Shántel T. Minson

Phone: 703-***-****

Email: ad3mp1@r.postjobfree.com

Security Clearance: TS/SCI

TECHNICAL PROFICIENCIES

Microsoft Office 365, Linux, Einstein 3, Tableau, SharePoint, ArcSight, SEIM, REMEDY, ServiceNow, Bluecoat, Wireshark, McAfee, IDS/IPS, Active Directory

Education

Master of Science, Information Systems-Computer Security

Strayer University, Manassas, VA: 2005

Bachelor of Arts, Broadcasting: Minor in Political Science

Benedict College, Columbia, SC: 2001

Planning to obtain CompTIA Security+ 601 certification in April 2024

PROFESSIONAL EXPERIENCE

DigiSoc/TheaterVOD Motion Picture Association-Contractor July 2022-Current

IT Security Analyst

Observe network traffic and analyzed security logs to detect and respond to potential security incidents

Developed and implemented comprehensive communication strategies to effectively convey key messages and enhance brand awareness

Conduct security awareness training sessions to educate employees on best practices for protecting sensitive information

Utilize Opensource Intelligence (OSINT) sources to stay informed about emerging cyber threats and vulnerabilities

Produce regular reports and presentations for senior management, summarizing key security metrics and findings

Conducted real-time monitoring and analysis of security events and incidents using DigiSOC's security information and event management (SIEM) platform

Investigated security alerts and anomalies, performing in-depth analysis to decide the scope, impact, and root cause of incidents

Collaborated with internal teams and external partners to coordinate incident response efforts, ensuring prompt containment, eradication, and recovery

Provided guidance and recommendations to IT and business stakeholders on security best practices, risk mitigation strategies, and security awareness training

Produced reports and presentations for senior management and stakeholders, summarizing key security metrics, incident trends, and remediation efforts

Contributed to the continuous improvement of DigiSOC's security operations center (SOC) processes, procedures, and tools to enhance effectiveness and efficiency in detecting and responding to cyber threats

Knowledge of research concepts and processes including developing and executing questionnaires, conducting observations and interviews, analyzing results, and delivering final reports to clients

Provided strategic communication counsel and support to senior leadership, including developing talking points, speeches, and presentations for internal and external audiences

U.S. Department of Homeland Security (DHS), Remote January 2018-July 2022

Information Security Officer (INFOSEC) GS-2210 GS-14

IT Project Manager -Federal Employee

Managed and coordinated multi-agency projects and initiatives within the Department of Homeland Security (DHS) using the Homeland Security Information Network (HSIN)

Oversaw the implementation and administration of HSIN capabilities, including user access management, training, and technical support

Facilitated collaboration and information sharing among federal, state, local, tribal, territorial, international, and private sector partners through the HSIN platform

Developed and supported relationships with key stakeholders to find the requirements and ensure the effective use of HSIN for information sharing and coordination of activities

Coordinated with DHS components and other agencies to integrate HSIN capabilities into existing systems and processes, ensuring interoperability and data exchange

Managed crisis communication efforts, including developing crisis communication plans, coordinating response activities, and communicating with stakeholders to support transparency and manage reputation

Prepared reports and briefings for senior leadership on the use and effectiveness of HSIN in supporting homeland security missions and objectives

US Cyber Command/National Security Agency (NSA), Fort Meade, MD August 2015-January 2018

Information Security Officer (INFOSEC) GS-2210 GS-14

Cyberspace Liaison Officer-Federal Employee

Served as the primary point of contact between the Department of Homeland Security (DHS) and the Department of Defense (DoD) on cybersecurity matters, communication and collaboration between the two agencies

Coordinated information sharing and joint cybersecurity initiatives between DHS and DoD, ensuring alignment with national security priorities and objectives

Provided subject matter knowledge on cybersecurity policies, procedures, and best practices to stakeholders within DHS and DoD, fostering a shared understanding of cybersecurity risks and mitigation strategies

Facilitated the exchange of threat intelligence and incident response coordination between DHS's Cybersecurity and Infrastructure Security Agency (CISA) and DoD's Cyber Command (CYBERCOM)/the National Security Agency (NSA), enhancing the nation's cyber defense posture

Participated in interagency working groups and task forces to address cybersecurity challenges that spanned both DHS and DoD domains, contributing to the development of joint policies and initiatives

Collaborated with DoD counterparts to conduct joint cybersecurity exercises and simulations, testing and improving the resilience of critical infrastructure and government networks against cyber threats

Supported the implementation of cybersecurity technologies and solutions within DHS and DoD, ensuring interoperability and alignment with federal cybersecurity standards and guidelines

Recommended senior leadership within DHS and DoD on emerging cybersecurity trends, threats, and vulnerabilities, informing strategic decision-making and resource allocation

Prepared and delivered briefings, reports, and presentations to senior officials and stakeholders within DHS and DoD, communicating key cybersecurity findings, recommendations, and action plans

Collaborated with cross-functional teams to integrate intelligence analysis into organizational workflows and decision-making processes

Department of Homeland Security (DHS), Arlington, VA February 2013-August 2015

Incident Response Manager (INFOSEC) GS-2210 GS-13

Led a team of incident response specialists in detecting, analyzing, and responding to cybersecurity incidents affecting the Department of Homeland Security (DHS) and other government agencies systems and networks

