Manager Engineer
Resume:
Information System Security Manager / Information Systems Manager
Summary of Qualifications
. Cleared for Top Secret information and granted access to Sensitive
Compartmented Information based on a Single Scope Background
Investigation (SSBI) August 2012.
. Information Systems Security Manager Functions as the activity's
accreditation action officer, focal point, and principal advisor for
all INFOSEC matters in compliance with governing directives and
instructions. Analyze and evaluate system security technology, policy,
and training requirements in support of National, Department of the
Defense (DOD), Department of the Navy (DON) INFOSEC, DIACAP (DITSCAP),
and DCID 6/3 procedures. Implement DON risk management programs.
Develop and maintain system accreditation and support documentation.
Review and validate proposed system changes. Develop information
systems contingency plans. Maintain activity INFOSEC plans. Develop
system security plans. Have working experience with DIACAP, FISMA,
FIPS 199, FIPS 200 and NIST SP800-53 procedures and controls. Able to
lead the DCID 6/3 to ICD 503 transitioning team.
. Information Systems/Network Administrator Provides basic and in-depth
levels of instruction in Local Area Networks (LAN) and Metropolitan
Area Networks (MAN), with focus on system administration. Prepares
technical personnel to administer commercial network operating systems
within the functional areas of configuration, system, and performance
management. Manage/maintain internal site networks to include but not
limited to MS Exchange, NetWare, Novell, UNIX, and Windows 2K, XP,
Vista, Windows 7, 2K3, and 2K8 . Conduct first level network software
and hardware corrective actions.
. Transmission System Technician Operates and performs system
monitoring, fault isolation and circuit restoration of communications
suites in the HF, UHF, SHF, and EHF frequency spectrums afloat and
ashore, to include; communication transmission paths, input/output
devices, cryptographic devices, interface equipment and patch panels,
familiarization with signals, multiplexers, modulators/demodulators,
and applicable system transmitters, receivers, couplers and antenna
subsystems.
Education
Bachelor of Science in INTERNETWORKING TECHNOLOGY Strayer University
Training
Information System Security Manager trained by US Navy
EKMS Manager trained by US Navy
Network Administrator trained by US Navy
Surface Communication Systems Operator trained by US Navy
Certifications
Certified Information System Security Professional (CISSP) Renewed
Aug 2012
Employment History
Experis March 2012 - Present
US Army Record Management Declassification Agency (RMDA)
Ft Belvoir
Alexandria Va
Senior Information Systems Security Engineer
. Senior System Analyst responsible the overall Information Systems
security posture of RMDA ARIMS and ARIMS C programs.
. Ensure DIACAP procedures are implemented and enforce.
. Completed and submitted DIACAP packages for ARIMS and ARIMS C.
. Responsible for drafting and submitting Certificate of Networthiness
(CON) for applications on RMDA systems.
. Instrumental in obtaining IATO for both ARIMS and ARIMS C by improving
the systems DIACAP scorecard and eliminating 27 CAT II findings
. Responsible for RMDA IAVM program
. Responsible for ensuring DISA Gold and Retina scans are conducted on a
routine basis, finding are mitigated in a timely manner, producing and
implementing Standard Operating Procedures (SOP).
. Responsible for continuous monitoring of systems to ensure compliance
with DoD, US Army, DIACAP and other federal regulations as they apply.
US Resources December 2010 - September 2011 (End of contract)
Defense Security Service (DSS)
4075 Wilson Blvd.
Arlington, VA 22203
Senior Information Systems Security Engineer
. Member of the Certification and Accreditation Team responsible for
certifying and accrediting Defense Security Services (DSS) system in
accordance with (IAW) DoDI 8501.01 DIACAP procedures.
. Responsible in ensuring the system Identification Profile (SIP) is
correct and entered into eMASS; The DIACAP Implementation Plan (DIP)
is completed and ensuring that all supporting documentation are
accurate and complete. Responsible for ensuring the DIACAP Scorecard
and POA&M are created, updated and maintained IAW DoDi 8501.01 and the
DIACAP Knowledge Services.
. Presently drafting an organizational level policy and procedures for
implementing DIACAP within DSS.
STRATECON July 2010 - December 2010 (End of contract)
Department of Homeland Security (DHS)
131 M ST Washington DC
Senior Information Systems Security Engineer
. Member of the Security Test and Evaluation Team responsible for
accrediting and re-accrediting DHS systems. Testing systems as
directed by FIPS 199 and FIPS 200 ensure systems meet NIST SP 800-53A
version 3. Testing included scanning with various scan such as NESSUS
and Foundstone, interviewing ISSO/IAO, system administrator, database
administrators, understanding the network's configuration within the
accreditations boundary. Preparing the RTM, SAR, viewing the SSP,
POA&M and various other documentation for accreditation recommendation
to DHS ISSM/IAM.
