Information Technology Senior Executive
Resume:
George F. Arechiga
Email: ******.********@*****.*** Location: San Antonio, Texas
SUMMARY OF QUALIFICATIONS
* ***** ************* **********, ** years information technology experience
Active TS/SCI with CI Poly
Robust abilities in planning, organizing workloads, managing time, initiating change, implementing improvements, conflict resolution, and overcoming obstacles, leading to higher levels of productivity
Seasoned leader with a successful track record of working both independently as well as on teams comprised of professionals with diverse skill sets and backgrounds
Solutions-oriented information technology professional with demonstrated expertise in cyber defense/ cybersecurity methodologies
Extensive experience briefing General Officers and senior executive leaders
Strong technical skills performing on a broad range of assignments entailing unique problems, creativity, advanced approaches, new technologies, and innovation PROFESSIONAL EXPERIENCE
Cybersecurity Threat Hunter –USAF (Civilian), San Antonio, TX, 16 Sep 2024- Present Hunt threats on specialized networks in various global locations searching for advanced persistent threats
Led and planned threat-focused, intelligence-driven hunts for malicious cyber activity on critical air force networks
Coordinated with mission partners and key stakeholders at multiple nation-wide installations
Perform hunts on network traffic using various tools to detect anomalous behavior
Provide subject matter expertise on current threat hunting techniques and tactics
Train host and network analysts on memory forensics techniques
Plan and customize cyber training range for analysts to sharpen hunt skills prior to mission execution
Cyber Systems Field Engineer –USAF (Contractor), San Antonio, TX, 13 Nov 2023- 13 Sep 2024 Maintain service-oriented architecture to provide capabilities to mission critical cyber operational environment
Developed, configured, deployed, and maintained Red Hat Linux and Apache virtual servers using command line tools in a highly-secure government environment
Built and configured Ansible playbooks for rapid and consistent virtual machine deployments
Automated routine administrative tasks using PowerShell scripts, reducing manual intervention and increasing operational efficiency across Windows environments
Troubleshot virtual network issues, including firewall configuration and, and resolve issues accordingly
Supported and maintained cross-domain solution
Used Agile project management methodology
Cybersecurity Validator –US Army (Contractor), San Antonio, TX, 14 Nov 2022- 10 Nov 2023 Assess DoD Information Systems against the RMF security controls IAW DoDI 8500, DoDI 8510 and NIST SP 800-53
Interviewed technical Subject Matter Experts (SMEs) as well as non-technical management personnel to ascertain the security posture of an IT system
Evaluated a wide array of IT devices for Security Technical Implementation Guide (STIG) compliance using ACAS/ Nessus, SCAP Compliance Checker, and manual checklist reviews.
Experience with eMASS and a strong understanding of the CNSS 1253 CCIs
Developed and reviewed RMF documentation and artifacts such as Configuration Management Plans, Network Infrastructure Plans, Business Continuity and Disaster Recovery Plans, Plan of Action and Milestones (POA&Ms), topology diagrams
Cybersecurity Threat Hunter –USAF (Contractor), San Antonio, TX, 22 Jul 2019- 11 Nov 2022 Hunt threats on specialized networks in various global locations searching for advanced persistent threats
Identified, researched, and searched for threat actor activity with little to no specific threat intelligence
Used MITRE ATT&CK matrix to guide hypothesis-driven hunts and create repeatable processes
Created behavior-based signatures in response to newly-identified malicious activity
Investigated anomalous activity to determine root cause of activity, scope indicators of compromise and attacks
Cleared threats upon detection
IDS Signature Management Team –USAF (Civilian), San Antonio, TX, 23 Jul 2018 - 19 Jul 2019 Led team responsible for managing all signatures residing on Air Force intrusion detection and prevention systems monitoring $14.2 billion Air Force domain with 900K users and 670K end points
Oversaw creation of 125 analyst and signature use cases for 5 intrusion detection and prevention systems
Created a standardized signature management work flow process in order to reduce false positive alerts by 65K per month over a 3-month period, allowing analysts to focus on true positive alerts; created reporting metric to demonstrate positive impact to Air Force network defense; lauded by leadership
Identified shortfalls and established a signature writer training program; created previously non- existent certification standard, including formally defining novice, experienced, and expert level positions
