John L. Wilson
**************@*****.***
System Security Engineer
TEKsystems., 2020 – 2022
System Security Engineer
Responsible for the management and implementation of all Information Assurance Programs to include SCAP, STIG, ACAS, and Continuous Monitoring activities.
Perform security hardening of the National Guard and reserve units
Troubleshoot and provide root cause analysis for issues that impact the availability of system and applications’.
Applying security control guidance as defined in DISA’s Security Technical implementation Guides (STIGs)
Validating compliance against technical security control baseline and defining a repeatable
Monitor, track and address information Assurance vulnerability Alerts (IAVVAs)
Monitor, and track all patches perform by the SA on a monthly base
Conduct ACAS Scans on multiple server stacks weekly and analyze ACAS reports and coordinate mitigation to stay in compliance with the Network Senior Commanders Information Assurance Command Inspection Program.
Ensures compliance with security principles and methods as defined by the RMF, NIST SP800-53, and other Army Regulations.
Responsible for the tracking and management of all Cyber-related training requirements via ATCTS for all personnel under my command.
Assist with mitigations, and implement Risk Management Framework (RMF) Continuous monitoring tools and processes.
Input and maintain artifacts for the program’s products and systems into the Enterprise Mission Assurance Support Service (eMASS);
Reviews and evaluates Cyber Security issuances and make recommendation to ensure no inconsistencies in requirements and guidance. Facilitates cyber-security management oversight and technical evaluation of infrastructure to provide effective analysis of cyber security policies and process and ensure timely solutions are provided in accordance with the Risk Management Framework Process lifecycle
Active participation in providing resolution to Authorization to Operate (ATO), Risk Management Framework Process
(RMF), Federal Information Security Management Act (FISMA), findings and reports in support of office activities.
Review, update, or the creation of documents needed to support the closure of findings, execution of associated actions and coordination for submission to the government for review and approval
Integrate COTS products to collect, display and remediate a variety of automated system security and system operations
Schedule regular cybersecurity reports (ie., event logs, firewall, cyber incident
Review all Vulnerability Scans and Audit log on a quarter base and log result.
Previous Employer, 2016-2019
Advance C4 Solutions, inc
Network Engineer III
Managed the Information Assurance Systems Officer (IASO) and Information Technology Specialist positions for the Mission Support Element (MSE).
Subject matter expert for all Information Assurance responsibilities for Fort Campbell FORSCOM units.
Provided all security-related documentation and artifacts for upload into eMASS for accreditation and continuous monitoring activities.
Develops the standard Tenant Security Plan (TSP) in accordance with the Department of Defense Information Assurance Certification and Accreditation Program (RMF) Risk Management Framework for the Division HQ. Requirements.
Conduct ACAS Scans on multiple server stacks daily within FORSCOM and analyze ACAS reports and coordinate mitigation to stay in compliance with the Network Senior Commanders Information Assurance Command Inspection Program.
Responsible for the tracking and management of all Cyber-related training requirements via ATCTS for all personnel under my commands
Documented network/service configuration through document management practices, policy creation and implementation
Ensures compliance with security principles and methods as defined by the RMF, NIST SP800-53, and other Army Regulations.
Responsible for the management and implementation of all Information Assurance Programs to include SCAP, STIG, ACAS, and Continuous Monitoring activities.
Perform security hardening of network service devices utilizing DISA SCAP and STIG security tools.
Documented network/service configuration through document management practices, policy creation and implementation.
Assisted in identifying network outages and issue resolution.
Responsible for the tracking and management of all Cyber-related training requirements via ATCTS.
Implements and maintains a secure network environment by ensuring all Information Assurance security patches are installed on the network in accordance with Information Assurance Vulnerabilities Alert Management (IAVAM).
Performs System Impact Analysis and recommendations for all hardware and software requirements.
Researches new technology and resources to stay abreast of ever-changing technologies and requirements to properly brief and recommend a secure security posture to Senior Management
Process SIPIR PKI token request on a daily basis for access to network.
Monitor wireless access attempts throughout the installation using Flying Squirrel.
Utilize Remedy ITSM Suite to streamline and automate the processes around IT service desk request, asset management, and change management operations.
Conducted various security vulnerability assessment (patch vulnerability Analysis,) and documented the results.
Conducted Risk Assessment Reports, User Security Policy Manuals, and Standing Operating Procedures
Provide Information System Security Engineering service to large-scale system to the Reserved and National Guards.
Previous Employer, September, 2005 – 2016
General Dynamic
System Analyst
Design, develop, implement, and manage systems and data to ensure confidentiality, integrity and availability in according to RMF requirements.
Insure that all systems are Scanned using ACAS before it goes on to the network to validate no CAT I findings.
Sponsored the acquisition of HBSS and was the project manager of its deployment on both Non-Classified and Classified networks.
Maintained System Software library, researched future OS and network changes that would impact system and software life cycles, and provided system impact analysis and recommendation.
Maintained vendor applications and software by proper configurations and maintain security posture through updates and patches.
Tested patches for functionality before deploying patches to production systems.
Analyze hardware and software projects in several different technical approaches and give projections on feasibility.
Ensure IT services (Email, Desktops, and Software) are available with minimum downtime to the customer.
Resolved user requests for assistance by phone, email, and Remedy ticket system.
Advise entities located at Fort Campbell of the proposed IT changes and the impact to major mission functions.
Implement operating system software requirements and upgrades for data processing systems
Configure, implement, optimize and maintained the Microsoft Exchange server.
Designed, integrated, maintained, and upgraded systems for national defense, intelligence, emergency response, infrastructure and other high-priority government mission systems.
Respond to Remedy trouble tickets; Analyzed and resolved systems failures caused by hardware deficiencies or operating system software in a timely manner.
Implemented, monitored, and sustained alternative classified and locally developed application systems, hardware and operating system software configurations in accordance with local SOPs.
Performed a wide range of technical analysis and evaluation of functions identified for application of information technology processing requirements.
Utilize utility software, programs, and/ or applications in order to troubleshoot and optimize computer systems.
Effectively communicated problems related to IT outages and coordinated solutions for timely resolution.
Maintained Windows Server, 2008R2, 2012R2, using VMware ESXi (vSphere).
Maintain a Microsoft SQL database for the purpose of providing technical support and resolving problems.
Implemented, configured, and optimize Microsoft SQL Server to ensure database integrity using MS SQL Server Enterprise Manager.
Created complete databases, tables, and stored procedures in Microsoft SQL Server.
Support and maintain PC hardware and software including new computer setup, Ghost images, software installation, upgrades, preventive maintenance, and troubleshooting.
Consults with supervisors, team members, and pertinent personnel when network, operating system, software, or hardware problems transpire at IPRs.
Establish and maintain effective relationships with managers, operating agencies and military personnel to maintain department cooperation and awareness.
Certifications:
CompTIA Security + Certified,
CompTIA Microsoft Windows 7 Certified
Computer Based Training Windows 10
Security Clearance: Secret
Education:
Bachelors in Computer Science
Ellis College Chicago,
Belthel University
54 Credit hours in Business management