Project Manager Security

Jada J. Robinson

Mitchellville, MD ***** - 301-***-**** - ac4css@r.postjobfree.com

SUMMARY M.S. with 20 years of IT experience to include Information Assurance and SDLC, particularly requirements and information gathering, IV&V, testing and quality assurance. Skilled in the development and execution of security documentation based on RMF guidance; NIST 800-18, 800-37 and 800-53. Deliverables include System Security Plans, SRTMs. POA&Ms. Test and Audit Plans, Risk Assessments and Corrective Action Plans.

EDUCATION M.S. Engineering Management/Information and Process Engineering, George Washington University

B.S. Business Administration/Information Systems, Howard University

CLEARANCE Top Secret (TS) – Active

CERTIFICATIONS 8/11 – PMI - Project Management Professional (PMP)

6/14 - ITIL Foundation v3

10/14 – ISC2 - Certified Authorization Professional (CAP) – IAM II

TECHNICAL SKILLS

SAP R/3 (FI, AM, GL, MDM, SCM), Oracle (AR, AP, GL, SCM), PeopleSoft HCM, UPK 11.0, Siebel, Rational Suite Enterprise, HP ALM, Xacta, CSAM

WORK EXPERIENCE

2/17 - present Cyber Solutions Manager

NucoreVision Incorporated, Lanham, MD

Responsible for the SA&A of classified and unclassified systems for multiple agencies; including Department and Education and the National Archives (NARA). Work closely with System Owner (SO) and Technical POCs for assigned systems to develop and/or maintain the following Security Assessment & Authorization (SA&A) artifacts: FIPS 199, Privacy Impact Analysis (PIA, Business Impact Analysis (BIA), Contingency Plan and Test, After Action Report (AAR), SSP and POA&Ms. Also, complete monthly administrator access reviews, vulnerability scan analysis and POA&M management. Complete annual non-privilege user account review. Responsible for the upload and maintenance of security documentation in Xacta and CSAM.

4/16 – 2/17 Lead Cyber Security Assessor / Deputy Project Manager

Summit Technologies, Inc., Washington DC

Responsible for the coordination of Cybersecurity/SA&A task order activities to support the Federal Communication Commission (FCC) with the assessment of FedRAMP packages for Cloud Service Offerings (CSOs). Assist in the completion of RMF Security Assessment &Authorization packages to include System Security Plans, Security Requirements Traceability Matrices (SRTM), Security Assessment Reports (SAR), execution of Security Control Assessment activities, development of POA&Ms and Risk acceptance memos. Assist with the tracking of FISMA audit remediation findings. All duties are performed per NIST guidelines, 800-30, 800-37, 800-53 and 800-18.

4/15 – 3/16 IT Assessment Lead – Air Force

Independent Consultant – i-Visionet, Maryland

As a sub-contractor to PwC, led a team of senior auditors in an effort to perform Financial Improvement and Audit Readiness (FIAR) system assessments of IT General Controls (ITGC) and entity level controls for multiple Air Force systems in accordance with FISCAM, FISMA, OMB and NIST guidelines. Performed security controls assessments specific to Security Management, Access Management, Contingency Planning, Segregation of Duties and Configuration Management. Review security documentation in accordance to RMF guidelines; specifically, NIST 800-18, 800-37 and 800-53. Reviewed client provided artifacts to identify and document weaknesses and potential findings. Worked with project teams to develop assessment reports, assertion packages and corrective action plans (CAPs).

8/14 – 4/15 Information Assurance Specialist – Air Force

Novetta Solutions, Maryland

Led a team of IA professionals responsible for the development of multiple A&A packages to include the development of system security plans (SSPs) according to NIST 800-18, the selection of security controls according to NIST 800-53, Incident Response Plans, COoPs and other policies and procedures following the overall FISMA and A&A/Risk Management Framework (RMF) process according to NIST 800-37. Worked with development and infrastructure teams to ensure implementation of security controls. Worked with system administrators to ensure timely Retina scans and patching are performed. Coordinated with IAM to update Xacta with accurate security package information in an effort to achieve ATOs as determined by AO.

