Engineer Project Manager
Resume:
James Goss
*** ****** ***** ****, *********, MO *3042
Phone: 202-***-**** Jim's personal email
Qualifications Summary
Mr. Goss is a polished Information Technology (IT) career professional with a focus on excelling at delivering
global IT projects on-time by producing thorough analyses, project scopes, architectures, and workflow plans that
achieve results quickly. Possesses Subject Matter Expert core competencies in enterprise infrastructure
architectures with a focus on cyber security architecture consulting, designs, regulatory compliance audits, and
has a track record of success aligning global enterprise information systems and associated data with cyber
security initiatives and business goals. Acclimates well to executive management, comfortable during a crisis,
and a shrewd leader who grasps the ‘big picture’; an excellent choice to build teams, and lead critical efforts and
communications.
Core Competencies
• Highly Technical IT Architecture and Cyber Security Subject Matter Expert (SME)
• Certified Project Management with experience up to and exceeding $ 500M Projects
• Expert at applying standards (DIACAP, SOX, PCI DSS, HIPAA) and assessing risk
• External and Internal Customer Support and Relationship Management
• Incident Response Plan author and Security Incident Manager (analysis and remediation)
• Mastery of Microsoft Office Suite: Word, Excel, Visio, PowerPoint, Project, et.al.
Certifications
• Project Management Professional (PMP), Earned Value Management Silver Medallion (EVM),
Cost Account Manager (CAM)
• Protection of Intellectual Property and Trade Secrets, and Proposal Management (RFP
Response)
• Cyber Security: Regulations, Requirements, Design and Integration, Certification and
Sustainment
• Procurement Integrity and Export Controls, Software Development Life Cycle Security Standards
• Qualified for CISSP courseware, commencing online mid-April 2014
Industry Best Practices Assurance and Satisfaction
• Interpretation of requirements, cost effective designs, profit-increasing solutions
• Superior analytical skills; adept at leveraging data steward and data custodian relationships
• Data Governance, quantification of risk, creative contingencies, opportunities promotion
• Relational Data Schema: relevant, factual, and verifiable interpretation of the available data
• Knows when to make a decision and move forward, and how to motivate and direct personnel
Communication
• Executive-level presentations are concise and to the point, and achieve stakeholder buy-in
• Dashboard schedule, cost, and progress metrics are accurate and understandable
• Assures forward thinking technical on and off-ramps are understood and the business case is
sound
• Mature outreach skills; assures priorities and goals are understood by the security team and end
users, enabling individuals to make sound independent decisions
• Mastery of trade studies and strategic operations that support continuous risk mitigation
improvement
• Extensive experience in Supplier Management and Vendor Management, and resolving conflicts
Management
• Proven staff management skills across the full spectrum of entry-level to senior engineers
• Solid history developing security programs, architectures, processes and policies from the ground
up
• Excellent time management and attention to details assures multiple simultaneous projects
succeed
Vinyl Era Audio, Owner 2013
Restoration and sales of ‘Silver Era’ stereo high fidelity audiophile equipment, and curating and sales of
historically significant vinyl record collections. Customization of turntables, amplifier systems, speaker cabinets,
drivers and crossovers. Worldwide sales.
Information Assurance (IA) Security Engineering Lead, Boeing: TRIAD 2008 - 2012
Design architect for multiple specialized IT products of enterprise scale, requiring cyber security compliance,
evaluation, and accreditation. Responsible for requirements analysis in accordance with standards such as NIST,
DIACAP, PCI DSS, and HIPAA. Led specifications development, Basis of Estimate (BOE) pricing, Bill of Materials
creation, Network, Host and Client intrusion detection designs, work package management, preliminary and
critical architecture designs (PDR & CDR), customer presentations, work groups leadership, hardware and
software integration, product delivery, and third-party certifications. IA Team Lead Architect and Earned Value
Management Cost Account Manager (Project Manager) for multiple DOD Airframe Training Systems (ATS) and
ATS proposals. Created profitable, executable solutions that met budget and schedule constraints. Managed
internal and external third-party audits, and independent verification and validation activities. Provided assistance
to Software Development and Systems Integration Integrated Product Teams to assure the thoroughness of cyber
security controls that protect the manufacturing environment. Developed the processes to accurately measure
schedule, cost, and progress metrics, and report progress on multiple projects simultaneously.
Cyber Security Consultant, Chickasaw Nation Industries 2007
Federal Issuances Regulatory Compliance Subject Matter Expert; responsible for security posture risk
assessment and mitigation strategies, security staff and technology off-ramp plans, compliance traceability,
transition planning, and implementation governance for acquisition strategies. Assessed the proficiencies and
thoroughness of the cyber security architecture and staff competencies of a very large Department of Energy site,
resulting in both technical and staff change recommendations to overcome the deficiencies identified by a third
party evaluation.
