Summary
Overview
Work History
Education
Skills
Certification
Affiliations
Work Availability
Timeline
Generic

William A Kelly

Alexandria,VA

Summary

Information Technology Specialist (InfoSec) Announcement Number

Information Technology Specialist with extensive experience and a history of success designing, implementing, securing, managing, and troubleshooting mission-critical enterprise information systems. Progressive leadership roles within information technology programs, currently serving as the Chief Information Security Officer (CISO) for the Woodrow Wilson International Center for Scholars. Diverse Information Technology and information security background combined with a deep understanding of the intersection between technology, business, and operational requirements. A strategic leader who partners with executives and stakeholders to develop digital strategies and solutions in support of the organization’s mission. Proven talent for effectively communicating complex technical concepts to business leaders, stakeholders, and end users. Continually evaluating new and emerging technologies to create efficiencies, mitigate risks, and optimize return on investment. Currently hold Information Technology, Information Security, and Project Management professional certifications.

Overview

34
34
years of professional experience
2
2

CISSP,PMP

Work History

Chief Information Security Officer

Woodrow Wilson International Center for Scholars
10.2010 - Current
  • Serving as the Wilson Center's CISO and lead network architect, I am responsible for the operation of all information technology services in a secure and highly available state. I provide expert-level technical and information security guidance to the CIO/Wilson Center leadership, information technology staff, and the user community at large. My regular duties include designing, securing, documenting, implementing, managing, and monitoring all enterprise information technology services and infrastructures. This includes policy planning and analysis such as cyber security risk assessments, continuity and disaster recovery planning, Cyber Life cycle management, overall information assurance planning, and return on investments. I oversee all cyber vulnerability assessment, intrusion detection, incident response/mitigation, audit log monitoring, and system security policy revision activities at the Center. Using business process and requirements analysis, I ensure all information systems and policies are customized and right-sized for the Center. I also provide day-to-day oversight and hands-on management of the Center’s mission-critical enterprise network and telecommunications systems to ensure all services and resources are secure, operational, and available. This includes such services as, local area networks (LAN), VOIP telephony, server hardware, computer facilities, network operating systems, and services, network vulnerability scanners, VMWare ESX Server Virtual Infrastructure environment, Storage Area Networks (SAN), tape backup systems, Microsoft Cloud-based email and security services, database systems, IIS web servers, security applications and policies, NextGen firewalls, secure VPN remote access, workstation computers, workstation operating systems, mobile phones/tablets, and end-user application suites. I regularly serve as an IT liaison for various internal Center committees and groups. I also represent the Center in interactions with law enforcement agencies to assist with cyber investigations that may impact the Wilson Center’s information technology systems, information assets, or user community. I am responsible for reporting notable cyber security incidents to CISA. Using an iterative review process I continually evaluate all IT systems and procedures to increase efficiencies, improve performance, and apply current standards, accepted best practices, and evolving technologies. I regularly analyze system and audit logs for anomalies that could be data exfiltration or spillage.
  • Specific accomplishments include:
  • Implemented custom Active Directory and Operating System security controls aligned with NIST FDCC and the Center for Internet Security (CIS) standards and baselines ensuring all systems are in compliance with Center policy.
  • Researched, recommended, and implemented two-factor authentication for all external facing systems utilizing single sign-on for all Microsoft Cloud systems.
  • Led the development, implementation, and communication of an information security incident response plan and system for the Wilson Center.
  • Led evaluation, selection, and implementation of a network security vulnerability scanner. This allows the Center to take a proactive approach to identify vulnerable systems, configuration deviations from security baselines, and unpatched systems.
  • Developed and implemented a phishing awareness and reporting procedure that alerts users of potential phishing campaigns and allows users to report any potentially malicious email messages.
  • Recommended and implemented a third-party backup system for all Wilson Center assets housed in the Microsoft Cloud. This system not only provides disaster recovery, it greatly reduces the effort required for eDiscovery.
  • Personally carried out the transition to Microsoft Intune for all PC, MacOS, and mobile device deployments. This included Active Directly Group Policy, CIS, and other security controls applied via Intune, configuration policies, power shell scripts, command shell scripts, and registry settings. The transition included configuring and implementing Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Compliance Manager, and other tools. All applications are delivered via Intune. The transition from a traditional anti-virus system to cloud-based endpoint protection was a major milestone in protecting Center systems. The new system allows for the management of endpoints outside the perimeter of the enterprise network and VPN. This is also a critical first step in the move towards a zero-trust architecture.
  • Led the team investigating and mitigating multiple security incidents and breaches. These efforts required packet analysis, digital forensics, and audit log analysis to track bad actors’ movement laterally throughout the Wilson Center networks. Some mitigation responses were complex requiring complete system rebuilds and the utilization of disaster recovery plans and systems. Directed the implementation of policy and system updates using the lessons learned from the various cyber incidents using cyber lifecycle best practices.
  • Developed and implemented Juniper firewall security policies and controls customized for the Center’s user community.
  • Managed contractors conducting both internal and external security threat and vulnerability assessments. Using the results of the assessments, I oversaw the implementation of mitigations to address all identified vulnerabilities.
  • Developed and implemented all Microsoft Exchange 365 email security policies and controls.
  • Collaborated with executive leadership to develop long-term cybersecurity goals and vision for the organization.
  • Recommend improvements in security systems and procedures.
  • Streamlined security operations by consolidating tools, processes, and reporting for increased efficiency.

