Michael Anthony Arzola

**** ********* **. *** ****

San Antonio, TX. 78229

ado3i9@r.postjobfree.com

210-***-****

SPECIALIZED EXPERTISE:

IT Security Architect, Analysis

Network Infrastructure Architect

Cyber Security, IAM, IASO, ISSM

Sr. Analyst Information Security

Enterprise Risk Management Framework

Systems Engineer

Network Security

Network Management

Network Engineer

Network Applications

Network Administration

System Administration

Team Lead

Acting Site Lead

Lead Network Administrator

Encryption and Algorithms

Security Scanning and Analysis

Vulnerability and Remediation

EDUCATION:

A.A.S. San Antonio College (Computer Application Design), 1994

CERTIFICATIONS:

CompTIA Certifications: Security + CE \ Certified Advance Security Practitioner CE

Firewalls and Certifications: Sidewinder Firewall Basic, Advance

DOD Security Certifications: IASO Security Officer, IAM Manager, Cyber Security Awareness,

Cyber Dark Arts

U.S Army scanning Tools and certifications: Harris STAT, Retina, Internet Security Suite, Network Architecture ACAS, STIG Viewer, Checkmarx, Fortify, AppDetective Pro, BurpSuite and SonarQube.

IT Management Tools and Certifications: Remedy AR server 5.1, HP OpenView, BMC Patrol, SolarWinds, IDS, IPS.

Management Certifications: PRINCE2 Foundation \ Practitioner, Six-Sigma White \ Yellow \ Green Belts

RMF Certifications: eMASS, ACAS 5.3, SRG STIGs, Cyber Risk Management for Managers

SECURITY CLEARANCE DOD SECRET (Active) April 2030

US PASSPORT (Active) SEPT 2021

IINTERNATIONAL DRIVER LICENCE

(Active) SEPT 2021

EXPERIENCE:

Yakshna Solutions INC: 950 Herndon Parkway Ste 280, Herndon VA 20170 703-***-****

Cybersecurity Specialist ISSM. MAY31 2021 –18AUG 2021

Cyber security specialist and ISSM for US Air Force application IDECS Cloud One. RMF control plans, review for comments, validations, and artifacts into eMASS. Cyber Process, Analyzing the functional requirements against the system capabilities. Scanning the IDECS using scanning tools ACAS, STIG Viewer/ ckls files, Fortify, AppDetective Pro, BurpSuite and SonarQube. Application migrations form the .mil cloud to Microsoft Azure cloud. DOD systems engineering and Evaluation and Accreditation process through eMass. ATO authority to Connect packaging. Identify and correct flaws in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. Assessing a company or organization’s current security capabilities through security testing and analysis.

ECS Technologies INC: 2750 Prosperity Ave Fairfax VA 22031 703-***-**** IT Generalist Greg Weston 813-***-****. 15 NOV 2019 to 18 DEC 2020.

(AD/GPO) Policy changes at the site level to MAJCOM DHA requirements to enforce DOD DHA standards to include all Cyber standards enforcement and Cyber Architecture infrastructure requirements and needed changes. Analyze Group Policies from legacy environments to new migration enterprise standard environments to determine where deltas exist and put forward new policies to keeps systems and users functional in day-to-day operations. Troubleshoot and work with other teams to resolve differences in sites and services boundaries within a complex enterprise domain. Develop, define, and create best practices processes for directory infrastructure. Analyze current Active Directory environment to identify both technical and operational challenges and develop continuous improvement action plans. Will be responsible for troubleshooting, diagnosing, and fixing problems throughout Active Directory. Additional responsibilities would including troubleshoot network printers, network firewalls, network servers, and other networked systems. Troubleshoot and resolve computer and other IT equipment problems and malfunctions. Assist in setting, up and upgrading computer systems for end users. Assist in troubleshooting LAN/WAN connectivity issues. Provide end user application training as needed. Provided IT support, Cyber Solutions support and service to end users. Ensure all IT systems are working efficiently and optimally on CONUS sites. Finalize all Cyber solutions Architecture have been implemented and validated.

