DR. DIANE GROTH

443-***-****; adtvu6@r.postjobfree.com; linkedin/in/dianemariegroth, Catonsville, MD (US Citizen)

CYBERSECURITY: EXECUTIVE, ENGINEER, PROFESSOR, DOCTORAL ADVISOR, WRITER, RESEARCH

Clearance: PUBLIC TRUST (2018–Present); SECRET (1995-2016);

Intelligence Community Full Scope Poly: TS/SCI (2000- 2016); SCI (2022 to present)

• People Leadership; Advisor and Cybersecurity Coach for Junior Engineers, Analysts, Students, etc. strategist, high integrity, empower others; decisive in complex personnel matters; sought out for problem solving/advising

• Thought Leadership: GG15 Senior Cybersecurity Scientist/Engineer for national security missions/programs: C4ISR: Command, Control, Communications, Computer, Intelligence, Surveillance and Reconnaissance; US Naval Air Weapons, US Army Common Operating Environment and Joint Info Environment; National Archives and Records Admin: US Presidential Libraries; deliver best in class solutions for enterprise security matters

• Innovative Leadership/Cyber Expert: GG15 Government Executive, Senior Systems Security Engineer: Convert complex engineering terminology into business terminology; emerging technologies and threats;

• Speaking Engagements/Leadership: Cybersecurity, STEM, security in critical infrastructures; schools related to engineering and STEM; federal government cybersecurity/engineering panels; Adjunct Cybersecurity Professor for cybersecurity curriculum (Engineering, Business, Cyber); Scientific Researcher & Scientific Writer at Chemical-Biological Info Analysis Center and developed medical presentations as Occupational Health and Safety Technician for chemical agent healthcare; delivered health and safety information to physicians, nurses, CEO’s of chemical engineering firms; speaker at cybersecurity conference related to cybersecurity for farming, agriculture, and chemical companies;

•Communications Leadership: Content writer, cybersecurity business development proposal writing, networking white papers, technical research to deliver strategies, proposals to leadership. Adjunct Cybersecurity Professor: cybersecurity curriculum (Engineering, Business, Cyber); Business Development proposal writing

• Technology: Web Services: Simple Object Access Protocol (SOAP), XML, WSDL, SAML, HTML, Single Sign-On, Secure Socket Layer, Lightweight Data Access Protocol; Simple Object Access Protocol (SOAP), XML, HTML, Service Oriented Architecture (SOA); Web Security: XML, SAML, XACML, UDDI, SSL. SAML. Research and technical writer for IoT, Artificial Intel, cloud, application security, etc.

• Cybersecurity:/Cyber Leadership Security Awareness, Internet of Things and Data Privacy, Data Privacy and Access Control, Artificial Intelligence and data privacy, Privacy Regulations, security risks and threats; data breaches; cloud; application security, networking (TCP/IP, OSI Model), software engineering, hardware engineering. Adjunct Professor of Cybersecurity – critical infrastructures, cloud, emerging technologies, Internet

• Deliver excellence in Cybersecurity, Information Technology. Business visionary and strategist to public and private sectors, academia, and national security clients. 20 plus years of information security, cybersecurity consulting, systems security, network security, cybersecurity proposal writing, research. Subject Matter Expert in Cybersecurity, Systems Engineering, Security Solutions Architect, Privacy in Internet of Things, Business Strategy; Data analytics analysis

• GG15 Government Executive, Senior Systems Security Engineer: National business and security projects:

White House Comprehensive National Cybersecurity Initiative 7 (CNCI 7): secure America’s networks

Military Projects/Employment: US Army, US Air Force, US Navy, US Department of State; Blue Team

CERTIFICATIONS: FITSI-Security Designer/Developer, IAM, CISSP (expired), security certs (in process)

EDUCATION

D.Sc., Computer Science/Cybersecurity (Internet of Things and Data Privacy) (May 2021)

Capitol Technology University, Laurel, MD

M.Sc., Computer Security, The Johns Hopkins University, Baltimore, MD

B.Sc., Information Systems, University of Baltimore, MD

PROFESSIONAL EXPERIENCE

Laetare Cybersecurity, Catonsville, MD

Sr. Cyber Security Engineer/Scientist (TS/SCI until 29 Nov 2016) 2015 – 2022

• MITRE Corporation: Consultant threat hunting security strategies, Zero Trust, and Cloud Security for M365 and Google commercial products: Developed security solutions for cloud security; provided Zero Trust guidance and threat hunting recommendations for 120 federal agencies who are mandated with Zero Trust capabilities.

