Security Management

Donna Conahan

Email: abo0fi@r.postjobfree.com

Address: **** ****** *****

City: Suffolk

State: VA

Zip: 23434

Country: USA

Phone: 757-***-****

Skill Level: Management

Salary Range: 70

Primary Skills/Experience:

See Resume

Educational Background:

See Resume

Job History / Details:

Donna Conahan

3737 Indian Trail

Suffolk, Virginia

571-***-****

abo0fi@r.postjobfree.com

Objective

Seeking a permanent position in Capital Planning Investment Control (CPIC) and/or the Information Security/Risk Compliance arena.

Security Clearance

Active Top Secret Clearance: PR Completed August 2012.

Education and Certifications

Information Technology with Concentration on Homeland Security Strayer University, 2013

Facility Security Officer August 2001

Business Administration Northern Virginia Community College, 1984

Experience Summary

Over 28 years of experience in Administrative Management, Information Technology (IT) and Security. Experience includes Program Analyst, Security Clearances, Physical Security Access Control, Information Technology Security Assessments, Project Financial Management, Capital Planning and Investment Control (CPIC) analyst, electronic Capital Planning and Investment Control (eCPIC) System Administrator, Program Cost Analyst, Accounting and Budget analysis, OIG Audits, and Federal Enterprise Architecture alignment. Possess very strong communication and analytical skills.

Relevant Experience

August 2005 Present, Department of Labor, CPIC Lead Management Consultant/Security Analyst

Provide consultation services to the Office of the Chief Information Officer (OCIO) and the Office of the Chief Financial Officer (OCFO) within the DOL. Assist clients by reviewing, analyzing and advising on areas such as Software Development Life Cycle Manual (SDLCM) document requirements, OCIO designated deadlines, and Office of Management Budget (OMB) required documents which include Exhibit 300 and Exhibit 53. Develop documentation development, Quarterly Review input; eCPIC updates and provide recommendations to strengthen client deliverables.

Provide project management support and analyze current project performance, and address gaps in system development life cycle documentation, as well as assist the clients with strengthening areas of risk to facilitate the success of the project investment. Responsibilities include but are not limited to:

IT portfolio management

Review, analyze, advise and track Exhibit 300/Exhibit 53 content to ensure compliance related to requirements as established by the Office of Management and Budget (OMB).

Meet with DOL OCIO executive leader serving as the clients trusted advisor.

Assess the outcome of the Parted programs to determine the impact on the clients investment.

Develop an assignment matrix to assist in workload planning.

Work on the development/updating of the Software Development Life Cycle Manual (SDLCM) documentation. This includes consistent monitoring for the SDLCM for updates to maintain compliance.

Development of the following documents:

Project Charter; Statement of Concept Paper; Acquisition Plan; Project Management Plan; Quality Management Plan; Configuration Management Plan; System Security Plan; Risk Register; Risk Management Plan; Plan of Action Milestones (POA Operational Analysis; Sensitivity Analysis; Cost Benefit Analysis; Post Implementation Review

Monitor Project Plans and/or Work Breakdown Structure (WBS) activities and costs.

Work with the Departmental Budget Center (DBC) with regards to budgetary information.

Review project performance, cost and schedule to ensure the project is within the acceptable variance, and that the original approved baseline has not changed.

Assist client in the development of security related documents, and participate in security requirement reviews to verify content against legislative requirements to ensure compliance.

Brief clients on reported project phases and performance objectives required at the agency level.

Analyze life cycle project costs against the Alternative Analysis for accuracy.

Validate cost benefit analysis against new initiatives and program changes.

Access, review and track financial report information with the client to ensure the costs aligns with the funding request submitted and approved by OMB.

Propose budget solutions to all aspects of the Capital Planning process required by OMB to ensure investments remain viable and maintain funding.

Ensure IT investment maps to Federal Enterprise Architecture as required by OMB.

Perform Certification Accreditation (CA) Security Assessments for two OCFO IT investment projects utilizing NIST 800-53 Revision 3 and FedRamp Guidance.

