Consultant & SecOps/DevOps/TechOps Manager
Resume:
Nillion S. Lambert
***********@*******.***
SUMMARY OF QUALIFICATIONS
Enthusiastic Consultant and SecOps/DevOps/TechOps Manager a passionate commitment to a program’s security posture, processes, and solutions. Disciplined, well-organized work habits with the ability to function smoothly in pressure situations. Outstanding project manager/coordinator with great communication skills; able to coordinate and direct all phases of project-based efforts while managing, motivating, and guiding teams.
CAREER OVERVIEW
MANAGEMENT AND OPERATIONS
• Security & Development Operations
• Information Technology Operations
• Project Management
• Team Management
• Program Implementation
• Business Development
• Product Development
CLIENT RELATIONS
• Cybersecurity Remediation
• Network/Application/Desktop Support • Software Testing
• System Installation/Configuration
• Training/Instruction
• Customer Service
• Problem Solving
EDUCATION & TRAINING
Bachelor of Science in Computer Information Systems
Towson University (2005)
Bachelor of Arts in Business Administration
Towson University (2005)
Cyber Security Specialist Certification (A+/Network+/Security+)
Towson University, Center for Professional Studies (2016)
Master of Science in Cybersecurity and Information Assurance
Western Governors University (2020)
CERTIFICATIONS
CompTIA A+ ce
CompTIA Official Global Skill Certification (2016)
CompTIA Security+ ce
CompTIA Official Global Skill Certification (2018)
Certified Ethical Hacker (CEH)
EC-Council C EH (2019)
Computer Hacking Forensic Investigator (CHFI)
EC-Council C HFI (2019)
CompTIA Advanced Security Practitioner (CASP+)
CompTIA Official Global Skill Certification (2022)
CompTIA Project+ ce
CompTIA Official Global Skill Certification (2023)
PROFESSIONAL EXPERIENCE
Manager of Security Consulting/Program Manager II
Synopsys Inc., Mountain View, CA
February 2023 – Present
Lead dedicated project teams to drive the execution and delivery of clients’ engagement portfolios and deliverables. Collaborate across consulting business units to leverage the full breadth of technologies to increase customer value. Establish and nurture a trusted business advisor and tactical management relationship with clients and senior stakeholders to identify opportunities, scope engagements, and create high quality proposals. Ensure consistent, high-quality delivery while adhering to project scope, objectives, and margin requirements. Work in close contact with technical staff members to understand service offerings and determine the best course of action within the project lifecycle. Oversee security risk and controls assessments and/or penetration, network, mobile, and API testing to evaluate and analyze threat, vulnerability, impact, risk and security issues to business. Manage engagements to time and budget, monitor and track assessment team progress, and report back to client, gather requirements, and maintain project backlog. Manage planning, preparation, and delivery of all assessment projects for clients’ annual and compliance testing. Make effective decisions and trade-offs under pressure and work through issues/risks with clients in assessment planning, preparation, and delivery. Develop resource plans, facilitate onboarding/off-boarding of resources, and direct technical resource priorities to satisfy client commitments and SLAs. Schedule and kick off each assessment project, host demo/conference calls and daily/weekly sync meetings with clients and the assessment teams, and address/monitor all incoming customer communications. Facilitate read-out calls to review findings with clients and the technical assessment team. Receive and track periodic, on-going requests from clients regarding specific project needs. Audit deliverables and evaluate team performance.
Deputy Operations Manager, IT/Release Management
Imagine Believe Realize LLC, Rockledge, FL
February 2023 – October 2023
Led, coordinated, and managed the day-to-day operations of the IT department to optimize the
performance, meet objectives according to Federation standards, policies and procedures,
ensure the availability and reliability of systems and networks, govern technology vendors, and
implement new technologies and processes while improving efficiency and productivity of the Navy’s human resource portal. Managed teams of leads, developers, system engineers, technicians, and other IT staff to provide direction and leadership, carry out operations, and ensure quality services to stakeholders. Managed installations, upgrades, configurations, and releases of all IT systems. Assess system performance and recommend improvements, manage contracts with vendors and software licenses, and control costs and budgets. Develop, review, and update IT and information security policies, procedures, and practices while ensuring data is handled, transferred or processed according to legal and company guidelines. Provide support and guidance to stakeholders via the service desk while resolving escalated issues. Prepare reports and maintain records of service level agreements for customers.
