Manager Engineer
Resume:
Toby Jordan
410-***-**** Home
410-***-**** Cell
Email:***********@*****.***
SPECIAL QUALIFICATIONS
** ****(s) Experienced Network and Signal Intelligence Analyst. Accomplish Network and
Sigint Operations professional with 20 years of strong progressive leadership and management
experience in a NOC and standalone environment. Skillful and knowledgeable network and
Sigint intelligence analyst; well versed in the OSI model, ArcSight tools, signals intelligence
collection, dataflow, counter-terrorism, target analysis, Satellite communication, regional target
development, and cable installation for site readiness. Displays excellent communication,
briefing and technical writing skills within the defense intelligence industry. Communicate
technical information to non-technical audiences, adjust presentation to appropriate audience. An
effective problem-solver with skills in conducting risk assessments, identifying potential threats
and critical thinking and structure methods for organizing and analyzing mostly non-quantitative
data to produce analytic judgments. Subject matter expert on high-level GWOT targets utilizing
advanced technical abilities to solve complex problems. Flexible and adaptable in order to learn
new technologies and techniques. Extensive knowledge and experience doing system
documenting, problem solving, and troubleshooting of new mission time sensitive reporting.
Experienced in SIGINT, IMINT, COMINT, GEO-SIGNAL analysis, Collection Management,
and Counter-IED Operations, telephone cable, Cat-5, Crypto machines, TDM/PCM, SDH,
LAN/WAN, various Network Servers, software update install for government customers.
SPECIAL QUALIFICATIONS:
Top Secret w/Full Scope
HARDWARE: Installation, configuration and maintenance of PC, LAN/WAN components on
Sun,TCP/IP, Microsoft Network Servers, Unix Servers, Crypto machines, Cisco servers, Hvac,
ATM systems, Xkeyscore, Pinwale, Cisco Switches and routers,Tivoli Access Manager (TAM),
Tivoli ID Manager (TIM), Sinegar Radio
SOFTWARE: DOD and commercial Intranet/Internet applications, remedy ticket, Adobe
Frame maker, Red hat Linux, Windows 2000, Windows 2003/2007, NT, UNIX, HP Open view,
MS Office Suite, HP Sm7, Solaris, Red Hat, Linux, Netbotz, Maxview, ArcSight, Splunk, Lotus
notes, Naurus Insight, OSSEC, Source fire, oil stock and WTS,
EDUCATION:
• UMBC- currently attending school fulltime for Bachelors in Information Systems.
• Anne Arundel Community College- Dual Major in Business Management and
Information System management.
• DOD Certified 8570- Network +, A+, and Security +, currently working on CEH and
CISSP.
• Community College of the Air Force- Credits toward Associate of Science.
• Airman Leadership School – Military training in Supervision, Management, and
Communication.
• Signal Intelligence Advanced Analysis Training School
SPECIFIC WORK/TASK EXPERIENCE
NORTHROP GRUMMAN
May 2012-May2013
Network IDS Engineer
• ArcSight incident handling/triage, OSI analysis and trends, removal and reporting of viruses,
malware queries, and security vulnerability information and dissemination. Manage IT operations
and secured systems and network routinely.
• Responsibilities include communications desk support, coordination of events, operational
procedures, knowledge management, and monitoring the health, welfare, and security of sensors.
• Assisted Information managers, Watch Officers, and system engineers with routine help desk
calls so that mission workloads can expedite in a timely fashion.
• Identified different types of anomalies through ArcSight and various tools, through these tools
and equipment we were able to identify the needs by reporting, doing system status check, shift
logs, and remedy tickets.
• Conducted NSA Operations Briefing(s) tours conducted by Executive level civilian personnel and
military officers to ensure thorough understanding of policies and procedures.
• Troubleshoot system problems, made recommendations, implemented and recommended
resolutions various Crypto equipment all while monitoring over 20 systems round the clock.
• Respond to security events and incidents from various NOC and SOC locations around the world
that has lost data, potential virus infections, and intrusion alerts within 30 minutes of receipt of
event/incident modification.
DCCA
Jan 2011-May2012
Network Analyst
• Oversaw tuning, performance, and dataflow monitoring for workstations, unix servers, and
peripherals. Proactive in finding intrusion and vulnerabilities in the Network infrastructure.
• Monitor, troubleshoot, and resolve issues involving operating systems and exploitation Sigint
traffic and analysis.
• Worked on a Joint Program that included ArcSight analysis, exploitation, RF Sigint, and
dataflow architectures; signals characterization analysis; different collection platforms and
architectures
• Worked hand and hand with Target Teams, DOD executives, Tier 3 Engineers, field users, to
ensure all training needs of the watch team and the watch was adequate and up to date.
Supervised engineering, operations and maintenance.
• Provided Technical Support on Engineering, Installation, Operations and Maintenance of GSM
Systems (Global System for Mobile Communications)
• Functioned as system administrator for Windows NT based servers, cluster controllers and
workstations. Required to keep all workstations up to date with the latest software and account
information. IAVA and TrackIT database updates Windows updates.
