Post Job Free
Sign in

Engineer Security

Location:
Hyattsville, MD
Posted:
December 18, 2012

Contact this candidate

Resume:

Terrance E Johnson

C 240-***-****

E-mail: ********@*****.***

EDUCATION:

Masters of Science, Information Assurance - Norwich University,

Northfield, VT

Bachelors of Science, Information Systems - Strayer University,

Washington, DC

CERTIFICATIONS:

Cisco Certified Network Associate 2.0 (CCNA)

CompTIA Security +

Experience Detail:

11/2011-4/2012 KeyW, Mclean Virginia Senior INFOSEC Engineer

. Ensure that information systems securely function in accordance to the

security controls documented in the SSP once systems are approved for

the production environment and in compliance to ICD 503, NIST SP800-

53, SP800-125, CNSSI 1253, ICS 500-16, ICS-500-27

. Assist Administrators with operational security, review of system

audit logs, review Administrator actions and adherence to security

policies and regulations

. Review account activity for Administrators, privileged users, and

general users

. Review and approve proposed changes to system baseline configurations,

enforce standard configuration management practices, and perform

updates to the SSP and related Certification and Accreditation Body of

Evidence ( BoE)

. Work closely with the component Information System Security Manager

through regular briefings, meetings, and discussions concerning

information security

. Conduct vulnerability assessment scans using WASSP, SECSCAN, MBSA and

network scanning tools Nessus, Nmap

. Assess the security posture of the following OS's Windows Server

2003/2008, Linux, Solaris CentOS, in addition Windows Domains Active

Directory, DNS, and GPO's

. Assess security posture of virtualized environments to include Citrix,

VMware ESX/vSphere, HyperV and VDI

. Maintain System Security Plans and related Certification and

Accreditation BoE

. Submit and register project's in to the new Information Assurance

FISMA reporting tool XACTA

. Conduct continuous monitoring of systems

January 2010 - 11/2011 Agilex, McLean, Virginia Lead INFOSEC Engineer

. Security Engineered Linux, UNIX and Windows operating systems against

CNSSI 1253, ICD 503, DCID 6/3, DIACAP, and NIST requirements

. Drafted and Evaluated System Security Plans (SSPs), System Security

Authorization Agreements (SSAAs),

Security Requirements Traceability Matrices (SRTMs), and Risk

Assessments

. Developed and Analyzed C&A artifacts documentation in accordance with

Department of Defense (DoD), Intelligence Community (IC), and Agency

standards

. Ran the latest security tools to assess information system compliance

(Retina, DISA Gold Disk, DISA SRRs, DISA Security Checklists, WASSP,

SECSCN, Security Blanket)

. Assessed and mitigated system security threats/risks throughout the

program life cycle

. Represented project as lead security engineer at control gates and

addresses stakeholders and senior management security concerns

December 2008 - January 2010 Independent Consultant, McLean, Virginia

INFOSEC Engineer

. Member of the Initial Testing and Evaluation Security (iTEST) Team

tasked with aiding customers efforts to successfully certify and

accredit systems and applications.

. Assisted team members with testing and evaluating new and innovate

security products, i.e. hardware software.

. Briefed senior management, customers, and in some scenarios

Information Systems Security Managers' (ISSM) staff regarding security

product evaluations i.e. functional and security test results..

. Attended customer control gates and Technical Exchange Meetings

regarding assuring the C &A process was less cumbersome for the

customer and the Certification & Accreditation Branch.

. Assisted projects with identifying and mitigating major

vulnerabilities and associated risk/s prior to formal C&A testing.

Additionally, the engineer assists with system and network hardening.

. Conducted system security scans using Windows Automated Security

Scanning Program (WASSP) v4.4, UNIX Security Scanner (SECSCAN), Gold

Disk v2.0, Backtrack 4, NESSUS and Microsoft Security Baseline

Analyzer (MBSA) 2.1.

. Assessed database security using Scuba, AppSentry and AppDetective

. Assessed website and web application's security using WebInspect .

March 2007- December 2008 Independent Consultant, McLean, Virginia Senior

Systems Security Engineer

. Provided process and security support for senior management and

Information Systems Security Managers' (ISSM) staff regarding

assisting clients of the Network Interface Program (NIP) Achieve

Director of Central Intelligence Directives (DCID) 6/3 compliance.

. Maintained and updated Certification & Accreditation (C & A), and

configuration management baseline of system's hardware, software, OS

and ensured overall security posture according to DCID 6/3 compliance.

. Assisted team members with testing one-way transfer software (OASIS)

for bugs and anomalies to include .Net libraries of functions, which

enhanced code by taking advantage of multi-threading technology

ultimately improving latency and replacing out dated existing one-way

transfer applications.

