Security Engineer Information Systems
Resume:
Tsige T. Tessema
Lorton, VA ***** / Mobile: 571-***-**** / Email: ad3vke@r.postjobfree.com
OBJECTIVE: (Type in the ‘job title’ to which you are applying here - NOTHING ELSE!)
CAREER SUMMARY
8+ years, Network and Security Engineer (federal government, private sector)
6 years, Cybersecurity Analyst (federal government)
6 YEARS, Mentor & Trainer (information technology, information systems)
2.5+ years, Network and Database Administration (private sector)
Clearance: DoD, Top Secret (last adjudicated: 08/23, expired: 08/28)
HARDWARE / SOFTWARE / TECHNICAL / COMPUTER
Active Directory
CASP
CCNA –Security, Router and Switches trained
Cisco routers
CISSP trained
DHCP
DNS
Firewalls
FTP
HTTP
LAN
Linux (RHEL, OEL)
Mac OS set-up, IOS
NetMon Packet sniffer
Networking
NeuralStar monitoring tools
Niksun Monitoring
Remedy ARS
Remote access
Security
SolarWinds Monitoring Server
SQL Certified
System Center Operations Manager
TCP/IP
Tenable Nessus
UNIX
VMware
VPN
Web Technologies
Windows 10/7/XP/Server 2016/2012/2003/2000/98
MSO 365: Word, Excel, PowerPoint, Outlook
LinkedIn Profile: https://www.linkedin.com/in/tsige-tessema
EXPERIENCE PORTFOLIO
04/18 – present, Cyber Security Engineer
US Department of State, Bureau of Consular Affairs / TLINKED (contractor), Washington, DC
Evaluate IT threats and vulnerabilities to research, analyze, and identify if additional safeguards needed; perform vulnerability, exposure, and risk analyses of computer systems/applications; perform analysis, design, and development of OS security features for system architectures to identify and prevent cyber risks
Create technical and non-technical correspondence, narratives, reports, briefings, and monthly statistical reports; manage project schedules and analyze risk issues
Liaise with the client management team to provide updates, including security briefings; advise the Domestic Information Systems Security Officer (DISSO) Program lead on system, network, software designs at risk, or protocol issues
Research, analyze, and identify IT applications for anomalies and provide recommendations to stakeholders, including research, analysis, identification, and recommendations to propose new (updated or improved) systems, networks, or application designs to increase cybersecurity and reduce security risks
Managed and monitored system security requirements during the information systems (IS) lifecycle in compliance with the Risk Management Framework (RMF) policies, procedures, and protocol
Analyzed network security, based upon NIST and FISMA certification and accreditation process; provided Subject Matter Expert (SME) advice and counsel on IT certification and accreditation
Developed Security Authorization deliverables, including System Security Plans, Security Assessment Reports, Risk Assessment Reports, Privacy Impact Assessments (PIA), Annual Assessments, Contingency Plans, FIPS 199 Security Categorizations, and Plan of Action and Milestones (POA&M)
Managed and monitored security best practices and National Institute of Science and Technology (NIST) standards to develop an information-sharing framework
Managed and monitored network security, network, created security event notifications, conducted and responded to ‘incident responses,’ vulnerability assessment scanning
Trained ~180 learners on cybersecurity topics with the agency-provided curriculum, including new hires as part of onboarding training; mentored and coached clients and colleagues
09/16 – 03/18, Senior Network Engineer
United States Department of State / Validatek, Inc. (contractor), Washington, DC
Managed, monitored, identified, and resolved critical network connection issues (domestic and oversea) network LAN and WAN network infrastructure for the DOS in 270+ passport sites worldwide
Facilitated and coordinated Remedy Ticketing system for the network and Firewall team
Developed Risk Management Framework (RMF) body of evidence artifacts to facilitate acceptance testing with stakeholders and business users and configuration of switches
Researched, analyzed, compiled, and documented supporting documents to manage Network documents as a member of the Configuration Control Board (CCB) and Information Technology groups
Coordinated integrated network operations; created a dashboard using Niksun and NeuralStar to monitor department network, IT planning, and security (cybersecurity protocols); created standard operating procedure and process flow diagrams
Managed project schedules, and risk issues, reported contract deliverables, and completed tasking to the Network Engineer, including documentation of network issues and downtime concerns, resulting in documented resolutions to network issue(s) and utilization analysis concerns
Participated in special projects, including analysis of network analysis tool (Niksun) to identify and monitor network activity
Researched, analyzed, and investigated network utilization; identified, mitigated, and resolved issues; and identified and/or monitored security activities
Provided Subject Matter Expert (SME) advice and counsel in resolving networking connections issues and troubleshooting information system concerns, including Post Guangzhou network analysis project, providing six months of network utilization, resulting in the identification of sites needing expanded bandwidth, and implementation of bandwidth expansion to those unique passport sites worldwide
Conducted hard drive forensics for information containing unclassified traffic; monitored Layer 2/3 traffic across 50 domestic national sites
Implemented and migrated SolarWinds server, as Lead Engineer, including adding >700 nodes used for monitoring the enterprise network for Simple Network Management Protocol (SNMP) and Internet Control Message Protocol (ICMP) pings as Lead Engineer
Developed a dashboard using Monitoring Tool NeuralStar, enabling DOS to visualize the network activity and take proactive measures for cybersecurity, network traffic, and IS communications
Produced monthly/weekly/daily reports of net flow traffic, packet loss, and utilization of hundreds of international sites using SolarWinds and NeuralStar (network operations)