Perform Security Test Control Evaluation (SCTE).

Create, monitor and update Security Plan of Action and Milestones (POAM).

Execute Security Risk Assessments (RA), and Perform Security Self-Assessments (SSA).

Maintain IT security system assessments in the Cyber Security Assessment and Management (CSAM) application.

Perform Personally Identifiable Information (PII) Assessments and reports.

Analyze, update and document System Categorization changes.

Assist in OIG Annual IT Audits for two major IT systems.

Develop and update Memorandum of Understanding (MOU) and Interconnection Security Agreements (ISA)

February 2004 to August 2005 - Personnel and Physical Security Specialist, NSSP ITA Contract

Managed the Personnel and Physical Security Department for the Army ITA Contract in the Pentagon. Processed access requests through the Pentagon Force Protection Agency (PFPA), handled distribution and monitoring of PIC/PIN numbers for the PFPA office, acted as a liaison for PFPA security task team, and updated access rosters for the PFPA security office. Below depicts additional responsibilities held on this contract.

Ensured all areas under the authority of the ITA, NSS-P, and Lockheed Martin Physical Security had an armed presence in the event an unauthorized access occurred. These groups included PFPA, AFPCA, 11th Air Wing (Bolling AFB), NMCC, and the military police presence. The policing force was required to ensure physical security is reinstated and that the proper ITA, NSS-P, Lockheed Martin Physical Security Officer or manager is notified immediately of the incident.

Worked with the CA team to establish Standard Operating Procedures and policies. Produced the ITA, Lockheed Martin Daily Security report that provided all security sectors their tasking which was utilized by management and senior ITA leadership.

Managed combination and/or lock changes for installations within the Pentagon and throughout the National Capital Region (NCR).

Conducted and documented physical security surveys of locations owned by ITA, as well ensured appropriate level of security were in place in relation to the classification of the area. Made arrangements for the necessary physical security specifications to be in place prior to occupation by individuals or network equipment.

Coordinated with the LM Renovation team for the transition of all areas coming under the authority of ITA physical security and monitored pre-transition security walk-through to determine if all security requirements were in place prior to completion of the transfer. Conducted training on security issues including information dissemination, access control, key and combination security, after-hours rosters, and sign-logs for all classified entry points.

Supervised and lead the LM Escort Team. Provided scheduling services to incoming contractors for the Pentagon Renovation within Wedges 2 and 3. Worked closely with the Physical Security Representative to verify clearance levels of all manpower with the contracting agency to perform these duties to ensure the integrity of the Network was sustained.

February 2003 February 2004, Program Control Analyst, Air Force Pentagon Communications Office of Automation

Reviewed and coordinated contractual requirements and participated in the defining IT program.

Interfaced with customers, vendors, and internal departments to coordinate deliverables, budgets and schedules.

Developed a cost control spreadsheet, which was later identified as a companys best practice for third party vendors.

Managed the security administration function for the Air Force Pentagon Communications Agency (AFPCA) Contract, which included the execution of all DoD and non-DoD security regulations affecting the contract and the employee. These duties included: visitor access control and maintenance of the Visitor Control Log, badging and escorting, identifying potential violations based on NISPOM regulations, the processing and tracking of over ninety security clearances, interacting with Security officials with DSS and the current customer within the Security Department and coordinating addressing any security violations. Interfaced with internal customers on high-level issues.

May 2001 August 2003, Facility Security Officer/Marketing Coordinator

This was a dual role with Hensel Phelps Construction Co., as the Facility Security Officer and the Marketing Coordinator. As the Facility Security Officer, analyzed, planned and administered the security program in accordance with the White House Military Office (WHMO), which included the planning and implementing of special security projects. Responsibilities also included the following:

Developed and conducted security briefings within the organization and field offices.

Interfaced regularly with multiple Defense Security Service (DSS) investigators and government officials on all security related projects.

Administered the Department of Defense (DoD) Personnel Security Program.

Coordinated and interfaced with managers and employees in preparing the required forms (EPSQ) for submittal.

