Sign in

Security Management

Austin, TX
February 20, 2015

Contact this candidate



*** ********* *****

Georgetown, Texas 78633




Master of Business Administration, April 2015-Texas A&M University- Central Texas-

Killeen, Texas

Bachelor of Science Computer Information System, 2010 – Texas A& M University- Central

Texas, Killeen, Texas


Seeking an Information Technical Consultant position in a growth oriented organization with focus

on FISMA, System Security Monitoring and Auditing, Risk Assessments, Audit engagements, and

Testing information technology controls.


Integration Enterprise Solutions System Security Plan Plan of Action & Milestone Security Test

& Evaluation Confidentiality Integrity and Availability Access Control Audit and Accountability

Certification and Accreditation General Computer Controls Application Control Testing

Compliance Testing Project Management Risk Assessment Change Management

Configuration Management Security Maintenance Contingency Planning Policies and

Procedures Implementation Incident Response Media Protection Physical Security

Computer operations Environmental Security Network Security System Security Personnel

Security OMB Circular A-130 Appendix III Consulting NIST 800-53 NSA Guide FIPS FISMA


01/2014 – Present Information System Analyst-Department of Defense US Army

Provide consultations as trusted agent for processes, procedures, and reports for

Department of the Army systems under test and evaluation program.

Analyze systems’ security posture and processes for Network Integration (NIE) to meet

Defense Information Systems Agency (DISA), National Security Agency (NSA)

requirements and Security Technical Implementation Guides (STIGs)

Provide the following deliverable products: risk assessments, gap analysis, security matrix,

and propose security architectures in accordance with best practices

Compile and assess security requirements from all stakeholders for program of record for

5 fortune 500 companies during network integration evaluations for over $2 billion of

systems under test and evaluation for Army procurement

12/2012-12/2013 Senior Information Assurance Manager US Army

Branch Chief for Computer Network Defense\Cyber Security Defense Division

Engineered and implemented security architecture for 4 regions


Implemented Certification and Accreditation program for Installation as a Docking Station

program for Combined Enterprise Regional Information Exchange System (CENTRIXS)

coalition network in all 4 regions in South Korea

Planned, provided, coordinated, integrated, Host Base Security Systems (HBSS) and

technical support and guidance

08/2010-11/2012 Deputy Branch Chief US Army

Developed and led team that validated the standards and process for Certification and

Accreditation (C&A) that resulted in integrating tactical system to Installation Campus Area

Networks resulting in the framework and standards for docking stations for tactical

systems to receive services in strategic garrison environments

Provided Information Assurance Technical level 3 support to 36 Network Enterprise

Centers (NEC) with the four phases of Certification and Accreditation (C&A), including

monitoring C&A artifact compliance, annual self-assessment (NIST 800-53A) completion,

annual contingency plan testing, and POA&M management

Appointed Army liaison to DISA for enterprise email solution development and


Assessed Information Assurance Management Programs, Automations Maintenance

Programs, Information Assurance Programs, Computer Network Defense Programs and

Information technology Service Management Programs for 4 regions and installed

$1million of automation equipment to comply with regulated requirements in 30 days

09/2007 – 07/2010 Chief Information Security Officer US Army

Provided management for all team leads for all IT related program and projects

Managed, implemented maintained $2 million of lab training equipment

Implemented new life cycle and maintenance plans for 80% of accredited computers,

audio and video systems in 6 months in order to become compliant with DISA standards,

and Department of Army mission capable requirements. Provided IA inspection for STIGs

compliance to evaluate the existence and effectiveness of NIST 800-53 security controls

Supervised, mentored, managed, and trained personnel to support efforts for Trust Agent

FISMA Tool (TAF) and Risk Management System (RMS)

08/2006 – 08/2007 Information System Analyst US Army

Managed intelligence communications systems, database architectures and Information

Assurance Management in support of 160,000 personnel throughout Iraq

Provided System Owners and ISSOs through the Certification and Accreditation (C&A)

process, ensuring that management, operational and technical controls for securing either

Security Systems or IT Systems are in place and are followed according to federal

guidelines (NIST 800-53)

Developed and implemented innovative and robust IT solutions and policies for

communications and operations for Information Assurance Security Teams; resulted in

commendable ratings in IA inspections for Department of the Army Inspector General

mandatory (DAIG)

Developed the contingency planning policy statement, conducted the business impact

analysis (BIA), Identify preventive controls, developed recovery strategies, plan testing,

training, exercises and maintenance.

Conducted system test and evaluation, identified and report any residual risk and

documented certification findings and recommendations.

01/2004 – 10/2005 Information Assurance Security Officer US Army


Reviewed system security plans, initial risk assessments and interconnection security

agreements and provided solutions for NIST 800-53 compliance with Certification and

Accreditation (C&A) process, ensuring that management, operational and technical

controls for securing either Security Systems or IT Systems

Improved and implemented Information Assurance training program for 2,600 personnel

Planned, implemented, installed, upgraded and maintained hardware and management

software to include an antivirus, active directory, DNS, Microsoft Exchange email, file

servers and wireless network. Implemented STIG for IA compliance and governance

Implemented security architecture for datacenters and cloud computing environments for

the enterprise


ComTIA Advanced Security Practioner

Certified Ethical Hacker

Security +


Information Technology Infrastructure Library (ITIL) v3

The Juniper Networks Certified Associate (JNCIA)

Contact this candidate