Manager Security

JOSEPH L. PILATO

**** ******** ***** #**, **********, Virginia 22309 571-***-**** *********@*******.***

SUMMARY: To obtain a position where I can assist an organization in achieving it’s contract pricing and financial budgeting goals within an organization. Additionally, to provide strong capabilities in the proposal lifecycle process, develop strategies and win themes.

CLEARANCES / INVESTIGATIONS:

Active TOP SECRET

WORK EXPERIENCE:

IRONGATE Technology Solutions, Inc. Dec 2011 – Present

Business Consultant\Proposal Manager

Manage all phases of the proposal development life-cycle, and facilitate the delivery of high quality, technically competent, compliant winning responses to include solution management (technical, management, past performance, resumes, and price), price to win strategies and resource allocation.

responsible for planning, coordinating, and managing Requests for Proposals (RFPs), Requests for Information (RFIs), Requests for Quotations (RFQs), and the preparation of corporate capabilities.Develop detailed work plans, schedules, project estimates, resource plans, and budgets Drive the formulation of win themes, hot buttons, discriminator, win strategy, etc. Proposal Manager who thoroughly understands the activities of the entire Federal Government proposal process, from pre-RFP through customer debriefs Ability to analyze Requests for Proposals (RFPs), produce a high level summary and quickly provide a snapshot on the proposal requirements Arrange teaming partners, prepare teaming agreements, and initiate subcontracts Ability to develop kickoff packages, annotated outlines, and compliance matrices Develop and follow a comprehensive proposal management plan (or updated Capture Plan) that at a minimum includes win strategies, customer requirement analysis, competitor assessments, themes/discriminators, risk issues, price-to-win analysis and resource requirements Ability to lead proposal development meetings (kick-off, Daily Stand-ups), assign proposal responsibilities and milestones to include the storyboard and writing plans, produce a proposal calendar, conduct research and gather information from multiple sources Manage the proposal reviews (Pink, Red, Gold) to include the Executive Review (Gold), perform proposal lessons learned and win/loss reviews Manage the proposal support resources and serve as the lead interface with teaming partners and external suppliers, and responsible for integrating work materials Review and edit materials for compliance, messaging, branding, completeness, and work closely with the senior technical writer on grammar and formatting Use external Dropbox site and internal company SharePoint site for Solicitation responses

BCI, Inc. Jan 2011 – Dec 2011

Information Assurance Analyst

Assigned to the NAVSEA NSWC Carderock Division in the Information Assurance department, as an Information Assurance Analyst Perform DIACAP C&A activities to include working with the system owners and managers to develop the system C&A Plan, SIP, DIP and CBCP documentation for multiple systems on the DOD enterprise network, standalone and enclaves in a windows environment Review and map all IA security controls to the artifacts for each of the assigned DIACAP package Responsible for scanning the NSWCCD network to find the latest workstation and server vulnerabilities using eEye Retina and Gold DiskFunction as a liaison for the program managers, system administrators, user representatives and developers to complete an entire C&A package in a timely, professional and organized manner.Successfully obtained Certification and Accreditation (C&A) system and application Authorities to Operate (ATO), on legacy and Research Development Test and Evaluation (RDT&E) networkInformation Assurance (IA) DoD expertise, with emphasis on Federal Information Security Management Act (FISMA) processes to include DoD Information Assurance Certification and Accreditation Process (DIACAP) and National Institute for Standards and Technology (NIST) 800-series special publicationsConducts risk assessment surveys to identify security requirementsFamiliar with the following security-centric products: McAfee and Norton Anti-virus/Ad-aware, Retina and Defense Information Systems Agency (DISA) Field Security Operations (FSO) Gold DiskWorked with systems administrators to ensure all systems that were placed on the RDT&E network was thoroughly scanned for vulnerabilitiesEvaluates and ensures security threats are mitigated, remediate or waived IAW accepted time constraints