MSI Mission Services LLC. 7926 Jones Branch, McLean VA.22102 703-***-**** Network Security Specialist. Randolph AFB BLDG1550 Hangar 13 22 APR 19 – 15 NOV 19. Contact Gary McCray 210-***-****.

Manage, track, and administer Information Assurance programs. Compile system accreditation and authorization documentation Review, prepare, and update the Information System (IS) authorization package within the Enterprise Mission Assurance Support Service (eMASS), or equivalent system. Notify customer when proposed changes might affect the IS authorization Perform IS self-inspections, provide security coordination and review of all system test plans Represent the customer during various technical reviews and inspection/audits Oversee and track compliance with network security orders Oversee and follow up on regularly scheduled vulnerability scans. Identify IS vulnerabilities and recommend/perform countermeasures. Track and resolve malicious logic incidents. Upgrading and patching OA and PTS Windows servers. To include NIST / RMF standardization of old base legacy Windows, Linux and Solaris Database production systems, applications, and network devices to meet current NIST / RMF compliance. Performed Security reviewing of all legacy applications, systems, and network devices. Provided modification, upgrading and STIGing of all Hardware and software elements. Using both ACAS / Nexus Security Center, SCAP and eMASS tools as validation of compliance. Also provided documentation for various (SOP) standard operational procedures, Security reviews, deep dives, trouble-shooting various Solaris Database, Linux, Windows server issues. IDS, IPS,

Cisco Firewall, Network Architecture. Identify and correct flaws in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. Assessing a company or organization’s current security capabilities through security testing and analysis.

BOB ROSS Senior Center 2219 Babcock Rd. San Antonio, TX 78229 210-***-**** Volunteer Work 15AUG 18 – 22 APR19

Volunteer work Supporting various activities SNAP program and other activities.

PRISM 1801 Old Reston Ave St Ste. 202 Reston, VA 20190 703-***-**** Wireless Site Lead 1 JAN 19 -22 FEB 19

CONUS Configure Wireless solution for Montgomery AL ANG. Completed Wireless replacement and server re-configuration of the Wireless servers for the unclassified wireless network. This contract had been completed.

APEX Systems \ GDIT, 4630 N. Loop 1604 W. Ste. 217, San Antonio 78249 210-***-**** Sr. Security Analyst at FT. Sam Houston, 30 APR 18 to 30 AUG 18. Contact Jaxon Lemmler 210-***-****

CONUS sites, risk management and Architectural framework review of all DOD applications, operations and processes used by DOD reviewed base for DOD RMF compliance. This includes business models, views from a technological. Proper execution of the appropriate verification methods for requirements/controls. Proper execution of security tools and test methods identified (DISA SCAP, SRR, and eMASS). Staff and management interviews during assessments RMF SOP documentation Review and prepared analysis documentation of base testing results RMF. Completed ACAS training. Identify and correct flaws in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. Assessing a company or organization’s current security capabilities through security testing and analysis.

Intercom Federal Systems Corp. \ Belcan \T symmetry (contractor) 44084 Riverside Pkwy Ste. 150, Leesburg VA 20176 703-***-**** Tactical Network Security, IAM OCONUS site Camp Alvarado Kabul Afghanistan US Department of State (DOS), GINL (Global International Narcotic Law Enforcement) network 13 AUG 2017 to 31 JAN18. Contact Eric Emilio 703-***-****

Hardware, Software, Network, Systems, Applications installation, and troubleshooting. Server services and support for the US DOS IT Air Wing. Network cable, Cisco 3560, 3750, 3850 switch, Cisco 2800, 4100 routers Cisco wireless 880 router and Aironet AP. phone and communication troubleshooting, System Administration user accounts, Distribution group’s user and home drives management. Satellite configuration, management, FOKIT, pick and poll using iSight software. IDS, IPS, Cisco Firewalls and Network Architecture. Identify and correct flaws in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. Assessing a company or organization’s current security capabilities through security testing and analysis.