Supervisory Information Technology Specialist / Branch Chief

Grain Inspection Packers and Stock Yards, United States Department of Agriculture
03.2010 - 10.2010
  • As the Network Telecom and Customer Support Branch Chief I supervised a group of seven GS-13 customer support and networking professionals. I provided expert-level technical advice and administrative direction necessary for accomplishing the work of the branch in support of the GIPSA Mission. This includes creating Agency voice and data communications policies, setting milestones and objectives, facilitating collaboration, advising and counseling staff members, recommending awards, formulating and tracking technology budgets, and contract oversight. My duties include the day-to-day oversight and hands-on management of the Agency’s mission-critical Enterprise Network, Telecommunications systems, and Help Desk systems to ensure all services and resources are online and operational. This includes such services as: wide area networks (WAN), local area networks (LAN), telephony systems, server hardware, computer facilities, network operating systems and services, VMWare ESX Server Virtual Infrastructure environment, Storage Area Networks(SAN), tape backup systems, Microsoft Exchange email systems, database systems, IIS web farms, security applications and policies, secure VPN remote access, workstation computers, workstation operating systems, end-user application suites, Asset Management including hardware/software inventory, and the Help Desk infrastructure. Regularly serve as the Acting Chief Information Officer directing all Information Technology efforts and decisions in the absence of the CIO.
  • Clearance: Secret
  • Supervisor: Frieda Achtentuch (202)690-720-0265; May be Contacted

Temporary promotion - Supervisory Information Technology Specialist / Acting Branch Chief

Grain Inspection Packers and Stock Yards, United States Department of Agriculture
11.2009 - 03.2010
  • See above, the same duties and responsibilities as Supervisory Information Technology Specialist / Branch Chief, GS-14 2210 permanent position apply.
  • Supervisor: Frieda Achtentuch (202)690-720-0265; May be Contacted

Information Technology Specialist (Network)

