ANGELA LOMAX

ad4qt0@r.postjobfree.com

301-***-****

INFORMATION SECURITY PROGRAM MANAGER

An IT program manager with over 15 years of experience developing comprehensive roadmaps, key milestones to meet deadlines, resource allocation considerations, and posturing the customer environment with operational sustainment driving customer success and adoption. Deep domain expertise as a cybersecurity engineer, ensuring strict compliance with company policies or federal regulations through meticulous oversight activities, comprehensive assessments, and actionable recommendations. Possess a strong grasp of budget management, Agile methodologies, and risk management practices to enable the seamless execution of program objectives. A proven track record of cultivating relationships and interfacing with executive-level stakeholders, recognized for analytical prowess, and an aptitude for problem-solving in fast-paced environments.

AREAS OF EMPHASIS

IT Project & Program Management

Performance Optimization

Budget Management

Business Process Re-Engineering

Cybersecurity & Risk Mitigation

Performance Optimization

Compliance & Governance

Agile Methodologies

Data Governance

Policy & Best Practice Definition

Team Building & Leadership

Quality Assurance

CAREER HIGHLIGHT

Agemo Technology, Reston, va

Cyber Security Project Manager 04/2019 to Present

Drive compliance and project planning with a Firm Fixed Price (FPP) support and services contract, managing costs and resources effectively to meet project objectives and deliverables.

Leads and oversees enterprise configuration and change management services to ensure the confidentiality, integrity, and availability of systems, networks, and data.

Provide strategic leadership, guidance, and mentorship to information systems security personnel, including CISOs, CIOSs, and ASOs, fostering a culture of excellence and continuous improvements.

Manage and coordinate security audits, vulnerability threat assessments, and responses to cloud network intrusions in collaboration with cloud service providers (e.g., Amazon, Google, Microsoft, Oracle), ensuring swift and effective mitigation of security risks.

Conduct comprehensive cybersecurity controls assessments in accordance with applicable regulatory guidance, such as NIST 800-53, and oversee the development and executions of Plan of Actions and Milestones (POA&M) to address identified vulnerabilities.

Direct the upload and review of security control evidence with the Government, Risk and Compliance (GRC) application (e.g. XACT) ensuring thorough documentation and compliance with security requirements throughout the project lifecycle.

Ensure the successful implementation and operation of selected security controls across all phases of the Information Systems (IS) lifecycle and Risk Management Framework (RMF) process monitoring and addressing any deviations of deficiencies.

Establish and maintain robust project organization structure including the selection and recruitment of key team members, and oversee project team personnel, costs, schedules, and contract adherence.

Collaborate with stakeholders to develop and refine security requirements supporting the development and execution of security testing activities to validate system security posture.

TGS, Millersville, md

Senior System Administrator 06/2016 to 4/2018

Administered servers, desktop computers, printers, routers, switches, software deployment, security updates and patches.

Created and Updated Security Documents: FIPS-199, System Security Plan, Configuration Management Plan, Contingency Plan, ISAs, etc.

Managed virtual and physical cloud resources as required with an overall objective of improving the scalability, reliability, performance, and availability of the cloud infrastructure.

Used Nessus, WebInspect, AppDetective to mitigate vulnerabilities.

Engineered, implemented and supported AWS EC2, S3, Autoscaling, CloudWatch, AM security services as needed, coupled with the implementation of remote access using AppStream for AWS.

Configured Servers according to DISA STIGs and CIS benchmark Guidelines

Directed Windows group policy, roaming profiles and folder redirection, Active Directory management.

Reviewed audit logs via Splunk and report findings for remediation

Handled Imaging of laptops and desktops with the use of logicube imaging machine.

Provided support and guidance to Sr. Security manager for Risk Acceptance

Developed and maintained accurate documentation for internal procedures and services.

Used Sophos to manage web services and proxy settings for local and EC2 environments.

Tenacity Solutions/CSRA, Reston, va

Decommission Analyst 10/2014 to 06/2016

Handled notification of decommissioning systems to service providers that were affected.

Developed decommission business, schedule, and strategy for tools slated for decommissioning.

Identified and informed service providers on best practices to move forward with decommissioning tasks along with identifying constraints, risks, and dependencies in all phases of the lifecycle to manage project schedules, resources, and budgets.

Created new accounts within new tools that users transitioned to from decommissioned systems.

Ensured compliance for all data removal/archival regulations from decommissioned systems.

Agemo Technology, Reston, md

Senior System Administrator 01/2014 to 10/2014

Responsible for monitoring and analysis as well as performance tuning: trouble shooting system software installs.

Assisted in support with technical team building, upgrading, and maintaining Windows server hardware in test, development, and production environments.

Provided detailed documentation to customers and users on the application processes as well as other application interfaces via training and soft copy documentation.

Managed installation and upgrade of EMC, as well as of Red Hat certificates for Windows servers.

Run wsus and sec scans on servers to comply with security parameters.

Evaluated analytically and systematically problems of workflows, organization, and planning and developed appropriate corrective action.

SAIC, Reston, va

Senior System Administrator 07/2007 to 01/2014

Accounted for the monitoring, analysis, and performance tuning, troubleshooting of system software installs, upgrades, and maintenance on Windows, LINUX, and VMWare servers.

Evaluated analytically and systematically problems of workflows, organization, and planning and developed appropriate corrective action.

Assisted in support with technical team building, upgrading, and maintaining Windows server hardware in test, development, and production environments.

Handled network administration (including backup, security management, user account management, internet access, office systems, and applications support).

Actively participated in the System Administration, development, implementation, and adherence to documentation changes, system standards, policies, and procedures.

Responsible for the system security INFOSEC certification, on-site DTO, DISA Gold Disk scan, and managing Symantec Anti-Virus Scans.

Provided detailed instructions to customers and users on the application processes as well as other application interfaces via training and soft copy documentation.

Managed Active Directory 2003 implementation and management; managed sites and services, integrated DNS environment, and AD security group and access control.

EDUCATION

Bachelor’s of Art in Psychology 2006 CLARK ATLANTA UNIVERSITY

Skills & Training: Windows Operating Systems and Windows Servers, RHEL, CentOS, Ubuntu, Agile Development, Amazon Web Services, Nessus, Rapid7, SPLUNK, Nessus, McAfee ePolicy

Select Additional Experience:

Helpdesk Lead Tier 2-System/Network Administrator WINS, Washington D.C. [2006 to 2007]

Network Engineer Clark Atlanta University, Network Services, Washington, D.C. [2003 to 2006]

Intern-Network Support BAE Systems, McLean, VA [2004 to 2006]

Contact this candidate