WEBRUNNER-W3R Consulting / TOYOTA Manufacturing San Antonio (contractor) One Star Pass Drive San Antonio, TX 78264 13 Jun 17 to 10 AUG 17 Contact Roberto Carrasco 210-***-****.

Application, Hardware and Software level 3 Support. Networking, Systems, Applications, Database, Backup and end user support on multiple vendor applications installation and troubleshooting. Advance level support to corporate high-level support on critical operations, maintain and trouble-shooting systems at the Site and end user level. Supporting corporate level support between the Toyota SA sites to other Toyota sites across the US. Worked on remediation on “Want to cry” Cyberattacks. Enterprise Risk Management Assessment for ongoing Cyberattacks and major maintenance operations. Cisco 3560, 3750, 3850 switch, Cisco 2800, 4100 routers Cisco wireless 880 router and Aironet AP.

ITT International \ Exelis \ VECTRUS: 655 Space Center Dr. Colorado Springs, CO 80915 719-***-****, Apr 2010 –APR 2017. IASO, IAM, Network Administrator, Network Architect BDSC (Baghdad Diplomatic Support Center) Iraq. Contact Felix E. Coleman

Network Administrator at OCONUS sites Camp Phoenix, North KAIA Afghanistan and BDSC Iraq.

Performed ASI (Authorized Schedule Interruption of Service) Risk Management Assessments with MAJCOM on site level request for outages and Cyberattacks. Performed enterprise risk management, IA functions, Accreditation and remediation at site level bases to meet DOD US Army network accreditation for site right to connect to a US Army network. Implemented changes and maintenance for SIPR, NIPR and Centrix networks including firewall mod changes, IP migrations, nomenclatures, policy changes and daily operations of all IP Phone, Call Manager, routers, switches, TACLANE configurations, changes, installation management. Cisco ASR 1000, 4100, 2800, 5600 routers, Cisco 3550, 3650, 3750 and 3850 switches Cisco wireless AP and fiber switches. Firewalls PIX 525, ASA 5505 -06. Network Architecture extended and redesigned various networks for the bases and extensions to outside bases. Configurations of switches and routers. Creating and maintaining network devices, networks, Vlan,

EIGRP, port channeling, point to point networks. Documentation of network changes, IP management and Visio drawings. As well as training of new NAs on all operations, SOP, skill set evaluation and troubleshooting skill training. Completed infrastructure changes as directed or needed per security needed changes. Rebuild BDSC Tactical networks to US Army SWACC enterprise networks. Completed Network accreditation for all networks, Visio maps and associated documentation for BDSC. Built from scratch 802.1x, TACACS, NPS and NTP services for NIPR and SIPR networks. Extended networks SIPR and NIPR networks via TACLANES to remote sites. Completed network Tier network infrastructure services, emergency upgrades and network outages as needed. Completed 3 networks new IP schemes for BDSC

network refresh re-creating all new subnets and Vlans. Both SIPR and NIPR networks and infrastructure were migrated to new IP networks space for services. Engineered BICIES network to ride SIPR network via TACLANES to the Black Core network. IDS, IPS, Cisco Firewall. Identify and correct flaws in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. Assessing a company or organization’s current security capabilities through security testing and analysis.

Network Architecture AT&T, (contractor) GNO 6000 Las Colinas Blvd Irving, TX 75039 214-***-**** Oct 2008- Apr 2010. SR Tech. Support Network Analyst Senior Technology Support Network Analyst for Emerging U-verse Applications TAC group.

Supporting network devices for U-verse projects and services at the national level. Providing configuration standardization, trouble shooting, maintenance, upgrades, third party support and documentation. Implemented nationwide projects like the Masters, Weather on Demand, MUNI channels and Santa’s workshop. Risk Assessment Analysis for various upcoming projects before deployments.

