Robert Neverdon
Woodstock, MD ***** - 410-***-**** - adpr44@r.postjobfree.com
Summary
Highly motivated Security Assessment and Authorization (SA&A) professional seeking to apply learned Cyber Security knowledge in a dynamic security environment. Strong team player possessing a keen interest in focusing on managing and protecting enterprise information systems, network systems, and operational processes through information assurance controls and compliance verifications. A proven project and team lead with aptitude for good customer service, and excellent communication skills.
Skills
Strong communication and presentation skills
Strong organizational and planning skills
Analytical and problem-solving skills
Understanding of the Privacy Act and Privacy Assessments
Understanding of Systems Development Life Cycle (SDLC)
Understand broad scope of CNA and taught MS Network server, and Network Administrator class for Brightwood College
Vulnerability and Systems Risk Assessment
Ability to read and interpret system security policies, rules, and regulations
Strong understanding of Risk Management Framework (RMF)
Familiarity with Nessus Vulnerability Scanner
Technical Skills
Software: Microsoft Office 365 Suite, Nessus, NMAP, OWASP, Kali Linux
Policies/Guidance: Privacy Act, Federal Information Security Management Act (FISMA) -RMF and NIST Special Publications.
Certifications: CompTIA A+, Network+, Security+, CySA+, Lieberman E.R.P.M. Certification, Cyber Security & Assurance Certification and Amazon Web Services AWS in progress.
Professional Training
Vulnerability Management, CAP Certified Authorization Professional, NMAP, OWASP, 3/2015
CCNA Class 5/2011 Covering LAN/WAN topologies and hardware resources such switches, and routers used to connect networks. Adding LANs to create WAN through subnet masking.
Intermediate Optical LAN Mediums, 1/2005
Microcomputer Fundamentals/Maintenance, 12/2004
Intro to Optical LAN Mediums, 12/2004
Network+ class incorporated the understanding training, building, and connecting of networks for LAN/WAN. A LAN (Local Area Network) covers a small area such as a University campus, a business premises, or even as small as a home network. A WAN (Wide Area Network) covers a much larger geographical
Professional Experience:
Jacobs Herndon, VA February 2021 to October 2021
Cyber Security Analyst
Process Improvement/engineering of FSA Enterprise Vulnerability Management Life Cycle (VMLC) Framework Documentation
Reviews protocols in accordance with NIST guidelines and documents vulnerabilities and any remediation efforts.
Secure Technology Configuration Baseline Exception Guide Development
FSA Security Configuration Baseline Exception Review Support
SSP Support
PIA/PTA/SORN Support
Allstate Career Baltimore, Maryland July 2019 to July 2020
Adjunct IT Instructor
Provide updated and fully prepared instructions to students to actively engage in retention activities, and managed classroom and lab activities
Instruct students to understand fundamentals of computer technology, and to also master the most used applications of the Microsoft Office Suite such as email, word processing, presentation and productivity
With hands on assignments and projects the student will gain skills and familiarity with Microsoft Office in the workplace
National Core Technologies Lorton, VA August 2016 to December 2017
Systems Engineer
Lieberman E.R.P.M. Enterprise Random Password Manager Software Certified Cyber Security Consultant
Built Windows Server 2012 R2 on AWS Cloud Configured Hardened with DISA-STIGS tested Created VM Image to create a more secure operating environment. Assessed IDS environment to make network security recommendations.
Performs vulnerability assessments infrastructure environment, to assist CWPS with the Deployment of Lieberman Cyber Security software for the Department of Justice identity and access management
VIVA USA, Inc. Omaha, NE March 2016 to July 2016
Lead IT Consultant on Offutt Air Force Base
Coordinated resolution of Non-Secure Protocol Router (NIPR) and Quality of Life Network (QOLNET) technical problem
Addressed day to day technical system issues for FSDE users for resolution
Submitted and tracked trouble calls via 55 Communication Squadron's (CS) Communications Focal Point's (CFP) Remedy Call Tracking system
Installed, configured, and operated standard desktop clients (SDC) and server devices such as Microsoft Word, Excel, Internet Explorer, PowerPoint, Outlook, Norton Antivirus, Adobe Acrobat Reader and others as required
Replaced or upgraded existing workstations with new/upgraded computers for users including installing and connecting peripheral hardware
Performed management, maintenance, optimization, backup, and ongoing reporting requirements of the SPS/Windows servers. This includes the hardware, operating systems, and software applications
Installed and configured wireless email devices, wireless air cards, tablets as needed and provide familiarization training on how to use various applications
Report client and server security breaches and distribute security information
Maintained systems configuration as well as resolved hardware/software interfaces and interoperability
Developed, coordinated, and implemented plans for the recovery of system data in the event of hardware, or software failure
Atius Technology Beltsville, Maryland September 2014 to January 2016
Information Security Analyst
Performed risk assessments, developed/updated and review System Security Plans (SSP), Plans of Action and Milestones (POA&M), Security Control Assessments, Contingency Plans (CP), and other tasks and specific security documentation
Applied appropriate information security control for Federal Information System based on NIST 800-37 rev1, SP 800-18, SP 800-30, SP 800-60, SP 800-53 rev4, SP 800-53A, Federal Information Processing Standards (FIPS) FIPS 199, FIPS 200 and OMB A-130 Appendix III
Coordinated and managed team activities during assessment engagements
Acquired knowledge of duties required to implement information security controls and lead information security initiatives. Ability to translate business requirements into control objectives
Analyzed and report on client's use of various security controls
Established schedules and deadlines for assessment activities
Monitored controls post authorization to ensure continuous compliance with the security requirements
Reviewed existing configurations to ensure compliance
Performed periodic and on-demand system audits and vulnerability assessments
Met with stakeholders to discuss status of their info system
Work with executives to ensure requests of stakeholders are being met
Communicated the on-going security and privacy posture with executives and stakeholders
Verizon Baltimore, MD September 1999 to January 2016
Network Technician
Installed and configured network and security equipment, using security controls to test and examine networks
Assess vulnerabilities in LAN security and make recommendations to remediate issues and escalate accordingly
Interview customers to validate findings found in network and report on results
Develop meaningful relationships with customers resulting in promoting of Company product and services
Perform diagnostic tests on integrated circuit equipment to determine trouble; identify, correct, and escalate service issues
Maintain network by troubleshooting and repairing outages, tests network back-up procedures and updates documentation
Education and Training
University of Maryland Global Campus Expected in September 2022
Bachelor of Science: Cybersecurity
Baltimore, MD
Baltimore City Community College June 2019
Associate of Science: Applied Science Cyber Security & Assurance
Baltimore, MD