CEDRIC B. JATTA
240-***-**** cell ac7x6g@r.postjobfree.com
EDUCATION:
Bachelor of Business Law Washington State University Pullman WA May 2005
Associates Business Administration Shoreline Community College Shoreline WA Dec 2002
Associates CIS & Network Technology North Seattle Community College, Seattle WA June 2000
EMPLOYMENT:
Ernst & Young, Dallas, TX. Assistant Director – Advisory Risk (Cyber Security Technical Project Manager) 01/2018-Present
Lead Cyber as a Service (CaaS) information security implementation projects from inception to completion
Identify and assess project risk, submit project change requests, build appropriate mitigation plans into the overall project initiatives
Business Case and SOW review, develop required architecture artifacts, identify project stakeholders, and develop steering committee decks
Develop a project charter, detail project plan, project schedules, controls, resources allocation, costs, and WBS
Liaise between the Business, IT, information Security and external vendors, lead project meetings, product demons, and stakeholder monthly status updates
Amalgamate weekly, monthly project reports on budget, variance, risk, and deliverables and managed all project communications
Successfully negotiate with EY Clients, Project Stakeholders, Client Technology and InforSec Engineers, and External Software Vendors
Implement project management controls on assigned projects to ensure projects are delivered on time, within budget, adhere to high quality standards and meet EY client expectation
Successfully managed resource and budget constraints, change requests, and risk mitigation and product certification in accordance with EY Client timelines
Drive project closeout activities, develop operational blueprint and production go-live activities
Ernst & Young, Dallas, TX. Operations and Infrastructure Manager – Advisory Cyber as a Service (CaaS) 05/2017-12/2017
Managed On-Prem, Hybrid and Multi-Cloud System Implementation Projects and Programs right from inception, developing well defined milestones, and assigning success criteria’s, performing resource allocations and ensuring successful delivery on-time within budget.
Managed Risk, dependencies, technical deliverables and Project artifacts for EY Advisory Risk practice, Cyber as a Service (CaaS) solutions across a standard systems development life cycle (SDLC) using Agile, Waterfall and Hybrid project management models utilizing Lean processes and Scaled Agile framework.
Setup and managed project/program governance structure that identifies key performance indicators, reporting cadence, cross-discipline standards and all compliance and regulatory requirements.
Deployed multiple managed services to new EY clients, such as Logrhythm and Splunk SIEM tools, Saviynt and BeyondTrust digital identity management and privilege access management tools, PathScan, Polarity and Cytegic Cyber Analytic tool, Nuix, Ipro, Law PreDiscovery and Relativity e-discovery data processing and review platforms, Encase and FTK forensic tool kits, cloud and on-site file servers, and data migration efforts to Microsoft Azure cloud platform.
Ernst & Young, Dallas, TX. Technology Implementations - Supervising Associate – Assurance (FIDS) 03/2016-04/2017
Supervisor of the Service Line Hosting Service (SLHS) technical implementation team
Responsible for the implementation of fraud, Investigations and forensic applications and corresponding infrastructure Supported the Fraud Investigation and Dispute Services (FIDS) practice
Reviewed and critiqued proposed system architecture, ordering of associated hardware, software, and peripherals
Implemented new infrastructure (physical and virtual servers), application installation
Developed operational playbooks, documentation, transition and training of internal operations team
Provided level III escalation support Interface with internal EY teams toward planning and building new products, applications, and corresponding infrastructure and applications to support business line partners
Review and provide input on Architecture design and engineering for both existing and new products.