Senior IT Product Analyst
Constellation Energy Corporation, Baltimore, MD
July 2022 – Present
Manage the entire lifecycle of assigned nuclear applications to include day-to-day operation, new business needs, architecting, designing, solutions, quality testing, release management and change management. Collaborate with other product teams to achieve team goals and metrics, deliver application and/or infrastructure solutions, and meet expected business outcomes. Coordinate and manage vendor resources in the implementation of new software, and/or application improvements, upgrades, and enhancements to support effortless customer experiences. Manage scope and expectations with stakeholders, review estimates of specific solutions to ensure time, cost and design meets business needs, and participate in strategic product planning meetings for insight on risk, cost vs. benefit, impact. Provide technical support and service restoration (application and infrastructure) for daily operations to include deployments, backups, and configuration.
Manager of Security, Development, & Technology Operations
InformedDNA, St. Petersburg, FL
May 2022 – November 2022
Oversaw planning, design, implementation, testing, and operation of cybersecurity, software
development, and technology processes and systems. Provided strategic and day-to-day leadership for the SecOps, DevOps, and TechOps teams to set goals, establish service level objectives, and drive overall performance to meet business goals. Supported engineers to build and operate secure, scalable, and reliable cloud infrastructure that included various environments, production applications, automation, integration, and security. Supported strategy, policy, and procedure development using current published law and industry standards of OWASP, NIST, ISO 27000 series, etc. Monitored internal/external policy and regulation compliance while maintaining HIPAA, HITRUST, PCI, SOC1, SOC2, and other security assurances. Developed and implemented guidelines, policies, procedures, rules, and regulations to include business continuity, disaster recovery, and incident response as it related to Security and Technology Operations. Administered a formal security training and awareness program that minimized errors and risks. Conducted internal and external audits, assessments, penetration testing, and scans relating to security assurance and vulnerability management. Established and examined workflows for efficient change, incident, patch, problem and request management. Analyzed policies, controls, security reviews, reports, and logs routinely.
Principal Cybersecurity Engineer
SAIC, Vienna, VA
June 2020 – June 2022
Oversaw security assurance programs, reported on compliance levels, identified non-compliance issues and security vulnerabilities, and managed remediation activities. Ensured the strategic alignment of information security with business strategy to support organizational objectives. Classified and prioritized the risk of new vulnerabilities according to the specifics of our unique environment’s risk level, mitigating factors, and assessment of the impacts of internal and external threats. Reviewed audit reports and coordinated audit remediation efforts. Coordinated with contract staff on the development and execution of corrective action plans. Assessed solutions to ensure that identified underlying issues within audit findings are addressed. Coordinated with technical subject matter experts to provide artifacts and escalate vulnerabilities for completed corrective action plans. Supported strategy & policy development using current published law, regulations, industry
standards, recognized measures/metrics, and research & development output. Provided technical expertise and analysis support to implement the agency's cyber strategy in support of issues related to the program’s posture and readiness.
