Information Systems Cyber Security
Resume:
UNCLASSIFIED
UNCLASSIFIED
Daniel Elefante
***** ********** **. ******, ** 80134
**********@*******.***
530-***-**** - US Mobile Phone
Education and Credentials:
• Master of Science in Information Systems/Cyber Security, 2017 University of Maryland Global Campus
• Bachelor of Science in Environmental Management, 2013 University of Maryland Global Campus
• Security Clearance: Top Secret/SCl w/ CI Poly; Public Trust
• Certified Information Systems Security Professional (CISSP), 2018; Certified Cloud Security Professional (CCSP), 2023 ISC2 ID#561360
• CompTIA (COMPOOI020155946) Certified Network+ ce; Security+ ce; Cloud+ ce
• AWS Certified Cloud Practitioner (AWS CCP) I AWS Candidate ID: AWSOI778107 Professional Experience:
SAIC — Intel and Space Sector (Aurora, CO)
Cyber Engineer Sr. Principal (Nov 2021 - Present)
• System Engineering Technical Advisor (SETA) supporting the National Reconnaissance Office (NRO) with development and maintenance of implementation and maintenance of the cybersecurity Risk Management Framework (RMF) process, to include: system accreditation Authority to Operate (ATO) management, coordination with Chief information Security Office (CISO) for oversight of disparate Information System Security Officer (ISSO) teams/programs with highly varied mission requirements of classified and technically complex nature responsible for cyber control implementation(s) and continuous management of compliance with organizational regulations.
• High Level practical experience with RMF management software applications to include SNOW/eMASS, as well as proficiency with System Assessment Reports
(SARs), System Security Plans (SSPs), Information System Continuity Plans (ISCPs), and Plans of Action Milestones (POAMs), cloud migrations, containerization, vulnerability management (Tenable, AWS Inspector) of customer assets.
• In depth experience with implementation / integration of Security Information and Event Management (SIEM)/Security Orchestration Automation and Response
(SOAR) Technologies, Automation of auditing (QRadar, ArcSight, Splunk, CloudTrail).
• Proficient written and verbal communication / technical recommendations of conceptual technical topics with organizational stakeholders at all levels in efforts to UNCLASSIFIED
UNCLASSIFIED
garner engineering staff engagement / management buy-in of security implementations.
• Architect and implement robust security solutions in support of Federal Modernization / Cyber Security Improvement initiatives.
• Management and administration of Cloud, SEIM, Orchestrations and Automation Technologies, Baseline Efforts, Authorization & Assessment Processes, Vulnerability Scanning and remediation efforts; Nessus Security Center (Tenable), Service Now Asset Management, Microsoft/ Linux/Unix/Solaris, I-DAP, Communication / Collaboration Technologies and various Agile (Atlassian) Technologies.
• Classified Program Management Information System Security Engineer/Manager
(ISSE/M) for multiple disparate programs for USG and DOD customers in cleared environment.
• Oversee methodology, planning, budget, execution, and compliance of contractual duties by various customers to USG via SOP(s), SOW(s), and SLA(s).
• Experience with GIT version control for tracking of state changes / Terraform modules for use in creation of VPCs / AWS Cloud Formation for AMI (YAML config files) EC2 provisioning / IAM (JSON) for key-value relationships and security management of cloud environments (automation).
Raytheon Technologies — Intelligence and Space Division Sr. Cyber Engineer I (Mar 2020 - Nov 2021)
• Incident Response and SEIM project lead: integrated newly provisioned AWS instances for transition to from on-prem to cloud environment to SEIM interface.
• Coordinated baselining efforts to mitigate with multiple customer operators throughout enterprise for SEIM interface i.e. (1 51<+ Log Sources, each with multiple log streams) to fully capture all activity throughout enterprise and quickly and accurately identify adverse incidents and quickly remediate any potential weaknesses or vulnerabilities to the network.
• Lead SEIM Project implementation to facilitate transmission of enterprise log traffic to the USG customer through use of several Log Aggregator/Translator(s) VM's distributed across multiple segmented environments to distant end log connectors/receivers.
Conduct periodic internal auditing of system/network integrity and perform significant ad-hoc tasking to adequately determine where identified problems are and validate remediation solutions.
• Corrected significant misconfiguration, functionality, and process documentation failures found through external audit.
• Collaborate with vendors in efforts to efficiently remediate potential critical negative impacts to confidentiality, integrity, or availability of customer data.
• Lead coordination with USG customer to streamline integration of cutting-edge security tools and efforts to improve efficiency of existing security solutions with weekly presentations highlighting findings and quantitative justifications. Cyber Engineer II (Apr 2020 - Mar 2021)
UNCLASSIFIED
UNCLASSIFIED
• Joint Polar Satellite System (JPSS) Cyber Engineer engaged in development, deployment, and sustainment of information systems security solutions on advanced satellite communications equipment. Primary customer(s) National Oceanic and Atmospheric Administration (NOAA) and National Aeronautics and Space Administration (NASA).
• Integral member of Incident Response Team (IRT) responsive to round-the-clock monitoring of system security baseline(s) in an effort to mitigate risk of potential security incidents due to penetration of operational networks and systems.
• Responsible to ensure security compliance across multiple networks through vulnerability scanning, verification of security baseline configurations, software integrity, management of activity log auditing, and software and system verification. Ongoing experience hardening systems and networks through automated/manual patch application, and virtual/physical solutions implementation.
• Experience in generation and subsequent presentation of reports pertaining to security engineering projects and programs to USG and commercial customers.
• Solid foundational knowledge of life-cycle/change management processes and organizational approaches to implementation and compliance consistent with current IA policies and Cyber Security statutes, directives and recommendations.
• Dynamic ability to evaluate operational considerations, technical documentation, drawings, and diagrams in an effort to determine consistency with repair activities. Provide "top-tier" multi-faceted approach in responsiveness to technical and customer Confidentiality, Integrity, and Availability (CIA) support issues.
• Generate, implement and administer, records and documentation consistent with Government, contractual, and corporate requirements.
• Collaborates with other cyber practitioners to fine tune selected program procedures and processes while simultaneously enhancing the overall efficiency of the team's efforts in an effort to leverage various employees' skillsets into an inclusive and continuously evolving dynamic aimed at achieving maximum customer satisfaction. Lockheed Martin - Rotary and Mission Systems, Misawa, Japan Senior Field Engineer (2017 - 2020)
• Consulted with JASDF on all aspects of training center squadron operations to include flight simulator and related infrastructure installation, configuration, maintenance, integrity / availability management, and sustainment, including physical / virtual components, backbone, advanced information systems, and fully duplexed LAN/SAN/cockpit emulator communications.
• Served as subject-matter expert (SME) and advisor to local / global program managers on system platform delivery, integration, security, performance, and risk / vulnerability mitigation solutions. Leads diverse testing efforts, including human- software-interface and user acceptance testing (UAT). Produces technical documentation, security policy reports and recommendations regarding systems security and maintenance policies / procedures.
UNCLASSIFIED
UNCLASSIFIED
• Fostered collaboration among American and Japanese technical and management teams to ensure optimum system availability/stability.
• Conducted periodic inspections with site Japanese ISSM to maintain accurate and inventories of site Information Assurance (IA) relevant equipment, to include processing of equipment and/or device entry and exit from secure facility. Additional Experience to include Field Engineering roles at L3 Technologies (2007- 2017), General Atomics- Aeronautical Systems Inc. (GA-ASl) (2005-2007) and United States Air Force (USAF) Active Duty (2001-2005) available upon request
Contact this candidate