(C)540-***-**** (E-Mail) adwr3o@r.postjobfree.com / adwr3o@r.postjobfree.com

BACKGROUND:

Over 35 years’ experience in information technology, IT management, training, and systems engineering. Specialization in Security, concentrations in Architecture, Perimeter Defense and Response, and Security Engineering. Background includes tenure as a commissioned military officer along with systems and network engineering, evaluation and acquisition experience with the both US Government and the private sector.

EDUCATION:

• B.A.: Geology and Geophysics - Lehigh University, Bethlehem, PA, 1983 (GPA 3.17/4.0)

• M.S.: Management and Information Science (Conc. in Information Security) - Bellevue University, Bellevue, NE, 2008 (GPA 4.0/4.0)

MILITARY EXPERIENCE AND TRAINING:

• Captain, United States Air Force, Honorably Discharged, 1995: AF Commendation Medal for Meritorious Service

• Graduate, USAF Navigator and Electronic Warfare Schools: Strategic Air Command Combat Crew, Central

Flight Instructor, and Simulator Supervisor /Programmer schools

• Extensive background in Operational Security

LANGUAGES:

• German: Spoken and Written, moderate fluency

• Russian: Spoken and Written, moderate fluency

• French: Spoken and Written, basic fluency

CERTIFICATIONS:

• (ISC)2 Certified Information Systems Security Professional (CISSP): Oct 2009 valid through Oct 2024

• CompTIA Cyber Security Analyst (CySA+), Oct 2020, valid through Oct 2026, A+ Certified Technician (no expiration)

• Amazon: AWS Business and Technical Professional Certs, Aug 2015: AWS Associate Solutions Architect in progress

EXPERTISE SUMMARY:

• Security Operations Center setup and Ops, Incident Handling, Log Analysis, Incident Remediation.

• Software Assurance, including Whitelisting processed and Static Code Evaluation.

• Network Management, Network Engineering, Systems Administration, E-mail, Databases, and Network Security.

• IT Systems and Team Management, Resource Management

• Systems Engineering, Network Systems Architecture, Documentation, and Development

• Systems Testing, including generation of frameworks and test cases, implementation and reporting for System, Acceptance, and Compliance/Accreditation Testing

• Requirements analysis, site surveys, implementation planning, and system implementation.

• Virtualization and Cloud Security

• Researching, reporting, briefing preparation and delivery on a wide range of technical topics.

• Experience with Federal/ Department of Defense acquisition, procurement, proposal development,

specification development and New Business Development.

• Engineering Project Management, Acquisition and Non-Acquisition Program and Engineering Support.

• Preparation, revision, and management of a broad range of acquisition documents, including Statements of

Work Specifications, CDRL's, Procurement Requests, ECP's, and others.

• Experience in marketing and sales, including proposal development, costing, and decision matrices.

Computer Experience

• Certified Information Systems Security Professional (CISSP); Certified Ethical Hacker (CEH), Amazon Web Services Business Professional and Technical Professional: AWS Associate Architect in progress;

• Microsoft Certified Professional: Windows NT Server 4.0: CompTIA A+ Certified Technician

• Operating Systems: Windows (3.1-10, NT 3.51-2003 Server as Sysadmin, later versions as user), Linux

• Windows Active Directory in Windows 20xx Servers

• Email Administration, including design, setup and maintenance in Windows and UNIX

environments (MS Exchange Standard and Enterprise Editions, Sendmail, CCMail)

• Installation, customization, and maintenance of Firewall and VPN Systems (Cisco ASA/PIX, Cyberguard, Checkpoint, Gauntlet, SonicWall, NetScreen, Nortel)

• Applications: MS Office (Word, Excel, PowerPoint), WordPerfect, numerous other applications.

• TCP/IP Networking: DNS configuration, WINS, various encryption / security protocols (SSL, PKI, 3DES, SHA)

APPLICABLE PROFESSIONAL EXPERIENCE IN INFORMATION TECHNOLOGY:

SAP NS2 Mission May 2022 – Present

Information Systems Security Manager

ISSM and Cyber Engineering Generalist on multiple classified projects. Managing Risk Management Framework (RMF), COMSEC manager, and policy/procedure development, as well as multiple engineering assignments.

Mantis Security Corporation Oct 2021 – May 2022

Information Systems Security Officer / Security Engineer

ISSO and Cyber Engineering Generalist on a DevSecOps project prototyping a Data Lake using AWS technologies. Currently working an Indicator Management application within the Data Lake.

