Terrance E Johnson
E-mail: ********@*****.***
EDUCATION:
Masters of Science, Information Assurance - Norwich University,
Northfield, VT
Bachelors of Science, Information Systems - Strayer University,
Washington, DC
CERTIFICATIONS:
Cisco Certified Network Associate 2.0 (CCNA)
CompTIA Security +
Experience Detail:
11/2011-4/2012 KeyW, Mclean Virginia Senior INFOSEC Engineer
. Ensure that information systems securely function in accordance to the
security controls documented in the SSP once systems are approved for
the production environment and in compliance to ICD 503, NIST SP800-
53, SP800-125, CNSSI 1253, ICS 500-16, ICS-500-27
. Assist Administrators with operational security, review of system
audit logs, review Administrator actions and adherence to security
policies and regulations
. Review account activity for Administrators, privileged users, and
general users
. Review and approve proposed changes to system baseline configurations,
enforce standard configuration management practices, and perform
updates to the SSP and related Certification and Accreditation Body of
Evidence ( BoE)
. Work closely with the component Information System Security Manager
through regular briefings, meetings, and discussions concerning
information security
. Conduct vulnerability assessment scans using WASSP, SECSCAN, MBSA and
network scanning tools Nessus, Nmap
. Assess the security posture of the following OS's Windows Server
2003/2008, Linux, Solaris CentOS, in addition Windows Domains Active
Directory, DNS, and GPO's
. Assess security posture of virtualized environments to include Citrix,
VMware ESX/vSphere, HyperV and VDI
. Maintain System Security Plans and related Certification and
Accreditation BoE
. Submit and register project's in to the new Information Assurance
FISMA reporting tool XACTA
. Conduct continuous monitoring of systems
January 2010 - 11/2011 Agilex, McLean, Virginia Lead INFOSEC Engineer
. Security Engineered Linux, UNIX and Windows operating systems against
CNSSI 1253, ICD 503, DCID 6/3, DIACAP, and NIST requirements
. Drafted and Evaluated System Security Plans (SSPs), System Security
Authorization Agreements (SSAAs),
Security Requirements Traceability Matrices (SRTMs), and Risk
Assessments
. Developed and Analyzed C&A artifacts documentation in accordance with
Department of Defense (DoD), Intelligence Community (IC), and Agency
standards
. Ran the latest security tools to assess information system compliance
(Retina, DISA Gold Disk, DISA SRRs, DISA Security Checklists, WASSP,
SECSCN, Security Blanket)
. Assessed and mitigated system security threats/risks throughout the
program life cycle
. Represented project as lead security engineer at control gates and
addresses stakeholders and senior management security concerns
December 2008 - January 2010 Independent Consultant, McLean, Virginia
INFOSEC Engineer
. Member of the Initial Testing and Evaluation Security (iTEST) Team
tasked with aiding customers efforts to successfully certify and
accredit systems and applications.
. Assisted team members with testing and evaluating new and innovate
security products, i.e. hardware software.
. Briefed senior management, customers, and in some scenarios
Information Systems Security Managers' (ISSM) staff regarding security
product evaluations i.e. functional and security test results..
. Attended customer control gates and Technical Exchange Meetings
regarding assuring the C &A process was less cumbersome for the
customer and the Certification & Accreditation Branch.
. Assisted projects with identifying and mitigating major
vulnerabilities and associated risk/s prior to formal C&A testing.
Additionally, the engineer assists with system and network hardening.
. Conducted system security scans using Windows Automated Security
Scanning Program (WASSP) v4.4, UNIX Security Scanner (SECSCAN), Gold
Disk v2.0, Backtrack 4, NESSUS and Microsoft Security Baseline
Analyzer (MBSA) 2.1.
. Assessed database security using Scuba, AppSentry and AppDetective
. Assessed website and web application's security using WebInspect .
March 2007- December 2008 Independent Consultant, McLean, Virginia Senior
Systems Security Engineer
. Provided process and security support for senior management and
Information Systems Security Managers' (ISSM) staff regarding
assisting clients of the Network Interface Program (NIP) Achieve
Director of Central Intelligence Directives (DCID) 6/3 compliance.
. Maintained and updated Certification & Accreditation (C & A), and
configuration management baseline of system's hardware, software, OS
and ensured overall security posture according to DCID 6/3 compliance.
. Assisted team members with testing one-way transfer software (OASIS)
for bugs and anomalies to include .Net libraries of functions, which
enhanced code by taking advantage of multi-threading technology
ultimately improving latency and replacing out dated existing one-way
transfer applications.