Applications Analyst IV
MedStar Health, Baltimore, MD
December 2014 – June 2020
Provided oversight for the design, build, maintenance, support, expansion, and optimization of
radiation oncology systems, applications, and technologies. Implemented configuration and integration of MOSAiQ’s Electronic Medical Records system with existing and future systems. Consulted with users to identify current operating procedures, problems, and requirements to enhance workflows. Provided Tier I-III technical support and service restoration (desktop, network, and application) for daily operations and project efforts in a complex, distributed networked environment (physical and virtual). Performed a broad range of IT support services, including equipment deployment, file backups, and systems/applications configuration to PCs, Macs, mobile devices, software, and basic network support. Developed documentation, tutorials, and other aids for users to assist with installation, maintenance and operating procedures. Coordinated and managed vendor resources in the implementation of new software, and/or application upgrades and enhancements. Executed project tasks including development of project plans, resource plans, schedules, costs, administrative reports, and acceptance criteria. Coordinated and conducted the testing of software updates/fixes and routine maintenance. Managed databases and applications including the site’s Active Directory environment, particularly the Organizational Unit and Group Policy administration. Provided management and leadership to special technical projects. Served as a subject matter expert in current technology, trends and developments in the healthcare industry.
Senior Information Systems Trainer/Analyst
Office of Data and Strategy/DC Government, Washington, DC
June 2014 – December 2014
Facilitated, coordinated, scheduled and delivered in-person instruction/training of an educational information system using hosted Web sites, various Web tools, and software applications. Assisted in developing training methodologies, which included end-user training, train-the trainer, train-the-expert, and brown bag sessions. Conducted assessments for technical training needs by survey, interview or participant evaluation. Leveraged questionnaires, personal observations, and feedback to develop system performance improvement recommendations and customize the Student Information Systems. Performed system and data testing and user validation. Designed and maintained training resources (manuals, reference guides, webinars) to support ongoing training. Served as Tier II support to internal employees and external customers when issues were escalated from Help Desk via phone, email, and in-person. Coordinated or implemented several small-sized projects or components of a larger project to meet system's requirement needs.
Project Implementation Specialist/Installer
MICROS Systems Inc/ORACLE, Columbia, MD
June 2013 – June 2014
Coordinated and managed all aspects of project implementation in the hospitality industry at customer sites nationally; included 90% travel. Conducted end-user and management training, which included staging and set up/breakdown of equipment, to ensure a smooth installation process and minimize post installation support requirements. Prepared internal documents and project timeline in accordance with technical, production, and customer requirements. Conducted kick-off meetings with every new client to review expectations and to create a written project implementation plan with milestones and deliverables. Organized, convened and documented regular client and internal project team meetings throughout implementation and post go-live to present and review project activities, establish deadlines and keep project on track. Analyzed and modified centrally developed customer specific database, reports, documentation, and related applications to ensure all customer requirements were met prior to system installation. Consulted with customers to determine and review hardware, software, or system functional specifications and obtain customer sign-offs. Provided live support coverage at customer sites on and after the system live date as budgeted and required by the customer to ensure a smooth transition to their new system. Installed, configured and customized Property Management System software on clients’ workstations.
TECHNICAL SUMMARY
• Databases: AWS, Oracle, SharePoint, MS Exchange, Relational Databases
• Languages: Visual Basic, SQL, HTML, Java, JavaScript, Perl, ASP, CSS, C, C++
• Software: Active Directory, Internet/Intranet Applications, VMWare, Google Workspace, MS Office,
MS Project, MS Visio, Adobe Suite, Dreamweaver, Nitro Pro, Cisco Packet Tracer, Wireshark, Metaspolit, Kali Linux, Windows Group Policy, MS Security Essentials, MS Safety Scanner, MS Baseline Security Analyzer, GPG4Win, EXIF Tool, OpenPuff, Cain and Able, Sha1Sum/MD5Hash, Hex Editor
• Tools: Jira, Confluence, AWS, Lucid, Git, Monday.com, Citrix, RDP, SCCM, ServiceNOW, Symantec Endpoint Protection, LogMeIn, Remote Assistance, PeopleSoft, WebEx, Vidyo, Adobe Connect, BMC Remedy, MS Hyper-V, PowerShell, MS Office Communicator, MS Lync, Skype, Google Workspace, Zoom, Slack
Contact this candidate