Project Manager Support Specialist

Location:

Irving, TX

Salary:

135000

Posted:

October 10, 2024

Contact this candidate

Resume:

RONALD LADELL DUFFEY

**** *** ******* **** #**** Irving, TX 75039 214-***-**** *************@*****.***

SUMMARY OF QUALIFICATIONS

ISSM/ISSO, IT Support Specialist, Project Manager (PMP) with 15 + years of experience working within fast-paced environment specialized training various military technical networks, systems, and security. Knowledgeable quick-thinking, and innovative leader, creates and customized solutions for positive outcomes for internal/external customers and stakeholders. Strong communication skills, work with individuals/Teams on multiple professional levels, technical aptitude with various experience. Excellent management skills, ensures projects are completed on time, within budget, and to the required within SLA, collaborating with different departments to ensure project progress is understood, make multiple site visits in remote locations; Oversee, track and review employee/s time and attendance, compliance and safety training.

CORE COMPETENCIES

Information Security Manager * Testing and Monitoring IPS/IDS * Security Implementation and Configuration

System Design and Development * ADPE/Baseline computers, laptops, Troubleshooting and Problem Resolution * Maintenance and Upgrades

Team Training and Leadership * Department Operations * Recordkeeping and Reports * Special Projects and Programs

HIGHLIGHTED ACCOMPLISHMENTS

Consistently exceeded objectives in all positions.

Earned high marks on performance reviews and excellent feedback from internal and external contacts.

Continually given leadership roles and increased levels of responsibility.

Effectively managed teams through detailed plans, in-depth training, and motivational leadership.

Successfully led large and complex projects and programs from inception to completion.

Created preventative maintenance plans and schedules that avoided costly repairs.

Maintained the highest level of accuracy, thoroughness, and confidentiality on all documents, records, and reports.

Support OCONUS/CONUS U.S. military activities various locations such as Afghanistan, Bahrain, Germany, Kuwaitunder CENTCOM, EUCOM, AFRICOM, USARCENT, USFOR-A, ISAF, CJTF for 13 plus years

Credited as an enthusiastic, productive team player who proactively learns new skills to assist in more areas of work.

Gained experience that transfers well to any position involving support to technical systems and equipment.

EDUCATION/TRAINING

DAU Defense Acquisition University

DOD Science & Technology Management

08/2018

Computer Learning Center

Information Technology Support/ Network Administration

05/2000

Marion High School

Diploma

05/1980

Certified Information Security Manager (CISM)

Certified Ethical Hacker v10 (C EH v10)

CompTIA Advanced Security Practitioner (CASP) Security+, A+ Certified

Cisco Certified Network Associate (CCNA)

Enterprise Mission Assurance Support Services (eMASS)

Project Manager Professional (PMP)

AZURE Active Directory AZURE Cloud Security / CSPM &CWPP PowerShell ISE / Scripting SBOM Creation CycloneDX, SPDX, Syft vSphere / VDI Outlook365 MS Teams Linux/RHEL Windows 10 / 11 Server 2016/2019 CITRIX Receiver ePO Orchestrator GPO / GP Edit SPS/PD2 Sybase/Db2 SQL iDRAC Checkpoint Wireshark PALO ALTO Firewall Cisco ASA ARUBA Juniper Meraki ACL’s / PoE+ SCCM / MECM Software Center Patch Management Asset Management Bit Locker / AppLocker JAVA upgrade Frame Relay OneDrive CUCM VoIP Cisco Phone 84XX LDAP IPS / IDS RMF SIA / SAR POA&M PDQ ACAS NIST / FISMA SEIM eMASS Trellix / McAfee DISA Repository EIGRP OSPF BGP QoS OSP/ISP KIV-7, KG devices TACLANE Cryptography SD-WAN VLAN / LAN / WAN / VPN Security CAC/ PKI Key RSA Token Multi-Factor Authentication ISCM API TC-AIMS I Pre-Gat/GAT Okta Azure 4G / 5G WLAN-Cellular WMAN-IEEE WiMax WPAN-Bluetooth-Zigbee WWAN-LTE ATM Microwave Satellite MPLS/AHCP 802.11n, b,g and 802.1X NAC RADIUS / AAA SSID / WPA2 Protocols EAP-TLS PEAP-MSCHAPV2 WebEx App SharePoint File Sharing Jira Confluence Service Now BMC Remedy Ticketing

SECURITY CLEARANCE

DOD Secret - Active

EXPERIENCE

InSight Global April 2022 – Present

ISSM Sr / PMO - Team Lead CENTCOM/EUCOM/AFRICOM CONUS – Niceville, FL.