AT&T (contractor) Chief Security Office, 530 McCullough Ave San Antonio TX 78215 Sept 2006 -2008 Security Architect, Network Architect, IAM

Security and Network Architect for ATT Light speed project Home Network Team, PEG, VHO scanning and remediation. I have worked with EMS and documents review for the CSO team. Performed Enterprise Risk Assessment on the entire AT&T networks, services, and resources to the end user at the national level. Penetration testing Cyberattack simulations and remediation of various applications, resources, and solutions at the national level. Research, Development Request for purchase, network security architecture design for AT &T network Internet, VOIP, Cable TV services and Internet infrastructure from residential network to AT&T nationwide WAN ATT infrastructure. Providing all security related analysis, risk assessment, network designs and mediation resolution thought out the entire US national data stream for Multi-Billion Dollar projects. IDS, IPS Cisco Firewalls, Network Architecture and Algorithms and encryptions designs. Identify and correct flaws in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. Assessing a company or organization’s current security capabilities through security testing and analysis.

ITT International (contractor) 655 Space Center Dr. Colorado Springs, CO 80915 719-***-****, 2004 to Aug 2006. Network Administrator \ Systems Administrator \ IAM \IASO \Remedy Administrator \ Acting Site Lead \ Network Architect. Network Administrator \ Systems Administrator and Acting Site lead for OCONUS site Camp Scania Iraq.

Implemented changes and maintenance for SIPR and NIPR networks. Cisco ASR 1000, 4100, 2800, 5600 routers, Cisco 3550, 3650, 3750 switches and fiber switches. Proxy, Firewall PIX 505, 515 changes, IP migrations, nomenclatures, policy changes, IA issues and daily operations of all servers, switches, PCs and routers. Acting Site lead on 3 different occasions to include all business operations for my site including but limited to reports, personnel issues, leave, liaisons with the army LNO and corporate requirements. Performed Information Assurance, ASI (Authorized Schedule Interruption of Service) enterprise risk assessments and analysis for the site to meet DOD IA standards. In this capacity I received many awards of excellence from the army for my site and an award of excellence as a site lead from my company. IDS, IPS, Cisco Firewall Network Architecture, Algorithms, and encryption configuration deployments. Identify and correct flaws in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. Assessing a company or organization’s current security capabilities through security testing and analysis.

Northup Grumman Mission Systems Trainer / Sr. Network Engineer 3/ Network Architect Aug 1996 March 2004 San Antonio, TX

CONUS and OCONUS US AF and Air National Guard sites. Lead engineer for ETM / VPS Telephone Firewall deployments for US Air Force and Air National guard. Providing networking Security Solutions for the ULANA 2 project. Including Tiger Team Engineer, Trainer, and sustainment Engineer in a 4 to 5 man install and sustainment team. Installing, configuration, maintaining and training the following hardware and software: Sidewinder firewalls, Remedy Distribution, Proxy, HP Open view, Ciscoworks 2000, NETIQ, IDS, ESM, End2End and Appmanager. Windows Server DNS, DHCP, PDC and BDC Networking Architect various US Air Force projects. Designing test networks, validation installing, deploying networking solutions, sustainment, and training Air Force comm. squads. IDS, IPS, Cisco / Sidewinder Firewalls, Network Architecture Design, Algorithms, and encryptions deployments. Identify and correct flaws in the company’s security systems, solutions, and programs while recommending specific measures that can improve the company’s overall security posture. Assessing a company or organization’s current security capabilities through security testing and analysis.

ADDITIONAL CERTIFICATES:

(ISC)2 Certified Information Systems Security Professional

EC –Council Certified Ethical Hacker v8

EC –Council Certified Network Defense Architect v8

CISCO CCNA Security

Offense and Defense Network Operations

Critical Infrastructure Protection

Cyber Risk Management for Mangers

Cyber Security Investigations

Cloud Computing Security

Reverse Engineering

CompTIA Security + CE

CompTIA CASP + CE

DOD Cyber Awareness Training

DOD ACAS

DOD eMASS

Windows 10 Configuration

Contact this candidate