ManTech International Mar 2020 – July 2021

Cyber Threat Cell Lead

Led a 5-person Cyber threat warning team at two sites. Ingest Cyber intelligence and warnings into actionable items for defense of the networks of a Federal Client. Developed new ingest process and designed new threat database application. Ingesting, categorizing, and processing tens of thousands of indicators for use by Cyber Defenders. Developed and published several compilations of Indicators of Compromise (IOCs) for major hacking campaigns. Developed, wrote, and maintained step-by-step procedures for all team processes.

AT &T Feb 2019- Mar 2020

Security Engineering Lead

Lead Security Engineer, with a team of 4 Security Engineers, 4 Information System Security Officers, 3 Security Technicians, and 4 Independent Assessors transitioning all the network assets of a large Federal Organization from individual programs, contracts, and contractors, to a single Network Management-as-a-Service organization by June 2021. Consolidating and managing Risk Management from 20+ programs to several large meta-containers, and creating, updating, and managing IATO and ATO packages. ATO management and maintenance on 14 specific systems, covering a wide array of network services, including Routing, Switching, Firewalls, VPN, Network Time, and DNS, at multiple levels of sensitivity over a world-wide footprint. Architected, engineered, and managed an enterprise-wide replacement of Management Laptops, including the creation of a new sub-distribution of Linux. Wrote and maintained full set of A&A documentation (CONOPS document, Control Matrix, System Security Plan, and Security Test Plan) in tandem with the Engineering effort.

CACI Enterprise Solutions Dec 2015 - Feb 2019

Principal Information Security Specialist / Cyber Manager M2

Assignment 2: Manager and Splunk Tech Lead, Continuous Diagnostics and Monitoring (CDM) Program, Department of Homeland Security (DHS). Lead a team of 6 engineers integrating Splunk with RSA Archer, McAfee EPO, ForeScout, Retina, and Nessus currently, preparing to add CyberArk, SailPoint, and CA-PAM to the system. Built Development and Test environments on AWS infrastructure. Additional duties troubleshooting and mitigating general systems issues on the CDM system and subsystems, at the component agency level, at the DHS level, and managing the data feed to the overall Federal Civilian Dashboard.

Assignment 1: Security Lead in the NGA Test Organization for the National Geospatial-Intelligence Agency (NGA). Conducts Software and Vulnerability Assessments for the applications and systems of the NGA, including scans with the ACAS system (DISA-variant of NESSUS) and static code evaluations using the FORTIFY Tool and Software Security Center. Develop formal procedures and managed data intake. Managed the Software Whitelisting Process (SWAP) and team. Advised on overall policy formulation and development of comparative software quality metrics. Day-to-day security test management. Manage a team of 3 SWAP analysts, and an additional team of 6 Secure Code Analysts at two sites. Seconded to the NGA Designated Authorizing Official (DAO)organization as a DAO Rep, processing and managing IATO and ATO packages with 17 individual Project Engineering teams, centered on Cloud System Deployments using AWS Technologies. Additionally, tasked with advisory duties on enterprise migration to a private cloud based on Amazon Web Services technology. Graduate of "Lead People" Management Development Program.

InfoReliance

Lead Information Assurance Consultant /Security Engineer April 2014 – Nov. 2015

Information Assurance Manager, Information Systems Security Officer and Security Engineer supporting the National Nuclear Security Agency (NNSA), in two projects a hybrid cloud deployment leveraging VMware and SUSE Enterprise Linux to provide virtualized and scalable IT infrastructure on demand, and a cloud-based Enterprise Resource Planning (ERP) application for NNSA major construction projects. Program Manager for Authorization and Accreditation of program, and general IA issues. Security management and consulting as part of a multi-vendor team, including subcontractor management and coordination. Projects include development of a System Definition Document, Risk Assessment, System CONOPS, Systems Security Plan, and rollout and test of a prototype system. Specific security and engineering deployment experience in virtualized environments. Vulnerability and Audit Compliance testing and validation, including extensive use of the NESSUS tool and interpreting the results in formal Risk Assessments. Leonardo Award for Outstanding Performance.