Grain Inspection Packers and Stock Yards, United States Department of Agriculture
10.2000 - 11.2009
  • As a member of the GIPSA Networking and Telecom Unit, I managed the GIPSA Enterprise network in an effort to provide superior services to all Agency employees. Regular duties included designing, documenting, implementing, managing, and monitoring all network services and infrastructures. The Enterprise system included local area network (LAN) / wide area network (WAN) hardware, software, network operating systems, storage systems, backup systems, e-mail, security policies, clustered Windows Servers, EMC Storage Area Networks (SAN), Microsoft Active Directory 2008, Microsoft Exchange email, Microsoft SQL database systems, Microsoft IIS Web Server farms, Microsoft Windows Update Service, VMWare ESX Virtual Infrastructure, F5 Big IP load balancing, CISCO equipment including routers, Ethernet switches/hubs, virtual private networking devices, monitoring tools, web-based EM3270 emulation, Altiris Help Desk and Deployment systems, McAfee E-Policy Orchestrator, McAfee Antivirus, and various other COTS applications. Regularly used a wide range of native system tools, monitoring applications, and custom scripts to ensure that all Enterprise services were functional and available to customers. Established performance baselines and performance metrics to evaluate overall LAN/WAN performance to ensure mission-critical services fulfill Agency standards and customer expectations. When problems did arise my extensive experience and training enabled me to assess the situation, apply troubleshooting techniques, and rapidly develop an action plan to resolve performance issues in a timely manner, Regularly performed feasibility studies, system requirements analysis and other original research to analyze long-range enterprise architecture designs, acquisitions, improvements, system integration with other USDA systems, and enhancements to meet changing requirements. Made recommendations based on analysis to upper management. I also worked closely with customers and stakeholders to perform needs analysis and define opportunities for new or improved services. Regularly evaluated new and emerging technologies in an effort to improve existing services and revisit unresolved issues.
  • Supervisor: Bruce Griffith (202)690-0943; May be contacted
  • Specific accomplishments include:
  • Lead the creation and implementation of NIST Federal Desktop Core Configuration Active Directory Group Policy Objects for the Agency. This was a challenging project that received a lot of initial resistance. After working with all stakeholders, I was able to facilitate a solution that met the requirements and needs of the Agency. FDCC policies were successfully implemented throughout GIPSA where possible.
  • Served as the Project Manager and Lead analyst for the Agency email migration from Novell Group Wise to a Highly Available Microsoft Exchange 2003 system. I developed the project plan and provided all technical expertise including the risk analysis, system design, migration strategy, and implementation plan. I then worked closely with GIPSA support staff to generate a statement of work to solicit contractor support. This was a particularly challenging project that required extensive planning and was constrained by competing resources. Using my implementation plan the migration was completed over a weekend with zero downtime and was fully integrated with the Department e-mail system upon delivery.
  • Lead the migration from Microsoft Windows NT directory services to Microsoft Active Directory across 10 remote offices including COOP site. Worked closely with staff and contractors to design, implement, and test the migration to Active Directory.

IT Specialist (Network)

Grain Inspection Packers and Stock Yards, Federal Grain Inspection Service, United States Department of Agriculture
02.1997 - 10.2000
  • Served as the lead for all Help Desk and Networking activities supporting the FGIS Novell network. Regular duties included designing, documenting, implementing, managing, and monitoring all network services and infrastructures. The FGIS network consisted of local area network (LAN) / wide area network (WAN) hardware, software, Ethernet switches/hubs, dial on demand routing devices, network operating systems, storage systems, backup systems, e-mail, security policies, OS/2 Warp Server, directly attached SCSI storage, workstation computers, workstation operating systems, end-user application suites, Asset Management including hardware/software inventory
  • Led the efforts forecasting information system needs based on business requirements to project the hardware and software capabilities required to meet Agency goals. Lead the consolidation of FGIS servers and applications into a single architecture. Because of this new architecture, FGIS was able to reduce operational cost and increase performance by reducing the many different computing environments that needed to be supported. Participated with upper management in planning the short, intermediate and long-range information system needs to support the strategic goals of the Agency and meet Department requirements. I also served as the authority for information technology investments in FGIS to maximize the business benefits of technology investments. Ensured that IT resources were integrated in the strategic, operational, and financial plans of the FGIS business portfolio. I represented FGIS in meetings with IT contractors and officials both within and outside the Department
  • Supervisor: Warren Dicus (Retired); May be contacted
  • Specific accomplishments include:
  • Lead the creation and implementation of NIST Federal Desktop Core Configuration Active Directory Group Policy Objects for the Agency. This was a challenging project that received a lot of initial resistance. After working with all stakeholders, I was able to facilitate a solution that met the requirements and needs of the Agency. FDCC policies were successfully implemented throughout GIPSA where possible.
  • Served as the Project Manager and Lead analyst for the Agency email migration from Novell Group Wise to a Highly Available Microsoft Exchange 2003 system. I developed the project plan and provided all technical expertise including the risk analysis, system design, migration strategy, and implementation plan. I then worked closely with GIPSA support staff to generate a statement of work to solicit contractor support. This was a particularly challenging project that required extensive planning and was constrained by competing resources. Using my implementation plan the migration was completed over a weekend with zero downtime and was fully integrated with the Department e-mail system upon delivery.
  • Lead the migration from Microsoft Windows NT directory services to Microsoft Active Directory across 10 remote offices including COOP site. Worked closely with staff and contractors to design, implement, and test the migration to Active Directory.