Maintain thorough documentation of security-related activities, including system audits, vulnerability scans, and risk assessments; ensure that documentation for System Security Plans (SSP), Security Control Assessments (SCA), Security Impact Report (SIR), Security Analysis Report (SAR) and Plan of Action and Milestones (POA&M); is complete and up to date; Collaborate with system administrators, network engineers, and other IT professionals to ensure that security measures are incorporated into all system operations; serve as a liaison between the organization and regulatory bodies such as The Authorizing Official (AO), formerly known as the Designated Approving Authority (DAA), for Authorization to Operate (ATO) or Interim Authorization to Operate (IATO); strong knowledge of information security frameworks and regulations NIST SP 800-53, NIST RMF, FISMA; knowledge of classified system security requirements, such as NSA, DISA, NISPOM, DCID, or DoD Instructions; interpret patterns of non-compliance to determine their STIGs, IAVA, IAVB, IAV- TA, Security Control procedures in addition to DISA requirements; Provide technical subject matter expertise for a wide range of security technologies including, but not limited to SEIM, malware analysis and protection, content filtering, perimeter access controls, logical access controls, identity and access management, and data loss prevention; write policies, rules and tag devices; for administering security activities which are extremely sensitive in nature, ensuring compliance with government and company security policies and procedures in assigned area; monitor, evaluate, and maintain systems and procedures to safeguard information systems, networks and databases, Implements, enforces, communicates and develops security policies or plans for data, software applications, hardware, and telecommunications; develops, tests, and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools; Conducts regular audits to ensure that systems are being operated securely, and information systems security policies and procedures are being implemented as defined in security plans; conducts more complex investigations of computer security violations and incidents, reporting as necessary to management; maintenance of an enterprise baseline for security controls, which is stored in the eMASS Repository and updated with industry standards. Fully automated inheritance allows systems to inherit security control status, artifacts, test results, and view system security postures from other CC/S/A’s POA&Ms, SIA or systems; in support of various SAP’s such as Acknowledged SAPs, Unacknowledged SAPs, Acquisition SAP (AQ-SAP), Intelligence SAP (IN-SAP, Operations and Support SAP (OS-SAP), Integration with Continuous Monitoring Risk Scoring (CMRS) automatically populates Device and Scan Result data into eMASS proficient in conducting risk assessments, vulnerability scans, and managing security controls such as CycloneDX, SPDX, Syft; experience with security tools such as vulnerability scanners, SIEM tools such as CheckPoint, Ansible, Sophos, Cisco oder Scaler, Palo Alto, and endpoint protection solutions; leveraging governance and compliance and forensic tools like NIST’s Cybersecurity Framework (CSF), RMF, eMASS, Symantec DLP, BitLocker, Xacta, RSA Archer, CrowdStrike Falcon, Carbon Black, Okta, CyberArk, Splunk, HP ArcSight, IBM QRadar, EnCase, FTK, PDQ, SCCM, Software Center to ensure that systems are aligned with security frameworks and maintain authorization to investigate, mitigate, identify, patch vulnerabilities and report security incidents; Asset’s module and prioritizes RMF A&A and asset management actions; allows product teams, testers, and security control assessors to effectively collaborate and execute security assessments from geographically dispersed locations with Integrated Project Teams; Lead and manage a team of IT professionals such as ISSO's/ISSM's, internal/external IT departments to assure security policies and compliance is followed regularly; duties include but not limited to defining project scope, develop timelines, allocate resources, excellent communication and interpersonal skills monitor project progress, identify risks, and implement corrective actions; identify opportunities for cost reduction, increased efficiency, and enhanced service quality; proactively address end-user issues and concerns, gather feedback from users to identify areas for improvement, assign tasks, monitor performance, and ensure adherence to team goals and objectives; manage end-user computing projects, including new implementations, upgrades, and migrations, negotiate contracts, ensure compliance with agreements, and monitor vendor performance, develop and implement service level agreements (SLAs) to measure and manage service quality, continuously evaluate and improve end-user computing processes and procedures; ensure that end-user computing services meet or exceed expectations.

