Cybersecurity
Resume:
Kevin M. Tydings
Newport, NC 28570
*****.*******@*******.***
An experienced Information Technology and security professional with more than 19 years of diverse technical
success in designing, developing, securing and implementing advanced information systems to ensure maximum
system capability and effective security. Proficient at team building, crisis management, problem-solving and budget
controls. Ambitious and methodical leader with a demonstrated ability to improve efficiency, effectiveness and
performance through continuous quality improvement and process control. Phenomenal communicator with a
customer focused approach and dedication to knowledge based management.
Qualification Highlights
Demonstrated IT Security and Information Assurance proficiency
Substantial IT development and management skills
Extensive cybersecurity architectural experience
Experienced and accomplished in Project Management
Professional Experience
Principal Cybersecurity Architect
August 2014 – Present
Enercon
Perform leadership, architecture, analysis, review and consulting on multiple technologies in diverse critical
infrastructure environments through innovative and strategic execution. Manage a technical team consisting of
nuclear engineers and operators to facilitate efficient and effective critical environment evaluation. Ensure promotion
and support of project execution effectiveness through accurate and timely deliverables. Manage work groups
comprising of engineering and/or technical staff. Supervise routine and advanced technical work performed on
assigned projects and maintain quality standards of all cybersecurity projects. Manage task completion to the
schedule and budget requirements.
• Provide guidance to team members throughout the project for task completion
• Develop weekly project completion percentages to leadership for action tracking
• Provide leadership and process improvement to project managers and team members
• Provide technical input for multiple proposal efforts
• Provide direction for all phases of project execution and program development to include, but not
limited to critical digital asset identification, classification, validation, assessment, and mitigation
strategy development.
Principal Cybersecurity Architect
December 2010 – August 2014
Science Applications International Corporation/LEIDOS
Performed cybersecurity leadership, architectural design, analysis, and implementation on multiple technologies in
diverse environments through innovative and strategic execution. Promote and support cybersecurity effectiveness
through accurate and timely deliverables. Managed the security and risk management energy team consisting of
senior level cybersecurity analysts and engineers who performed risk assessments, compliance exercises, and
security solution implementation for multiple clients to include, but not limited to Federal, Defense, Smart Grid and
Commercial industries.
• Cybersecurity Team Lead for AP1000 Emergency Management System design and cybersecurity
architecture
• Developed Cybersecurity Incident Response methodology for nuclear power facilities
• Provided leadership for multiple Information Technology, Smart Grid and Industrial Control Systems
cybersecurity projects
• Provided cybersecurity architectural designs for multiple system development initiatives
• Developed multiple cybersecurity programs such as Incident response programs and portable media
and mobile device protection programs for nuclear power facilities
• Participated in and facilitate multiple proposals for cybersecurity and information assurance
opportunities throughout the commercial and Department of Defense industries
• Provided defense in depth strategy and architecture evaluation for commercial industry customers
• Participated in the Council on Cybersecurity Secure Power Systems Professional panel
• Provided gap and descriptive solution determination between typical and industrial computing
environments through effective security control and threat analysis
• Participated in the National Board of Information Security Examiners (NBISE) smart grid
cybersecurity panel
• Performed multiple cybersecurity assessments and evaluations of critical systems and critical digital
assets for the nuclear power industry customer base
• Provided communications architecture and cybersecurity implementation for microgrid designs
• Provided information assurance expertise for multiple Advanced metering infrastructure designs and
implementation for USN and USMC clients
Information Assurance Manager
November 2009 – December 2010
Science Applications International Corporation, Umatilla Chemical Agent Disposal Facility, OR
Developed, implemented and managed an information assurance program to ensure the confidentiality, integrity and
availability of all Government owned information systems. Ensured adequate security was in place and functioning
as required for the level of data classification on each information system and underlying networks. Ensured defense
in depth strategy was implemented by auditing and assessing the current and future suggested alterations of all
information systems used by the facility in accordance with Department of Defense and Army regulations and
directives.