. Responsible for ensuring DHS systems are in compliance with FIP 199,
FIP 200 and NIST standards.
Information Systems Solution, July 2004 - July 2010
JDISS Joint Program Office
Office of Naval Intelligence Washington, DC
Lead Information Systems Security Engineer - Information Assurance Officer
(IAO/ISSO)
. Responsible for preparing the security accreditation documents for all
Joint Deployable Intelligence Support System (JDISS) Joint Program
Office (JPO) projects to Special Security Office (SSO) Navy and DIA
SYS-4A, whether it be Windows based (XP, and W2K3), or Unix-based
(Solaris 10 with and without Zones). Preparation of accreditation
documents include performing security analysis and vulnerability
assessments while using commercial and government software, and adhoc
manual testing while ensuring systems and documentation comply with
DoD Intelligence Information System (DoDIIS) Security Certification
and Accreditation Guide, and Director of Central Intelligence
Directive (DCID) 6/3 - Protecting Sensitive Compartmented Information
Within Information Systems and are accredit on the U.S. Government's
Special Compartmented Information (SCI) Network.
. Responsible for ensuring JDISS products also meet Defense Information
Systems Agency's (DISA) Security Requirement Specification (SRS) and
the National Security Agency's (NSA) Systems and Network Attack Center
(SNAC) guides for the various Operating Systems (OS) and are accredit
on the U.S. Government's collateral network.
. Responsible for the preparation C&A packages for all JDISS products.
. Designed, developed, and implementation of JDISS developmental LAN.
The developmental LAN is instrumental in testing new project in a safe
and secure test lab.
. Proficient in the use of DISA Gold, Retina, SRR, SECSCAN and WASSP
scanning tools.
. Prepared and implemented various Standing Operational Procedures (SOP)
for the operation of the developmental LAN
. Produce and implement Certification Test Procedures for DoDIIS XP,
2003 Server, Linux and Solaris system used for certification by the
Independent Testing Authority (ITA) through Defense Intelligent Agency
(DIA) and Accreditation.
. Coordinate which command/sites worldwide in assisting with the
accreditation of their JDISS systems.
. Successful implemented NIST Federal Desktop Core Configurations (FDCC)
standards into the DoDIIS baseline prior to the government's
implementation date.
Military Experience
Operations Chief, May 2002 - July 2004 (Retired)
Navy Operations Center (NOC) Pentagon
Chief of Naval Operations, Washington, DC
. Senior Operations Brief (OPNOTES) writer for the Secretary of the Navy
(SECNAV), Chief of Naval Operations (CNO), and their staffs.
Supervise the preparation of the Daily OPNOTES utilizing Microsoft
PowerPoint and posting to the Classified Internet utilizing Acrobat
Reader.
. Managed three divisions of 42 personnel in supporting USN operations
worldwide for SECNAV, CNO, and their staffs. Physical security
manager, responsible for the physical security of the NOC including
maintaining an accurate clearance roster and granting access to the
NOC.
. Developed and implemented the Afloat Database used daily to track
naval assets and used by the Secretary of the Navy to brief Congress
on such matters.
. Responsible for written evaluations on enlisted personnel for entry
into their permanent record.
. Developed and implemented the command's physical security policy and
procedure guide.
. Command liaison, for all network security matters.
Leading Chief Petty Officer May 1999 - May 2002
USS Whidbey Island LSD-41
Little Creek, VA
. Responsible for managing a division consisting of 12 personnel for the
daily operations of C4I procedures and assets including Cryptographic
Material System (CMS), message handling and processing, training and
maintaining various HF/VHF/UHF and UHF Satellite circuits.
. LAN Administrator and Information System Security Manager responsible
for the daily operations and security of Marine and Navy LAN assets
including NIPRNET and SIPRNET networks.
. Responsible for overseeing the IT-21 upgrade and installation
including: NATO HF High Speed Modem, ADNS, INMARSAT HSD, TSS, DWTS,
NAVMACS II, Sailor Phone, Battle Force E-mail and 5kHz SATCOM system.
Communications Watch Officer May 1996 - May 1999
JITC Washington Operations
Cheltenham MD
. Manage 13 personnel and the 15,000 sq foot test bed facility
conducting C4I operational evaluations for DISA acquired systems,
and provides operational and technical assistance to war fighters.
. Led the preparation for Y2K testing of all automated systems at
JITC including NAVMACS V2/V3/V5, CUDIXS, NOVA, PCMT NAVMACS II,
MARCEMP, MINIMACS and Gateguard.
. JITC and DISA Sailor of the Year.
Contact this candidate