Knowledge of MITRE ATT&CK, DEF3ND, Engage; and MITRE Security Automation Framework, M365 DSC security baselines (cloud-based products for federal govt).

• Business Development; Experience with Security concepts and tools; leadership enterprise security; C4ISR;

• Data Scientist: analyzed Big data for cybersecurity threats, risks, data security; Data analytics

• Consultant: critical infrastructures data, Cybersecurity Workforce Framework, Presidential Policy Directives

• National Incentive Cybersecurity Education (NICE) educators: conducted cybersecurity training

• Cybersecurity Proposal Writing: organized, attention to detail: cybersecurity, bioterrorism, botnets, breaches, secure systems, cyber warfare, killchain, advanced persistent threats, industrial control systems, Secure Content Automation Protocol (SCAP), Cryptographic Module Validation Program (CMVP), emerging tech; privacy,

• Developed security training; NIST 800-171, 800-53, 800-37; FIPS 199, 200; FEDRAMP; FISMA; ISO 27001

• Agile development; small teams; sprints of work(product development and delivery to clients); software based

• United States National Archives: Wrote Business Continuity Plans for U.S. Presidential libraries at National Archives and Records; Researched and analyzed security tools to protect network systems and big data stored in U.S. Presidential Libraries (writings of U.S. Presidents)

• Cyber Program Management: developed customer relationships; strategized and organized programs

• Technical Writer for technical publications (topics: Internet of Things, Governance, Privacy in IoT, Data, Coding, Ethics, Cybersecurity Tools and Networking, Security Practices)

Alpha Omega Integration (Dept of Homeland Security, Federal Emergency Mgmt.) Jan 2021 – Sept 2021

Cybersecurity Engineer

• Evaluated risk assessments

• Developed and delivered presentations to government, stakeholders, customers, etc.

CASE Engineering Group, Upper Marlboro, MD (Internal Revenue Service) July 2019 – December 2020

Cybersecurity Subject Matter Expert (High Value Assets) and Cloud Security Engineer

• Develop cloud security documents and strategies for cloud path integration of tax documents to the cloud

• Develop security documents to safeguard federal High Value Assets (HVA) (1.2 million taxpayer records)

• Project management, agile management/scrum, risk management (data: privacy, security, HVA, cloud)

• Develop Relative Risk calculations in cloud threats income tax systems; agile project management

• Reviewed reference architectures and playbooks to secure IRS customer data (1.2 million taxpayers).

TEK Systems (International Monetary Fund [IMF])

Cybersecurity Subject Matter Expert (High Value Assets for 176 countries)

• Developed cyber awareness training for 5,000 employees, including leadership strategies and planning - NIST 800 standards, best practices, governance, to improve cybersecurity within 176 countries.

• Cybersecurity engineer to protect IMF High Value Assets / Crown Jewels for 176 countries with World Bank with zero trust principles for architectures focusing on the high value assets of the IMF – Identity and Access management, but specifically Privileged Access Management

• Evaluated identity management and access control relative to high value assets data for 176 countries

• Developed cybersecurity awareness training for 5,000 employees.

Telesis, Inc., McLean, VA (Department of Energy/US Energy Information Agency) January – June 2018

Cybersecurity Engineer, Security Solutions Architect (Cyber SME), Big Data Analyst

• Business Development; wrote cybersecurity government proposals and developed proposal solutions

• Provided cybersecurity solutions and innovative thinking for proposals valued $10 million to $500 million

Developed cybersecurity strategies and policies for multiple federal agencies.

