Cyber Security
Resume:
Ted Gibson
I/OT Cyber Security and SCADA Architect
Summary
Highly skilled IOT Cyber Security and SCADA Architect with over 20 years of experience in the utility, energy, and telecommunications industries. Proven ability to manage complex projects, design and implement secure OT solutions, and ensure compliance with NERC CIP, NIST, and other industry standards.
Subject Matter Expertise
Cyber Security Compliance (IEC 62443, NERC CIP, NIST CSF 2.0
Regulatory Compliance (IEC 62433 PHMSA, CRM, NRC)
RF Engineering (MAS, Microwave, Satellite, Cellular, WiFi)
Telecom Architect (MPLS/VPN/VLAN Purdue Model, Micro-segmentation)
Generation, T&D and Battery SCADA, IPP, ADMS, EMS, OMS,
Skills:
Risk Analysis (Cyber Security, Network, SCADA
Procurement Documentation: RFPs, RFQs, GSA
Contract Management & Negotiations
Project Management and Documents: Business Case, Charter, Project Plan, WBS, CPI, SPI Reporting, Controls, Schedule, Scope, Budget
Project Recovery, Schedule Budget, Scope, Assessment & Recovery
Certifications:
ISA/IEC – 62433 Fundamentals Specialist (QI/24)
ISA/IEC – 62433 Risk Assessment Specialist (Q4/24)
ISC2 – NIST CSF Cyber Security Framework 2.0 Lead Implementer (Q4/24)
ASIS - American Society for Industrial Security Professional
PMP - Project Management Institute
CISSP - Certified Information Systems Security Professional
SMC - Scrum Master
C-61 - California Contractor License
Education:
Computer Science, American River College, Sacramento, CA
Master Business Administration, California Coast University (Expected 2024)
Juris Doctorate, Lincoln School of Law, Sacramento, CA
Professional Experience:
(Unnamed by NDA) Utility Senior OT Architect, ISA/IEC 62433, NERC cip, NIST CFF 2.0
June 2024/Currently current risk assessment and future state compliance January 2024/Current
Network segmentation of traditional, renewable power generation plants, and T&D Substations
SRA secure Remote Access
PAM Privileged Access Managements systems
NAC Network Access Control sensors
Firewalls
Multipoint and Point to Point RF network.
CenterPoint Energy OT Architect for the POC proof of concept for the deployment of June 2023/ January 2024
A ConsoleWorks TDI secure remote access system, an OT active directory for remote access to the traditional and renewable power generation plants, Substations and gas plants throughout nine states
Replacement of Cisco ASA Firewalls with Fortinet FortiGate firewalls and Airwall Data diodes.
The integration of Tripwire IP360 endpoint protection, QRadar SIEMs and CygNET with Spunk in several dozen power generation power.
Deploy Nozomi Guardian Sensors and Centers of Command, network span, tabs ports and data diodes to passive monitor the IP in several hundred NERC cip medium and low substations.
Deploy Nozomi Guardian Sensors and Centers of Command, network span and tabs ports to passive monitor the IP in several dozen power generation plants.
Deploy Nozomi Guardian Sensors and Centers of Command, network span and tabs ports to passive monitor the IP in over dozen nature gas plants.
Liberty Utility –Design and implementation of new wind and solar renewable generation plants and substations control and security systems throughout the USA and Canada January 2023. August 2024
New Remote-Control Center in Canada and backup in the USA
Kepware OPC servers in all new and existing wind, solar and hydro power generation plants, and substations
New SCADA/HMI systems in renewable SOLAR, Wind and Fossil Fuel power generation and Step-Up substations
RTAC control systems
A new ADMS system
Deployment of new network infrastructure to several hundred wind turbines and tuning
Migration from MPLS/VPN to SDWAN for all power generation substations
Dominion Energy- Richmond Virginia – March 2021/January 2023 Cyber Security Technical Project Manager
Led project management for discovery, planning, and implementation of 100+ renewable and traditional power generation assets and 100,000 cyber assets to meet Dominion and NERC CIP requirements.