Work with other internal teams on workflow implementations
Assess project responsibilities, and identify time and resource requirements for end-to-end implementation
Implement and install E-Discovery and forensic applications, cyber security products, Microsoft SQL Server Clustered instances as well as select analytics products used by the Fraud Investigation and Dispute Services group (FIDS) such as Tableau
Perform Web Security hardening, Microsoft Windows and SQL Server hardening
Extensive use of ServiceNow ticketing and change/incident management process
Work with external vendors to conduct vulnerability assessment and remediation of findings
Work with internal information security groups for security certification of the infrastructure and applications before release into production environment
Build POC, Staging and Dev environments for all platforms to test integration and bench marking
Work with Transition Management and internal SLHS team to develop all documentation required for end to end operational support of newly implemented environments including an Operations Manual, PSP, Runbook and operational transition documentation
Train members of the internal Operations team for support and day-to-day product operations
Manage resources within the region and determine appropriate assignments for specific projects.
Work on application security remediation and patching.
Vulnerability scanning using Qualys Webscanner, Webinspect, Rapid7 Nexpose and remediation of high, medium and low findings.
Participate in planning for future applications or solutions based on new technology.
Act as the primary contact with the vendor as well as the internal business users over the course of an IT project.
Maintain the strict confidentiality of sensitive information.
Responsible for observing all laws, regulations and other applicable obligations wherever and whenever business is conducted on behalf of the Company.
Work in a safe manner in accordance with established operating procedures and practices
Participate and lead in disaster recovery planning and plan execution
Analytical/Decision Making Responsibilities:
Architecture review and environment engineering for E-Discovery applications
Analysis of problems present within a project or existing infrastructure and discuss potential solutions with management and team leads
Interaction with various levels of IT and internal client serving teams
Participate in and contribute to all operational documentation
Advance Cyber tools, E-Discovery, Forensics and Analytics application knowledge and installation
Knowledge and administration of Windows/Linux OS and Microsoft SQL Server databases
Extensive knowledge of Windows Server operating systems including Windows Server 2008 R2, 2012 R2 and 2016
Knowledge of various infrastructure applications including Active Directory, LDAP, DNS, and DHCP
Proficiency in establishing and supporting automated application monitoring protocols
Over fifteen years of supervisory and managerial experience
Navigant Consulting Inc. Arlington, VA. Project & Operations Manager - Associate Director – Advisory (LTS) 04/2015-02/2016
Primarily responsible for producing meaningful e-discovery deliverables as outlined in the Project Plan and as directed by the clients
Assisted with project workflow development and lead a group of managing consultants through the entire e-discovery lifecycle
Interface with the business and client delivery teams to vet new applications and workflows to address client requests. I was also responsible for the technical operations of the disputes and investigations practice.
Navigant Consulting Inc. Arlington, VA. Managing Consultant (PM) – Advisory (Legal Technology Solutions) 01/2013-03/2015
Consult with internal customers to develop and approve project definition documents, including, scope, schedule, work plan, resource requirements, approach, requirements, budget forecasts, schedules, risk registers, and benefits realization estimates
Evolve program and project management capabilities, improve delivery of solutions to business clients, and leverage project management knowledge across the IT organization
Consult with internal customers and project stakeholders on project initiation statements, project definition reports, project status reports, financial reports, change requests, business cases and benefits realization estimates
Develop work plans and work programs, including estimates and resource requirements; communicate project status and is the project advocate; take responsibility for risk and issue management reports
Participate in and facilitate post project and phase reviews to cultivate a learning organization
Support sales team with responding to RFI’s and SOW development tasks
Navigant Consulting Inc. Arlington, VA. Operations Manager – Advisory (Legal Technology Solutions) 11/2011-12/2012
