Cyber Security Information
Resume:
Mark Hairston
Alexandria, VA 22304
****.*********@*****.***
Profile of Qualifications
More than sixteen years of experience in information technology, networking, installation, data security, communication, documentation, maintenance, repaired, infrastructure and technical support.
Well-organized multitasker with strong detail orientation.
Self-driven team player with strengths in communication and developing interpersonal relationships.
Possess excellent planning, organization, time management and decision-making skills.
Strategically coordinate and collaborate with various professionals to maximize performance in facilitating goals and attaining operational excellence.
Veteran of United States Army and holder of Top Secret SCI with CI Poly security clearance.
Career Track
Cyber Security ISSE, MH TECH LLC, Bethesda, MD Oct 2023 – Present
Evaluated DoD Private Cloud system’s compliance with applicable Federal cybersecurity policies and procedures within the Defense Intelligence Information Enterprise (DI2E) requirements.
Conducted cybersecurity control assessments, reviews and/or audits as needed, to ensure that a system’s security controls are properly selected, implemented, operating as intended, and monitored accordingly for risk and compliance.
Participated in security controls assessments and assist in preparation of technical security documentation in support of Security Assessment & Authorization (SA&A) activities for DoD programs.
Coordinated and facilitated a system’s Interim Authority to Operate (IATO) Authorization to Operate (ATO) by drafting security and risk assessment reports, recommend Plans of Action and Milestones (POA&M) and/or Risk Based Decisions for the system’s Authorizing Official via executive-level briefings.
Developed Center-level cybersecurity policies, processes and procedures that support the implementation of National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 controls (specifically related to Governance, Risk, and Compliance) as well as other relevant NIST information security publications.
Recommended and implemented process improvements as necessary to facilitate team and stakeholder collaboration and improve cyber security operations.
Provided training and examples to technical teams to illustrate information security best practices and/or proper cyber-hygiene.
Supported the DoD Private Cloud Solutions to effectively operate within an Information Security Continuous Monitoring program via risk-based approach to cybersecurity.
Supported DoD and Intelligence Community-related meetings and working groups as required.
Created and reviewed training for personnel related to standards and procedures for the creation, dissemination, and updating of role-based training materials for cyber related incidents.
Cyber Security Architect, MH TECH LLC, Springfield, VA Jan 2019 – Aug 2022
•Assisted with the alignment of requirements and capabilities with JRSS solutions/products.
•Developed a list of requirements to be included in an upcoming RFP for security training and support the development of the RFP.
•Provided end to end traceability to demonstrate efficiency, cost savings and fit-for-purpose for multiple stake holders Target near term efficiency gain Total Cost of Ownership (TCO) with threshold solutions that meet baselined requirements for existing stakeholders in both security features and Operation & Maintenance (O&M) capabilities.
•Assisted with the development of requirements and capabilities roadmap, cost effective solutions TCO, and implementation plan to accommodate onboarding of new stakeholders (i.e. U.S. Navy).
•Provided assistance with reassessment and validation of existing JRSS capabilities while considering the evolution of JRSS in 3 to 5 years periods.
•Evaluated JRSS as a provider of security capabilities for other service beyond content filtering to inspect and monitor real-time and non-real-time services such as messaging, voice etc.
•Have performed various other miscellaneous engineering/analysis tasks for the PMO Engineering team as needed.
•Lead team of 20 personnel which we collaborated with DISA staff and vendors to created a Next Gen Database system formed with zero trust.
Cyber Security Engineer / ISSO, MH TECH LLC, Arlington, VA Jan 2019 – July 2024
• Configured physical, personnel, facility, information systems, through policies and controls IAW Army Regulations, Department of Defense (DoD) Directives and Instructions.
• Developed processes to conduct periodic security training and CCRI assessments for all users, to be included with the training record for each user.
• Provided Splunk ES installation and configurations expertise while building automation activities.
•Experience in developing Splunk dashboards, data models, reports and performance optimization.
• Managed information security risks and report findings to the Government.
• Developed and maintained an OPSEC Standing Operating Procedure (SOP)/Plan.
• Maintained ARNG NCR IMN IT infrastructure in a manner compliant with Federal Information Security Management Act (FISMA), DoD Risk Management Framework (RMF) and National Institute of Standards and Technology (NIST) guidance.
