Vanessa Calizaya

.

• Skilled at working independently and collaboratively in a team environment.
• Organized professional with expertise in managing resources and optimizing performance. Proficient in providing valuable insights and supporting decision-making processes. Committed to enhancing productivity and contributing to overall success.
• Created Job Aids to assist all IT Security Personnel “In how to” manage their assigned system within the new GRC tool.
• A POC after conference calls for the guidance in minutes of meetings.
• Was the Lead on updating ISSO handbooks and manuals.
• Assigned as Sr. Cloud ISSO to build a Tool Discovery system with Azure Commercial. Which required to work with vendor and Senior leadership. Assisted in completing FISMA documentation as part of the Security Assessment & Authorization process.
• Managed system Controls following NIST SP 800-53 and defined the ODP (Organization Define Parameters) controls.
• Evaluated automated scans for Cloud systems.
• Followed Risk Framework Management step process to manage information security and privacy risk to suite NIST standards and guidelines to support implementation of risk management programs to meet the requirements of the Federal Information Security Modernization Act.

• Supported USMC with their SAP projects.
• Provide remediation, mitigation, and reporting activities in response to Assessment & Authorization, Information Assurance Vulnerability Management (IAVM), and the working of Plan of Action and Milestones (POAM)
• Perform Independent Validation and Verification (IV&V) when required
• Vulnerability assessments and security control checks on Systems Architecture
• Experience with security tools such as Security Content Automation Protocol (SCAP), Assured Compliance Assessment Solution (ACAS), and Ports, Protocols, and Services (PPS)
• Prepared evaluation reports
• Strong working knowledge of the Risk Management Framework (RMF) process
• Utilized Tenable for security vulnerabilities in devices, applications, operating systems, cloud services and other network resources.
• Was able to overturn a system that was under a Conditional To Operate authorization to a system fully Authorize To Operate.

• Administer Active Directory (AD) and tune GPOs in accordance with DISA STIG's
• Manage the configuration management, technology, and implement cybersecurity best practices, policies, processes, manuals, guides, and other publications outlining and standards needed to administer a comprehensive Cybersecurity program
• Perform and review security assessments and scans utilizing Tenable Nessus/ACAS to evaluate vulnerabilities
• Support Information Assurance Vulnerability Alerts (IAVAs) and implement security measures based on results of ACAS scans
• Manage STIGs for servers and systems, remediate identified vulnerabilities, and ensure security compliance with Network Intrusion Detection System/Intrusion Prevention Systems (IDS/IPS)
• Evaluate information systems for compliance with Defense Information Security Agency (DISA) Security Technical Implementation Guideline (STIG) and review measures needed to bring systems into compliance
• Verify all Sign on Signatures are up to date, and Automated and Manual Virus Scans are documented, scheduled and are being completed
• React to and report actual or suspected events to the Cybersecurity Manager
• Made use of SIEM tools to monitor network traffic and resources and reported suspicious behavior including Computer incident responses
• Attend IA security training as required to maintain and gain knowledge and skills of current IA issues
• Performs analyses to validate established security processes and recommend additional security steps to ensure compliance with applicable DOD IA requirements and baseline IA controls
• Assist the Cybersecurity Manager with the development of the IA related Procedures, and Work Instructions
• Update/maintain a Plan of Action and Milestone (POA&M) to track the resolution of vulnerabilities identified on systems

• Patch and repair machine when they do not meet USMC/NISPOM standards
• Isolate machine that are threats to the network
• Create and write scripts to push security patches to machine and the network
• Observe and report all possible threats by actively scanning and watch for out of place software and vulnerabilities
• Provide documentation and technical specifications to IT Staff for planning and implementing new or upgrades of IT infrastructure
• Utilized Host Intrusion Detection System to monitor and detect to defend DoD network and systems, including Tenable Security for continuous Nessus Scans

• Evaluated system potentials by testing compatibility of new programs with existing programs
• Planned, implemented, installed, operated, and maintained system hardware and software applications and information technology infrastructure in Windows Server 2008 and 2012, Windows 10
• Provided recommendations and participated in the implementations of new information and technology programs, modules, and services
• Provided hardware and software engineering support for Information Systems utilizing object-oriented programming and client/server applications
• Create and managed user accounts, groups, organizational units, group policy with Active Directory
• Installed agency's hardware equipment and collaborated with the agency's Inventory Manager during the annual inventory for IT accountable government property
• Assisted agency's personnel with Microsoft Window applications Outlook, Word, Excel, Power Point, Publisher, Visio, Access, Note, Share Point, Project, Adobe, etc., installation and usage
• Built rapport with customers to provide proactive and personalized service and align their needs with the needs of the agency
• Successfully achieved in prepared the agency for 100% Remote when Pandemic Emergency Stay at Home Notice was released
• This required in assuring that all users were able to test their remote access including providing one sheet instructions
• Point of contact in providing new users VPN access either PKI or RSA solutions

