Post Job Free
Sign in

Information System Risk Management

Location:
Arlington, TX
Posted:
June 10, 2024

Contact this candidate

Resume:

*** ****** **** **, *****, Ennis • 314-***-**** • ****.***********@*****.***

Mark Otzenberger

Computer Information System Manager

Experienced Risk Management Framework Auditor with over 10 years of full lifecycle IT and IS experience in world-class, fast-paced, and deadline-driven environments. A dynamic and mission-focused leader, skilled in managing teams on mission-critical, enterprise-level challenges to deliver solutions and results on time. Known for driving improvements in efficiency and cost avoidance through innovative strategies and optimizing processes. Strong communicator and resourceful in finding solutions to complex problems.

EMPLOYMENT HISTORY

Information System Security Manager; ISSM

CAE, Arlington, TX — Feb 2023 – Present: Full-time

•Serve as the ISSM for F-16 Flight Simulator-Oversaw multi-million-dollar simulator project in 11 different locations: CONUS and OCONUS

•Integrate the Classified Cyber Security Program function with the Program Management leadership team

•Work with offsite program personnel to ensure project meets USG certification requirements

•Act as the liaison with various government Authorizing Officials (AO) for business within their area of responsibility

•Comply with the Joint Special Access Program Implementation Guide (JSIG) in determining technical Information Assurance (IA)

•Conduct cyber risk assessment activities including vulnerability analysis and analysis of mitigation solutions

•Ensure proper security implementation of the Risk Management Framework (RMF)

•Follow system documentation for information system authorization, security management, and continuous monitoring

•Coordinate and drive continuous monitoring activities in accordance with DoD requirements

•Monitor security infrastructure and security alarm devices for Indicators of Compromise (IOC) utilizing SIEM and cybersecurity toolsets

•Perform hardware/software configuration management

•Coordinate with cyber systems security engineers, system architects, and developers to provide oversight in the development of secure technical solutions

•Participate in the implementation of current and future security domains and architectures including those which may introduce new service areas

•Implement and maintain a comprehensive incident response plan to ensure the rapid detection, containment, and eradication of cyber threats and vulnerabilities.

ECS Technologies

Remote — Feb, 2020 - Jan, 2023: Full-time

•Ensure that every step of the software development lifecycle (SDLC) follows customer policies and security best practices.

•Ensure developers/system owners adhere to secure coding principles.

•Aids in testing the application against security risks/parameters.

•Ensures developers/system owners adhere to customer’s processes and procedures established for scanning using defined security tools.

•Ensures developers/system owners applied and followed remediation procedures for identified vulnerabilities and produce required artifacts (POA&M, scans results, Exception documentation, etc.)

•Utilizes SNOW, Fortify and Jira tools to track progress and performance.

•Reviews results of Static Code Analysis tool (Fortify) to whether recommend exceptions.

Superintendent, 42 Cyber Operation Squadron CMSgt

United States Air Force, Scott AFB, Il — Aug, 2016 - Jan, 2020: Full-time

•Established: Air Force Reserve Command’s (AFRC) first and only Cyber Operations Squadron. (2016)

•Earned industry certifications: Certified Information Security Manager Certification.

•Hand Selected to oversee development of three new critical information security platforms for United States Air Force Reserve Command - standardized and instituted best practice security, audit, and compliance solutions to attain full regulatory compliance and maximize total operational security.

Superintendent, 426 Network Warfare Squadron CMSgt

United States Air Force, Lackland AFB, Texas — Aug, 2013 – Aug, 2016: Full-time

•Established: Air Force Reserve Command’s (AFRC) first and only Network Warfare Squadron. (2013)

•Earned industry certifications: COMTIA Security Plus; Green Belt/Six Sigma Trained; Air Force Management Certification

•Researched, developed, maintained, and documented hardware architectures requirements

•Developed software verification plans, testing procedures and testing environments for annual audits

•Led a team identifying applications design flaws, improving a total of 15 applications that supported the Operation and Risk departments.

EDUCATION

Master's Degree

Master of Science Information Technology Management

Trident University, Cypress, CA United States — Jun, 2016

Master's Degree

Master of Science Human Resource Management

Trident University, Cypress, CA United States — Aug, 2014

Bachelor's Degree

Bachelor of Science Human Resource

Ashford University, Clinton, IA United States — Jan, 2013

SKILLS

CISM SEC+

MSITM Risk Management Framework

Monitoring Tools Compliance Programs

Infrastructure Management NIST 800 series

JSIG EMASS

REFERENCES

Aaron Roy

Lead Validator (ECS Technologies)

********@**.*** 619-***-****

Michael (Kole) Jimenez

Cyber System Operator (1B4XX)

*******.*******.**@**.**.*** 210-***-****

Ross Rea, Major USAF

42 Cyberspace Operation Squadron

****.***.*@**.**.*** 210-***-****

Joseph D. Henry

DHS - Cyber Security Advisor

******.*****@**.***.*** 317-***-****



Contact this candidate