• NIST 800-53; FISMA. FEDRAMP; Federal Cybersecurity Strategy and Implementation Plan;

• Cybersecurity for systems engineering; Cybersecurity Framework for Critical Infrastructures

• Agile development; small teams; sprints of work(product development and delivery to clients); software based

• Cybersecurity architect for AWS/Azure security design for government intranet, data, web applications.

• Provided technical advice and cybersecurity solutions for cloud environments.

• Data Analyst: volume, velocity, variety of data reviewed for cybersecurity projects

• Developed threat hunting methods for inclusion in federal government cybersecurity proposals

Capitol Technology University, Laurel, MD

Adjunct Cybersecurity Advisor, Doctoral Students January 2021 – Present

Senior Advisor to cybersecurity and computer science doctoral students

Research student dissertation topics (e.g., emerging technologies, Internet of Things, Insider Threat, Artificial Intelligence, Security, etc.) to advise students accordingly for national security interests

The Catholic University of America, School of Engineering, Washington, DC March 2012 – December 2019

Adjunct Professor and Lecturer; Master of Science and PhD Engineering (international) students.

Security and Privacy: critical infrastructures, data, wearable devices; internet of things, SCADA, HIPAA

Cybersecurity: Artificial intelligence, big data, web security, biometrics, forensics, cloud, mobile

Info Security: security, laws, networks, data security, access control, infrastructures, systems engineering

Modern Cryptography and Digital Steganography: Mathematical algorithms, theorems, proofs, SCAP

Critical topics in electrical engineering, computer engineering, computer science, information technology, analytics, artificial intelligence, critical infrastructures, emerging technologies.

Webster University, School of Business, Ft. Belvoir, VA; Fort Myer, VA; Bolling AFB, DC

Adjunct Cyber Security Professor

US Army, US Marine Corp, US Air Force graduate students March 2013 – June 2018

Cybersecurity National Security CyberPower: national security, cyber offense/defense, risk & threats

Critical Infrastructure Protection: SCADA; sensors, Industrial Control Systems, Internet of Things

Cybersecurity Strategic Operations: leadership, cyberspace, command and control, killchain, deterrence

Cybersecurity Threat Detection: threats, attacks, countermeasures

US Naval Academy, Annapolis, MD Spring 2016

Adjunct Cyber Security Professor; US Naval Academy students

Systems Administration, Networking, Cybersecurity, Security, Cryptography

AASKI Technology/Covenant: (US Army, Aberdeen Proving Ground, MD) Mar 2012 – Jul 2013

Sr. Cyber Security Scientist (technical) and Program Manager (business) (TS/SCI CLEARANCE)

• Developed security awareness and risk management training program; consultant for C4ISR program

• Development of US Army Common Operating Environment (COE) and Joint Information Environment (JIE)

National Security Agency (NSA), Fort Meade, MD (TS/SCI CLEARANCE) Mar 2008 – Feb 2012

GG15 Senior Information Systems Security Engineer / Cybersecurity; 2210; Senior Executive

• Senior Leadership in C-level meetings -- strategy development; decision-making, goal setting, decisive

• Engaged with Directors of Intelligence agencies for decision making, strategies to secure enterprise programs,

• Technical advisor for The White House staff : Comprehensive National Cybersecurity Initiative 7 (CNCI-7): secure all classified networks in America with focus on cyber incident response and cyber disaster preparedness

• Innovated cyber programs for CIO intelligence community (Maryland and Virginia)

• Identified, stopped, and secured massive classified data breach in network and cloud.

• Sought out by Defense Info Systems Agency (DISA) to secure global multi-layer, classified computer networks

• Team lead: security tools project, established tool box of enterprise security tools; frameworks (cybersecurity)

• Directed Agile project management for 40-50 distinct cybersecurity projects (e.g., engineering, business)

• Lead security engineer 40-50 distinct cybersecurity programs: radios, aeronautical (missiles, satellites, planes), cloud, web, vehicles, US embassies, mobile devices; managed project teams and developed/delivered solutions

• Secured EINSTEIN Artificial Intelligent (Robotic) Computer for national security and critical infrastructures.