Network Engineer

IntelliSys Technology Corporation
04.1994 - 02.1997
  • Provided senior-level support and consulting services for a large customer base. Duties included developing, installing, and supporting all aspects of LAN /WAN networks and Help Desk services. I supported customers with more than 10,000 users developing unique cutting-edge solutions. Regularly conducted meetings with customers and stakeholders to gather requirements in an effort to develop the best solution to meet their unique business needs.
  • Supervisor Linda Carr (703)323-1700 May contact
  • Specific accomplishments include:
  • Led the USDA Federal Grain Inspection Service LAN activities and was solely responsible for the NetWare servers and GroupWise Email services at FGIS. Provided expert-level technical guidance for a broad range of services including servers, workstations, applications, LAN hardware, cable plant management, and network printing. Advised FGIS staff on issues related to network health and what steps should be taken to avoid problems. Worked with FGIS and USDA staff developing policies, strategies, and plans to ensure the FGIS LAN remained in compliance with Department guidelines and directives. Responded to user trouble calls and worked with FGIS staff to develop a Help Desk system. Recommend server applications and operating system changes. Performed system updates as needed. Advised the FGIS employees that the mail system performance would be significantly increased if the application platform was migrated from OS/2 to NetWare. After implementing my recommendations email trouble calls were reduced by 40%
  • Served as the project lead for USDA Rural Development LAN workstation implementation project I was the onsite project leader in charge of LAN workstation configuration and installation. I personally designed the client protocol stack, startup files, standard application suite, and roll out schedule. I designed and set up a Novell Netware server to streamline the client installation process. The server I developed reduced the installation time from several hours to twenty minutes per workstation. This server also allowed more than one installation at a time reducing the project schedule by hundreds of hours.
  • Developed a set of standard client configurations for the Securities Exchange Commission Local Area Network. Working with the SEC staff to gather requirements, I was able to design a suite of client configurations that enabled all SEC workstations to operate in their secure network environment. This included multi-protocol stacks consisting of IPX, NetBIOS, and TCP/IP running on MS-DOS, Windows 3.11, OS/2 Warp, and Windows 95 machines. The standard configurations reduced the number of service calls and simplified troubleshooting efforts.
  • Designed and maintained the IntelliSys NetWare Network and customer lab environments. Working closely with the senior executives at IntelliSys, I developed a complex LAN to meet the company’s requirements. This included a total renovation of the network including the cabling plant, workstations, servers, storage, applications, backup systems, and security policies.

Field Engineer

American Computer Service
08.1991 - 06.1994
  • Provided senior-level support and consulting services for a large customer base. Duties included developing, installing, and supporting all aspects of LAN /WAN networks and Help Desk services
  • Specific accomplishments include:
  • Developed solutions for customers migrating from WANG minicomputer environments to Intel-based microcomputer LANS. Managed and performed site installations at various military installations.
  • Designed and Implemented 300 user NetWare Network at DISA Worked as part of the design team that included DISA and ACS employees. Provided insight to technical issues related to configuration and installation of workstations, NetWare servers, network hardware, and cable installations. Worked with the team to develop configuration and installation schedules. Chosen as the project leader for the workstation configuration and burn-in process. Personally led the team that configured and installed all network hardware at two DISA sites. In charge of all onsite component level repair of PCs and Printers.
  • LAN administrator for a 50 user NetWare Network at Soldiers Home for eighteen months Handled all LAN administration and hardware repair sixteen hours per week. Worked closely with end users to create a suite of LAN applications. Set up and configured all network file sharing printing and Email services.

