Cybersecurity, Systems, DevOps
Resume:
Erik Heath
**********@*****.***
Indianapolis, IN
Security Clearance: Public Trust Clearance
Education:
Western Governor's University Masters of Science in Cybersecurity and Information Assurance
oMaster's degree focusing on Cybersecurity and Information Security technologies and practices.
oExpected Graduation Date of Winter 2024.
Eleven Fifty Academy, Software Development Immersive Learning Program, Indianapolis, IN
o12-week immersive backend Software Development boot camp in C# and HTML/CSS, API Development
Western Governor's University Bachelors of Science in Information Technology
oBachelor's degree focusing on Windows technologies, Linux, HTML/CSS, Java, and databases.
Tech State College Associate of Applied Science in PC Support Ivy and Administration
oAssociate degree focusing on system administration to include Linux & Windows.
Competencies & Functional Skills:
Problem-solving, troubleshooting, customer service, critical observation and thinking, organization, Agile methodology, addressing and resolving business challenges. Past professional experience using Python, Bash, and Powershell with the ability to write in languages such as Java and C#. Knowledge of cloud computing, docker, Windows, Linux, Bash, PowerShell and various other IT-related technologies through past personal and professional experience.
Technical Skills:
Languages: Python, BASH, PowerShell, Java/Kotlin, C#
Testing Tools: Unit Testing, Nessus Network Security Scans
Databases: SQL Server, relational databases
Operating Systems: Windows 10/11, Linux Debian/Ubuntu, Solaris
Web Technologies: Experience with HTML, CSS, APIs, stateless components, session validation
Security Frameworks/Tools: NIST Security Controls, Technical Documentation, System/Assessments
System/Device Diagnostic Skills: Diagnosing device/system issues per OEM/documentation
Technical Writing: Documentation of technical software, hardware, and security issues
Electrical: Basic electrical troubleshooting and schematics with electrical and electronic circuits
Identity Access Management: SailPoint IdentityIQ Fundamentals and Provisioning Training
Ticketing Systems: Experience using the Service Now ticketing system
Certifications:
Microsoft MTA Exam 98-361 Software Development
CIW JavaScript Specialist
CIW v5 Database Design Specialist
CIW Web Design Specialist
CompTIA Project +
CEH – Certified Ethical Hacker
Professional Experience:
Application Security Engineer, Booze Allen Hamilton, February – August 2023
Performed OWASP SAMM framework organizational consulting for software development
Performed NIST 800-53 based Framework vulnerability management
NIST Vulnerability Analysis for Cloud Environments presentation and remediation
Performed data analysis with Python for scan results
Used Jypter Notebooks for data analysis
Take2IT, DevOps Application Support Analyst, Jan 2022– February 2023
Provided application support and troubleshooting for VA applications
Experience Kubernetes monitoring and troubleshooting
Performed Solaris Unix Administration for files and transfers
Used AppDynamics for monitoring Kubernetes environment and Server connection issues
Used Grafana monitoring for Kubernetes and Server troubleshooting
Using Jira for workflow tracking, Service Now for VA side service requests and ticketing
Performed AWS S3 uploads, file verification, and retrievals through scripting
Used BASH Scripting for Unix administration
Environment Health Troubleshooting
Used Control-M monitoring/management for batch job troubleshooting
Red Hat Ansible training
Used Fortify for static code vulnerability analysis with developers
Collaborated with developers on issues
Troubleshoot Java runtime errors
Splunk systems monitoring
Identity Access Management Programmer, Olympus Solutions, LLC, Oct 2021
Identity Access Management (IAM) Programmer
SailPoint IQ Identity Fundamentals and Provisioning Training
Research/Medical Device Security Analyst, Veterans Engineering, Department of Veterans Affairs, Enterprise Research Division, Dec 2019 – Feb 2021
Assisted in the creation of an intake security framework for medical research and special-purpose systems based on NIST SP 800-53 and NIST SP 800-30 standards
Analyzed special purpose and medical research device documentation for security concerns (Special purpose devices included: IoT/OT, Windows systems, Linux/Unix systems, Android systems, and mission-specific devices such as Nurse call systems or Television CDN devices, Research devices include “one-off” devices often based on medical devices )
Creation, and writing of security documentation per NIST standards for Authority to Operate (ATO) for medical research systems and special purpose systems based on NIST SP 800-53 and NIST SP 800-30 standards
Collaborated with Vendors, clients, and internal staff for system security hardening and recommendations
Created logical system/network diagrams from technical wiring and network diagrams and documentation for systems/devices
Tested security controls based on NIST server/system hardening guidelines
Interviewed research personnel, clients, and device vendors for device ATO documentation
Analyzed Cisco router and switch configuration files for device network configurations
Visual Basic Programming
Held a Public Trust Clearance
IT Security Engineer, The Metamorphosis Group, Department of Veterans Affairs, CRISP March 2015 – Nov 2019
Worked with Nessus vulnerability scans and data to remediate devices in a large enterprise environment
Directed and led local on-site staff with the Service Now ticketing system for security/software remediation
Provided leadership and guidance on remediating security vulnerabilities
Re-image and deploy PCs (Windows 7, Windows Embedded) in a large environment of greater than 5,000 workstations
Performed Windows workstation and Unix software and hardware remediations
Analyzed and troubleshoot specialty devices such as printers, IoT devices, medical devices
Used PowerShell scripting for troubleshooting and remediation of Windows devices
Developed and tested site recovery plans with local staff through walk-throughs and simulations
Used Unix/Linux Bash shell scripting for remediation of devices
Held a Public Trust Clearance
Desktop/Support Engineer, Beacon Hill Staffing, May-Sept 2014
Position Scope: Desktop support and engineering services to include diagnosing IT workstations and devices
Performed desktop deployment of laptops and workstations
Performed troubleshooting and remediation of various workstations, printers, laptops, and other IoT devices
Performed re-imaging of Windows 7-based operating systems
Analyzed specialty devices and printer configuration files and remediation
Performed Microsoft SCCM software pushes
Contact this candidate