Elevi Associates
Jan 2010-Dec 2010
Network Engineer
• Provide rapid response in the event of a security incident . Damage assessed and contained
quickly; customer data protected; the root cause found, accurate record of events and losses
generated. High profile responsibility, involves the cooperation of several different work areas.
• Intrusion detection, virus protection, and other investigative responsibilities, such as forensics,
data analysis, customer follow-up, and briefings area and essential elements of securing the
enterprise-computing environment.
• Data flow analysis, target analysis, team operation lead on matter that needed to be reported to
management quickly. Reported on assigned activity that contain malware, viruses, and suspicious
activity that needed to be diagnose in a timely manner.
• Troubleshoot system problems, made recommendations, implemented and recommended
resolutions using Linux, Hp Openview, Red hat, VNC, Cisco, Microsoft Servers and Network,
TCP/IP and various Crypto equipment all while monitoring over 60 systems round the clock.
Experienced in Leading Ops Center applications, telecommunications networks, and writing
SOP’s for a variety of Systems. Maintain situational awareness.
• Manage and operate intrusion detection and prevention systems (ArcSight, Splunk, Sourcefire,
and various other tools) to monitor alert services; update and enforce policies designed to
minimize the impact of threats, both known and unknown. Authored and presented Disaster
Recovery Plans
ManTech/SMA
Aug 2006- Jan 2010
Network Operation Team Lead
• Managed, monitored, operated, and maintain set priorities on over 60 different Systems and
programs (both Local and OCONUS) using dataflow charts, SONET, Maxview, SDH, Netbotz,
Hp Openview, TDM/PCM, Cisco routers and crypto encryption machines.
• Performs initial analysis to establish target identification and operational patterns. Identify,
report, and maintain Signal Order of Battle (SIGOB) and Electronic Order of Battle (EOB)
information; uses technical references to analyze communications and signals information.
• Operate automated data processing (ADP) equipment for SIGINT collection, processing and
reporting. Maintains analytical working aids to support target collection, identification, and
location.
• Organize intercepted messages and isolate valid intelligence, identified the target and operational
patterns. Maintain analytical working aids and database. Assist in the emplacement, camouflage
and recovery of surveillance systems. Prepare technical and tactical intelligence reports.
• Monitored and trouble shoot Multi-point and point-to-point private lines, T1, DS-3, D4, D5, and
Fiber Optic Systems to insure communication with DOD customers stay up 24-7 continuously.
• Provided Technical Support on Engineering, Installation, Operations and Maintenance of GSM
Systems (Global System for Mobile Communications)
• Worked closely with the Customer Engineers to insure all new requirements were done from a
operator(s) perspective. Supported Windows, HP, and Sun workstations; integrated different
structures and tactics to improve the working environment of both the operators and system
design
National Security Agency (NSA) Fort Meade, MD
Nov 2001 – Mar 2005
Sigint Mission Manager :
• Perform intermediate analysis of intercepted communications, Prepares technical and tactical
intelligence reports. Performs fusion analysis of SIGINT products. Assists in the collection
management process.
• Implemented and maintained Microwave Systems, Fiber Optic Systems and Data VSAT Systems.
Troubleshoot Multiplex Systems when they receive critical alarms.
• Supervised Enlisted and Civilian personnel collecting data from Communication Systems,
develop standard operational procedures and training to fulfill customer operational
requirements. .
• Manage and monitor collection, analysis, and reporting of Critical Information that was used to
report to Executive management and DOD.
• Planned, Directed and Coordinated On-the-job training used to support the Watch floor and fulfill
customer(s) different guidelines Sop’s and directives. Worked closely with the Customer
Engineers to insure all new requirements were done from a operator(s) perspective.
National Security Agency (NSA) Fort Meade, MD
Dec 1993 - Nov 2001
Advanced Techniques System Sigint Analyst:
• Coordinated, initiated, and analyzed complex data systems to ensure processing capabilities are
maintained. Conducted indoctrination training for newly assigned operator(s).
• Worked with Sun network, oil stock, adobe frame maker and DoD intranet and internet
Applications for the 1 year. Supervised enlisted and civilian personnel in mission related
activities.
• Certified and trained on Unix, Windows 2000 and NT for various client projects.
• Monitored and reported on international information through various channels of communication
and exploits which were used for determining foreign military capabilities. Reviewed and wrote
Mission Control Notes (MCN) and SOP’s
• Utilized unique receivers and electronic components to operate specialized frequency spectrums.
• Scanned frequency spectrum, tuned receivers to prescribed frequencies and adjusted equipment to
obtain clear reception.
• Recorded critical data and reported information for specialized target analysis .
• Performed quality control, equipment maintenance and performance reports, and personnel award
programs.
• Helped and assisted in relieving demodulating, visually displaying, and formatting of non-morse
data transmissions on a day to day basis.
• Operated auxiliary communications, cryptographic equipment, and unique electronic Satellites..
Contact this candidate