• Ensured that ARNG NCR IMN LAN and its management systems are compliant with all Information Assurance Vulnerability Alerts (IAVAs)
• Conducted weekly Assured Compliance Assessment Solution (ACAS) scans and remediate vulnerabilities according to SLA
• Ensured appropriate Secure Technical Implementation Guidelines (STIG) are maintained
• Reviewed Host Based Security Solution (HBSS) and Tanium reports for end point security compliance. Remediated identified vulnerabilities as required.
• Tracked Information Assurance Vulnerability Management (IAVM) compliance.
• Provided consultation on Cybersecurity perspectives for proposed changes, initiatives, and projects.
• Maintained and drafted memorandums for record, system interconnection agreement, and/or equivalent to document all system connections to ARNG NCR IMN networks.
• Validated ARNG NCR IMN managed assets are current and compliance with Army Gold Master configuration, NSA Configuration Guidance and NIST Configuration Guidance through coordination with Asset Management.
• Ensured the ARNG NCR DOIM complies with the ARNG portion of DODIN-A NIPR and SIPR in support of the ARNG Authority to Connect (ATC) and Authority to Operate (ATO)
• Worked as Incident Response Manager, created new team and doctrine which lead us to clearing incidents at the local level.
Cyber Security Engineer / ISSO, Choisys Technology, Fort Belvoir Jan 2018 – Dec 2019
• Provided documentation services related to Security Authorization Process activities.
• Compiled, developed and refined the standardized processes for developing IT system authorization.
• Organized and maintained electronic libraries of all documents and task-associated documentation, deliverables, reference materials, memorandums, and relevant documentation through systems development life cycle to include: all drafts, versions, finals, updates, maintenance, and retirement to electronic archive.
• Compiled, drafted, reviewed, developed, and delivered recommendations on all aspects relevant to Cybersecurity (Information Assurance) SAP activities, processes and associated documentation to the COR for review and approval.
• Updated Documentation Style guides upon COR request, and implemented standard style and formats for all SAP associated documentation, reports and task related elements.
• Reviewed security related work products (SAP packages) for compliance, content and adherence to the approved style and format guidelines. SAP Packages include but are not limited to reports, documents, test plans, procedures, evaluation criteria, analysis results and all security related documents.
• Electronically applied and tracked all documents and written comments, as requested by the COR. The Contractor shall ensure that all security related documentation is compliant with standards and requirements, in accordance with established guidelines and delivery schedules.
• Prepared, reproduced, and filed all security related packages and related documentation, as defined by the USCG System Development Life Cycle requirements.
• Demonstrated experience supporting a major system acquisition program's Security Authorization process.
• Knowledge of performing system, network and application A&A-related tasks including RMF package development, IA/security controls analysis, risk assessment, contingency planning, Security Test and Evaluation (ST&E), risk mitigation analysis, and technology reviews/assessments.
• Experience with Platform Information Technology (PIT) /Industrial Control System (ICS) analysis.
• Familiar with DoD/DHS Cybersecurity directives, policy, instructions and orders
• Recommend hardware, software, and develop policies and procedures to investigate malware incidents for multiple networks.
• Developed analysis and make recommendations for hardware and software that will mitigate malware intrusions.
• Developed, implemented and maintained the information system security posture across multiple networks
• Provide security services for certification and accreditation (C&A) requirements, including developing and maintaining information assurance documentation for all network components.
Network Security Engineer Senior, GDIT (Mark Center) Alexandria, VA March 2016 – Jan 2018
Configured and managed MPLS, IPSEC VPN tunnels and other WAN technologies.
Participated in application and infrastructure projects to provide security planning and guidance
Used SIEM to detect anomalies in cisco devices to properly fix and find faulty equipment.
Assisted with creation, maintenance, and implementation of Information Security strategy
Configured and managed all network equipment and systems including hardware, software, and peripheral equipment.
Maintains user accounts or security policies on software and hardware-based firewalls, routers and switches.
Utilizing monitoring tools to determine faults with devices on the Enterprise IT network and the network itself.
Implemented, troubleshot, and maintained routers, switches, and equipment in both standardized and non-standardized environments.
Built out, supported, and troubleshot networks and infrastructure projects.
Information Technology Watch Officer ISSO Sr, SOC (Pentagon) Arlington, VA Jan 2015 – Aug 2018
Provided oversight within the Enterprise Wide Command Center (EWCC) across FDIC disciplines and ensure the coordination of operations.
