CHIBUZO E. ONUKWUFOR

*** ***** ***** **** *****, MD 20721 240-***-**** adhb9y@r.postjobfree.com

Project Management Leader Providing Continuous Improvement With a Quality Engineering Focus

PROFESSIONAL SUMMARY

Exceptional systems security leader with 15+ years of delivering top notch, high quality cybersecurity and asset management solutions. Utilizes user stories, Lean Six Sigma techniques, and the cloud to enhance self service UX (user experience) and safeguard intellectual property. Proven ability to collaborate with cross-functional teams and build consensus on pertinent resolutions concerning information security, policies, planning, and controls. Manages relationships with external and internal stakeholders while monitoring tools, governance, and procurement efforts. Strong track record of augmenting operations through scrum frameworks and specifications with an end user focus.

AREAS OF EXPERTISE

Thorough Information Systems Security

Project Documentation

Asset Management & Risk Assessment

Oral & Written Communication Skills

SOC2

Concept Development & Management

Astute Budget & Resource Allocation

User Acceptance Management &Testing

Web Services & Metrics

FedRAMP

Cross-Functional Collaboration

Technical Documentation

Problem Solving & Resolution Strategy

Team Leadership

HIPPA

CERTIFICATIONS

Certified Information Security Manager (CISM)

CompTIA Security Plus

Microsoft Certified Information Technology Professional (MCITP)

Microsoft Certified Technology Specialist (MCTS)

Microsoft Certified Trainer (MCT/MCT2008)

PROFESSIONAL EXPERIENCE

United States Patent & Trade Organization (USPTO)

CPA Global North America, LLC, Alexandria, VA

Information System Security Officer 10/2016 – 08/2020

Developed, maintained, and oversaw the Landon IP IT Security Program by affirming requirements implementation and independent evaluations per regulatory policies and practices. Managed and led the IT Security Program and ensured managers and security authorization for IT resources were identified within the planned timeframe. Assisted and consulted Landon IP senior officers and USPTO regarding security responsibilities, program status reporting, critical information system security issues, and annual accountability reporting. Spearheaded reporting efforts by communicating the effectiveness of the information security program effectiveness and remedial action progress. Led documentation of relevant NIST 800-53, 4300A, FIPS, FedRAMP Security Controls, and applicable departmental policies. Ensured that SSPs are properly prepared for all IT systems owned and operated by Landon IP. Developed and maintained the Landon IP IT security policies, procedures, standards, information protection, and guidance and legal compliance with federal requirements. Managed controls by administering required user assessments and maintaining controls and authorization tracking system. Ensured information system security, IP strategic IT planning, and enterprise architecture (EA) efforts. Included security documentation such as security assessment reports (SAR) as well as current and tested contingency plans (CPs). Monitored corrective actions related to POA&Ms to ensure timely completion.

Established a track remedial action tracking process to mitigate risks in accordance with Plans of Action and Milestones (POA&M) to address any deficiencies in the information security policies, procedures, and practices of Landon IP

Supported organizational missions and business functions by leading external providers to the needed visibility to decision-making authorities

Led efficiency by reviewing and updating of the SSP annually and incorporated changes and completed milestone actions

Trendcrafters Institute, Laurel, MD

Adjunct Professor 01/2017 – Present

Instructed from and developed daily lesson plans for eight courses including IP Networking, Cisco Networking, and Digital Forensics along with instructional aides. Promotes student motivation and assisted in school retention initiatives by providing routine feedback to students and the school concerning academics, behavior, and attendance. Recommended curriculum design improvements and maintain subject matter knowledge.

Engaged in core course academic support and certification programs as well as student professional associations. Performed duties in the Learning Resource Center as assigned. Instructed students in laboratory safety procedures.

Exceeded classroom learning by completing professional development and in-service activities per college standards

University of Maryland University College, Adelphi, MD

Adjunct Professor 12/2017 – 12/2019

Instructed from and developed daily lesson plans for eight courses including IP Networking, Cisco Networking, and Digital Forensics along with instructional aides. Promotes student motivation and assisted in school retention initiatives by providing routine feedback to students and the school concerning academics, behavior, and attendance. Recommended curriculum design improvements and maintain subject matter knowledge.

Engaged in core course academic support and certification programs as well as student professional associations. Performed duties in the Learning Resource Center as assigned. Instructed students in laboratory safety procedures.

Exceeded classroom learning by completing professional development and in-service activities per college standards

Stratford University, Falls Church, VA

Adjunct Professor 12/2016 – 06/2019

Instructed from and developed daily lesson plans for eight courses including IP Networking, Cisco Networking, and Digital Forensics along with instructional aides. Promotes student motivation and assisted in school retention initiatives by providing routine feedback to students and the school concerning academics, behavior, and attendance. Recommended curriculum design improvements and maintain subject matter knowledge.