• Met requirements for handling and safeguarding sensitive information and possess a secret security
clearance
• Managed a team of Information assurance and technical professionals to prepare for Department of
Defense Information Assurance Certification and Accreditation Process (DIACAP) security test and
evaluation in 6 months
• Reported security violations and incidents as required
• Responsible for sustaining and maintaining the information assurance program
• Conducted required annual reviews of all information systems to ensure maintainability and
sustainability of the Information Assurance Program
• Performed risk assessment and developed mitigation strategies as required
• Ensured the appropriate use of approved procedures for clearing, purging, reusing and releasing
system memory, media, output, and devices
• Ensured information assurance personnel are maintaining and auditing access and log data
• Planned, developed, implemented and maintained information assurance documentation
• Planned, developed, implemented and managed all information assurance measures to include but
not limited to access controls, continuity of operations, incident response, risk management,
information systems physical security, and network security while staying within budget
• Responsible for facilitating IT projects to ensure information assurance measures are in place and
deliverables are in accordance with current security policies, plans, procedures and guidelines
• Updated and maintained content classification and protection of organizational data to include for
official use only, personally identifiable and contract sensitive information
Nuclear Cybersecurity Analyst and Consultant
May 2009 – November 2009
Energy Northwest, Richland, WA
Protected hardware, software and information throughout its entire lifecycle to include but not limited to electronic
communications through the internet; public and private telecommunications; corporate owned information systems
or other communications to ensure the confidentiality, integrity and availability of the information.
• Responsible for interpreting cybersecurity rules and regulations
• Identified possible vulnerabilities, risk assessment, and mitigation strategies
• Identified, interpreted and implemented required security controls
• Participated in the protection of critical digital assets and systems from cyber threat
• Participated in cybersecurity analysis surrounding the overall architecture of plant networks, SCADA,
Industrial Control Systems, operating systems, hardware platforms, plant-specific applications,
services and protocols
• Conducted cybersecurity investigations as required
Network Manager/Information Assurance Security Officer
November 2001 – May 2009
Science Applications International Corporation, Umatilla Chemical Agent Disposal Facility, OR
Developed, implemented and managed an information systems security program to ensure the confidentiality,
integrity and availability of all network attached devices. Provided defense in depth strategy by implementing and
managing multiple firewalls, VPNs, Cisco PIX, IPS, encryption, PKI, patch management services, and vulnerability
assessment tools in accordance with Department of Defense and Army regulations and Directives. Managed Local
Area Network to include Active Directory and Exchange Administration, Systems Administration, Information Security,
Telecommunications, and Cisco switch/router management.
• Reported security violations and incidents as required
• Responsible for facilitating and maintaining the information systems certification and accreditation
• Conducted semi-annual reviews of all information systems to ensure no security alterations have
invalidated the certification and accreditation
• Performed all required responsibilities as the Information Management Officer for the Federal
Government Facility.
• Identified data ownership for each information system or network
• Ensured the use of approved procedures for clearing, purging, reusing and releasing system
memory, media, output, and devices
• Ensured information assurance personnel are maintaining and auditing access and log data
• Planned, developed, implemented and maintained information technology security plans, procedures
and policies
• Planned, developed, implemented and managed all information security measures to include but not
limited to access controls, disaster recovery, Information security and risk management, information
systems physical security, and network security while staying within budget
• Responsible for facilitating IT projects to ensure security measures are in place and deliverables are
in accordance with current security policies, plans and procedures
• Managed all IT service delivery and support while staying within budget
• Identified annual IT budget requirements to senior management
• Responsible for property management and inventory
• Updated and maintained content, classification and protection of organizational data
• Developed and coordinated Web and FTP site content review
• Conducted network analysis, development, evaluation, testing, installation and documentation
• Developed and presented procurement strategies to support new information system technologies
Network Administrator
March 2001 – November 2001
Think Tank Inc., National Oceanic & Atmospheric Association, Silver Spring, MD.