SATCOM Information Assurance Lead, Lockheed Martin Space Systems 2007
Transformational Communications Satellite Space Segment Proposal Team; responsible for maturing Information
Assurance architecture design and authoring of proposal content for a multi-discipline team of space vehicle,
satellite payload, ground segment, network, and communications engineers to compete for the acquisition of a
USAF $ 13 billion program. Managed an IA team of partners and subcontractors forecasting future technical
risks, maturity, global threat, and software vulnerabilities across a 10 year span.
Information Assurance Systems Security Engineer, Boeing: ESG 2006
P-8A 737-NG ISR / weapons system aircraft Information Assurance Certification and Accreditation Team; provided
mentoring for and authoring of complex tactical sensors, weapons and avionics systems risk assessments.
Author of the aircraft Security Requirements Traceability Matrix and Systems Security Authorization Agreement
(SSAA).
Technical Manager (West Coast), Satellite Tracking of People LLC 2005 - 2006
Developed pilot rollouts of GPS offender monitoring, tracking and crime data analysis services as field liaison
between state and local law enforcement. Developed a 3-phase agent and crime analyst training program that
cut overhead costs by reducing the need for technical and training services in the field. Directly oversaw the pilot
program tagging of 150 predatory, high-risk sex offenders, and produced trend-analysis profiling criteria resulting
in over 30 arrests. Assisted with tactical apprehension and tagging operations in the field.
Computer Scientist, Advanced Systems Engineering Group Inc. 2004 - 2005
Led Innovation Research Team, forecasting next generation SAN mass storage and file system technologies.
Constructed a theoretical metadata object-based metafile system using SNIA modeling as the foundation for a
solution presented to the National Geospatial-Intelligence Agency and DARPA.
Information Assurance Engineer, Northrop Grumman: TEKsystems, Inc. 2003 - 2004
Managed recertification of Space and Missile Systems Center (SMC) Information Systems and applications.
Secured and certified emergent network ground communication segments for the Missile Defense Agency.
Interconnected Defense Agency networks included NIPRNet, SIPRNet, MDANet and DREN, which carried
multiple security classes of encrypted NSA, DISA, USAF, DSS, defense contractors, and academia data.
Technical Lead / DOD SPAWAR Consultant, Dell Computer Corp. 2003
Supported USN NMCI proposal requests and implementation solution needs for enterprise-scale C2/C4 systems,
Data Center, NOC, SAN, and Client architectures. Assisted Dell Navy Federal Sales with successful acquisition
of targeted market space. Performed research and compatibility functions integral to Defense Agency networks
including NMCI, ISNS, Army ITES and Air Force Combat Climatology Center.
Integration Control Engineer, DOD USN SPAWAR, Maxim Systems, Inc. 2002
Defense Mission Systems Engineer; architect of Navy integration strategies, Information Assurance and process
portals for Intelligence, Surveillance and Reconnaissance Systems (C4ISR) globally deployed applications and
hardware. Designer of short and long term DOD methods and infrastructures to support secure tactical and
intelligence messaging between Subsurface, Surface and Shore warfare commands.
Infrastructure Architect, Computer Installations and Services 2001
Bid specification and supervision of installation and implementation for HIPAA-compliant encrypted high-
availability medical networks. Provided architectural map and modeling consulting for information management
processes pertaining to the movement of patient health data, to assure business processes as well as technical
solutions worked in synergy and assured the highest confidentiality of sensitive data.
Senior Director of Information Technology, Pratt Holdings Corp. 2000 - 2001
Provided the vision to model, measure and manage an infrastructure supporting 25 west coast sites and a
corporate manufacturing facility. Installed enterprise manufacturing software platforms to increase operational
effectiveness, and created web sites to increase national product sales. Developed the Electronic Data
Interexchange (EDI) data policies and processes to coordinate a shared business model with vendors to increase
profits. First in the industry to develop and install a payment processing infrastructure compliant with the emerging
PCI DSS standard.