Engaged in core course academic support and certification programs as well as student professional associations. Performed duties in the Learning Resource Center as assigned. Instructed students in laboratory safety procedures.

Exceeded classroom learning by completing professional development and in-service activities per college standards

Xerox State & Local Solutions, Inc., Elkridge, MD

Senior IT Security Analyst 01/2015 – 09/2016

Provided security support for daily operations, internal requirements, project development, and application implementation. Evaluated existing hardware systems to identify deficiencies and network performance improvements. Developed and tailored security plans, components, and controls for concepts such as security requirements, system architectures, and functional requirements/capabilities in accordance with NIST SP 800-53 for the Maryland Health Benefit Exchange (MHBE). Collaborated with project managers, developers, system engineers, network engineers to determine protection needs and led the incident response team in triaging security incidents. Acted as a safety liaison to the application developer and project management groups. Established and validated remediation efforts as well as software and hardware security best practice baselines using System Security Center, Nessus, STIG, SCSEM, CSS, NVD, and other tools. Tested and validated Identity, Credential and Access Management (ICAM) process and technology deployed (ISIM/ISAM, SUDO Mapping, SSO, SAML). Defined the desired state for people, process, and technology solutions that are to be utilized to support other IT efforts.

Evaluated and improved the IT vendor security posture by working alongside the IT program groups and support vendors

Aided in identifying security initiative gap assessments while implementing, testing, and maintaining defined security solutions

Assisted with updating and implementing the annual security awareness, annual developer, and annual administrator security training

Create Security implementation Plan (SIP) to ensure that system Engineers adhere to Agency’s Policy and industry best practices

Defense Threat Reduction Agency (DTRA) – CIS, Ft. Belvoir, VA

Security Analyst/System Administrator 10/2014 – 01/2015

Led Defense Integration and Management of Nuclear Data Services (DIAMONDS) projects by identifying deficiencies and network performance improvements by evaluating existing hardware systems. Aided in the administration, review, and reporting of system security and accreditation policies and procedures.

Installed and verified security software on classified security equipment. Configured, installed, tested, optimized, maintained, and upgraded PC operating systems software and databases, network servers, hubs, routers, and switches.

Diagnosed, analyzed, and resolved hardware and network problems utilizing TCP/IP, DNS, and DNS

Performed DISA Vulnerability Management and DoD Enterprise Mission Assurance Support Services (eMASS)

ITT Technical College, Hanover, MD

Adjunct Professor 12/2013 – 09/2016 Instructed from and developed daily lesson plans for eight courses including IP Networking, Cisco Networking, and Digital Forensics along with instructional aides. Promotes student motivation and assisted in school retention initiatives by providing routine feedback to students and the school concerning academics, behavior, and attendance. Recommended curriculum design improvements and maintain subject matter knowledge.

Engaged in core course academic support and certification programs as well as student professional associations. Performed duties in the Learning Resource Center as assigned. Instructed students in laboratory safety procedures.

Exceeded classroom learning by completing professional development and in-service activities per college standards

General Dynamics Information Technology, Washington, DC

Principal Network Security Engineer 05/2011 – 06/2013

Ensured that IT security policy, architecture, standard, best practices, guidance, and common security classification schema development are compliant with the FMS Network Infrastructure. Developed policies and procedures for system infrastructure and application security for organizations such as Federal Energy Regulatory Commission, Department of Veterans Affairs, and the FMS – Department of Treasury. Tracked, reviewed, and coordinated system security documentation including security plans, annual risk assessments, as well as disaster recovery and contingency plans. Monitored plans, reporting system, as well as program-level Plan of Actions and Milestones (POA&M) progress. Provides enterprise-wide network IDM, directory services, server support for federal agency and regional office users. Managed group policy and delivered server administration by configuring Windows 2003 and 2008 Server R2 Servers, hardening and fine-tuning servers, and providing daily management of Active Directory, DNS, DHCP and server clusters. Facilitated the installation, configuration, and administration Microsoft IIS web servers, SQL databases, as well as hardware and software components. Provided technical support to maintain 7x24x365 up-time and assist in the development, testing, and operation of firewalls, intrusion detection systems, enterprise anti-virus, and software deployment tools. Solved issues by identifying security risks, threats, and vulnerabilities of networks, system applications, and new technology initiatives through complex security architecture analysis.

