Cyber Security Analyst
Resume:
ARSENE E. KIMON
**** ****** **** # *** ********* MD 20770 Cell: 301-***-**** acx4t4@r.postjobfree.com
SUMMARY
Information Security Professional.
Security Clearance: Active Public Trust/ Interim Secret/Pending TS.
Bachelors’ of Science in Degree in Cyber Security.
Project Management Experience.
Over 15 years of extensive IT experience with DoD, DHS, US Senate, FDA, IRS, and the private sector.
Strong customer relations skills.
Demonstrated leadership, excellent communication, analytical, and problem-solving skills.
Self-motivated, proactive, enthusiastic, and dependable.
EDUCATION
Masters of Science: Cyber Security (In progress- anticipated graduation April 2017)
University of Maryland University College (UMUC), Adelphi, MD.
Bachelors’ of Science: Cyber Security (Completed December 2014)
University of Maryland University College (UMUC), Adelphi, MD.
IT CERTIFICATIONS
CISSP (In Training)
CompTIA Security+ CE.
EC-Council CHFI (Computer Hacking Forensic Investigator v8).
CompTIA Network+ CE.
CompTIA A+ CE.
Microsoft Technology Associate (MTA).
DoD Training
Information Assurance Policy & Technology (2015).
Derivative Classification (2015).
Information Assurance Certification and Accreditation Process (2015).
Information Assurance/Computer Network Defense Information Sharing (2015).
DHS Training
Information System Security Officer (ISSO) (2016).
InfoSec Institute
CISA (Certified Information System Auditor) (2016).
Velociteach
CAPM (Certified Associate Project Manager) (2016).
EMPLOYMENT EXPERIENCE
eGloabalTech (Government Contract)
Department of Homeland Security (DHS)/USCIS
Arlington, VA 22203
Role: IA GOVERNANCE/AUDIT SUPPORT Apr’ 2016-Present
Maintain, review and develop Information Security Division (ISD) policies and procedures utilizing simple and plain language.
Maintain and update ISD policies and procedures to reflect any changes in the U.S. Laws, Executive Branch, DHS and Component internal standard operating procedures.
Review all security control content in accordance with NIST SP 800-53 (latest edition/revision), “Recommended Security Controls for Federal Information Systems and Organizations,” DHS 4300A and any other applicable guidance in drafting security policies.
Publish and maintain the current policies and procedure library within the USCIS documentation repository system, and assist the Government POC in the transferring of ISD documentation to the appropriate SharePoint libraries.
Develop/prepare standard operating procedures (SOPs), guides, white papers or other similar documents as requested by ISD.
Manage the USCIS routing and approval process for documents created and maintained, and coordinate with offices external to ISD, for the purpose of reviewing and updating policies and procedures.
Provide a course of action plan to address deficiencies in information security policy and procedure practices and conduct annual reviews.
Compare and analyze USCIS policies and procedures to ensure compliance with OMB, Government Accountability Office (GAO), NIST, DHS, National Archives and Records Administration (NARA), and other authoritative guidance sources as established by U.S. law or the Executive Branch.
Provide liaison to internal and external agencies/auditors, such as DHS and GAO and document system security reviews, inspections, audits and other evaluations and control audit requirements (i.e. NIST 800-53-A).
Provide ongoing support to the OIT Audit Liaison in facilitating response to internal and external audits from OIG, GAO, KPMG, OCFO, FISMA, or other requirements, including assisting with the development of Mission Action Plans and tracking and reporting progress on security audit-related actions.
Support all Security Authorization Process (SAP), Security Control Assessment (SCA) and Ongoing Authorization (OA) activities as required and as directed by the Federal Government for assigned systems.
Manage ISD inputs and responsibilities associated with the Notice of Findings and Recommendations (NFRs) and Mission Action Plan (MAP) activities, and Plan of Actions and Milestones (POA&Ms).
Facilitate and support various IT security meetings (e.g., Risk Management Board, POA&M Management Board, and others) in relation to Security Authorization and Assessment (SA&A) functions.
