Enterprise IA Project Manager
Resume:
ROCKY CORTEZ
***** ***** *****, *** *******, Texas 78255
acd5pv@r.postjobfree.com
ENTERPRISE IA PROJECT MANAGER ENTERPRISE CHIEF INFORMATION SECURITY OFFICER
QUALIFICATIONS PROFILE
Results-driven leader with over ten years of extensive experience in leading IT and information security projects and teams. Possess knowledge in handling notification of Internet threats, alerts, vulnerabilities, and anti-virus software. Collaborate closely with other professionals during the development and training stages, utilizing solid interpersonal aptitude. Efficient in utilizing vulnerability scanners, monitoring, auditing and intrusion detection systems, and forensic response systems. Proven track record in developing and implementing various strategies, procedures, tasks, and other programs in accordance with the policies and regulations set by the company. Currently hold a TS/SCI Active Clearance.
TECHNICAL ACUMEN
Operating Systems Linux, UNIX, and Windows (All versions)
Developmental Tools Retina, ACAS, ArcSight, Nessus, Xacta, Snort, ISS, Blue Coat Proxy, SCCM, HBSS
Productivity Tools Microsoft Office Suite, MS Project, Wireshark, Remedy, EnCase Forensic v6
Audit Tools NIST SP 800-53, 800-53A, CNSSI 1253, ICD 503 Practitioner
AREAS OF EXPERTISE
Project Management and Operations Quality Control and Assurance Software Development Analytical Skills
Problem Resolution Documentation and Reporting Regulatory Compliance Training and Supervision
EDUCATION
Master of Science in Information Systems and Security: Fall 2014 - Our Lady of the Lake University, San Antonio, TX
Bachelor of Science in Computer Information Systems: 2002 - Our Lady of the Lake University, San Antonio, TX
PROFESSIONAL EXPERIENCE
GENERAL DYNAMICS INFORMATION TECHNOLOGY – SAN ANTONIO, TX USA
ENTERPRISE CISO/IA PROJECT MANAGER NOV 2012 - PRESENT
- Spearhead the implementation of IA engineering services, program management and technical solutions to enterprise-wide requirements in accordance with the pre-migration estimates.
- Supervise the creation, editing, and reviews of security certification and accreditation packages for the Air Force's Joint Worldwide Intelligence Communications System (AF JWICS) Enterprise. Utilized the new Risk Management Framework to certify and accredit the Enterprise.
- Initiate in providing engineer security architecture, design, implementation support, and sustainment to AF-JWICS IA tools such as ArcSight, Directory Resource Administration, ACAS, and HBSS.
- Perform analysis on the Enterprise Service Center (ESC) change proposals for security, interoperability, certification and accreditation issues or vulnerabilities.
- Ensure the application of customer briefings; composed minutes on Technical Interchange Meetings and provide monthly status reports on IA activities.
Highlights:
- Expertly directed IA projects and served as project consultant in delivering senior level project, functional, and technical knowledge, including collaborating with other project managers on establishing project direction, defining project tasks, and allocating resources.
- Successfully led the completion of various IA Projects which included HBSS, ArcSight, Nessus, C&A in Xacta, and Classification tool.
INFORMATION ASSURANCE MANAGER (MAZAR-E SHARIF, AFGHANISTAN) OCT 2010–OCT 2012
- Manage and monitor all IA/CND reports to be implemented by active duty development, information assurance and information system technicians while functioning as the RC-North IAM.
- Play a vital role in conducting real-time analysis of theater information assurance/computer network defense (IA-CND) data to efficiently update the program.
- Render support to employees in administering Microsoft Exchange, Active Directory, SAV server, and WSUS servers for NIPR/SIPR/CENTRIX.
- Collaborate directly with the Theater Network Operations and Security Center (TNOSC)/Joint NETOPS Control Center - Afghanistan (JNCC-A) for all subordinate units within the theater.
- Provide expert oversight in securing that all government computers are free from viruses and ensuring proper application of security patches for all operating systems and associated software packages.
- Take charge of developing command security policies to secure networks in accordance with the DoD standards.
- Expertly operated the Remedy to track trouble tickets and respond to customer issues assigned to RC-North.
ITT CORPORATION – BAGRAM, AFGHANISTAN
INFORMATION ASSURANCE LEAD (INFORMATION ASSURANCE MANAGER) SEP 2009–SEP 2010
- Monitored the performance of more than 20 information assurance security officers (IASOs) in Afghanistan.
- Assumed full responsibility in overseeing Active Directory; providing support in monitoring the network; and presenting updates of SCCM and patch pushes through system center configuration manager (SCCM) console.
- Assisted local and remote server in managing the site IAs across 14 locations in Afghanistan as well as in monitoring the performance of Microsoft Exchange, Active Directory, SAV server, and WSUS servers.
- Determined trouble tickets and resolved customer issues assigned by Regional Network Operations and Security (RNOSC); communicated directly with the TNOSC for upper level support.