IAP/IntrepidGS February 2024 – May 2024

CSfC Network Engineer Sr. CONUS – Hawaii

Conduct network analysis and resolve problems. Perform daily, weekly, monthly, checks and maintenance to include configuring, upgrades, installation and troubleshooting. Monitor network performance, troubleshoot problems and outages; Schedule and perform upgrades to all switches and firewalls Define, document, and enforce industry standards. Design, recommend and implement new solutions to improve the resiliency of the network, coordinate with external/internal vendors to resolve network related issues. Utilize various tolls such as ARUBA, Cisco ISE, Linux Red Hat, DNS WIN and Linux, VDI, VSphere, Firewalls, Switches, VPN IPSec, configuring TCC-R clients, install certificates (ISC CertAgent/MS Windows Server/Red Hat Certificate systems) Troubleshoot performance issues by applying best practice methodologies, reviewing topologies, and conducting packet analysis. Support the evaluation of new network architectures, equipment, and appliances. Collaborate with multiple teams, with efforts to assure compliance with DoD Security Technical Implementation Guides (STIGs) and meet NS requirements. CUCM VoIP, Cisco 84XX, Telephony, deploy, troubleshoot, monitor and optimize IP telephony, voice, and video and mobility solutions. Management and IT-related experience, in end-user computing service delivery, Define project scope, develop timelines, and allocate resources, excellent communication and interpersonal skills monitor project progress, identify risks, and implement corrective actions. Ability to prioritize tasks and manage multiple projects simultaneously, Strong problem-solving and analytical skills. Oversee the delivery of end-user computing services, including desktop support, application management, and infrastructure maintenance. Develop and implement service level agreements (SLAs) to measure and manage service quality. Continuously evaluate and improve end-user computing processes and procedures, Ensure that end-user computing services meet or exceed expectations. Lead and manage a team of IT professionals, internal/external customers/vendors, and service providers. Identify opportunities for cost reduction, increased efficiency, and enhanced service quality. Proactively address end-user issues and concerns, Gather feedback from users to identify areas for improvement. Assign tasks, monitor performance, and ensure adherence to team goals and objectives. Manage end-user computing projects, including new implementations, upgrades, and migrations. Negotiate contracts, ensure compliance with agreements, and monitor vendor performance.