Education

Diploma - Computer and Electronics Technology

Computer Learning Center Springfield
01.1991

General Studies - undefined

Northern Virginia Community College
Annandale, VA
01.1989

High School Diploma - undefined

Thomas Edison High School
Springfield, VA
01.1987

Skills

  • Vulnerability assessment
  • Identity and Access management
  • Threat intelligence analysis
  • Mobile device security
  • Security awareness training
  • Cloud security management
  • Security architecture design
  • Incident response planning
  • Penetration testing
  • Social engineering prevention
  • Security policy creation
  • Business continuity planning
  • Digital forensics capabilities

Certification

  • CISSP - Certified Information Systems Security Professional (ISC)² Member ID:522542
  • PMP - Project Management Professional Project Management Institute (PMI) – PMP#:1197198
  • MCITP - Microsoft Certified IT Professional (Enterprise Administrator) Microsoft Certified Professional ID:3755154
  • MCTS - Microsoft Certified Technology Specialist - Microsoft Certified Professional ID: 3755154
  • MCSE +Security - Microsoft Certified Systems Engineer: Security - Microsoft Certified Professional ID: 3755154
  • MCSA +Security Microsoft Certified Systems Administrator: Security - Microsoft Certified Professional ID: 3755154
  • MCP - Microsoft Certified Professional) Microsoft Certified Professional ID: 3755154
  • MCSA - Microsoft Certified Systems Administrator - Microsoft Certified Professional ID: 3755154
  • MCSE - Microsoft Certified Systems Engineer - Microsoft Certified Professional ID: 3755154
  • CompTIA Security+ Certified Professional Career ID Number: COMP001005514567 (Expired in favor of maintaining the CISSP)

Affiliations

  • (ISC)²
  • Project Management Institute (PMI)
  • Washington DC Chapter of the Project Management Institute
  • IEEE Computer Society

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Timeline

Chief Information Security Officer

Woodrow Wilson International Center for Scholars
10.2010 - Current

Supervisory Information Technology Specialist / Branch Chief

Grain Inspection Packers and Stock Yards, United States Department of Agriculture
03.2010 - 10.2010

Temporary promotion - Supervisory Information Technology Specialist / Acting Branch Chief

Grain Inspection Packers and Stock Yards, United States Department of Agriculture
11.2009 - 03.2010

Information Technology Specialist (Network)

Grain Inspection Packers and Stock Yards, United States Department of Agriculture
10.2000 - 11.2009

IT Specialist (Network)

Grain Inspection Packers and Stock Yards, Federal Grain Inspection Service, United States Department of Agriculture
02.1997 - 10.2000

Network Engineer

IntelliSys Technology Corporation
04.1994 - 02.1997

Field Engineer

American Computer Service
08.1991 - 06.1994

General Studies - undefined

Northern Virginia Community College

High School Diploma - undefined

Thomas Edison High School

Diploma - Computer and Electronics Technology

Computer Learning Center Springfield

Similar Profiles

  • Helen Spruill

    Helen SpruillHelen Spruill

    Human Resources Specialist at Woodrow Wilson International Center/SmithsonianHuman Resources Specialist at Woodrow Wilson International Center/Smithsonian

  • Brooke Paul

    Brooke PaulBrooke Paul

    Woody's Diner at Woodrow Wilson Rehabilitation CenterWoody's Diner at Woodrow Wilson Rehabilitation Center

  • Jacqueline Sanchez

    Jacqueline SanchezJacqueline Sanchez

    Paraprofessional at Woodrow Wilson Junior HighParaprofessional at Woodrow Wilson Junior High

  • ERICA CASTRO

    ERICA CASTROERICA CASTRO

    Travel Specialist/Junior Data Analyst at National Oceanic and Atmospheric Administration, NOAATravel Specialist/Junior Data Analyst at National Oceanic and Atmospheric Administration, NOAA

  • Mayan Al Bakhat

    Mayan Al BakhatMayan Al Bakhat

    Teacher at Iqra Learning CenterTeacher at Iqra Learning Center

CREATE PROFILE
William A Kelly