Michael C. Allen
Derry NH, *****
abn2rt@r.postjobfree.com
(H) 603-***-****
(C) 603-***-****
EDUCATION:
Bachelor of Science, Information Technology Management, University of Phoenix, February 5, 2007
CERTIFICATIONS:
Comptia A+ certified, April 2003
Comptia Network+ May 2003
MCP Windows 2000, February 2004
MCP Windows 2000 Server, February 2004
OTHER RELATED TRAINING:
Security Forces Officer Training Course (USAF Security Police Academy) - Camp Bullis, TX, 2010
Academy of Military Science - Officer\Leadership Training, McGhee Tyson TN, 2009
Security Engineering Training Course, Fort Fischer NC, 2008
Applied Network Engineering Week 1 & 2, Bethesda Maryland and Herndon VA, 2007
Personalizing Security on Solaris 10 Operating Systems, SUN Microsystems, Phoenix AZ, 2006
Networking Administration for Solaris 10 Operating System, SUN Microsystems, Los Angeles CA, 2006
Advanced System Administration Solaris 10 Operating System, SUN Microsystems, Burlington MA, 2006
Intermediate System Administration Solaris 10 Operating System, SUN Microsystems, Burlington MA, 2006
SECURITY CLEARANCE:
TS/SCI w/Poly
SUMMARY OF EXPERIENCE:
20 years’ experience providing design, implementation, and troubleshooting skills for IT, computer Security, Servers, and network
connectivity, from tier 1-4 support to internal and external clients, controlling software licensing, administering hardware inventories,
including review and recommendation of hardware and software upgrades\implementation, controlling LAN/WAN design,
administration and support. As well as reviewing governing guidance both for the DoD and other federal agencies.
EXPERIENCED IN THE FOLLOWING AREAS
Information Systems Security Management Project Mgt-IT
Design/Implementation of IA Processes and Procedures System Design\Implementation
Performed\Report on Security Investigations Network Admin\Engineering
Systems Admin\Engineering Server Management
Create\Implement IA Security Plans Security Determinations based on
- DITSCAP/DIACAP (DCID & JAFAN) - DCID 6/3, 6/4, 6/9, JFAN 6/3, NSTISS, M1 Joint DoDIIS, and
- System Security Plans NISPOM
DETAILED EXPERIENCE:
Information Assurance Engineer, Booz Allen Hamilton, Lexington MA –May 2011-Present:
- Responsible for the development and creation of required documentation to meet DIACAP for a newly develop government program
- IA Lead for Booz Allen Hamilton team as client facing representative as a subcontractor
- Responsible for determining and meeting team milestones and objectives for Accreditation
- Report all requirements and completion of milestones to team
- Development of all required Policies and Procedures to meet DIACAP
- Ensure direction of the program will allow for the proper implementation of technical solutions, policies and procedures
required for DIACAP
- Work with Engineering SMEs to meld requirements within the confines of the program requirements for effect and efficient
IA Posture
Operations Officer, 174 Security Forces Squadron, Syracuse, NY –Sep 2007 – Present:
- Responsible for the career development and unit direction of 70 personnel concentrating on the Operations Flight
- Work all personnel issues to include discipline, promotions, career progression and training
- Manage a team of Senior Non-Commissioned Officer to develop enlisted core and promote growth
- Analyze all security aspects and programs on the base ensure that all DoD and governing guidance’s are met or exceed
- Briefed on status of programs throughout the squadron to ensure that all requirements are being met
- Leverage civilian job knowledge to assist in Personnel Security and Industrial Security
- Represented Squadron on Technical Working Groups when Squadron Commander was unavailable
Network Engineer/Project Leader, Jacobs Technology, Hanscom AFB – Sept 2010 – May 2011:
- Responsible for the creation and reviewing of technical documentation and presentations to support the development of a prototype
Mobile Ad-hoc Network (MANET)
- Responsible for Information Assurance Management to meet DIACAP for Prototype
- Develop Information Assurance Strategy for program
- Responsible for Producing and Developing Security Plans (SSPs/SSAAs) and IA paperwork (POA&M, SRTM) for C&A
- Work with DISA Tools to make IA Control determinations and decide based on guidance the requirements and develop
mitigation strategy/justification for any deviations
- Worked with Department of Security Service to ensure that proper security measure where being implemented at contractor
site to include facility construction and TEMPEST determinations
- Responsible as Lead Engineer for the technical direction of the program
- Identified by the Chief Engineer as the Engineering Lead ensuring that the entire team understands the direction and that all
components of the Statement of Work are being met
- Brief Senior Leadership at ESC on the status and direction of the program
- Represent the Government to Contractor and perform the function of consultant to the Program Manager to ensure that
there is a enough valid information to make correct decisions