Managed the deployment and operation of incident response technologies and tools, including SIEM, EDR, and forensic analysis tools, to support incident detection, analysis, and remediation

Developed and implemented incident response policies, procedures, and playbooks to ensure prompt and effective response to security breaches

Established and supported relationships with internal and external stakeholders, including other government agencies, law enforcement, and private sector partners, to coordinate incident response efforts

Orchestrated tabletop exercises and simulations to evaluate and confirm incident response plans and procedures, areas for improvement and implementing corrective actions

Department of Homeland Security (DHS), Arlington, VA August 2011 – February 2013

General Dynamics

Cyber Threat Analyst-Contractor

Supports the company’s overall cybersecurity infrastructure and operational effectiveness through cybersecurity preparedness, policies, threat prediction and detection, incident response and recovery

Involved in developing, changing, and executing company policies and procedures that affect cybersecurity operations and ensure compliance with applicable standards and regulations e.g., NIST 800.53 and FISMA

Conducted comprehensive analysis of cyber threat intelligence data from various sources to find emerging threats, vulnerabilities, and attack patterns targeting Department of Homeland Security (DHS) systems and networks

Utilized advanced tools and techniques to check and analyze network traffic, system logs, and security events, indicators of compromise (IOCs) and anomalous activities

Produced detailed threat intelligence reports and briefings for senior leadership and stakeholders, providing actionable insights and recommendations for mitigating cyber risks

Collaborated with internal and external partners, including other government agencies, law enforcement, and industry partners, to share threat intelligence and coordinate response efforts

Participated in incident response activities, including triage, analysis, and containment of cybersecurity incidents, following established policies and procedures

Conducted research and analysis of advanced persistent threats (APTs), malware, and cyber espionage campaigns, staying abreast of the latest cyber threats and tactics used by threat actors

Aided in the development and maintenance of cyber threat intelligence platforms and tools, ensuring their effectiveness and reliability in supporting DHS's cybersecurity mission

Provided training and guidance to junior analysts and stakeholders on cyber threat intelligence analysis techniques, best practices, and emerging trends

Federal Aviation Administration (FAA), Leesburg, VA May 2008 - AUGUST 2011

SRA International INC. Fairfax, VA

Business Analyst-Contractor

Initiated formal/informal coaching and mentorship on teaching cyber security to FAA Staff

Conducted comprehensive analysis of business processes, systems, and workflows to show areas for improvement and optimization

Gathered and documented business requirements from stakeholders through interviews, workshops, and document analysis, ensuring alignment with organizational goals

Developed and supported detailed business requirements documents (BRDs), user stories, and use cases to serve as a foundation for system design and development

Collaborated with cross-functional teams, including IT, operations, and finance, to translate business requirements into technical specifications and deliverables

Conducted data analysis using SQL queries and Excel to extract insights and inform decision-making.

Facilitated stakeholder meetings and workshops to elicit requirements, prioritize features, and resolve conflicts, ensuring buy-in and alignment across teams

Department of Transportation (DoT)/ (Crisis Management Center) CSM, DC April 2007-May 2008

Bowhead, Fairfax, VA

Information Assurance Analyst-Contractor

Lead government Point of Contact (POC) and Technical Representatives for key (IT) projects

Coordinate technical inputs for guidance or other issues relevant to the program

Discover the need for new policies, requirements, or guidance relevant to the assigned subject matter expert (SME)

Collaborated with cross-functional teams to implement security solutions and controls, including firewalls, intrusion detection/prevention systems (IDS/IPS), and data encryption technologies.

Provided guidance and recommendations to stakeholders on security best practices, risk management strategies, and compliance requirements, including NIST, FISMA, and DoD security standards

Conducted security training and awareness programs for employees, contractors, and partners to promote a culture of security awareness and compliance

Prepared and supported documentation management, including, risk assessment reports, and incident response procedures, to support compliance and audit requirements

Unisys Corporation, Reston, VA June 2004 – April 2007

Information Assurance Analyst-Contractor

Assist Leadership with formal and informal reports, briefings, and inputs from the stakeholders about security requirements

Conduct investigations of security incidents providing corrective measures to reduce incidents at risk

Administered and evaluated internal management plans

Prepare and manage statements of work (SOW) to reflect on the annual audit’s goals, scopes, procedures, work performed and findings

Participated and provided significant input to program studies and organizational changes

Conducted comprehensive security assessments and audits of information systems and networks to show vulnerabilities, assess risks, and ensure compliance with security policies, standards, and regulations.

Developed and implemented information assurance (IA) policies, procedures, and controls to protect the confidentiality, integrity, and availability of sensitive information and system

WCIV ABC NEW 4, Charleston, SC December 2001- August 2004

News Producer-Contractor

Gather information, stories from team members throughout the day that are newsworthy

Collaborate with news director to select and prioritize content

Select stories and elements that will make the broadcast

Choose footage and sound bites to include in the broadcast to ensure consistency

Consult with the production team to keep technical standards high

Produce breaking news and Communicate with the studio crew and anchors while on-air

REFERENCES AVAILABLE UPON REQUEST

Contact this candidate