Information Systems Security
Resume:
CAITLYN TORRE
Phoenix, AZ Metro Area email: *******.*********@*****.*** ph: 858-***-****
SUMMARY
Results driven Information Systems Security Risk Analyst with extensive experience in program security management, risk assessments and Customer audits. Consistently helps company meet federal compliance and regulatory requirements such as identifying and minimizing risk of proprietary data. Demonstrated leadership and distinguished track record of maintaining strong relationships with customer counterparts and company employees at all levels.
TECHNICAL SKILLS
Security Information Event Management (SIEM) tools - Nessus, knowledge of Python and Splunk; Microsoft Visio; Operating Systems - proficient in Windows, iOS and Android, basic use and understanding of Linux
CERTIFICATIONS
- CompTIA SECURITY + - Certification #COMP001021091192, obtained 2/2017, Security Fundamentals Professional Certification (SFPC) via DoD - Number #11439, obtained 6/2012
Course - Risk Management Framework (RMF) Course 2 via Customer, 02/2018
EXPERTISE and SKILLS
Audits Briefings Compliance Contingency Plans Contractual Requirements Information Systems Security National Institute of Standards and Technology (NIST) requirements Operations Security (OPSEC) Program Security Management Risk Management Framework (RMF) Security Controls Standard Operating Procedures (SOP) Strategic Planning Systems Security Plans (SSP) Threat & Vulnerability Assessments
EXPERIENCE
Volunteer - San Diego Humane Society - 10/2018 to present
Independent Contractor - 11/2018 to present
LOCKHEED MARTIN, Space Systems Company, Sunnyvale, CA 05/2017 - 8/2018
INFORMATION SYSTEMS SECURITY RISK ANALYST, Sr.
Information Systems Security Officer (ISSO) for multiple Customers and Programs adhering to several unique government requirements per Executive Directives on highly sensitive National Security programs
Conducted risk assessments per RMF requirements and NIST 800-53 information assurance guidelines for multiple classification levels of secure Automated Information Systems (AIS) per program
Established system security documentation; implemented information security procedures, validated system security requirements definition and analysis; utilized Nessus for network vulnerability scans
Provided current security briefings and training to all new systems account users to include password complexity, risks/threats to the systems and user confidentiality and protection requirements
Weekly meetings with Engineers / Management for all programs supported to include new proposal efforts for stand-alone systems, RMF updates and software updates per Customer approval/denial
Audited all program software for the latest scans and viruses in addition to all hardware per program utilizing Visio for layouts to include computers, hard drives, servers, shredders, printers and scanners
Researched all software for engineers before downloading onto system utilizing open source documentation for vulnerabilities and threats; submitted assessments to Customer for approval
Annual government audits for certification and accreditation of systems and compliance per company SOP’s
LOCKHEED MARTIN, Space Systems Company, Sunnyvale, CA 02/2015 - 05/2017
PROGRAM SECURITY REPRESENTATIVE, Sr.
Program Security Management for a multi-billion dollar Department of Defense (DoD) program supporting over 400 employees
Provided program security management and vulnerability assessments within the scope of federal government directives per the National Industrial Security Program Operating Manual (NISPOM)
Trained new hires on program specific information, OPSEC requirements, proprietary and classified information, reporting responsibilities, data spills, and counterintelligence information
Worked closely with the Defense Security Service (DSS) Representatives for annual security vulnerability assessments/audits
Created an updated Program OPSEC Plan per Customer requirement; briefed Program Management
Key client meetings with the government customer regarding data spills and program specific issues such as security infractions/violations and investigations
Daily collaboration with the Information Systems Security Officers (ISSO) for the protection of several secure Automated Information Systems (AIS)
Worked directly with the Forensics Analysis and Certification Team (FACT) for the cleanup of data spills for investigative reports sent to the Customer
Randstad – AEGIS LLC, McLean, VA 11/2014 – 01/2015
SECURITY SPECIALIST
Short term temporary personnel security in support of Department of State (DoS) contracts
SCIENCE APPLICATIONS INTERNATIONAL CORPORATION (SAIC) / Leidos, Springfield, VA 10/2012 – 07/2014
SPECIAL ACTIONS PERSONNEL SECURITY SPECIALIST IV at NATIONAL GEOSPATIAL AGENCY (NGA)
Security and Investigations (SI) Branch
Security Specialist performed secure database searches, reviews and analysis utilizing government information systems to obtain sensitive data for security clearance determinations per investigation for Adjudications to include: HIPPA regulations, financial, drug and personal identifiable information; constant customer interaction with other federal agencies and industry partners
PREFERRED SYSTEMS SOLUTIONS (PSS), Vienna, VA 02/2011 – 07/2012
CORPORATE FACILITY SECURITY OFFICER (FSO)
Program Security Management for 300 employees/consultants supporting several contracts for the Intelligence Community, DoD, and other government agencies
DEPARTMENT Of JUSTICE (DoJ) FBI, Washington, D.C 08/2010 – 12/2010
INTELLIGENCE ANALYST - GS11
Worked in secure area analyzing real time data from multiple sources on national security level and discovered gaps in the data and created requirements for mitigation
L-3 COMMUNCATIONS, Intelligence Solutions Division (ISD), Washington, D.C 10/2008 – 08/2010
CONTRACTOR SPECIAL SECURITY OFFICER (CSSO) at OFFICE OF NAVAL INTELLIGENCE (ONI)
Program Security Management for 200 personnel supporting the Intelligence and Information Technology Management (IITM) contract
ADDITIONAL EXPERIENCE
CENTRA TECHNOLOGY, INC., ASSISTANT FACILITY SECURITY OFFICER
L-3 COMMUNICATIONS, ASSISTANT FACILITY SECURITY OFFICER
AMSEC LLC (Subcontractor under SAIC), SECURITY ADMINISTRATIVE ASSISTANT, LEVEL III for NAVAL UNDERSEA WARFARE CENTER (NUWC)
TRAMMELL CROW Co. - Subcontractor under ELECTRONIC DATA SYSTEMS (EDS), SECURITY ASSISTANT for NAVY MARINE CORPS INTRANET (NMCI) at one of the EDS sites
EDUCATION
GEORGE MASON UNIVERSITY, Fairfax,VA - Schar School of Policy and Government, Master of Public Policy (MPP) Certificate Program-National Security & Public Policy Certificate obtained
OXFORD UNIVERSITY, Mansfield College, Oxford, United Kingdom-Study Abroad Program - Britain, European Union (EU) and the Challenge of Globalization Course - Master Course Certificate obtained
KELLER GRADUATE SCHOOL OF MANAGEMENT, San Diego, CA-Information Systems Security classes
NORTHEASTERN UNIVERSITY, Boston, MA, BACHELOR of SCIENCE (BS), Criminal Justice, 09/1998 - 09/2002 - BS Degree obtained
AWARDS
LOCKHEED MARTIN - Recognition Award - completed a last minute, time sensitive task for a Customer Counterintelligence (CI) Briefing, Special Recognition Award (SRA) for contracts support on a highly visible program, SPOT Award for 400 person logistics consolidation efforts for personnel, GSA approved safes, secure information systems, hardware, software and proprietary material
AUDITS
Defense Security Service (DSS) - Commendable Ratings from Lockheed Martin and L-3 Communications
VOLUNTEER WORK & ASSOCIATIONS
American Cancer Society, San Diego Humane Society, National Kidney Foundation and Northeastern University Alumni Group
Contact this candidate