• Security engineer for enterprises, networks (firewalls, IDS/IPS, traffic), OWASP for system development

• Business Development: client engagement; relationship building; requirements; research; marketing; writing

• Wrote network security engineering reports as cybersecurity engineering technical writer, security policy

• Directed legacy modernization for twenty (20) older networks; networking, firewalls, IDS; cross-domains

• Cloud storage and privacy; training in Splunk, Hadoop, C++, Application Programming Interface

• Implemented Service Oriented Architecture (SOA), web services data language (WSDL), security assertion markup language (SAML) for cloud computing mission systems and authentication and big data analytics.

• Application security for web applications; identified security threats

Agency Consulting Group, Columbia, MD /Vision Systems Technology, Inc., Ellicott City, MD

Senior Systems Engineer (TS/SCI CLEARANCE) (National Security Agency) Oct 2005 - Feb 2008

• Validated National Vulnerability Database (NVD) through Security Content Automation Protocol (SCAP); data mining; threat analysis using NIST Scan software, OVAL (Open Vulnerability Assessment Language), Common Vulnerabilities Exposures (CVE), and Common Vulnerability Scoring System (CVSS) for metrics.

• Evaluated NVD computer network defense (CND) and exploitation (CNE); risks, threats, vulnerabilities

• Partnered with NIST security scientists for data security breaches, data analytics, data mapping; Big Data

Lucent Technologies, Columbia, MD - Network Security Engineer March 2003 – Sept 2005

Raytheon Company, Linthicum, MD - Senior Systems Engineer (TS/SCI CLEARANCE) (NSA)

• Security engineer: network security operations (NOC / SOC) TCP/IP, firewalls, IDS/IPS, enterprise directed

• Wrote federal security standards for NIST 800 security series; Business Development: Proposal Lead and writer

• Web Services: Simple Object Access Protocol (SOAP), XML, WSDL, SAML, HTML, Single Sign-On, Secure Socket Layer, Lightweight Data Access Protocol; Simple Object Access Protocol (SOAP), XML, HTML, Service Oriented Architecture (SOA); Web Security: XML, SAML, XACML, UDDI, SSL.

• Requirements engineering defining security requirements to secure national security systems

Booz Allen Hamilton, Linthicum, MD August 2000 – March 2003

Information Assurance Consultant: Knowledge Mgmt / Big Data Analyst (TS/SCI CLEARANCE) (NSA)

• Reverse engineered data, data analytics, data mapping, statistics, requirements engineering, research, marketing

Battelle Memorial Institute (“think tank”)/ Science Appl Intl Corp, Bel Air, MD December 1993 – August 2000

Occupational Health and Safety Technician (TOP SECRET CLEARANCE)

Lead Scientific Researcher and Chemical Engineering Writer for Occupational Health Program, Chemical

Warfare Encyclopedia, and Biological Toxins Encyclopedia (TOP SECRET CLEARANCE)

• Developed Occupational Health Program for employees travelling to chemical radiation and weapons of mass destruction locations; worked closely with Occupational Health Medical Director Physician, Corporate Environmental Health Agencies, Centers for Disease Control, and local medical clinics relative to employee medical care related to diseases and exposure to chemical warfare agents and biological warfare agents.

Developed medical presentations; delivered health and safety information to physicians, nurses, government officials, police, fire/rescue, emergency medical technicians, and CEO’s of chemical engineering firms

Developed medical presentations; delivered health and safety information to physicians, nurses, government officials, police, fire/rescue, emergency medical technicians, and CEO’s of chemical engineering firms

• Developed medical presentations; delivered health and safety information to physicians, nurses, government officials, police, fire/rescue, emergency medical technicians, and CEO’s of chemical engineering firms

• Trained staff employees on the health and safety of chemical agent healthcare

• Developed database of employee information related to travels to chemical sites

• Lead scientific researcher and scientific writer for scientific chemical engineering encyclopedia; supervised staff of researchers, graphic artists, writers, and editors for chemical warfare and biological warfare encyclopedia.

Contact this candidate