Industry Subject Matter Expert Skills
• Information Assurance (IA) / Cyber Security: CISSP / GIAC (SANS) eq. USG ISSO / ISSM / DIACAP
• System Security Engineer (SSE): INFOSEC, DCID 6/3 & 6/9, NIST, FISMA, PCI, NERC-CIP, D/R, I&A
(Identification and Authorization)
• Cyber Security Training author, instructor, and facilitator
• Earned Value Management, Cost Account Manager, Project Manager, BOE analyst: EVM, CAM,
PM
• Enterprise Information Systems Program, Logistics, Project Management, Architectures
Enterprise Infrastructure Architect: SAN & NAS; Cloud Security Alliance Practitioner: CSA
Cyber Risk, and Plan Risk Modeling and Management:, Schedule, Cost & Budget Intersect,
Critical Path: BORIS, IMP, IMS
Industrial Configuration and Change Management Controls: CM; SDLC Compliance Controls
Certification and Accreditation Auditing, Attestation: C&A, IV&V, SOX, PCI DSS, ITIL, CMMI
Relocation, Migration and Upgrades, Transition Management, Capacity Planning
• Information Systems Technologies Integrator, Hardware and Software Integration: HSI
Open Systems Interconnect: OSI; TCP/IP, IPv6, Secure Shell, SSL, LDAP, SAML, OpenID
Compliance for .Net Architecture, SQL, Oracle, and Local & Remote Clients: SCC, SCAP,
OVAL (Open Vulnerability Assessment Language)
Distributed Systems: Peer-to-Peer Topologies, Distributed Programs, Location Transparency
Software Development / Software Security Requirements Specification Author: DOORS
Internet, Firewalls, Virtual Private Network and Security Architectures, Antivirus: VPN, AV
NSA / FIPS Encryption, Intrusion Detection & Prevention Systems: IDS, IPS, DMZ
• Department of Defense Engineer, Systems Engineering; Certified Security Officer: ISSO, ISSM
Cross Domain Solutions, Common Criteria: DIACAP, NISPOM, DODAF, GIG, CCEVS, NIAP
Integrated Weapons Systems Engineering, Embedded Software: C4ISR, C4I, C3
Communications: Link 11 & 16, CDL, SATCOM TRANSEC, LASERCOM, INMARSAT
Aerospace Engineer, MIL-STD-1553 Avionics Bus, ARINC 429 / 708, AS9100 Controls
Tactical Systems: ESM, EWSP, IFFI, EO/IR, DIRCM, Radar, Acoustics, UAV, etc.
• Telecommunications Data Infrastructure, Diversity, Redundancy, Fault Tolerance, Mesh: SONET
• Cryptography: Type 1, Key Management: Type 4, ECU, HAIPE IS, KMI, KMA, CMI, FIPS 140, PKI
• Requirements, Risk Assessment, RFP & Proposal Content Manager / Author
• Technical Publications Author, Curricula Author and Instructor, Technical Writer
Accreditations, Education
Five awards for Professional Excellence while working for divisions of Boeing Defense & Space
Certified Enterprise Network Engineer or similar by Microsoft, Novell, IBM, HP, and Motorola
Nuclear Propulsion Engineer, Naval Nuclear Engineering School i; BS eq. in 1984
General Studies, Kent State University College of Sciences (Oceanography, Littoral Geology – 4 yrs.)
Sample of Publications
• 2012 Author, ‘F/A-18 Super Hornet Maintenance Trainer Information Assurance Sustainment’
Curriculum IAW DoDI 8570.01-M ‘Information Assurance Workforce Improvement Program’,
and US Army 25-2 ‘Information Assurance’
• 2012 Author, ‘KC-46 Aircraft Training System Cyber Security and Information Assurance
Approach’ IAW NIST Special Publication 800-53 ‘Security and Privacy Controls for Federal
Information Systems and Organizations’, and DoDI 8500.2 ‘Information Assurance
Implementation’
• 2010 Author, ‘P-8A Poseidon DIACAP System Identification Profile’ IAW DCID 6/3 ‘ Protecting
Sensitive Compartmented Information Within Information Systems’, and NIST Special
Publication 800-37’Guide for Applying the Risk Management Framework to Federal
Information Systems A Security Life Cycle Approach’
• 2009 Author, ‘Apache Attack Helicopter AH-64 ‘Site Security Plan’, and ‘Disaster Recovery
and Continuity of Operations Plan’, IAW ‘Information Assurance Technical Framework
Encyclopedia Version 3’, and Army Regulation 25-2 ‘Information Assurance’
• 2007 Author, ‘Transformational Communications Satellite Constellation Cyber Security
Approach’ IAW the NIST Special Publications Series 800 on Cyber Security, and DoDI
8510.01 ‘Defense Information Assurance Certification and Accreditation Process’
U.S. Military Veteran
Awarded three Honorable Discharges from active US Navy military service, level RER1. Awarded the U.S. Navy
Commemorative, Cold War Victory Commemorative (Civilian-Sponsored), the Overseas Service Commemorative
and the National Defense Service Medal. Formally recognized by Service Award from the ROK (South Korea).
Served in USN Reserve active duty status during the Persian Gulf War as an engineering member of Naval Ships
Weapon Systems (NEMESIS). Recipient of the Free Kuwait Medal. Served in a Mobile Technical Capacity with
Assault Craft Unit 5. Systems Engineering Staff supporting AEGIS Weapons and Missiles Platform technologies.
i Navy Nuclear Engineering School curricula includes but is not limited to:
• Molecular Biology
• Inorganic and Organic Chemistry
• Corrosion Chemistry
• Thermodynamics
• Metallurgy
• Advanced Mathematics and Power Theory
• Electronic, Electrical, and Mechanical Engineering
• Automated and Computer-based control and integrity assurance systems
• Radiation Sciences
• Nuclear Physics, Fission, and Fission Yield Sciences
Contact this candidate