Managed the daily activities and operations of the local area network for a 850 user community. Integrated
interdependent projects, including hardware, applications, major LAN software packages, security,
telecommunications, operations, and distributed processing to achieve a state-of-the-art environment
• Ensured integration of hardware and software packages and software applications
• Participated in LAN planning, analysis, design, development, evaluation, testing, and installation
activities
• Troubleshot all aspects of LAN problems, running diagnostics in heterogeneous processing
environments, and resolving issues/problems/conflicts of interdependent projects
Systems Engineer/LAN Administrator/Exchange Administrator
March, 1999 - March 2001
Science Applications International Corporation, Walter Reed Army Medical Center, Washington DC
Managed and supported more than 40 servers and 16,600 local and regional users for Systems and Exchange
Administration. Supported the user community as a helpdesk Systems Engineer for more than 6,000 local users.
• Assisted in the implementation of a SANS Server Farm
• Assisted in projects to include the implementation of a Terminal Server
• Wrote multiple project plans and proposals for server installations and user migrations
• Performed network support for a 6,000 + node NT network with workstations operating on
Windows 3.X, 95, 98, NT, and Macintosh O/S
• Performed mass installations of desktop computer systems
• Provided oversight and instruction for fellow employees
Information Systems Management Office Supervisor/LAN Administrator
October 1995 – March 1999
United States Marine Corps., MCAGCC, 29 Palms, CA
Responsible for the Management and administration of computer systems for the battalion consisting of more than
750 Marines. Provided supervision and property administration of the Local Information System.
• Supervised a team computer specialists and supported over 150 computer suites
• Met requirements for handling and safeguarding classified material and possessed a “secret”
security clearance
• Incorporated a new tracking system and database for Maintenance inspections
• Upgraded the Local Area Network from Token Ring to Ethernet
• Supervised the repair of all hardware issues and managed the trouble ticket system
• Managed over 100 users on the Local Area Network using Banyan Vines software
Education
Bachelor of Science in Computer Networking, Strayer University, 2008
Certificate of Graduation, Computer Science School, Quantico, VA, 1995
Microsoft Certified Systems Engineer (MCSE)
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Associate Security (CCNA-Security)
Certified Information Systems Security Professional (CISSP)
Information Systems Security Architecture Professional (ISSAP)
Designated Accrediting Authority (DAA) Trained
Information Assurance Security Officer (IASO) Trained
Level I Information Systems Security
Level II Systems Administrator and Network Manager Security Certification, Ft. Lewis, WA
Project Management I, SAIC
Lean Six Sigma Champion and Greenbelt, Air Academy Associates
Technical Expertise
Hardware: Blackberry; Compaq, Dell, Gateway, and HP computing devices; Cisco 2811 security appliance including IPS,
VPS, and PIX modules; Cisco PIX 506e; Cisco routers; Cisco switches; Juniper; Idealstor backup appliance; Secure
Computing SnapGear SG565; Sidewinder G2 Appliance Firewall (6.1.0.x and 7.0.0.x); Snap Appliance Snap Server 4500;
WinTel; multiple industrial control system devices.
Software: Advent Raptor Firewall; Altiris Software; Blackberry Manager; Clinical information Systems (CIS); Defense
Messaging System (DMS); Diskeeper; eEye Retna Scanner; Event Tracker; Harris Stat Guardian Vulnerability Management
Suite; Health Hazard Information Module System (HHIMS); Hyena; Internet Information Services; Lotus Notes; Microsoft
Exchange (5.5 and 2003); Microsoft Office (all versions); Microsoft System Center Essentials; MimeSweeper; Network
Associates McAfee Groupshield; Norton Ghost; Patchlink Scan; Patchlink Update; Secure Computing Security Reporter;
Symantec Antivirus Corporate Edition; Symantec Backup Exec; Symantec Enterprise Firewall; Timbuktu
Operating Systems: Active Directory (2000 and 2003); DOS; Win 3.X; Windows 95; Windows 98; Windows 2000
(Professional and Server); Windows NT 4.0 (Workstation and Server); Windows Server 2003; Windows XP; UNIX
Protocols: AH; DHCP; DNS; ESP; FTP; IP; IPX; NetBEUI; rlogin; SMTP; SSL; TCP; TFTP; WINS; IPSec
Contact this candidate