CACI International April 2022 – January 2024

ISSM / ISSO / PMO CENTCOM/EUCOM/AFRICOM OCONUS – KUWAIT

15+ years of overall Management and IT-related experience, in end-user computing service delivery, Define project scope, develop timelines, and allocate resources; excellent communication and interpersonal skills monitor project progress, identify risks, and implement corrective actions. Maintain thorough documentation of security-related activities, including system audits, vulnerability scans, and risk assessments; ensure that documentation for System Security Plans (SSP), Security Control Assessments (SCA), Security Impact Report (SIR), Security Analysis Report (SAR) and Plan of Action and Milestones (POA&M); is complete and up to date; Collaborate with system administrators, network engineers, and other IT professionals to ensure that security measures are incorporated into all system operations; serve as a liaison between the organization and regulatory bodies such as The Authorizing Official (AO), formerly known as the Designated Approving Authority (DAA), for Authorization to Operate (ATO) or Interim Authorization to Operate (IATO); strong knowledge of information security frameworks and regulations NIST SP 800-53, NIST RMF, FISMA; knowledge of classified system security requirements, such as NSA, DISA, NISPOM, DCID, or DoD Instructions; interpret patterns of non-compliance to determine their STIGs, IAVA, IAVB, IAV- TA, Security Control procedures in addition to DISA requirements; Provide technical subject matter expertise for a wide range of security technologies including, but not limited to SEIM, malware analysis and protection, content filtering, perimeter access controls, logical access controls, identity and access management, and data loss prevention; write policies, rules and tag devices; for administering security activities which are extremely sensitive in nature, ensuring compliance with government and company security policies and procedures in assigned area; monitor, evaluate, and maintain systems and procedures to safeguard information systems, networks and databases, Implements, enforces, communicates and develops security policies or plans for data, software applications, hardware, and telecommunications; develops, tests, and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools; Conducts regular audits to ensure that systems are being operated securely, and information systems security policies and procedures are being implemented as defined in security plans; conducts more complex investigations of computer security violations and incidents, reporting as necessary to management; maintenance of an enterprise baseline for security controls, which is stored in the eMASS Repository and updated with industry standards. Fully automated inheritance allows systems to inherit security control status, artifacts, test results, and view system security postures from other CC/S/A’s POA&Ms, SIA or systems; in support of various SAP’s such as Acknowledged SAPs, Unacknowledged SAPs, Acquisition SAP (AQ-SAP), Intelligence SAP (IN-SAP, Operations and Support SAP (OS-SAP), Integration with Continuous Monitoring Risk Scoring (CMRS) automatically populates Device and Scan Result data into eMASS proficient in conducting risk assessments, vulnerability scans, and managing security controls such as CycloneDX, SPDX, Syft; experience with security tools such as vulnerability scanners, SIEM tools such as CheckPoint, Ansible, Sophos, Cisco oder Scaler, Palo Alto, and endpoint protection solutions; leveraging governance and compliance and forensic tools like NIST’s Cybersecurity Framework (CSF), RMF, eMASS, Symantec DLP, BitLocker, Xacta, RSA Archer, CrowdStrike Falcon, Carbon Black, Okta, CyberArk, Splunk, HP ArcSight, IBM QRadar, EnCase, FTK, PDQ, SCCM, Software Center to ensure that systems are aligned with security frameworks and maintain authorization to investigate, mitigate, identify, patch vulnerabilities and report security incidents; Asset’s module and prioritizes RMF A&A and asset management actions; allows product teams, testers, and security control assessors to effectively collaborate and execute security assessments from geographically dispersed locations with Integrated Project Teams; Lead and manage a team of IT professionals such as ISSO's/ISSM's, internal/external IT departments to assure security policies and compliance is followed regularly; duties include but not limited to defining project scope, develop timelines, allocate resources, excellent communication and interpersonal skills monitor project progress, identify risks, and implement corrective actions; identify opportunities for cost reduction, increased efficiency, and enhanced service quality; proactively address end-user issues and concerns, gather feedback from users to identify areas for improvement, assign tasks, monitor performance, and ensure adherence to team goals and objectives; manage end-user computing projects, including new implementations, upgrades, and migrations, negotiate contracts, ensure compliance with agreements, and monitor vendor performance, develop and implement service level agreements (SLAs) to measure and manage service quality, continuously evaluate and improve end-user computing processes and procedures; ensure that end-user computing services meet or exceed expectations.

TCSTI - 22nd Century September 2021 – April 2022

ISSO Sr. / PMO CONUS–APG, Maryland

Management and IT-related experience, in end-user computing service delivery, Define project scope, develop timelines, and allocate resources, excellent communication and interpersonal skills monitor project progress, identify risks, and implement corrective actions. Ability to prioritize tasks and manage multiple projects simultaneously, Strong problem-solving and analytical skills. Oversee the delivery of end-user computing services, including desktop support, application management, and infrastructure maintenance. Develop and implement service level agreements (SLAs) to measure and manage service quality. Continuously evaluate and improve end-user computing processes and procedures, Ensure that end-user computing services meet or exceed expectations. Lead and manage a team of IT professionals, internal/external customers/vendors, and service providers. Identify opportunities for cost reduction, increased efficiency, and enhanced service quality. Proactively address end-user issues and concerns, Gather feedback from users to identify areas for improvement. Assign tasks, monitor performance, and ensure adherence to team goals and objectives. Manage end-user computing projects, including new implementations, upgrades, and migrations. Negotiate contracts, ensure compliance with agreements, and monitor vendor performance. Automated generation of required DIACAP and RMF reports, In support of various SAP’s such as acknowledged SAPs, Unacknowledged SAPs, Acquisition SAP (AQ-SAP), Intelligence SAP (IN-SAP, Operations and Support SAP (OS-SAP), SBOM Creation:CycloneDX, SPDX, Syft; automated calculation and reporting of monthly SECDEF Cybersecurity Scorecard metrics (Evaluate and Approve Systems; Close Security Weaknesses) to the Enterprise Reporting Service (ERS) Enterprise level visibility of all authorization packages offering comprehensive organizational security postures. Conduct network analysis and resolve problems. Perform daily, weekly, monthly, checks and maintenance to include configuring, upgrades, installation and troubleshooting. Monitor network performance, troubleshoot problems and outages; Schedule and perform upgrades to all switches and firewalls Define, document, and enforce industry standards. Design, recommend and implement new solutions to improve the resiliency of the network, coordinate with external/internal vendors to resolve network related issues. Utilize various tolls such as ARUBA, Cisco ISE, Linux Red Hat, DNS WIN and Linux, VDI, VSphere, Firewalls, Switches, VPN IPSec, configuring TCCR clients, install certificates (ISC CertAgent/MS Windows Server/Red Hat Certificate systems) Troubleshoot performance issues by applying best practice methodologies, reviewing topologies, and conducting packet analysis. Support the evaluation of new network architectures, equipment, and appliances. Collaborate with multiple teams, with efforts to assure compliance with DoD Security Technical Implementation Guides (STIGs) and meet NS requirements.

