

• Providing security oversight, development, and implementation of viable information technology security policies and procedures. Conduct risk assessments for all VA network-connected research scientific computing devices (RSCD) and Special Purpose Systems. Thoroughly analyzes RSCDs to determine their risk to the VA network. Trains and guides Transformation Support Services (TSS) contract staff on NIST SP 800-53 controls and risk analysis.
• Administers and monitors the VA's implementation of the Risk Management Framework (RMF) steps as an enterprise ISSO for research-focused major applications. Supports the implementation of information technology (IT) security controls and security authorization documents and participates in system audits. Investigates cybersecurity incidents for IT networks, systems, and devices to identify possible break of security policies and/or other violations.

KEY ACCOMPLISHMENTS

• Performed security control gap analysis between NIST SP 800-53 and ERA Toolset.
• Created Research Scientific Computing Device Enterprise Risk Analysis toolset.
• Performed gap analysis between NIST IoT Device Cybersecurity and ERA toolset.
• Received Authority to Operate for VA REDCap.
• Created a Standard Operating Procedure template for VA staff managing RSCDS.

Company Overview: This is a federal job

• Reviews Army and DoD policy to ensure ARL complies with classified policies and procedures. Managing unauthorized disclosure of classified information incidents from investigation through final mitigation. Responsible for creating and maintaining information assurance procedures for ARL classified networks. Maintains ARL classified network via RMF procedures. Providing customers with assistance and recommendations on classified issues. Respond to computer security incidents and ensure the enterprise network complies with proper security posture.

KEY ACCOMPLISHMENTS

• Coordinated successful RMF, DAIG, DIACAP, CSA, and CCRI IA Inspections.
• Streamlined Ports, Protocols, and Services Management (PPSM) requests, CTO-10-133 generation and Classified system turn-in processes.
• Researched, obtained, and implemented a log monitoring solution with Elastic Stack.
• Established annual comprehensive IA review of STIG and SCAP content.
• Created PKI priority algorithm during the DoD-wide PKI shortage.

• Reviews Army and DoD policy to ensure ARL complies with classified policies and procedures. Managed unauthorized disclosures of classified information incidents from investigation through final mitigation. Responsible for creating and maintaining information assurance procedures for ARL classified networks. Maintains ARL classified network via RMF procedures. Providing customers with assistance and recommendations on classified issues. Respond to computer security incidents and ensure the enterprise network complies with proper security posture.

• Responsible for leading four network intrusion detection teams that participated in high-level analysis of network intrusion for DoD and GOV networks. Coordinated with other Computer Network Defense Service Providers (CNDSP) for technology and knowledge transfers. Responsible for maintaining and creating SNORT and string rules. Acted as team lead for CNDSP Bootcamp sessions that included topics like ESM, CJCSM 6510, Advanced Network Monitoring, and Incident Handling. Evaluated Open Source and Commercial IDS products. Responsible for performing the technical validator and subject matter expert (SME) for Agent for the Certification Authority (ACA) DoD Information Assurance Certification and Accreditation Process (DIACAP).
• Responsible for performing daily detailed analysis of network Intrusion Detection alerts to ensure that exploit attempts, network scanning, inappropriate behavior, and other unauthorized activities that pose threats to client network infrastructure are captured and appropriately escalated. Prepared computer security incident reports based on intrusions, events, and detected incidents. Working closely with Tier 1 and Tier 2 Computer Network Defense Service Providers for report escalation or resolution. Researched current malware and provided detection rules to fine-tune the IDS ruleset. Created several shell scripts to detect malware on client networks. Assisted in authoring a user's guide for the Interrogator framework. Routinely updated standard operating procedures for the Network Defense team. Responsible for performing the technical validator role for DIACAP inspections as part of the Agent for the Certification Authority team. Co-authored a white paper on how to increase efficiency in IDS tools and alert methodologies.

• Designed and implemented Information Technology solutions for a local Honda automobile dealership. Maintained Active Directory network that integrated 45 workstations and 15 networked printers, designed, coded, and supported ASP applications to increase the dealership's operating efficiency. Maintained corporate websites and hosted websites for external customers.