. Researched current and emerging technologies of interest for the
Network Interface Program (NIP) that included COTS and GOTS solutions.
. Assured product/s performed as stated and did not introduce
vulnerability/s in which the risk/s associated could be mitigated to
an acceptable level.
. Verified compliance with security recommended configuration settings
using products such as Tenable Nessus 3.2 Vulnerability Scanner,
Wireshark 1.0.2, Cain & Abel sniffer 4.9, Backtrack 4,Windows
Automated Security Scanning Program (WASSP) and UNIX Security Scanner
(SECSCAN).
. Presented final test results, recommendations, and written reports to
the Information Systems Security Management staff and senior
management for review.
. Setup and maintained a computer-lab test environment - Windows 2003
Enterprise Edition implementing Active Directory & Global Cataloging;
Fedora 9; Red Hat Enterprise Linux; VMware ESX, Citrix, Web, DNS, and
SMTP servers.
. Setup and maintained Sidewinder 7.0 firewalls, Cisco Catalyst 6500
Switch and Windows XP workstations.
December 2001-March 2007 Independent Consultant, McLean, Virginia Senior
Technical Support Engineer
. Responsible for system administration support, system maintenance and
operations support; configuration and maintenance of NIS, NIS+
severs.
. Coordinated hardware maintenance and repairs with vendors to include,
installation of new IEC software releases and patches.
. Ensured that workstations were 100% Department of Defense and
Information Assurance Vulnerability Alert (IAVA) compliant.
. Performed backup of all Sun, Network Appliance, and SGI servers;
developed and maintaining system contingency plans.
. Monitored and audited system logs for trends and analysis.
. Conducted troubleshooting on IEC workstations and applications;
monitored system configuration to ensure data integrity.
. Participated in SIT, SAT and FAT testing as required.
. Interfaced with the development/integration facility during the
discrepancy reporting process and assured that all systems complied
with site configuration management guidelines.
April 2000 - December 2001 Lockheed Martin Bethesda, MD, LAN/WAN
Developer
. Evaluated, recommended, installed, and supported LAN/WAN hardware and
software.
. Established and documented standards for network architecture; planned
and coordinated total network integration.
. Coordinated installation of required hardware and software,
. Coordinated third-party maintenance for network equipment problems,
. Developed uniform operation procedures and provided hands-on technical
support.
. Tiers II through III, for both client and servers.
. Designed architecture to include the software, hardware, and
communications
. Provided recommendations for present and future cross-functional
requirements and enterprise interfaces,
August 1999 - April 2000 BAE Ft. Belvoir, VA System Analyst
. Supported the college's multiple LAN classroom environments, support
ranged from Tier II through III in a Windows NT NOS environment.
. Configured workstations, laptops, palm pilots, plotters, printers, and
smart board VTC equipment; configured TCP/IP clients as well as DNS
and WINS services for static network installs.
. Configured Ethernet 802.3 NIC's and UTP CAT 5 Cable for workstation
and peripheral device installs.
. Created system and user policies and was responsible for securing the
system; monitored system and application logs to include the
monitoring of system performance utilities.
. Configured antivirus software and updated virus definitions as
required, performed monthly service maintenance.
December 1997 - August 1999 Computer Associates Andrews AFB, MD Network
Administrator
. Supported a third party application on a UNIX platform within a
classified Special Compartment Information Network. The application
was integrated within the SUN SOLARIS 2.6 operating system Netscape
Directory Server 3.5, and Netscape Enterprise Server 3.51.
. Conducted system backups, monitored system processes, logs, and
trained users on the operational functions of the featured
application.
. Created email accounts within Exchange, troubleshot profile issues,
and processors; implemented and configured TCP/IP, SSL, IPSec,
NetBEUI, and IPX/SPX. Maintained DNS, WINS, and DHCP servers.
. Served as alternate SCIF ISSO; maintained antivirus updates on servers
and workstations, maintained usernames and passwords.
. Maintained baseline suite of hardware and software in accordance to
AFCERT and DODCERT.
July 1995 - December 1997 TRIDENT/Veridian Oakton, VA System
Administrator
. Created e-mail accounts via Exchange Server 5.5; created WAN accounts
using Enterprise Administrator.
. Maintained user accounts, groups, profiles, and privileges through the
administration tools available within Window's NT Server 4.0 User
Manager for Domains.
. Installed hardware peripheral devices, switchboxes, Ethernet adapters,
and disk drives; identified and resolved hardware, software, and
operator problems.
. Trained users on software applications; installed workstations using
transceivers, fiber optic cabling, and CAT5 UTP.