Pillar Systems Corporation Jan 2003 – Jul 2010

Financial Officer/Business Development

Responsible for all financial and fiscal management aspects of company operationsProvided leadership Business Planning, Accounting and Budgeting efforts of the company. responsible for client/government contract reviews, contract negotiations, Develop detailed work plans, schedules, project estimates, resource plans, and budgets Drive the formulation of win themes, hot buttons, discriminator, win strategy, etc. Ability to analyze Requests for Proposals (RFPs), produce a high level summary and quickly provide a snapshot on the proposal requirements Arrange teaming partners, prepare teaming agreements, and initiate subcontracts Ability to develop kickoff packages, annotated outlines, and compliance matrices Develop and follow a comprehensive proposal management plan (or updated Capture Plan) that at a minimum includes win strategies, customer requirement analysis, competitor assessments, themes/discriminators, risk issues, price-to-win analysis and resource requirements Manage the proposal reviews (Pink, Red, Gold) to include the Executive Review (Gold), perform proposal lessons learned and win/loss reviews Manage the proposal support resources and serve as the lead interface with teaming partners and external suppliers, and responsible for integrating work materials Managing office facilities and reporting on all compliance issues for all government programs. Worked directly with customers, vendors and employees on all Business, Financial and Human Resources matters Companies Facility Security Officer (FSO), process fingerprints, JPAS data-entry, eQIP and created all security policies; to include the initial security briefings and Annual reviewsCompiled and created the company’s GSA IT 70 Federal Supply Schedule. Created, coordinated, and evaluated all financial programs and supporting information systems of the company to include budgeting, tax planning, real estate, and conservation of assets.Developed and implemented finance, accounting, billing and auditing procedures. Established and maintained appropriate company policies, procedures and internal control safeguards.

Pillar Systems Corporation

Information Security Specialist

Directly interfaced with the CIO, of the Department of State which was the (DAA), I was responsible for taking completed packages for final signature for IATO’s, or ATO’s.Provide Program Management for multiple bureaus and applications including Major application (MA), General Support Systems (GSS), TS/Classified/SBU/ Unclassified in accordance with DoS guidelinesSchedule and budget medium to large divisional projectsOversee consultants and subject matter experts (SMEs)Coordinated meetings between the DOS and USAID; to identify router boundaries and create the Memorandum of Understanding (MOU)Interface with Bureau System owners, ISSO’s and provide written/verbal guidance for Certification and Accreditation (C&A). Written response to security inquiries, to include ATO, IATO, PATO and IATC lettersManage C&A teams through Pre-certification, Certification and Accreditation phase. Plan major project phases, and establish project success factors. Communicate issues and status to senior management, other impacted project managers, and team members. Also, created the Work Breakdown Structure ‘WBS Documents reviewed 12 FAM 620, 12 FAM 530, 5 FAM 915, NSTISSP-11, 5 FAH-11 H-700, 12, FAM 630, FIPS Publication 199, NIACAP, OMB-130 Appendix III, NIST 800-37, NIST 800-53, NIST 800-59, NIST 800-26, NIST 800-18, NIST 800-30, Department of State (DoS) System Authorization Process Guide and DoS System Authorization Plan

Pillar Systems Corporation

Senior Network Engineer

Installed and configured the Pillar Systems Corporate LAN, consisting of Windows 2000 server and MS Exchange 5.5 ServerDeveloped the corporate website and modified it as needed.Created, modified and deleted Windows 2000, Exchange and external POP3 user accounts, and NT local and global groupsCreated user’s home and shared directories and assigned appropriate user access permissions Installed and fully tested the corporate cabling system, hubs and DSL routersInstalled Windows ME, Window 98 and Windows NT 4.0 Client WorkstationsInstalled client applications, MS BackOffice Suite, Quicken QuickBooks and Norton Systems works Installed Veritas System Backup software and created the System Back-up and Restore procedureWas on-call 24x7 for all system related problems on-site and at client locationsInstalled two NT 4.0 servers, including the installation of SQL 7.0 in a clustering environment, using redundant power supplies, NIC’s and Dell external RAID 5 storage devices using PERC II disk array controller cardsInstalled, configured and maintained Small Business Server and Microsoft Proxy Server

Wheeler Network Design - (1 year Project) May 2002 – May 2003

Network Engineer/Technical Team Manager

Technical Team Manager assigned to the OpenNet Plus project at the Department of StateManaged five three-man teams and reported to the Technical and Assistant Technical Coordinators Provided technical support for OpenNet plus System Security requirements to the Department of State’s U.S. Embassies around the world and National Bureaus Security settings are applied to Windows NT 4.0, Windows 2000 Professional and XP Professional workstations, as well as all Windows NT 4.0 Domain Controllers and other systems and servers include Internet Information Server, SQL Server, MS Exchange Server 5.5 and servers running NAV Corporate Edition Brought all OpenNet Plus systems back to the Department of State standards, and applied the security settings

EDUCATION:

Strayer University, (enrolled) Bachelor of Science, Business Administration

Northern Virginia Community College, 1976-1985 - Computer Information Systems (CIS)

Falls Church High School, Diploma

REFERENCES:

Available upon requests

Contact this candidate