4/13 – 8/14 Information Assurance Security Officer/Security Tester – Department of Army – IPPS-A (PMO)

EDC Consulting LLC – Alexandria, VA

As a member of the Cyber Security Team, facilitated the delivery of weekly Information Assurance Vulnerability Alerts/Bulletins (IAVA/B) Compliance Reports. Assisted the IAM with the review of documents and artifacts required to generate C&A packages to include System Security Plans (SSP), POA&Ms and CDRL submissions. Monitored IAVAs, Retina scans, assigned STIGs, and applicable security updates, fixes, vendor released patches and bundles to ensure that their installation will not negatively impact the operations of the target environments. Provided IA support for the implementation of PeopleSoft HCM and CA Identity Manager 12.5. Also, provided required support to ensure that all IPPS-A enclaves are fully compliant with IA standards and requirements as identified in DoD 8510.01 (DoD Information Assurance Certification and Accreditation Process (DIACAP) resulting in approved certification and accreditation packages and an ATO.

10/11 – 4/13 Senior Process/Security Engineer – Office of Naval Intelligence (ONI)

Independent Consultant – Suitland, MD

As a Project Manager for Office of Naval Intelligence (ONI), developed, documented and delivered new business requirements and policies for security, integration, and operations activities in accordance with RMF (NIST) and ONI policies. Develop and document related process and programmatic artifacts, including plans, procedures, work instructions, tools, templates, etc. Assist System Integration and Security process owners in effectively rolling out new or modified processes for IAVA compliance, SSPs and training sessions. Observe actual work activities in comparison to established processes. Recommend process improvements, clarifications, or modification to drive consistently outstanding customer performance. Participate in IV&V and ST&E activities. Conduct FISMA security evaluations and security inspections. Document findings, develop CAPs (Corrective Action Plans) and follow to completion. Act as an internal auditor to maintain ISO 9000 compliance.

1/10 – 10/11 Senior Consultant

Deloitte Consulting LLP – Washington DC

Performed Requirements Analysis oversight and PMO support for the implementation of PeopleSoft HRMS at multiple government agencies. Reviewed and grouped high level requirements and process flows into core PeopleSoft HR functions. Reviewed OPM HR Guides and SOPs to gather information and decompose high level requirements into testable requirements. Developed mock designs and training materials to illustrate new functionality and processes during client presentations. Prepared functional specifications, system level requirements, test plans and training materials using UPK. Responsible for maintaining training environment and training schedule. Worked with client to convert instructor led training to web-based online courses.

10/07 – 12/09 Process Consultant – County Government

Empower & Evolve LLC – Mitchellville, MD

Facilitated an effort to align training, organizational effectiveness and change management efforts for the client as it designs and implements an Oracle ERP System. Engaged cross functional teams to support key stakeholders’ expectations by addressing As-Is Process flows, To-Be process flow and Fit Gap documentation. Developed and conducted Lunch and Learn sessions and Train the Trainer sessions using Oracle UPK.

Federal Financials Auditor - SAP (Defense Logistics Agency)

Perform system compliance and risk analysis of DLAs SAP ECC 6.0 Financials - Enterprise Business Systems (EBS) application, particularly MIPRs and Acquire to Retire (Property, Plant and Equipment). Verified business processes and identified areas of improvement for asset acquisitions, asset reporting, retirements, transfers as well as General Ledger (GL) posting logic to the appropriate expense accounts. Work with DLA SMEs, Business Users and external auditors to ensure DFAS and FFMIA (Federal Financial Management Improvement Act), OMB Circulars A-123, A-127, A- 130 and A-11 compliance according to documented Federal requirements.

9/06 – 10/07 Senior Systems Engineer

Department of the Navy - Ilumina Solutions Inc, Washington DC

Provided process oversight support for the Navy ERP implementation - development lifecycle activities such as ensuring traceability of requirements, through development, testing and training. Worked with cross-functional teams to resolve findings and follow change requests through to completion. Recommended methods for process improvement. Participated in SCAMPI reviews and IT audits necessary to achieve CMMi Level 3.

10/01 – 8/06 Analyst/Tester - PeopleSoft

Northrop Grumman – Internal Revenue Service – Lanham, MD

As a subcontractor and member of the Government Acceptance Team (GAT) Team, participated in requirements analysis and information gathering sessions with Stakeholders and Product Assurance Teams in an effort to understand data flows and document “as is” and “to be” business processes using Visio and Rational Tool Suite. Provided training and technical support for Rational testing tools. Identified and tracked product defects using ClearQuest. Provided Management with test progress as well as risks and areas of improvement necessary to maintain CMMi Level 3 compliance. As a prior member of the Infrastructure Team, facilitated company wide upgrades, mentoring, training and knowledge transfer of new functionality of Modernized IRS applications.

Contact this candidate