Program Manager Information Security
Resume:
LUCIAN HAMMOND, CC, CISSP, CSM, ITILv*, MBA, PMP, PSM
Phone: 443-***-**** Email: *************@*****.***
EXPERIENCE SUMMARY:
Enthusiastic, energetic professional with a wide range of skills, capabilities, in multiple domains. Ability to discern complex business and technical issues and find systems of solutions that encompass multiple layers of problem-solving in highly demanding environments, including government, defense, telecommunications, rapidly growing start-ups, and tightly regulated utilities.
Data/Systems and Information Security professional with over 27 years' experience as a contractor, supporting both federal and private/commercial sectors.
Implemented large Transformational Programs of work (>$25 million) and facilitated agile delivery projects in Information Communications and Financial Services.
Leadership, guidance, influence and supporting performance management of teams, providing clear direction and alignment.
EDUCATION & CERTIFICATIONS:
BSc. Information Systems Management, University of Maryland (Baltimore County)
MBA, University of Maryland University College
CC & CISSP
CSM
PMP
ITIL v3
CLEARANCE:
DoD – Top Secret
PROFESSIONAL EXPERIENCE:
05/2023 – Present - Defense Information Systems Agency (DISA) – IT Program Manager
Provide oversight and coordination of all aspects of information security programs, with a focus on operations.
Generate Situational Reports (SITREP) using various dashboard tools for trend analysis, forecasting and program risks to leadership.
Ensure compliance with relevant regulations, policies, and procedures, and will manage a team of security professionals to achieve program objectives.
Develop and implement program strategies, goals, and objectives in alignment with organizational priorities.
Conduct regular reviews and assessments of security controls and processes to ensure effectiveness and compliance.
Coordinate with internal stakeholders, including IT teams, legal, compliance, and other departments, to address security requirements and concerns.
Provide guidance and support to ISSOs and other team members on security-related matters.
Oversee the development and maintenance of System Security Plans (SSPs), Security Assessment Plans (SAPs) for information systems, track and mitigate Plan of Action and Milestones (POA&Ms).
01/2020 – 05/23 - Data Systems Analysts, Inc. – IT Program Manager
Provided leadership, individually and through direct reports, in planning and managing solution development and production and maintenance support.
Managed strategic relationships with key IT product and services providers strategic goals.
Directed teams of technical, professional and management staff in the successful fulfillment of IT product engineering and production operational commitments.
Oversaw the execution of enterprise technology standards, governance processes and performance metrics to ensure IT delivers value to the enterprise.
Drove product engineering, implementation, and deployment.
Developed customized and canned reports using Tableau dashboards.
Conducted trend analysis using Tableau, Cognos, and Business Intelligence.
Direct resource management, with reference to the IT workforce plan.
Planned, System Security Checklists, Privacy Impact Assessments, POA&Ms.
Steer enterprise initiatives that support the technology strategy
Lead formal multilevel direct-report teams and informal cross-functional teams.
10/18 – 01/20 Hammond Technologies – Data Center Program Manager
Responsible for IT technology operations, cybersecurity, infrastructure, data center, disaster recovery, end user support, application support, and physical security for federal agency data center.
Significant systems and IT transformation experiences including modernization of data center, implementation of IT Service Management system, ITIL processes, upgrade core systems, data replication for DR, merger/acquisition integration, application support for customized, and proprietary systems located in multiple data centers, co-locations, and cloud vendors. Implemented new processes and procedures to achieve efficiency, speed, and stability. Compelling executive peer engagements resulting in completion of initiatives, excellent customer experiences, and corporate goals success.
Active projects include data replication to warm site for DR, Cybersecurity initiatives including compliance, cloud migration and acquisition management.
06/15 – 10/18 Data Center Program Manager, Northrop Grumman
Responsible for developing high level and low-level project plans and budgets for data center projects and/or data center components.
In charge of coordinating activities of the projects between these same parties as well as external resources such as the Engineering Design Team, the General Contractors, etc.
Conducted automated monitoring of information system assets by adhering to Department of Homeland Security (DHS) framework using Continuous Diagnostics and Mitigation (CDM) tools and sensors.
Conducted Analysis of Alternatives (AoA) for Kill chain applications.
Assisted with the development of various application security Assessment and Authorization (A&A)
Ensured requests for Security Authorization (SA) of assigned applications or systems were completed in accordance with NIST standards.
Performed security control assessment using NIST 800-53A guidance and according to Department of Homeland Security and NIST continuous monitoring requirements.
Facilitated the delivery of customer Cloud Strategies to align with business objectives with a focus on Cloud Migrations.
Coordinated the design of client’s Cloud environments with a focus on Azure and AWS.
05/12 – 06/15: Program Manager, Army Research Lab, and (STG, Inc.).
04/11 – 5/12 Program Manager, Computer Sciences Corporation (CSC)
09/08 – 01/11 Program Manager - EDS/Hewlett Packard
TECHNICAL SKILLS:
Operating systems: Solaris, AIX, HP-UX, Linux, DOS 6.2, Citrix Winframe /Metaframe, X-Windows, Novell Netware v.4.0 -4.11, OS/390, OS/2, OS/400, MVS, and Unisys Mapper.
Hardware: VM Ware, Sun Sparc Workstations, Sun Server, IBM PS/2, IBM RS/6000, SGI, AS/400.
Languages: ActiveX, PL/SQL, Korn/Bourne/C Shells, Visual Basic, DTML, HTML, UML, XML, .ASP, .NET, CGI, C/C++, Java, PeopleCode, JavaScript, Perl, Cobol, JCL, CICS, SQR.
Databases: Oracle 6, 7.3, 8i, DB/400, DB2, Access 97/2000, SQL Server 2000, Sybase 4, 9, 10, Informix, dBase III+
Environment, Tools & Methodologies: User Experience (UX), AWS cloud, PaaS, SaaS, SAP, GFEBS, Splunk 6.6, Git, Jira, Puppet, Zscaler, Docker, Jenkins, Bamboo, Tableau, Oracle Designer 2000 and Developer 2000, Oracle Portal (9iAS), Oracle ERP Cloud, MilCloud, Oracle Financials, PeopleSoft People Tools, SQL Navigator, Toad, SQL PLUS 8, ODBC, MS Project 2003, 2007 and 2010, MS SharePoint, Informatica, IIS, Infocus, eMass, Crystal Reports, CRM, Actuate, Rational Clear Quest, PVCS Tracker, Support Magic, Lotus Notes, Quantum, IaaS, Platinum, Erwin, Legato Networker, VERITAS NetBackup, Dreamweaver, PeopleSoft EPM, BEA WebLogic, Mercury ITG, HPE, HP Portfolio Management, Hyperion, Entrust, Quest STAT, Cognos ReportNet, PowerPlay, Impromptu,, Oracle Financials/Applications, Oracle Enterprise Manager, Remedy Action Request System, OLAP, ROLAP, Sales Force, Storage, Service Orchestration, VMware, Azure Site Recovery/Azure Backup solutions, Maven, Slack, VersionOne, and Web Intelligence. Splunk, Nessus Security Center and REST.
Contact this candidate