Knowledge of performing system, network and application A&A-related tasks including RMF package development, IA/security controls analysis, risk assessment, contingency planning, Security Test and Evaluation (ST&E), risk mitigation analysis, and technology reviews/assessments.
Provided documentation services related to Security Authorization Process activities.
Compiled, developed and refined the standardized processes for developing IT system authorization.
Organized and maintained electronic libraries of all documents and task-associated documentation, deliverables, reference materials, memorandums, and relevant documentation through systems development life cycle to include: all drafts, versions, finals, updates, maintenance, and retirement to electronic archive.
Provided support for disaster recovery to ensure stability of networks and functions on a monthly basis.
Responsible for Event Management across all technical platforms (Server, Network, Storage, VMware, etc.).
Responsible for service restoration management across multiple frameworks
Assisted with the management of security aspects of the information system and perform day-to-day security operations of the system.
Determined information security measures implementations for operational systems and systems under development.
Worked with network administrators to configure and troubleshoot issues emanating from the network.
Provided support for a program, organization, system, or enclave's information assurance program
Monitored current hardware and infrastructure health.
Responded and created incidents for application and server based alerts.
Provided 24 x 7 x 365 operations support.
VMware Security Administrator - Mid, Yoh Quantico, VA Jan 2014 - Jan 2015
Maintained health and performance of multiple VMware vSphere environments on multiple networks including applying patches/updates
Developed systematic approach to ensure scaling of the Information Security response process
Responded to monitored alarms and thresholds; develop new health monitoring requirements and automated recovery procedures VMs and ESXi hosts
Optimize performance of virtual environment including storage and networking
Developed and maintain vCenter Orchestrator automated workflows; work with team members supporting their development and operation of workflows
Assisted in investigation and remediation of security incidents and issues
Conducted security assessments to identify areas of risk and ensure any gaps are remediated
Conducted security assessments to identify areas of risk and ensure any gaps are remediated
Deployed virtual machines and use clones, snapshots, and templates with use of PowerCLI
Provisioned ESXi hosts using vSphere Auto Deploy (automation)
Automated VMware Infrastructure using PowerCLI (creating datastores, taking snapshots, creating VMs, health checks, etc.)
Network Operations - Senior, Yoh Quantico, VA Feb 2013 – Jan 2014
Tasked with maintaining Cisco network infrastructure, resolving problems and documenting operations.
Effectively coordinate remote repair activities analyze root causes and provide technical support.
Manage shift personnel and inform government representatives of any incidents.
Managed queue and established projected new infrastructure for systems for Quantico Marine Base.
Effectively made security measures to protect infrastructure from cyber-attacks.
Developed and managed the flow of new Cisco systems in military installations.
Autonomous Management Infrastructure Lead for Cisco devices in Quantico
Experience in configuring and troubleshooting various network devices as well as routing protocols (such as BGP, EIGRP, OSPF), modifying and troubleshooting Access Control Lists, and conducting software/firmware upgrades.
Experience configuring and troubleshooting firewall security policies, VPNs, and software/firmware upgrades.
Experience in configuring and troubleshooting Juniper Netscreen VPN appliances and conducting software/firmware upgrades.
Military Service
Information Security Manager, United States Army, Fort Bragg, NC 2005 – 2013
• Served as the principal point of contact for all matters pertaining to the security for the IT systems
• Prepared or overseen the preparation of security plans such as those required for certification and accreditation.
• Periodically reviewed computer systems and networks to ascertain if changes have occurred that could adversely affect security.
• Keep abreast of new theories, technologies and methodologies as it relates to information security, with the focus of reconciling them against existing security postures.
• Ensured that system users receive initial computer security indoctrination and annual follow-on training as required by applicable directives.
• Performed system evaluations and problem resolutions on existing systems.
• Implemented IT security policies, as directed by and in coordination with higher authority.
• Completed tasks using Powershell and Regex to update servers and virtual machines as required.
Education
University of Maryland University College
Cybersecurity Management and Policy Bachelor’s Degree
Assured Compliance Assessment Solution (ACAS) 5.3
CompTIA A+
Enterprise Mission Assurance Support Service (eMASS)
CompTIA Network+
ITIL V3 Foundation Certification
CompTIA Security+
Host Based Security System (HBSS)
CompTIA Advanced Security Practitioner
Top Secret SCI with CI Poly
Microsoft Azure Foundations
Splunk Certified Core User
Splunk Certified Power User
Splunk Enterprise Certified Admin
Contact this candidate