Developed streamlined process for writing efficient detection signatures in order to reduce intrusion prevention system process overhead, resulting in noticeable network performance improvement for 900K users
Network Security Analyst – USAF (Contractor) San Antonio, TX, 11 Nov 2016- 20 Jul 2018 Analyzed Air Force enterprise network traffic in order to detect and identify malicious and anomalous activity
Improved analyst productivity and effectiveness by developing dashboards which saved 142 analysts 10% of time needed to investigate and analyze alerts
Created structured event research process plan for team during unique investigation for special purpose incident response team
Modified existing new analyst training plan to include joint regional security stack in addition to Air
Force-specific network architecture
Selected above peers become enterprise signature management writer Senior IT Specialist, US Army Reserve (Civilian), San Antonio, TX, 4 Jan 2013 – 4 Nov 2016 Direct advisor to Commanding General and senior executive on information technology functions
Maintained over 99% availability rate in unit consisting of 6,500 customers in 65 sites across a 4- states
Oversaw multi-million dollar IT budget while providing good stewardship over tax payer dollars
Served as primary NSA encryption key program manager (COMSEC) responsible for physical security and control of highly sensitive material, resulting in zero incidents
Inspected subordinate units; corrected deficiencies to dramatically improved network security posture
IT Specialist, US Army (Civilian), Germany, 13 Dec 2010 – 28 Dec 2012 Installer, operator, and maintainer of various types of information technology systems
Routinely exceeded monthly trouble ticket closure while maintaining 95% customer satisfaction rating.
Ensured seamless communications transition during unit facility relocation; received commendation
Executed two network-wide operating system upgrades with no customer data loss or undue downtime
Built multiple end-user training programs; including programs that were adopted by higher headquarters
Quality Assurance Specialist, US Army (Civilian), Germany, 27 Sep 2009 – 10 Dec 2010
Responsible for tracking maintenance of thousands of tactical military wheeled vehicles, tracked vehicles, aircraft, and weapon systems left in Europe during deployments to middle east region
Conducted weekly production meetings with senior and executive leadership as well as customers
Responsible for scheduling, managing, and tracking induction and reissue of equipment to deploying and redeploying units with 100%accountability
Enforced required weekly, quarterly, semi-annual, and annual maintenance schedules
Assigned government quality assurance specialists to supervise contractor hand-receipt holders during inventories
Battalion Signal Officer, US Army (Active Duty), Germany, 17 Jul 2006– 27 Jul 2009
Rated as best Signal Officer by supervisor during 14 year career
Senior signal officer in 700-person operational unit
Deployed to Israel and Bulgaria in order to integrate tactical military communications networks with partner nations
Synchronized shutdown of classified and unclassified local area networks and phone services in
Hanau, Germany while establishing key communications assets simultaneously in Kaiserslautern,
Germany during unit relocation
Successfully completed detailed and complex network accreditation process prior to relocating unit from central to western Germany
Wrote unit communications standard operating procedures; reviewed and updated annually resulting in 99% availability rate
Conducted end user information assurance awareness training to audience of several hundred Soldiers
Conducted pre-deployment site surveys to determine communications capabilities and shortfalls and to coordinate with partner and local elements for additional support as needed
Performed Retina scans, ensured systems were patched and updated Signal Platoon Leader, US Army (Active Duty), Germany, 27 Dec 2004– 14 Jun 2006
Led 40-Soldier unit responsible for extending PATRIOT missile battalion tactical line-of-sight network range by 40 kilometers in austere environments.
Responsible for accountability, maintenance, and care of 13 tactical wheeled vehicles, worth over
$10 million.
Establish tactical communications network in Israel with 99% availability rate
Unit Movement Officer responsible for ensuring 50 wheeled vehicles and trailers were certified for international transport
EDUCATION
M.S. IT University of Maryland, University College, 2013 B.A. History University of Oregon, 2004
CERTIFICATIONS
CISSP, CEH, Linux+
SKILLS & TECHNOLOGIES
Elastic Stack, Python, Red Hat Linux (Command Line), Windows, WMWare ArcSight, Arkime (Moloch), WireShark, tcpdump, Hayabusa, Burp Suite, Splunk, Volatility, Virtualization
Contact this candidate