Seasoned Cybersecurity professional, knowledgeable in designing, deploying, and managing Department of Defense information systems and NIST cybersecurity frameworks. I have proven success in IT leadership, systems integration, project management, compliance and risk management. I am extremely committed to creating a healthy working environment, enhancing customer relationships, and generating organizational improvements and success.
Active DOD Top-Secret/SCI clearance (investigation completed FY19).
-Managed the organization’s Network Operations and Security Center and Cybersecurity program in accordance with NIST, CNSS, and DoD security requirements by utilizing the Risk Management Framework (RMF) to manage endpoints and the Cisco network infrastructure.
-Maintained documentation, packages, and artifacts utilizing the DISA eMASS system and other enterprise applications for Information Systems, including (Unclassified/Classified) network enclaves (voice/data), Program Managed / Program of Record (PM/POR) and Platform IT (PIT) systems.
-Performed assessments of various government systems and locations to ensure the appropriate levels of administrative, technical, and physical security controls are applied in accordance with Risk Management Framework (RMF) NIST 800-53 Rev 4.
-Provided security overview and risk mitigation strategies throughout the Engineering and Implementation (E&I) design and build phases of new base sites and technology replacements of Information Systems (IS), Information Technology (IT), and network enterprise services across multiple classifications of enclaves.
-Performed ad-hoc and scheduled vulnerability audits on all enterprise services, utilizing ACAS and Security Content Automation Protocol (SCAP) vulnerability scans, including STIG reviews, and provide recommended corrective actions to ensure all IS/IT systems meet security compliance. Documented results, created POA&M(s), and collected required artifacts in preparation for A&A submissions.
Areas of Focus: CMMC, FedRAMP, NIST/DOD RMF, MSFT Cloud Architecture, IT Governance, Risk and Compliance, Privacy