Assessed possible business unit/customer risk caused by theft, destruction, alteration, or denial of access to information while reporting to senior management

Led junior personnel through exceptional work guidance and teamwork

Delivered complex technical oversight and enforcement of security directives, orders, standards, plans and procedures at server sites

Spearheaded personnel security awareness and training by developing manuals and ensured system support

Office of the Atmospheric Research (OAR-NOAA), Dept. of Commerce, Silver Spring, MD

Information Technology Security Officer 03/2010 – 01/2011

Drove the development of IT security policies, architectures, standards, best practices, and guidance, including common security classification schema with the company. Facilitated vulnerability scanning, penetration testing, and corresponding resolutions by using tools such as Nessus, MBSA Scan, SCCM 2007, Netcraft, Nmap, and Web inspect. Spearheaded accurate network resource documentation, management, and operation including but not limited to active directory and policy implementation (Windows Server 2000, 2003, XP and Unix/Linux OS). Tracked, reviewed, and coordinated system security documentation consisting of security plans, annual risk assessments, as well as disaster recovery and contingency plans. Monitored plans, report systems, and program-level Plan of Actions and Milestones (POA&M) progress

Ensured a 100% company participation in the NOAA IT Security Awareness course

Maintained legal compliance by obtaining current information on federal, DOC/NOAA IT security laws, policies, regulations, guidelines, and/or concerns as a voting member of the NOAA IT Security Council

Acted as the Authorizing Official's Designated Representative (AODR) or Certification Agent (CA), as determined by the OAR CIO for all systems

Artisys, Inc. (MDOT/SHA Contract), Baltimore, MD

Sr. Network Engineer/Info Security Operations 04/2008 – 03/2010

Managed distributed system architecture and multiple topologies (such as NAS, SANs, and VLAN/LAN/WAN) as well as network file servers, applicable software, and troubleshooting techniques. Solved network server and network infrastructure issues while monitoring performance utilizing MOM (Manager of Managers) and Insight Manager by HP. Managed the performance and capacity of a VLAN/LAN/WAN environment with features such as switches, routers, and video teleconferencing. Communicated with end users, management, and other stakeholders by conducting and preparing feasibility studies, developing client proposals, and assessing internal and external emerging technologies. Spearheaded accurate network resource documentation, management, and operation including but not limited to active directory and policy implementation (Windows Server 2000, 2003, XP and Unix/Linux OS).

Led the migration of 4.5K users and 300 printers from NDS to the Windows Server 2003 AD then to the Windows Server 2008 Active Directory

Planned and tested Microsoft Virtual PC, VMware ESX Server, and Virtual Center to provide infrastructure for utility computing services and server consolidation

DST, Inc. (NOAA Contract), Lanham, MD

Sr. Network Engineer/Security Engineer 01/2006 – 12/2007

Spearheaded accurate network resource documentation, management, and operation including but not limited to active directory and policy implementation (Windows Server 2000, 2003, XP and Unix/Linux OS). Planned and tested Microsoft Virtual PC, VMware ESX Server, and Virtual Center to provide infrastructure for utility computing services and server consolidation. Participated in establishing and implementing backup/recovery policies and practices. Assisted with audit, compliance, testing, remediation, and assessment activities. Collaborated with information security engineers, management, support staff, and end users to ensure IT problem resolution and maintaining security systems maintenance. Managed operational and policy-oriented information security projects and tasks such as performing NIST-based Certification and Accreditation on enterprise systems. Integrated multiple IT security systems to provide comprehensive information safeguarding.

Led operational efficiency by maintaining detailed and updated documentation of infrastructure product standards including configuration templates, hardware lists, OS revisions, and design templates

Developed an operating system (in Windows XP/VISTA), hardening guides, and information security policies according to the Federal Desktop Core Configuration Standards

Facilitated company technology enhancement by migrating users from Windows 2000 Server to Server 2003 AD

ADDITIONAL EXPERIENCE

Nextec Corporation, Herndon, VA 08/2002 to 08/2011

Microsoft Certified Trainer Manager/Instructor

Led in sales teams and management in identifying and meeting client needs (through classes) by coordinating and conducting trainings at various centers and locations. Designed, implemented, and maintained cost-effective telecommunications, data communications, and client/server solutions to meet new requirements. Taught courses leading to certifications such as the A-Plus Certification, Network-Plus Certification, and the Certified Novell Engineer Certification.

Planned and executed the installation of new networking components at different Training Centers

EDUCATION

MS Information Systems (Information Assurance), University of Maryland University College, Adelphi, MD BS in Construction Engineering Technology, University of the District of Columbia, Washington, DC

AAS in Architectural Technology, Central Piedmont Community College, Charlotte, NC

CLEARANCE

Public Trust

Contact this candidate