Managed and logged trouble tickets using Remedy Ticket System Experience, including monitoring compliance against information security/information assurance policies on new IT developments and applications
Performed incident analysis and recommended remediation steps based on NIST-based information security best practices and federal government and agency-mandated compliance and policies
Reviewed, commented, and edited enterprise information assurance and security standards
Developed and implemented network monitoring and problem-solving processes procedures
11/15 – 08/16, Network Engineer
Enterprise Network Management (ENM), Springfield, VA
Liaised with clients to control, monitor, and implement security using Niksun (cybersecurity and monitoring solution) and NeuralStar for cybersecurity protocol, including Niksun documentation
Reviewed post NetFlow (data collection for IP network traffic) and transferred log files to the central database using LINX (development platform to build/host APIs, automations, and integrations) and reported status for users and management
Installed, operated, managed, maintained, and monitored new hardware and software applications in the ENM_Tools, resulting in improving ENM_Tools IPOST score (ratings) from F- to A within 30 days
Developed curriculum, facilitated, and provided training to ~50 new hires as onboarding and job task training; Conducted IPOST (system) training to advance students at the Foreign Service Institute (FSI)
11/14 – 11/15, Network Administrator / Confluence Affair (CA)
TJ Westlake, Sterling, VA
Managed and maintained network infrastructure administration of Cisco routers, firewalls, Extreme switches, and physical/virtual Windows 2008 servers, including Active Directory and Group Policy
Installed and troubleshoot hardware-based RAIDs and software issues to resolve CAT1, CAT2, and CAT3 vulnerabilities; conducted disaster recovery of files
Created technical documentation, including user manuals, operating procedures, and incident reports
Managed user accounts, reset and unlocked passwords, set expiration dates, monitored daily backups, antivirus status, shared storage space, and network activity
08/14 – 11/14, Team Assistant
International Finance Corporation (IFC), Washington, DC
Monitored networks performance to identify irregularities, planning, troubleshooting
Provided desktop support for end-users using Windows XP / Windows 7 operating systems
Coordinated Outlook analysis and migration from 2010-2013 and provided quality documentation
01/13 – 10/14, Database Administrator
Data Group USA, Alexandria, VA
Managed, monitored, identified, and resolved server and software problems for ~25 users
Conducted help-desk resolution to groups of 150+ bilingual students for SQL Server 2008, 2012, SharePoint, and basic PC training via on-site (face-to-face) classroom setting
Installed, configured, conducted backup and recovery, and performed server upgrades
Performed testing and quality assurance on the created online plate for the Data Group
Monitored and conducted quality assurance and ensured data integrity, identified potential data errors in the SQL Database, and ensured databases had high availability using database mirroring, log shipping, data replication
Managed database permissions for the SQL Server and SQL Server Agent
Deployed databases to development, test, and production environments using Windows Operating Systems (2003R2, 2008, 2008R2): Installation, Configuration, User and Security Management
Upgraded databases from SQL Server 2000 to SQL Server 2005/2008 and SQL Server 2005 to SQL Server 2008 R2
05/14 – 08/14, Technology Operation Intern
Social Impact, Arlington, VA
Performed daily IT administration per IT and SharePoint system
Conducted SharePoint training to ~85 learners for almost two months
Performed daily backups of circa eight servers on and off-site using Net Backup Administration to identify irregularities in user activity and provided quality documentation
OTHER PROFESSIONAL EXPERIENCE
10/09 – 12/13, Inventory Coordinator
Northern Virginia Community College, Alexandria, VA
Inspect and verify department inventories of computers and laptops; including conducting audit spot checks
Managed, developed, and updated data on the share drive
Prepared reports by collecting, analyzing data, and reporting data for the number of computers and decommissioning processes and procedures
Audited and quality-assured client records
Created invoices for student registration and updated records in PeopleSoft software
Managed monthly student accounts for the Coordinator of Continuing Education
FORMAL EDUCATION
2022 – present, Ph.D. Cyber Security, (expected graduation: 2025), Marymount University, Arlington, VA; GPA: 4.0; Courses: Cybersecurity in the Systems Life Cycle, Workforce Development: Cybersecurity Education, Training, and Certification, Beginning Applied Research in Cybersecurity, and Managing Cybersecurity Risk
2016, Master of Science, Cyber Security, George Mason University, Fairfax, VA; GPA: 3.5
2014, Bachelor of Science, Information Technology, George Mason University, Fairfax, VA; GPA: 3.6
CAREER TRAINING / CERTIFICATIONS
2020, Certification, CASP, CompTIA
2019, Certification, CISSP 6-day training, Training Camp 6, Trevose, PA
2018, Certification, CCNA-Security, Router and Switches
2018, Certification, ITIL v3 Foundation, ITIL Foundation, Thought Rock, Ontario, Canada
2010, Certification, Microsoft Office Specialist (MOS)
2010, Certification, SQL Certification, Data Group USA
LANGUAGES / RECOGNITION / AWARDS / COMMUNITY SERVICE
Amharic – Native speaker
2017, Letters of recognition for Achievement, United States Department of State, Washington, DC
06/2018, Recognition Award, ValidaTech, McLean, VA
2016 – present, President, RAEYE Children AID, Fairfax, VA
10/2014 – present, RAEYE Children Aid (founder and CEO) Fairfax, VA
2014 – present, Volunteer, RAEYE Children Aid, Fairfax VA; raised >$100K (USD) for helping kids with special needs and educational resources for the Technology X cause
Contact this candidate