. Researched current and emerging technologies of interest for the

Network Interface Program (NIP) that included COTS and GOTS solutions.

. Assured product/s performed as stated and did not introduce

vulnerability/s in which the risk/s associated could be mitigated to

an acceptable level.

. Verified compliance with security recommended configuration settings

using products such as Tenable Nessus 3.2 Vulnerability Scanner,

Wireshark 1.0.2, Cain & Abel sniffer 4.9, Backtrack 4,Windows

Automated Security Scanning Program (WASSP) and UNIX Security Scanner

(SECSCAN).

. Presented final test results, recommendations, and written reports to

the Information Systems Security Management staff and senior

management for review.

. Setup and maintained a computer-lab test environment - Windows 2003

Enterprise Edition implementing Active Directory & Global Cataloging;

Fedora 9; Red Hat Enterprise Linux; VMware ESX, Citrix, Web, DNS, and

SMTP servers.

. Setup and maintained Sidewinder 7.0 firewalls, Cisco Catalyst 6500

Switch and Windows XP workstations.

December 2001-March 2007 Independent Consultant, McLean, Virginia Senior

Technical Support Engineer

. Responsible for system administration support, system maintenance and

operations support; configuration and maintenance of NIS, NIS+

severs.

. Coordinated hardware maintenance and repairs with vendors to include,

installation of new IEC software releases and patches.

. Ensured that workstations were 100% Department of Defense and

Information Assurance Vulnerability Alert (IAVA) compliant.

. Performed backup of all Sun, Network Appliance, and SGI servers;

developed and maintaining system contingency plans.

. Monitored and audited system logs for trends and analysis.

. Conducted troubleshooting on IEC workstations and applications;

monitored system configuration to ensure data integrity.

. Participated in SIT, SAT and FAT testing as required.

. Interfaced with the development/integration facility during the

discrepancy reporting process and assured that all systems complied

with site configuration management guidelines.

April 2000 - December 2001 Lockheed Martin Bethesda, MD, LAN/WAN

Developer

. Evaluated, recommended, installed, and supported LAN/WAN hardware and

software.

. Established and documented standards for network architecture; planned

and coordinated total network integration.

. Coordinated installation of required hardware and software,

. Coordinated third-party maintenance for network equipment problems,

. Developed uniform operation procedures and provided hands-on technical

support.

. Tiers II through III, for both client and servers.

. Designed architecture to include the software, hardware, and

communications

. Provided recommendations for present and future cross-functional

requirements and enterprise interfaces,

August 1999 - April 2000 BAE Ft. Belvoir, VA System Analyst

. Supported the college's multiple LAN classroom environments, support

ranged from Tier II through III in a Windows NT NOS environment.

. Configured workstations, laptops, palm pilots, plotters, printers, and

smart board VTC equipment; configured TCP/IP clients as well as DNS

and WINS services for static network installs.

. Configured Ethernet 802.3 NIC's and UTP CAT 5 Cable for workstation

and peripheral device installs.

. Created system and user policies and was responsible for securing the

system; monitored system and application logs to include the

monitoring of system performance utilities.

. Configured antivirus software and updated virus definitions as

required, performed monthly service maintenance.

December 1997 - August 1999 Computer Associates Andrews AFB, MD Network

Administrator

. Supported a third party application on a UNIX platform within a

classified Special Compartment Information Network. The application

was integrated within the SUN SOLARIS 2.6 operating system Netscape

Directory Server 3.5, and Netscape Enterprise Server 3.51.

. Conducted system backups, monitored system processes, logs, and

trained users on the operational functions of the featured

application.

. Created email accounts within Exchange, troubleshot profile issues,

and processors; implemented and configured TCP/IP, SSL, IPSec,

NetBEUI, and IPX/SPX. Maintained DNS, WINS, and DHCP servers.

. Served as alternate SCIF ISSO; maintained antivirus updates on servers

and workstations, maintained usernames and passwords.

. Maintained baseline suite of hardware and software in accordance to

AFCERT and DODCERT.

July 1995 - December 1997 TRIDENT/Veridian Oakton, VA System

Administrator

. Created e-mail accounts via Exchange Server 5.5; created WAN accounts

using Enterprise Administrator.

. Maintained user accounts, groups, profiles, and privileges through the

administration tools available within Window's NT Server 4.0 User

Manager for Domains.

. Installed hardware peripheral devices, switchboxes, Ethernet adapters,

and disk drives; identified and resolved hardware, software, and

operator problems.

. Trained users on software applications; installed workstations using

transceivers, fiber optic cabling, and CAT5 UTP.



Contact this candidate