Ms. Mariah Ann Gordon

Phone: 562-***-****

Email:acupg3@r.postjobfree.com

Objective:

Information Systems Security Officer seeking to contribute talents ensuring the integrity of information systems security; with a command of operations, organization and management abilities to add expertise in technical, operational, network knowledge and information assurance security concepts and policies, where these skills can be utilized and further challenged.

Security Clearance: Active Top Secret SCI CI polygraph OCT 2015

Education: Bachelors of Science in Information Systems Management 2012

Certifications: Security +

Highlight of Qualifications:

A result-oriented network engineer and Information Systems Security Engineer with over decade long combined track record tenure of military and civilian experience.

Directed a team of professional Engineers with the implementation of the Next Generation Network upgrade for the Federal Bureau of Investigation.

Managerial skills exercised in leading, organizing, and structuring mission critical projects with 10 experienced professionals.

Provide guidance in assessing the security infrastructure and network and systems design to ensure system and network security.

Highly experienced on a variety of Cisco Systems hardware platforms, Taclane equipment, network management software, and security tools including HBSS, Niksun, ArcSight, and Wireshark.

Experienced with the handing and inventory of COMSEC material as well operates multiple different forms of cryptographic equipment.

Support the evolution and verification of an integrated and life cycle balance set of system products and process solutions that satisfy customer information security needs and successful certification of the system; while focusing on identifying risks and minimizing or controlling those risks.

Knowledge of security management, risk assessment, and evolution methods within the system engineering processes and life-cycle functions and procedures.

Ability to apply information systems security engineering, security services, and mechanisms, threats, and vulnerabilities to systems.

Comptia Security+ Certification (2010).

Host Based Security System (HBSS) DISA HBSS 201 ADMIN EPO5.1 training and course completion certificate (2016).

Completion of ICD503/Risk Management Framework course (2011).

Bachelors of Science Degree in Information Systems Management (2012).

Associate of Science in Applied Electronic Studies: Electrical Systems (2009).

In pursuit of Comptia Advanced Security Practicioner, DoD 8570 IA IAM Level 2 and IA IAT Level 3.

Professional Experience:

General Dynamics – SPAWAR 2015/2016

Senior Cyber Information Assurance Analyst

Prepare system documentation for assessment in accordance with the Risk Management Framework (RMF) and NIST Special Publications (800-37, 800-53 and others); identify deficiencies and provide recommendations for solutions; track findings with Plan of Action and Milestones (POA&M) through mitigation and/or risk acceptance.

Conducting Assessment and Authorization activities for DOD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines.

Create and maintain existing information system security documentation, including SSP, POAM, and Security Configuration Guide.

Scan and analyze vulnerability data through Assured Compliance Assessment Solution (ACAS) system scanner.

ManTech International – National Reconnaissance Office: 2013/2014

Lead Information Systems Security Officer

Responsible for monitoring projects IA compliance while maintaining the integrity of security in accordance to DoD regulations.

Ensure all systems are operated, maintained and disposed of in accordance with internal security policies and practices outlined in the System Security Plan (SSP) for each site.

Provide oversight and accountability of day-to-day security operations by developing and maintaining a formal Information System Security Program, implementation and enforcing information system security policies, and to review and oversee all System Security Plans (SSP)

Ensure personnel follow established information security policies and procedures and all security personnel receive the required technical and security training necessary.

General Dynamics - National Reconnaissance Office: 2010/2012

Information Systems Security Engineer/Advanced Engineer II Information Assurance

Support the evolution and verification of an integrated and life cycle balance set of system products and process solutions that satisfy customer information security needs and successful certification of the system; while focusing on identifying risks and minimizing or controlling those risks.

Identify, evaluate, and eliminate or contain system vulnerabilities to known or postulated security threats, resulting in an acceptable level of security risk.

Apply engineering principles during design, development, and operations to identify and reduce system susceptibility to damage, compromise or destruction by an adversary.

Integrate the multiple security disciplines to provide optimal and cost effective information system security solutions.

Develop a system with the needed security requirements and documentation to be certified and accredited.

Apply systems acquisition phases and assess at each defined control gateway.

oTransform validated security needs and requirements into a life cycle balance set of system products and process security solutions.

oIntegrate INFOSEC engineering and other security disciplines in order to meet the programs security objectives.

oEnsure INFOSEC issues are addressed for all functional and physical interfaces (internal and external) of the system elements including hardware, software, facilities, data, and services.

oIdentify, define and classify security risks, develop mitigation approaches and reduce security risk through early identification and the formation of appropriate documentation for decision matters.

Determination of the system concept and requirements based on alternative security operations, design and engineering approaches and known security requirements and policies.