Provide support and liaison assistance in support of daily and annual FISMA inventory activities as assigned by the Federal Government, including management updates of the USCIS system inventory and associated documentation.
Abbtech Resources Inc. (Government Contract).
HQ US Marine Corps/Pentagon Washington, DC 20350
Role: Sr. IT SPECIALIST Sept’ 2015-Apr’ 2016
Oversaw and performed advanced systems installation, operation, integration and troubleshooting of DoD systems to maintain optimum information technology (IT) system operations.
Designed and oversaw upgrades and new installs of IT systems and services ensuring coordination with Cyber Security team.
Processed and maintained PKI certificates for classified network users.
Installed, maintained, and configured cyber security encryption software, and keys.
Tested Ethernet ports for secure and unsecure network connectivity using DoD tools.
Maintained users, computers, and group policies in Active Directory (AD).
Collaborated with Cyber Security team in patching, scanning and remediating DoD systems for accreditation in accordance with NIST 800-53, NIST 800-137 and 800-40 Rev. 3
Performed troubleshooting, optimization, and performance management of Internet Protocol.
Installed, configured, serviced, repaired, and maintained IT systems in both stand alone and client-server environment, including MS server, Defense Message Systems, and other authorized
Information Technology systems.
Installed, configured, serviced, repaired, and maintained hardware and software for network services and storage, networking devices, and servers.
Akims Medical Transport LLC.
Burtonsville MD 20866
Role: CYBER SECURITY ANALYST Feb ’2008 - Aug’ 2015
Worked as a subject matter expert providing corporate IT Governance and regulatory compliance support through Cybersecurity Risk Analysis, Vulnerability Management, and Remediation efforts.
Developed information security policies, procedures, best practices, and standards to maintain the confidentiality, integrity and availability of corporate systems and data.
Selected and implemented security controls and tools to secure company’s assets against current and emerging security threats.
Utilized security tools such as Nessus for network hosts vulnerability scanning and remediation.
Performed system maintenance such as upgrades and antivirus scans and virus removal to secure workstations and office network.
Provided internal information security awareness training.
Client: Hanley Wood, LLC.
Washington DC 20005
Role: ERP ANALYST Jun’ 2007- Nov’ 2007
Project: Enterprise Resource Planning (ERP) software implementation.
Software Name: SAP (HR) Organizational Management/Personnel Administration (OM/PA), e-recruiting, and payroll modules.
Gathered and analyzed business requirements and developed workflows and use case diagrams for the implementation of SAP HR.
Conducted an analysis of business processes and requirements and identified technology improvements.
Translated functional requirements into technical specifications for design of HR OM/PA and Policy/Procedure/Process docs, manuals, and sample reports.
Assisted in the development of user training plan for the deployment of the SAP HR system.
Interfaced with customers to identify key questions related to business needs, information priorities, best practices, and the use of new information.
Configured, troubleshot, and upgraded the SAP HR system.
Provided after go-live support to internal and external customers and vendors.
Provided quality documentation on process, procedures, and standards to be used by the HR department.
Foundation Coal Corporation
Linthicum Heights, MD 21090
Role: ERP ANALYST II - HR Jan’ 2007- Jun’ 2007
Participated in the requirements gathering, design, development, configuration, testing, and documentation of new and updated processes as it relates to Enterprise Resource Planning system solutions.
Maintained testing and training materials per approved business process and Enterprise Resource Planning system change.
Maintained, troubleshot and configured the SAP Human Resource Organizational Management (OM) /Personnel Administration (PA) Modules.
Conducted workshops and presentations to validate business processes and solutions with the end user community.
Provided post software implementation support, formal and informal end user training.
Ensured thorough adherence to company security policies and procedures and appropriately implemented policies and procedures in compliance with regulatory requirements.
General Dynamics (Government Contract)
US Senate/Sergeant at Arms, Washington DC 20510.
