Post Job Free
Sign in

Risk Management Information Systems

Location:
Suffolk, VA
Posted:
November 15, 2024

Contact this candidate

Resume:

Emmanuel L. Lartey (US Citizen)

DoD Top Secret Clearance

Suffolk, Virginia 23434. Phone: 757-***-****. ***************@*****.***

Results-oriented Information Assurance professional with proven hands-on project experience using the Risk Management Framework to integrate information security, and risk management activities into organizational enterprise architecture, and System Development Lifecycle (SDLC), using applicable OMB, FISMA, and NIST standards.

With a strong work ethic and uncompromising devotion to customer service delivery, focused on facilitating strategic best practices in utilizing security controls to mitigate vulnerabilities to achieve confidentiality, integrity, and availability of organizational information, and information systems.

EDUCATION

Masters of Science, Cyber Security, University of Maryland Global Campus, December 2017

Masters of Science, Engineering Management, Old Dominion University, May 2009

Bachelors Electrical and Electronics Engineering, Kwame Nkrumah University of Science and Technology, June 2000

CERTIFICATIONS

CompTIA Security+ Ce

Certified in Governance, Risk and Compliance

AWS Certified Cloud Practitioner

PROFESSIONAL EXPERIENCE

Information Systems Security Engineer. 07/2022-06/2024

Imagine-One Technology and Management Ltd

Performing all required and approved ISSE RMF process steps, as provided in Section 4 of the NIST RMF guide.

Overseeing the development and maintenance of a system’s cybersecurity solutions.

Identifying system type (IS, PIT, IT product, IT service) and any special considerations including multi-service/agency, joint, cross domain, Personally Identifiable Information (PII), Protected Health Information (PHI), tactical, space, etc., to support RMF Step 1 System Categorization.

Identifying mission criticality

Identifying the security control baseline set and any applicable overlays and tailoring.

Assisting with development, maintenance, and tracking of the SP.

Leading the security control implementation and testing efforts.

Assisting with any security testing required as part of A&A or annual reviews.

Assisting in the mitigation and closure of open vulnerabilities under the system’s change control process

Overseeing cybersecurity testing to assess security controls and recording security control compliance status during the continuous monitoring phase of the lifecycle.

Processing weekly ACAS scans results from Security Center, used the eMASSter to process the results and created POA&MS and closed POA&MS that has been mitigated in eMASS.

Senior Computer Security Specialist, 09/2020 to 07/2022

Alpha Omega Integration – IA Cybersecurity (took over contract from 02/2022 to 07/2022)

Invictus International Consulting, LLC – IA Cybersecurity (held contract from 09/2020 to 02/2022)

Provided System Security Authorization support to Department of Homeland Security/United States Coast Guard (DHS/USCG) C5ISC Command facilities.

Provided Information Systems Security Authorization support to DHS/USCG facilities

Utilized FIPS 199 template/NIST 800-60 to categorize information type and system in eMASS.

Used eMASS to select baseline, overlay and tailoring security controls for systems.

Performed security control implementation and testing efforts in eMASS in accordance with the NIST 800-70 and NIST 800-53A

Performed System Security Authorization and related IA Continuous Monitoring tasks across multiple customers owned and managed systems.

Worked closely with internal and external cyber security stakeholders within CGCYBERCOM, USCGHQ and DHS in maintaining continued FISMA compliance, sustained ATO and effective system security posture.

Conducted security evaluations and assessments.

Assisted in drafting Risk Acceptance letters, ATO-C memorandum request letter and PTA.

Performed ACAS scans and uploaded results in eMASS, created POA&MS to support services to the Command, Control & Communications Engineering Center.

Used STIG Viewer to analyze the compliance status of selected controls.

Information Systems Security Engineer, 09/2019-08/2020

Imagine-One Technology and Management Ltd.

Provided Information Systems Security Authorization support to NAVSEA 04 systems.

Assisted in the development and maintenance of a system’s cybersecurity solutions.

Identified system type (IS, PIT, IT product, IT service) and any special considerations

including multi-service/agency, joint, cross domain, Personally Identifiable Information

(PII), Protected Health Information (PHI), tactical, space, etc., to support RMF Step 1

System Categorization.

Identified the security control baseline set and any applicable overlays and tailoring.

Assisted with development, maintenance, and tracking of the SP.

Performed security control implementation and testing efforts.

Assisted with any security testing required as part of A&A or annual reviews.

Assisted in the mitigation and closure of open vulnerabilities under the system’s change

control process

Performed cybersecurity testing to assess security controls and record security control in eMASS, using STIGS, NIST 800-53A and other system policy documents.

Received weekly ACAS scans results from Security Center, used the Vulnerator to process the results and created POA&MS and closed POA&MS that has been mitigated in eMASS.

Managed cybersecurity testing to assess security controls and record security control compliance status during the continuous monitoring phase of the lifecycle.

Collaborated with NQV and submitted a system package that received ATO-C.

Diplomatic Security Service, 09/2018 -09/2019

Inter-Con Security Systems (U.S State Department) Washington DC

Drive continued excellence for all aspects of safety and security management while offering top-tier customers service, maintaining tact and calm in handling conflict resolution; provide highly professional armed security.

Provided access control and alarm response while protecting U.S. Department of State property personnel, building productive relationships with law enforcement personnel to ensure emergency response is swift and effective.

Provided Physical Cyber security control.

Utilized X Ray machine and handheld magnetometer to prevent prohibited items from entering U.S. Department of State facilities.

GIS Mapping Specialist, 03/2010-08/2018

Community Electric Cooperative Windsor, VA

Installed and updated ArcGIS Engine, ArcGIS Desktop and Java programs on Servers, Workstations, Desktops, Tough pads and Mobile phones.

Provided General IT support on both LAN and WAN of the organization.

Managed the GIS Mapping System ensuring confidentiality, Integrity and availability of customers information.

Responsible for drawing electrical schematics.

Routine inspection of generator plants remotely from SCADA.

Responsible for monthly collection of data from the SCADA system for analysis.

Responsible for data collection from Voltage Regulators on the distribution lines for analysis.

Programming of Voltage Regulators, PLCs and IEDs.

Operated Outage Management System (OMS).

Redesigned our substations communication system with fiber optics.

Designed and Staked Distribution Power Lines

Created Work orders for construction and repair works

Reviewed coworkers staking designs.



Contact this candidate