SERCO North America

Senior Design Engineer (Security) April 2013 – Feb 2014

Information Systems Security Engineer /Architect supporting the Federal Retirement Trust Investment Board (FRTIB), as well as several corporate initiatives. Tasked with developing, managing, and implementing several security initiatives using existing resources and minimal funding: Succeeded in design and deployment meeting requirements for under $10,000.00 capital expense. One of two lead engineers rolling out Pretty Good Privacy/ Symantec Desktop Encryption to both the North American arm of the international SERCO Group (UK) and specifically managing rollout to the initial test site for the FRTIB contract. Subject Matter Expert and Lead on developing a Security Operations Center and training the analysts assigned to it. Lead Security Engineer on both Corporate and FRTIB contracts for designing, documenting, and implementing FISMA requirements to achieve ATO of all new systems. Design and implementation of an Enterprise Log Management / Audit System.

Sphinx Solutions, Inc

Principal Consultant Jan 2013 – March 2013

Information Systems Security Officer and Information Systems Security Engineer at the Office of the Director of National Intelligence, Installation Support Group. Security Engineering and Certification/Accreditation work under ICD 503 and NIST. Specifically worked the IATO package of a prototype online education system. Use of the XACTA tool for A&A work

Kforce Jan 2012 – Dec 2012

Senior Computer Systems Security Analyst

Night/ Weekend Shift Lead and Night Manager on Computer Network Defense Team for the worldwide networks of the Defense Threat Reduction Agency (Swing Watch) . Managing Intrusion Detection, Incident Handling and Analysis, and Front-line Remediation, using ArcSight ESM and Logger, SourceFire, Solera, and other tools. Developed SOP for Insider Threats. 1 year contract

CWPS, Inc Aug 2011 – Dec 2011

Senior Network Security Engineer

Security Management, Analysis, Architecture, and Firewall Design/Planning/Implementation for a Federal Customer. Included requirements and acquisition documentation, as well as implementation details. Primary work was on Cisco ASA and Juniper NetScreen firewalls.

Booz Allen Hamilton May 2010 – Aug 2011

Associate

Cyber Defense Team and Tech Lead on a classified program. Developed requirements and procedures for Analysts, hired team of 8 analysts, trained and brought team to Initial Operational Capability in 90 days. Managed SOC team for 24/7 Intrusion Detection and other network monitoring systems (ArcSight ESM and Logger: TippingPoint, Cisco ASA and Juniper NetScreen) to defend a number of diverse enterprise networks. Tool development in ArcSight ESM: translation of data into graphs for management. Front-line incident handling and analysis. Coordinated with tier 2 analysts on forensics and Government on all incidents and status. Managed and remediated incidents. Developed and constantly revising procedures, responses, and Standard Operating Procedures for Cyber Defense and Cyber Engineering Teams.

G.H. Engineering Feb 2010 – May 2010

Senior Security Engineer (Contract)

Security Engineer on a infrastructure development and management program. Managing and writing System Security Plans, Security Test Plans, and associated documents the Common Linux Server Environment, the prototype of a cloud-based scalable system for a Federal Customer.

Trusant Technologies, LLC Dec 2009 – Feb 2010

Senior Security Engineer/ Test Engineer (Contract)

Security and Test Engineer on a PKI development program. Managing security requirements and generating test cases for a PKI system.

The Boeing Company May 2007 – Dec 2009

Senior Security Engineer/ Security Lead

Systems Security Manager on a classified program. Managed network security, software and hardware maintenance, and support contracts for security and information assurance areas, for 3 sites, with advisory input on a fourth, customer site, delivering effective network security to a major program. Managed, maintained, and upgraded all firewalls, program wide (Cyberguard and CISCO ASA/ PIX), while developing documentation and streamlining rulesets. Repaired, maintained, and upgraded IDS (ISS Site Protector / Proventia) systems. Conducted vulnerability scanning and assessment using a number of commercial and proprietary tools, followed by formal analysis and documentation and implementation plan for remediation required. Wrote C&A Test plans to accommodate updated hardware and software for ATO under DCID 6/3. One of two engineers tasked with review and revision of System Security Plan as well as proposing updates to Interface Control Documents. Prepared security systems and wrote documentation (System Security Plan, Contril Set, Security Test Plan) for formal initial Certification and Accreditation (Result: Systems were fully accredited under DCID 6/3). Use of the XACTA tool to manage Certification and Accreditation process and artifacts. Developed and managed comprehensive configuration and operations documentation for security systems and procedures within program.

Additional Employment Narrative on Request 1984 – May 2007

Contact this candidate