Role: NETWORK SUPPORT ENGINEER Sep’ 2006 – Jan’ 2007
(Government Contract at
Provided onsite or remote operating systems, computer, and Local Area Network (LAN) support to the United States Senators holding offices at the US Capitol and their Home States.
Installed, configured and troubleshot Blackberry (Wireless), and Government proprietary applications, servers, workstations, and peripherals.
Enhanced, upgraded and administered internal and standard software and hardware including Monitors, Scanners, Printers, internal/external CD-ROM Drives, modem cards, video cards on both Desktop and Laptops.
Maintained users in Active Directory (add/delete/password resets).
Installed and troubleshot customized software as well as MS office applications issues impacting business operations.
Logged service tickets into Remedy (issue tracking software).
Explained, illustrated and demonstrated proper use of the desktop operating system, software, and web services to customers.
Took corrective action as appropriate by removing, re-installing or re-configuring desktop software, COTS, and web services.
Ensured that all U.S Sergeant at Arms’ information systems security policies and procedures were operated, used, maintained, and disposed of during call handling, system troubleshooting, and issues remediation.
Client: Discovery Channel Communication (DCI)
Silver Spring MD 20910
Role: IT SUPPORT SPECIALIST Mar’ 2001 – Sep’ 2006
Defined, established and troubleshot Microsoft Office applications, printing problems, network connectivity issues, Windows applications, Lotus Notes, VPN (Virtual Private Network), Blackberry devices via phone and remotely using Microsoft SMS (System Management Server) for more than 3000 users.
Identified, defined, and established new users in Oracle Database and installed the software on their PC, while troubleshooting proprietary web-based applications.
Expertly managed user accounts including password resets, user creation/deletion, and assignment to the domain in Active Directory.
Accurately ran queries in Oracle SQL Plus* to determine and resolve the cause of Deal Commit issues, and software bugs.
Setup, managed and troubleshot and fixed audio-visual and video conferencing systems and ensured sensitive corporate communications were secure.
Installed and updated software and hardware required.
Expertly utilized Remedy to log, document, and track trouble tickets.
TECHNICAL SKILLS
OPERATING SYSTEMS: Microsoft Windows 2000/XP/Vista/7/8/10, Android.
HARDWARE: PC, IBM-Compatible Microcomputers, and Peripherals - Troubleshooting, upgrade and install.
SOFTWARE: REMEDY, Microsoft Office Suite, Internet Explorer, Netscape, Shockwave, Symantec End Point, Adobe Acrobat ReaderX, McAfee, Team Links 4.0, MS Outlook, Lotus Notes, PC Anywhere, Oracle SQL & PL/SQL, SharePoint, Dameware, SMS (System Management Server), Remote Desktop, Citrix, Norton Utilities.
ERP Packages: SAP Version ECC 5.0.
NETWORKING: BreezeCom Wireless Communication, (Network Structure, LAN, WAN, Cables and connectors, TCP/IP Suite and configuration, TCP/IP utilities, Remote Connectivity, Network Troubleshooting, HTTP, DNS, DHCP, NetTools II.
SECURITY TECHNOLOGY: Retina, Nmap, Wireshark, Splunk, DVWA (Damn Vulnerable Web Application), Webinspect, XACTA, IACS, and ECN.
Nessus, IPS/IDS, Firewall Configuration, Pcap (Packet Capture), PKI, MBSA (Microsoft Baseline Security Analyzer), Active Directory, Symantec virus removal tools, CISCO Network Security Appliance (IPS/IDS),
DIGITAL FORENSIC TOOLS: Paraben’s P2 Commander V 3.5, Prefetch Parser V1.4.1, Autopsy 3.0.1,
Network Miner 1.5, NetWitness 9.5, Wireshark 1.10.7, Virus Total, and Bulk Extractor 1.3. Encase V.7.5,
HashCalc, FTK, S-Tools, DevManView, WinAudit, WinHex, and Helix, Adepto.
SECURITY STANDARDS: NIST Publications, PCI DSS, SOX, HIPPA, FISMA, FISCAM,
A-123 Assessment, FISMA SCOREBOARD.
Contact this candidate