Information System Security Manager (ISSM), BAE Systems, Hudson NH – Feb 2008 – Sept - 2010:
- Performed duties as the ISSM\IAM responsible for all SCI facilities in NH
- Managed IT Systems for various levels and many different customers in a SCIF that was compartmented
- Worked directly with Customers to ensure that systems were meeting DITSCAP/DIACAP compliance
- Re-wrote many SSPs/SSAAs to strengthen documentation to meet proper Protection Level Requirements
- Responsible for Producing and Developing Security Plans (SSPs/SSAAs) and IA paperwork (POA&M, SRTM) for C&A
- Streamlined COOP for SCIF to simplify process and remove requirements to complicated risk
- Leveraged security scanning tools to test configurations; working to remove all Category 1 requirements before Inspection
date as to achieve ATO as soon as possible
- Developed a documentation method above the standard documentation to Identify the findings that were correct,
ones that were not applicable as well as the false positives to ease inspection and make relevant information from
inspector Always exceeding the inspection expectations
- Leveraged past IT experiences to work reported findings and cleanup/harden systems were required (STIGs)
- Requested by Senior Security Leadership to help develop and Test locations first PL3 System for proposal system
and various other IA projects for complex systems
- Responsible for implementation of the NSTISS Red/Black and TEMPEST requirements
Senior Lead Systems Engineer, BAE Systems, Rome NY – Jul 2006 – Feb 2008:
- Worked as the Systems Administrator for the Cross-Domain Science Lab. Configured, tested and demonstrated cross security
domain (Protection Level) solutions
- Tested various secure systems and troubleshot customer identified problems for secure government programs
- Created, modified and supported all PC, Server, and LAN for the team to include all IA documentation (SSAA) for C&A
and systems configuration to meet DITSCAP standards, also responsible for Security Auditing and Updates as directed by ISSM
- Created Disaster Recovery Plans and backups of testing system to ensure that team can perform their work with little fear of
downtime due to purposefully testing products to failure and testing security posture
- Managed various projects and appointed as team leader reporting to Contractor Program Manager for entire team
- Briefed various senior internal and external Government Agencies
Senior Systems Engineer, BAE Systems, Buffalo NY Jun 2004 – Jul 2006:
- Performed as Microsoft SME for IT System upgrade from Novell to Microsoft Active Directory
- Worked with FBI IT Personnel to instruct them on Active Directory support
- Developed Processes and Procedures for day to day functionality at Field Office; produced automated methods of completing work
- Worked various other IT type projects to help individual section leverage Microsoft tools to streamline reporting and development of
information to better support the Field Agents
Network Admin/Technical Support Representative, TWS Systems Livonia MI, Jan 2001 – Jan 2004:
- Responsible for troubleshooting external clients’ hardware, software, networking and dialup problems
- Tested TWS proprietary software issues through life cycle of development; installed at customer sites and ensured proper configs
- Implemented first VPN at location for both the company separated locations and then at customer sites for high speed support
- Became the go-to-guy when something needed to be solved
Non-Commissioned Officer in Charge (NCOIC), Information Systems Management 33rd Info Ops Sq Kelly AFB TX De 1999 – Jan
2000:
- Assigned to the Air Force Information Warfare Center/Air Force Emergency Response Team (AFCERT) as a Workgroup Admin
- Original Member of the 33rd Information Operations Squadron as and Information Manager
- Developed processes and procedures for reports management and general administrative controls to the Commander
- Worked as an Information Systems Security Officer for the AFCERT and then the 33rd
Assistant NCOIC, Computer Information Systems Management Flight, 493rd Fighter Sq, RAF Lakenheath UK, 1998 – 1999:
- Troubleshot PC issues for personnel as well as worked with base IT for Server configuration issues
- Implemented paperless processes for the squadron to streamline information sharing while squadron was TDY
- Worked AFCERT requirements and ISSO type duties on all PCs and Servers at the Squadron and while Deployed
Orderly Room Manager/Information Manager, 48th Fighter Wing, RAF Lakenheath, UK, 1996 – 1998:
- Assisted in the development of a 5 year plan to replace out dated PCs
- Troubleshot and configured PCs to include implementing AFCERT requirements and helped to train individuals on software
- Developed paperless process for Information Management were possible
Information Manager, HQ Standard Systems Group, Maxwell AFB - Gunter Annex AL, 1992 – 1996:
- Began working with PCs and Banyan Vines Systems
- Volunteered to work with networks and learned cabling and basic troubleshooting