Provide 1st, 2nd and 3rd level incident support; diagnostics and corrective actions; implementation and 3rd party engagement and coordination; vulnerability management; physical break fix; and on-call coverage
Provide post mortems for incidents; provide timely incident reporting to IT Security; create and maintain the known errors and resolutions registry to reduce repair times; track, update and close action items; provide statistical data pertaining to short term incidents and chronic network problems following ITIL incident and change management processes
Implement scheduled changes on time, within a scheduled window and without causing an incident
Monitor performance levels and trends throughout the environment to determine quality of service for the entire infrastructure
Interface closely with all customers including IT, Applications, Advisory, and GDS (India), as well as end users to enable the successful delivery of requested services;
Provided support for internal and external audit requests and resolution of findings;
Remain current on new hardware and software developments, evaluating alternative approaches and recommending new hardware/software modifications which will enhance the overall services
Conduct thorough review of proposed solutions against standards, ensure that proposal is engineered to fit client needs, account for all levels of resiliency and allow for growth;
Proactive maintenance, including periodic review of infrastructure to ensure compliance with standards with the premise of identifying and resolving problems before an issue occurs;
Install and test all new software releases; ensure installed devices are OS and boilerplate compliant and testing of all new software releases;
Create and maintain documentation of guidelines and standards for specific technologies;
Provide support in monitoring performance levels and trends throughout the firm to determine quality of service for the entire infrastructure
Provide task and technical management/leadership to managing consultants
Manage private client environment setup, configuration, security, POA&M activities and client service delivery needs
Day to day environment monitoring and Alerting response and coordination
Communicate detailed job specifications in project plan to managing consultants
Prioritize workload assignments and resolve any conflicts that may arise
Report any inefficiencies or suggestions for improved process automation to project stake holders
Create and edit SQL stored procedures and batch files on a case by case basis
Create and run custom queries and stored procedures within SQL Management Studio
Create and validate exports from data processing system to litigation-specific load files. For example from Law Pre-Discovery to Relativity or Concordance
Create and edit/update custom fields within processing systems as necessary
QC and finalize all deliverables to clients
Load processed data from Law or from clients into hosted Relativity environment
Execute processes within Relativity in support of client requests
Perform indexing, searching, and marking of responsive data within processing system and hosted Relativity platform
Creating coding forms, views, setting up security for Relativity users
Train new clients by conducting review demos via Webex or goto meeting sessions
Manage production requests with key focus on meeting strict delivery requirements
Assist in the execution of test plans for software development projects as necessary
Managed a team of 6 production specialists daily
Provide weekend coverage and support for clients as well as internal staff
Participate in disaster recovery and failover activities, backup and restore, table top exercises for all eDiscovery applications
SOFTWARE USED
Fidelis, Saviynt, Qualys SSL Labs,,Fiddler, Tripwire, Tableau, Qualys, Splunk, ADFS, Wireshark, LogRhythm, Cytegic, Nexus, Nexpose, SEP, Carbonblack, BeyondTrust, Vormetric, CyberArk, Sailpoint, Qradar, RadiantLogic, Microsoft SQL Server, Relativity by Kcura, LAW Pre-Discovery, Concordance, Concordance Image, Digital Reef, Case Map, Time Map, Lotus Notes, FTK (Forensic Toolkit), EnCase (Forensic Kit), DT Search, Adobe Reader/Writer, Visio Viewer, Ultra Edit, Snag IT, Webex, Tera copy, SQLSafe Backup, RoboCopy, IConvert, Quickview Plus, Beyond Compare, FileZilla, PGP, Roxio CD Burner, ReadyConvert, TamperIE, Bulk Rename Utility, 7-Zip/Winzip/WinAR, Spotlight Monitoring, Microsoft Office, Microsoft Project, Access, Visio, Active Directory, Citrix Server Software, VPN, FTP, RDP.
FIPS 199, E-Authentication, Privacy Threshold Analysis (PTA), Privacy Impact Assessment (PIA), Risk Assessment (RA), SSP, ISCP, ST&E, SAR, Plans of Action and Milestones (POA&M), Authorization to Operate (ATO) Letter, VMWare, Scanpst, Truecrypt, Bitlocker, BestCrypt, Veracrypt, PGP, SecureZip, CloneZilla, LogicCube ZClone, MS Office, Visio, SharePoint, Access, PeopleSoft, MapPoint, Lotus Notes, Webview, WebEx, Nexus, SOC 1&2&3, ISO 270001, Nist 800-53.