Oversaw assessment, design, and deployment of SCADA Control and network system hardware and software for 50+ renewable power generation plants nationwide to ensure cyber security compliance.
Duke Energy – Camp Lejeune (Marine Base) Sept 2020/Feb 2021 Technical Deployment Project Manager and SCADA Wireless Architect
Managed design and replacement of hundreds of wastewater lift stations, water pumps, treatment plants, and control centers.
Built new SCADA wireless infrastructure for dozens of water tanks and hundreds of water & wastewater stations.
Designed and upgraded multiple solar plants at Camp Lejeune damaged by a hurricane.
Eversource Energy – Berlin CT – May 2019/Current Technical Project Manager and Security SCADA and Gas Compliance Solutions Architect
Mitigate security vulnerabilities identified in previous audit.
Develop project requirements, plan, design, testing cases, and implementation strategy.
Write RFPs and SOWs for new OT domain and Microsoft Active Directory domain forest.
Upgrade SCADA systems to ClearSCADA 2017r3.
Enhance ClearSCADA database, screens, faceplates, and alarm systems.
Establish new Gas distribution domain.
Ensure compliance with API 1165, CRM, and 192.631 regulations.
Integrate Electronic Logbook and Alarm Management systems.
Replace Frame Relay WAN with new MPLS WAN
Upgrade Emerson's ObjectServer, Controlwave Designer, and Netview BSAP to new Emerson OpenEnterprise system.
Integrate ClearSCADA with OSIsoft Process Information (PI)
Implement Tripwire SIEMs, IP360, FIM, and other security measures.
Replace switches and firewalls as needed.
Cal Water Service Company – San Jose Ca - 2017/2019 - SCADA Consultant and Technical Project Manager
Managed replacement of 19 Cal Water district SCADA systems.
Expanded project scope to replace 20 SCADA HMI systems, 750 PLCs, 38 MDS master Radios, and seven hundred SD9 radios.
Established new OT SCADA domain and changed SCADA protocol to DNP SA over IP with encryption.
Integrated OSI Pi for SCADA historian and HMI screens.
Developed project charter, plan, schedule, scope, and budget.
Led teams comprising four internal and seven external teams, totaling over 170 employees.
Managed resources totaling 57,000 hours over 18 months, achieving an 8% under-budget estimate.
Created RFPs for procurement of Schneider PLCs, ClearSCADA software, and GE MDS radios.
Led contractor selection process in January and February 2018.
Oversaw design, testing, documentation, and piloting of new SCADA and radio system, meeting deadlines and budget constraints.
San Antonio Water Systems – San Antonio TX - 2015/2017 SCADA Consultant and Technical Project Manager
Developed SAWS SCADA Master Plan and 10-year roadmap for replacement of TransDyn TransNets and Schneider ClearSCADA.
Oversaw monitoring and control systems for eight hundred water stations and two hundred wastewater lift stations.
Managed integration of Rockwell PlantPAx, GE Unity, GE iFIX, and Emerson's Ovation DCS systems.
Engineered RFQ for pioneering AMI system deployment across 500,000 meters.
Department of Energy, Western Area Power Authority – Folsom Ca - 2014/2015 - Program Manager
Interviewed WAPA's power marketing, settlements contract, and IT staff.
Developed a strategic roadmap for process reengineering and application enhancements.
Utilized Six Sigma's DMAIC methodology to eliminate or reduce over two dozen duplicate processes.
Con Edison – Manhattan NY., 2014 - NERC cip v5 Consultant Manhattan NY 2014
Conducted NERC CIP v5-002 assessment for power generation plants and T&D substations in Manhattan.
Provided recommendations for facilities to achieve NERC CIP v5 compliance.
Reclassified several facilities from "critical asset" to "low impact," saving Con Edison millions in compliance costs.
Utilligent - San Francisco, 2013/2014 - NERC cip v5 and Contact Center Solutions Consultant
Assisted in NERC CIP v5 proposals, RFP responses, and Contact Center project presentations.