- Supervised the process of receiving, compiling, and reporting status of all systems daily through the AOR; maintained comprehensive documentation of all project records through the utilization of web-based application called Remedy.
Highlights:
- Directed all initiatives to heighten the protection of all government computers from viruses and ensured application of all security patches on all operating systems and other software packages.
- Efficiently utilized accessible network tools, tracked all bases, and forwarded operating bases across Afghanistan in order to ensure 100% compliance with information assurance regulations.
- Maintained the status of the Blue Coat, DNS, and Firewall logs.
KNOWLEDGE CONSULTING GROUP – SAN ANTONIO, TX, USA
SENIOR INCIDENT RESPONSE ANALYST / SUPERVISOR MAY 2007–SEP 2009
- Took part in investigating and documenting all computer incidents in the Air Force.
- Administered the process of analyzing system data and/or logs, which included firewalls, IDS/IPS systems, proxy logs, malicious logic/anti-virus software output/system logs along with the vulnerability assessment results.
- Employed in-depth knowledge of security policy and procedure development, as well as risk analysis and compliance requirements according to NSA and DoD directives.
Highlights:
- Oversaw the configuration and monitoring of IDS/IPS systems such as McAfee, automated security incident measurement (ASIM), and Snort in order to include signature development.
- Displayed clear comprehension in performing ethical hacking, data forensics and recovery, and utilization of protocol analyzers, which included the Ethereal/Wireshark and Network General Sniffers.
SENIOR ARCSIGHT ADMINISTRATOR INCLUSIVE DATES
- Organized events, developed cases, wrote rules, prepared data monitors and dashboards, and assessed payloads.
- Researched, documented, and validated suspicious events along with other Air Force Network Operations Center (AFNOC) NSD operators, and applied established tactics, techniques, and procedures (TTPS).
- Rendered support in the development of Microsoft Access database and Excel spreadsheet for cross-referencing of current and future personnel qualifications for contract proposals.
- Conducted technical briefings and training for personnel based on selected research topics related to network security and associated functions.
Highlights:
- Initiated the execution of network monitoring and intrusion detection research for activities related to AFNOC NSD mission execution.
- Made use of ArcSight as a security information manager (SIM) to keep track of the events produced by McAfee, Snort, CISCO, Microsoft, UNIX, and ASIM.
SECUREINFO CORPORATION – KUWAIT, KUWAIT (SEP 2003–APR 2007)
SENIOR NETWORK SECURITY ANALYST / PROJECT LEAD OCT 2004–APR 2007
- Provided assistance to the Regional Computer Emergency Response Team in South West Asia.
- Regulated the detection of hostile intrusions, infections, poor security practices, and violations of army policy to army network systems through the analysis of IDS traffic, proxy logs, NIKSUN transcripts, firewall logs, Flying Squirrel, and Yellow Jacket.
- Presided over the installation and configuration of Snort open source IDS to detect network attacks signatures and log them to MySQL server.
- Keenly assessed breaches on army network security through authorized tools and computer forensics.
- Handled trend analysis, daily and weekly security incident reports for all platforms, quality initiative reports, and vulnerability reports in a daily and weekly basis.
Highlights:
- Formulated and organized series of briefings focused on detailing CND capabilities and current threat assessments.
- Streamlined the actualization of stress and penetration testing for the entire perimeter network scanning for vulnerabilities and weaknesses through advanced port scanning tools and Sniffer 4.7 to analyze network traffic.
- Participated in handling integration of ArcSight 3.5; devised an ArcSight training guide for new and current analysts in the AOR.
- Coordinated with customers to customize and implement self-tuning correlation system through ArcSight and other tools to reduce event data presented to analysts.
NETWORK SECURITY ANALYST SEP 2003–SEP 2004
- Closely collaborated with the AFCERT, which involved the use of tools such as the ASIM system, common intrusion detection director system (CIDDS), and VPN.
- Studied and conducted malicious logic activities related to AFCERT mission execution.
Highlights:
- Acquired proficiency of intrusion detection systems (ASIM and CIDD) with detailed knowledge in various areas, including Internet, IP, and domain name addressing; fundamental components of networks; and the basics of TCP/IP, FTP, and HTTP.
- Accomplished numerous tasks as the network security analyst encompassing the procedure of detecting, identifying, resolving, and reporting suspicious activities connected to the sensor activity from the monitored Air Force systems.
AWARDS AND HONORS
RCERT SWA/TNOSC Plague - US Army
AFCERT Plague - US Air Force
CERTIFICATIONS
ArcSight Certified Systems Analysts (ACSA)
ArcSight Certified Integrator/Administrator (ACIA)
eEye Retina Certification
McAfee HBSS Certification
Certified Information Systems Security Professional (CISSP)
CompTIA Security +
C EH Certified Ethical Hacker
MS System Center Configuration Manager (SCCM) Certified
Telos Xacta Certification
ACAS Certification
AFFILIATIONS
International Information Systems Security Certification Consortium (ISC2)
CompTIA
Black Hat Conference: TCP/IP Weapons School
Contact this candidate