Recommended changes to security policies and procedures and was responsible for briefing all personnel selected to obtain a security clearance.

Responsibility for the receipt, review, and validation of each EPSQ for submission to DSS. Responsible for obtaining fingerprints, receiving evidence of citizenship, obtaining the necessary signatures, and forwarding of these materials for processing. Created and utilized a tracking log, which acted as a tool for checking on all Hensel Phelps employees that were submitted for a security clearance.

As the Marketing Coordinator, responsibilities included all marketing avenues within the Mid-Atlantic Region. Responsibilities included timely submission of written articles to construction magazines for publication, preparation and submission of award materials to local construction organizations, management of all project photography for display and publication, management of presentation exhibits for colleges and universities, assisted in the design, development, deployment and training of the new relational corporate database in File Maker Pro, assisted the corporate office in the preparation of the marketing brochures, and the classification of project information for proposal use. Established proposal outlines to begin the development of proposals for senior management review. Then compiled information for all Request for Proposals (RFP), including writing materials from outside sources, verification of references, graphical creation and importation for technical and cost proposals, proofreading, editing, and desktop publishing.

Significant Training

Integrated Baseline Review - January 30, 2008

DOL Earned Value Management System (EVMS) - March 30, 2011

Baseline Management Policy, Procedures, and Requirements - April 7, 2011

Integrated Baseline Review (IBR) and Updating Cost Estimates - March 23, 2011

Basic Earned Value Management (EVM) Principles - March 24, 2011

Information Technology Investment Management Overview - March 15, 2011

Alternatives Analysis Cost Benefit - March 17, 2011

Introduction to Relational Database Management Systems September 2011

Operational Analysis January 2012

System Development Life Cycle Management (SDLCM) Refresher - January 2012

Post Implementation Review (PIR) and Operational Analysis - February 2012

Introduction to Networking March 2012

OMB Exhibit 300 and Exhibit 53 Updated Requirement Training June 2012

Capital Planning Federal Segment Architecture Methodology Training September 2012

Cyber Security Assessment and Management (CSAM) Tool June 2012

Risk Management January 2012

Plan of Action and Milestone Training June 2012

Fundamentals of Information Systems Security June 2012

Computer Ethics September 2012

Computer Application/Programming Expertise

Computer Systems: VAX, IBM/Compatibles; Operating Systems: MS-DOS, Novel Perfect Office, Microsoft Office, NT 4.5, Windows 95, 98 2000, Office 97, Windows XP, Windows 7, Windows 10

Software Packages: IBM PS-2, WordPerfect 5.0, 5.1, and 6.0, Lotus 123 for Windows, Lotus Notes, Lotus Ami Pro, Lotus Freelance Plus, Lotus Symphony 2.0, Calendar Creator Plus, Lotus Magellan, DEC Vax Word 11, Primavera, Microsoft Word, Microsoft Excel, Borland Paradox, Citrix, Power Point, Pegasus Mail, Microsoft Outlook, Macromedia Freehand, Milestones, Vision, Corel WordPerfect Suite 7, File Maker Pro, Microsoft Project, Adobe Photoshop, Adobe Acrobat, Remedy V5.01, electronic Capital Planning and Investment Control (eCPIC) Tool, Cyber Security Assessment and Management (CSAM) Tool, Microsoft Office 10.

Employment History

Company

Position

Years

ProSol, LLC (Professional Solutions, LLC)

Lead Management Consultant

2008-Present

BAE Systems Information Technology

Lead Management Consultant

2003 2008

NSSP ITA Contract -Personnel and Physical Security Specialist

2004- 2005

Air Force Pentagon Communications Office of Automation, BAE Systems Information Technology - Program Control Analyst

2003 2004

Hensel Phelps Construction Co.

Facility Security Officer/ Marketing Coordinator

2001 2002

Areas of Expertise

Capital Planning and Investment Control (CPIC)

Security Analyst

Security Clearances

Personnel and Physical Security Specialist

Sept 2012

Page of

Contact this candidate