Nevada Energy – Reno Nevada 2013 – Physical Security Consultant
Conducted pre-field assessments.
Classified security measures
Made recommendations for enhanced physical security.
Implemented enhancements at NVE power generation plants and T&D substations.
West Monroe Partners San Francisco, CA 2012/2013 - Principal Architect, Multiple Channel Contact Center and Utility Telecommunications Consultant
Assisted in NERC CIP and contact center project proposals, RFP responses, and presentations.
Provided consulting services for various utility, private, and public companies through WMP.
Pacific Gas & Electric San Francisco, CA 2008/2013 - Senior Expert Enterprise Architect
Managed PG&E's Master Infrastructure Plan and 5-year roadmap.
Led migration of TDM channel banks and analog lease WAN to MPLS/QoS and satellite.
Oversaw migration of PG&E SONET WAN to MPLS/QoS across 78,000 square miles.
Designed and deployed VSAT satellite IP network for 2,400 T&D substations.
Implemented cellular and satellite backhaul for 11.4 million electric and gas AMI meters.
Developed RFP and piloted mobile satellite network for PG&E vehicles.
Conducted pilots of fixed Inmarsat satellite for SCADA and CCTV in remote locations.
Ensured compliance with NERC CIP, NRC, and PG&E cybersecurity standards for new systems.
Pacific Gas & Electric San Francisco, CA 2007/ 2008 - Telecom Project Manager
Engineered and managed telecommunications projects for substations and power generation facilities.
Salesforce.com, San Francisco, CA - Contact Center Architect & Technical Project Manager
I evaluated, designed, tested and project managed the implementer of the migration of multiple Call Centers worldwide from an in-house Cisco IPCC to a hosted IVR service integrating the on-demand CRM customer relationship management system.
Google, Mountain View, CA - Technical Project Manager
I project managed the development of “Google Voice”, a new browser-based lite protocol for audio and video calling, conferencing for dialup, and broadband and mobile users.
CISCO, San Jose, CA - TSBU Project Technical Manager
Cisco, San Jose, CA
I was the project manager in the TSBU Telepresence Business Unit installation and testing over one hundred Telepresence systems and MCUs globally.
I co-authored the Telepresence installation and release into production testing.
KLA-Tencor Milpitas, CA - Global Telecommunication & Networks Project Manager
Evaluated, designed, negotiated, and led project lifecycle for the deployment of a global MPLS for VoIP to over seventy-five locations worldwide supporting 4,600 users.
Increased the WAN bandwidth by over 300%, while reducing the cost from $16.5K per month to $3.4K/month per meg using PBR, CBWFQ, CAR and IPsec VPN protocols that provide policy-based load balancing and QoS.
Grant County Public Utility Dept. Ephrata, WA - SCADA/VOIP/Security Engineer
Designed and managed the GCPUDs, TDM PBXs, voice mail with a new VoIP Cisco Call Manager CTI and UMS systems. The project included Cisco, 1ONS 15454, 6509, and network equipment, Cisco Call Managers, Interactive Intelligence UMS and Microsoft Exchange.
Legato System Inc., Mountain View, CA - Director of Global Networks & Telecommunications
Designed the network and deployment MPLS network supporting global converged data and VoIP expanding the on-net WAN from nine to more than 75 US and International offices and reducing telecom costs by over 50%.
Architected and implemented the conversion of Lucent, Nortel and Siemens telephony and dozens of standalone voicemail systems to a globally distributed VoIP telephony and unified messaging system.
Architected and implemented the conversion of five single language call stand-alone centers to a globally distributed VoIP ACD/IVR call center.
Designed and deployed an in-house audio/video conferencing system reducing Legato’s annual cost for audio and web conferencing services by 90% (from $2.5M to under $300K).
Excite@Home, Redwood City, CA - Director of Deployment
Managed technical resources, buildouts, relocation, and upgrades to Excite@home RDC and MSO Colocations including the facilities, servers, network, and circuits for over 1,000 sites serving over 3m cable internet users.
Contact this candidate