• Assigned IP addresses to assets based on port, classifications, and assets' permanent locations
• Imputed and updated static IP based on IP range
• Assisted System Engineers on applications of specialized knowledge to coding, testing, implementation, and documentation of special projects
• Installed, configured, and supported operation systems: Window 10 to versions 1709 & 1803
• Created, modified, and moved computer names in Active Directory
• Pushed updates and network patches as applicable; set, reset, and unlocked password accounts
• Installed and updated computers, and ghost's machines; leaded laptop refresh deployments
• Remotely accessed computers as per end users' requests to provide IT support, troubleshoot and resolve wide range of hardware, software, and network issues
• Implemented extensive system knowledge and existing tools to analyze, identify, and resolve business and/or technical problems

• Configure, install image desktop and laptops for new users with PXE and SCCM
• Managed IT Service Desk Tickets and remedied problems within the compliance of the SLA's requirements
• Tested hardware in compliance with the lifecycle SCCM requirements
• Collaborated with the Asset Manager through the year and during the annual inventory
• Utilized Active Directory for applying group policy per Department and account creation and perform Trusted Agent responsibilities

• Built and maintained Window Server 2008 R2
• As acting ISSO supported the ISSM in configuration and documentation of DOD system
• Implemented security policy on Standalone, Peer-to-Peer, and WAN systems
• Set up profiles and accounts for new users; communicated with and supported all the staff members until they were all set up and fully satisfied with the IT service
• Prepared DSS audits in compliance with NISPOM requirements
• Routinely conducted desk audits with monthly antivirus, encryption, Microsoft offline updates
• Provided information for documents' repository to reflect provided services, procedures, and job aids to streamline processes, make information available for self-sufficient workforce, and increase organizational efficiency
• Placed emphasizes and succeeded in providing my coworkers with training and coaching to share my expertise, expand their knowledge base and improve their skills as a part of a larger goal of in-house cross-training to address staff shortages
• Provided exceptional customer service to all personnel

• Coordinated telecommunication VTC equipment; utilized testing and preventive maintenance practices for Senior Executives meetings and conferences
• Managed mobile devices with MDM AirWatch, such as iPhones, Windows phones including Enterprise accounts on BES for Blackberries phones
• Direct support to Leadership with their Administrator, in office and home
• Provided 24/7 IT support to VIP Executives and followed up to ensure all issues were resolved immediately
• Resolved break/fix incidents; move/change requests within short response time and resolution with SLA agreements within the Window environment
• Utilized Active Directory in applying group policy per department and account creation including hardware
• Trusted Agent Responsibility

• Led and oversaw project in setting up users' Window 7 upgrades including back up data to the home network drives
• Configured and installed VDIs
• Installed SQL 2008, IBM DB2, and PeopleSoft applications
• Provided issue resolutions and IT support for Xerox network printers; VPN connectivity issues during and thought the implementation of the telework program; Avaya Soft-phone, Jupiter and Citrix
• Built applications stacks through SCCM software; pushed and generated corporate reports as requested by Senior Management

• Managed a team of IT support staff responsible for resolving the IT Service Desk issue
• Created and implemented policies and procedures for receiving and documenting IT Service Desk requests; and diagnosing, identifying, and resolving IT issues
• Ensured maximum requests resolution within short period of time to utilize the staff in the most efficient way while assisting customers with the best possible service
• Evaluated new information system, products and services to aid the services of the end users
• Updated Enterprise from Windows XP to Windows 7 and imaged Ghost and PXE programs
• Managed users' accounts with VM ware assess to ensure accounts' stability
• Managed Websense DLP / BIT9
• Served as Information Assurance appointee to perform routine weekly Retina scans over the network and defining levels of CATS
• Received all the inbound and outbound system's requests, assigned requests to staff, and resolve the most complicated issues
• Supported classified networks and participated in classified meetings regarding information and network risk assessments
• Coordinated and supported all the PKI's smart cards logging and account creation in the Active Directory