Information Assurance Information Security Systems Analyst

Margaret M. Sanders

**** ********* **** ********, ** 78109 210-***-**** *******@*****.***

PROFESSIONAL SUMMARY

COMMITMENT LEADERSHIP INTEGRITY

An Information Technology and Physical Security Professional with proven success in Information Assurance, Network Operations, Access Control, Compliance, Configuration and Security Auditing. Adept team management of classified and unclassified physical facility and information security operations. Dedicated to maintaining a reputation built on quality, service, and uncompromising ethics. AREAS OF EXPERTISE

Risk Management Framewk

Security + CE

Physical Security

System Security

Plans/PoA&M

Special Access Programs

Operations Management

NIST 800-53/NIST 800-

171/NIST 800-173

DoDM 5205.07

DoDM 5105.21

DD 254 Expertise

Resource & Team

Management

IA SOP, SSP, RAR, SCTM, ect

Contract Analysis & Negotiation

DAAPM

Troubleshooting/Help Desk

Auditing/Admin

Self-Assessments

CIVILIAN PROFESSIONAL EXPERIENCE

DIVISION SECURITY REPRESENTATIVE December 2012 - Present

Supervised operations, maintaining applicable directives, regulations and guidelines and serving as subject matter expert on all matters related to multiple security disciplines within a collateral environment.

Led in the conduction of security surveys, inspections and compliance reviews resulting in three commendable Defense Security Service Vulnerability Assessment ratings.

Under my leadership, the Division was selected as the security model for the Institute.

Supported facility security operations including access control, visitor control information and material control in an SCI facility

Managed over 50 collateral classified holdings, eight Certification and & Accreditation (C&A) Information Systems profiles, and four Risk Management Information System Profiles.

Responsible for training of all Division Security Personnel in Collateral Operations

Developed, supported and administered user training processes and Information Awareness programs consisting of briefings, directives, computer based training and audio-visual personnel to reach DoD standards qualification for automated and stand alone information systems.

Developed Risk Management Framework transition process for the Division Security Office

Responsible for providing the Institute with the first DCSA accredited collateral proposal machine

Responsible for the establishment of the Institute’s first DCSA accredited laptop for collateral classified presentations.

INFORMATION SYSTEMS SECURITY OFFICER (ISSO)

Ensure confidentiality, integrity and availability of data residing on or transmitted to/from/through contracted workstations, servers and other systems, databases and networked repositories.

Establish and manage security operations and policies within a research and development contracting environment whose primary contractor is the Department of Defense.

Compose, review and refresh security plans and policies based on risk management frameworks M A R G A R E T M. S A N D E R S

CIVILIAN PROFESSIONAL EXPERIENCE – CONTINUED PAGE 2

Administer, record, and support the upkeep of all network resources and any implemented changes.

Ensure log files and audits are maintained and reviewed for all systems, and that authentication (for example, password) policies are audited for compliance

Updated network databases for compliance of requested policy or software changes

Created, maintained and monitored high-side systems for updates, security patches and newly introduced security policies

Researched/prepared necessary documents for new projects and Security System Plans

(SSPs)

HELP DESK/SECURITY TEAM LEAD

Principal advisor on all matters, technical and otherwise, involving the operation and security of 2 separate information networks involving 8 information systems.

Ensured all discovered discrepancies, operational and/or security vulnerabilities, such as missing patches or perceived gaps in network security, are immediately resolved.

Management and allocation of resources ranging from procurement, 100% inventory accountability, tracking and auditing to eventual disposal, degaussing and destruction.

Developed and supported user training processes and Information Awareness programs mentoring personnel to reach best practice standards qualification for automated and stand alone information systems.

Established, deployed, and integrated initial configurations as pertains to security solutions such as Disaster Recovery policies and operative procedures.

Developed Plans of Action and Milestones (POA&Ms) and ensured follow-through for issues requiring additional time for testing, solutions development, team collaboration, and deployment.

Troubleshooting and continuous monitoring of systems, printers, and secure computer equipment to ensure reliability and acceptable uptime.

POC for network security issues including network switches, crypto, and enterprise components

Lead for annual inventory of racks/servers/equipment/hard drives and removable media (over 300+ items)

Lead for all equipment commissioning/decommissioning of all incoming/outgoing facility equipment U.S. MILITARY PROFESSIONAL EXPERIENCE

INFORMATION ASSURANCE MANAGER May 2009 – May 2012

Prepared 6 maneuver battalions’ eligibility and approval for SIPR (Secret Internet Protocol Router) PDS (Protected Distribution Systems) installation and maintenance.

Coordinated and implemented automated tracking capabilities monitoring more than 3,500 users through the Army Training and Certification Tracking System, resulting in 80% greater efficiency in user IA.

Led training and certification efforts bringing IT (Information Technology) personnel to Army Automated Information System standards qualification.

Inspected, validated and prepared for validation classified and unclassified network operations.

Subject matter expert and organizational representative responsible for interfacing with Network Enterprise Center leadership for all IT projects, issues, and concerns.

Managed data system integration team responsible for integration of tactical data and voice systems. M A R G A R E T M. S A N D E R S

MILITARY PROFESSIONAL EXPERIENCE – CONTINUED PAGE 3 PROGRAM MANAGER /PROJECT OFFICER January2007 – May 2012

Leader of Commanders Emergency Response Team overseeing 40 projects totalling more than 39M dollars.

Solicited, evaluated, negotiated, and awarded contracts. Formulated and administered policies and procedures ensuring achievement of socioeconomic goals.

Provided relative information regarding the heart of the local community enabling commanders to make decisions which would allow a more positive impact on the war effort.

Built Information Operations from ground up at executive level, defining standards and procedures.

Provided direct, pertinent information regarding the local community to command groups, resulting in positive outcome decision-making..

Analyzed and evaluated cost and price proposals, leading to successfully negotiated contracts.

Communicated with foreign national leadership helping to bring about a favorable understanding of my organizations’ purpose, agenda and the ultimate benefit to their community.

Lead government representative responsible for extending strategic Information Assurance solutions to the tactical environment to specifically include Cross Domain Solutions, PKI, and Key Management.

Defended requirements within multi-billion dollar program resulting in 90% retention of those requirements.

EDUCATION & CERTIFICATIONS

Regis University, Denver, CO – M.S. Information Assurance (w/Honors) Major-- Policy Administration; CyberSecurity, Professional Certification-- 2020 Strayer University, Newington, VA – B.S., Information Systems, Minor--Computer Security

Rio Salado College, Tempe, AZ– A.A.S.., Computer Technology Contracting Special Security Officer Certification—2016 Defense Acquisition Certification – 2010 Security+ CE Certification – 2023 SOFTWARE EXPERIENCE

File Maker Pro--Linux Red Hat Enterprise–Linux CentOS–Microsoft Office Suite– Active Client – Active Directory for Users & Computers– Windows 10- Adobe – KIV’s-- Cisco Routers– TACLANE Certification --Encryption Public Key Infrastructure (PKI) –SCAP- Nessus -Xacta

Contact this candidate