PAE February 2021 – September2021

ISSO Sr. / Team Lead/PMO CENTCOM OCONUS – BAHRAIN

CACI International January 2018 – February 2021

ITSM / ISSO / Project Manager CENTCOM/EUCOM/AFRICOM OCONUS – AFGHANISTAN

. Fully automated inheritance allows systems to inherit security control status, artifacts, test results, and view system security postures from other CC/S/A’s POA&Ms, SIA or systems; in support of various SAP’s such as Acknowledged SAPs, Unacknowledged SAPs, Acquisition SAP (AQ-SAP), Intelligence SAP (IN-SAP, Operations and Support SAP (OS-SAP), Integration with Continuous Monitoring Risk Scoring (CMRS) automatically populates Device and Scan Result data into eMASS proficient in conducting risk assessments, vulnerability scans, and managing security controls such as CycloneDX, SPDX, Syft; experience with security tools such as vulnerability scanners, SIEM tools such as CheckPoint, Ansible, Sophos, Cisco oder Scaler, Palo Alto, and endpoint protection solutions; leveraging governance and compliance and forensic tools like NIST’s Cybersecurity Framework (CSF), RMF, eMASS, Symantec DLP, BitLocker, Xacta, RSA Archer, CrowdStrike Falcon, Carbon Black, Okta, CyberArk, Splunk, HP ArcSight, IBM QRadar, EnCase, FTK, PDQ, SCCM, Software Center to ensure that systems are aligned with security frameworks and maintain authorization to investigate, mitigate, identify, patch vulnerabilities and report security incidents; Asset’s module and prioritizes RMF A&A and asset management actions; allows product teams, testers, and security control assessors to effectively collaborate and execute security assessments from geographically dispersed locations with Integrated Project Teams; Lead and manage a team of IT professionals such as ISSO's/ISSM's, internal/external IT departments to assure security policies and compliance is followed regularly; duties include but not limited to defining project scope, develop timelines, allocate resources, excellent communication and interpersonal skills monitor project progress, identify risks, and implement corrective actions; identify opportunities for cost reduction, increased efficiency, and enhanced service quality; proactively address end-user issues and concerns, gather feedback from users to identify areas for improvement, assign tasks, monitor performance, and ensure adherence to team goals and objectives; manage end-user computing projects, including new implementations, upgrades, and migrations, negotiate contracts, ensure compliance with agreements, and monitor vendor performance, develop and implement service level agreements (SLAs) to measure and manage service quality, continuously evaluate and improve end-user computing processes and procedures; ensure that end-user computing services meet or exceed expectations. Maintain thorough documentation of security-related activities, including system audits, vulnerability scans, and risk assessments; ensure that documentation for System Security Plans (SSP), Security Control Assessments (SCA), Security Impact Report (SIR), Security Analysis Report (SAR) and Plan of Action and Milestones (POA&M); is complete and up to date; Collaborate with system administrators, network engineers, and other IT professionals to ensure that security measures are incorporated into all system operations; serve as a liaison between the organization and regulatory bodies such as The Authorizing Official (AO), formerly known as the Designated Approving Authority (DAA), for Authorization to Operate (ATO) or Interim Authorization to Operate (IATO); strong knowledge of information security frameworks and regulations NIST SP 800-53, NIST RMF, FISMA; knowledge of classified system security requirements, such as NSA, DISA, NISPOM, DCID, or DoD Instructions; interpret patterns of non-compliance to determine their STIGs, IAVA, IAVB, IAV- TA, Security Control procedures in addition to DISA requirements; Provide technical subject matter expertise for a wide range of security technologies including, but not limited to SEIM, malware analysis and protection, content filtering, perimeter access controls, logical access controls, identity and access management, and data loss prevention; write policies, rules and tag devices; for administering security activities which are extremely sensitive in nature, ensuring compliance with government and company security policies and procedures in assigned area; monitor, evaluate, and maintain systems and procedures to safeguard information systems, networks and databases, Implements,

Contact this candidate