Responsible for reviewing data received from intrusion detection and prevention systems as a Computer Network Defense Analyst; analyze potential suspicious activities and events seen on the network using the tools available.

Collect data on a network protocol analyzer tool, “WireShark”, to capture and interactively browse the traffic running on a computer network.

Utilize NIKSUN NetDetector to record and analyze traffic streams at high data rates to detect and capture anomalous activity, by using a packet capture and recording engine coupled with a query processor.

Configure and maintain IDS Balancer for ISS secure sensors top layer switch, for use of the real time intrusion detection and response system, which unobtrusively collects and analyzes data.

Create investigative cases in ArcSight for incidents that represent potential threats to the network systems. Perform initial incident assessments and document analysis including findings.

Collect data on ASIM CIDDS (Automated Security Incident Measurement, Common Intrusion Detection Director) that provides real time data collection from network traffic and identifies strings and services that could indicate attempts at unauthorized access or system misuse.

Monitoring operational state of networks for information assets, troubleshooting and reporting of change of status for network systems.

Monitor, manage, and configure over 15 different LAN/WAN network requirements.

Observe and control the status and performance of all components of network facilities.

Identify, diagnose and resolve problems affecting network performance.

Activate, update and close tickets on PEMS on a daily basis to keep track of network outages, performance, and configuration changes throughout the United States for several LAN/WAN networks.

Zenetex – Federal Bureau of Investigation: 2009/2010

Project Coordinator – Network Engineer

Lead the coordination and implementation of the Next Generation Network upgrade for the Federal Bureau of Investigation.

Overseen a team of Electronic Technicians dispatched at external RA’s (Resident Agencies) with troubleshooting and conducting site maintenance while preparing vital situational status reports to senior management, co-workers, and subordinates.

Directed the migration of advanced network systems for multiple field offices and RA’s upgrading from frame relay/ ATM to Multiprotocol Label Switching (MPLS).

Implemented, configured and deployed new switches and routers at various CONUS locations specifically modified for each individual network infrastructure depending on their requirements while providing a seamless transition of user data with little to no down time.

Configured and installed Micro-TACLANE’s for secure communications network wide.

Raytheon: 2005/2009

Technical Support Engineer II Coordinator

Troubleshoot network issues and provide immediate support and assistance to our customers with senior network engineers.

Design, build, and maintain over 30 different closed-area networks, consisting of Cisco routers/switches, encryption devices, high-speed data links, fiber optic and twisted pair cabling and Interface with Information Systems Security Officer to ensure all Information Systems are in accordance or exceed security standards.

In the process of re-building various closed-area networks infrastructure from the ground up utilizing with Cisco routers and switches (2600, 3500, 3750, 5500, 6500 series.)

Oversee network and equipment upgrades to include IOS image upgrades, and configuration changes.

Responsible for administration of network comprised of workstations, help desk, hardware inventory, software inventory, network mapping, equipment purchasing, and software purchasing.

Ensure thorough network documentation, including maintaining each account's network matrix, backup configurations and network diagrams.

Experience with Video Teleconferencing (VTC) including design, implementation, configuration, testing, and troubleshooting.

Effectively and continually control a variety of classified material, equipment, and documents to ensure that information is secure.

Help desk experience using active directory and remedy used supporting closed area networks and interfacing with users on a daily basis.

Provide direct assistance with ISSM for cryptographic systems support for customers secure communications.

United States Navy: 2000/2004

Cryptologic Technician Security Operator

Inventoried Crypto gear and security paper work on a daily basis for control of classified information, training done monthly on proper change of CMS and destruction methods

Performed assistant COMSEC/EKMS duties and COMSEC equipment: KG175, KG194, KG84, KIV 7, STU-III and the CZY 10.

Communications watch supervisor/operator: maintain critical time sensitive wide area network circuits, via secured telephones and computers. Exercised control over 15 ships, to ensure safe operations while serving in Operation Iraqi Freedom.

Ships Signal Exploitation Communications Watch Supervisor/Operator (SSES) - I handled message traffic, communications with other ships and intelligence processing for the ship, by using cryptographic keys, and changing them at the nuday.

Maintaining the network infrastructure switches, hubs, and routers; network and system administrator of servers and workstations supporting the classified and unclassified Command Operation Picture; Secret Internet Protocol Router Network (SIPRNET), Integrated Services Digital Network (ISDN), and Joint Worldwide Intelligence Communications System Video (JWICS VTC) equipment.

Education:

University of Maryland University College – Bachelors in Information Systems Management (2012)

Ascolta Vocational School –

Interconnecting Cisco Network Devices

Building Cisco Multilayer Switching Networks

Global Knowledge –

Cisco Certified Network Associate (CCNA) boot-camp

ICD503/Risk Management Framework course (Dec 2011)

Contact this candidate