Cyber Security Information

Location:

Riverview, FL

Posted:

April 28, 2025

Contact this candidate

Resume:

LEONARD B. RODEN

***** ********* *** *****, *********, fLA.33579 706-***-**** ********@*****.***

Information Systems Security

Leadership Information Security & Technologies Cyber Security Management Veteran

Active Top Secret Security w/ COUNTERINTELLIGENCE (CI) Poly Clearance

Results-driven executive with over 30 years of experience in leading Information Technologies (IT) and security tools, operations, technical teams, and operations management. Expert in designing, developing, and delivering cyber/information security communication processes to meet business and customer demands, supporting confidentiality, integrity, and availability (CIA). Combines general solid management capabilities with outstanding performance-leading organizations, evaluating policies, regulations, vulnerability trends, and providing feedback on problematic patterns to the Program of Record (POR) Manager and other team members. Monitors Plans of Action and Milestones (PoA&M) with benchmarks and measures in mitigation strategies for system vulnerabilities. Extensive qualifications in all facets of project lifecycle development, Risk Management Framework (RMF, tenable Network Security-Assured Compliance Assessment Solution (ACAS), Data Auditing Manager (ADAM), Data Transfer Agent (DTA), Host-Based Security System (HBSS), Enterprise Mission Assurance Support Service (eMASS), XACTA Suite (enterprise cyber risk management and compliance automation solutions).

Additional Core Competencies Include:

Leadership / Training Vulnerability Scans Information Technology

Risk Management Critical Thinking Staffing

Complex Problem Resolution Network Engineering Inspections

Customer Service Incident Response Cyber Security

Information Assurance Facility Security Officer

Education & Certifications

Ph.D (Progress 76 percent Complete) PhD in Information Technology Specialization in Information Assurance and Cybersecurity– Capella University

Master of Science in Cyber Security - University of Maryland University College (12/2014)

Bachelor of Science Degree: Southern Illinois University, Carbondale (SIUC) (09/2005)

W/concentration on Workforce, Education, and Development (WED)

Certifications CompTIA – SecurityX and Security Plus CE (COMP001020038223) Certified Exp: 2028-May-09

Certificate(s): Cyber Security Technology (Spring 2014), Foundations of Cyber Security (Fall 2011).

Professional Experience

LBR Security Clearance Verification Services L.L.C 12/2024 – Present

Facility Security Officer (Remote)

LBR Security Clearance Verification Services L.L.C. offers services to verify and manage security clearances and prepare for business security audits.

Background Checks: Verifying potential employees hold a government security clearance to meet various levels of security clearance.

Compliance Services: Ensuring individuals or organizations comply with government or organizational security clearance policies through the Defense Counterintelligence and Security Agency (DCSA) using:

Defense Information System for Security (DISS).

National Background Investigation Services (NBIS).

US Army Contractor Support Element (CSE) (ACCS)

National Industrial Security Program (NISP) Central Access Information Security System (NCAISS) (NISS)

Utilize NIST 800-53 and Risk Management Framework for FEDRAMP and Department of Defense (DoD) Authority to Operate (ATO).

Advising businesses or government agencies on clearance-related security issues.

Familiar with Open Security Controls Assessment Language (OSCAL).

Assists with the insider threat program (ITP).

Advantage Engineering – a gtsc Company Chantilly, VA 11/2024 – Present

Facility Security Officer (Remote)

The Assistant Facility Security Officer (FSO) manages security clearances. Responsible for supporting over thirty-five cleared personnel, maintaining, and continuously monitoring security clearances.

Submit employees for security clearances via the National Industrial Security Program (NISP) and National Security Agency (NSA).

Conduct semi-annual organization security inspections.

Submit personnel for polygraphs.

Verify and monitor security clearance for current and potential new hires.

Submit employee visit access request (VAR) using the Defense Information System for Security (DISS).

Create and update organizations' security training.

Assists with the insider threat program (ITP).

MKS2 TECHNOLOGIES, AUSTIN, TX. 01/2022 – 01/2025

Cyber Security System Stewart (Remote)

Responsible for supporting ITOPS TSS program Veterans Affairs (VA) FISMA Containerization Asset to Boundary (FCAB) by identifying all systems and devices, reporting to the Department of Homelands Security (DHS) Continuous Diagnostics and Mitigation program that provides an Agency-Wide Adaptive Risk Enumeration (AWARE) score.

Responsible for asset-to-boundary mapping, Discovery, and Analysis (D&A) and updating the VA facilities areas Medical and Special Purpose Systems Plan of Action and Milestones (POA&M).

Engage with System Owners/Area Managers, ISSO, and other system stakeholders, as needed, to accurately identify assets and verify boundary alignment.

Responsible for managing and updating the Enterprise Mission Assurance Support Service (eMASS) using the risk management framework (RMF) and ICD 503 requirements.

Run analytical scans analyzing data using the SPLUNK, CEAD, and Vault monitoring tools.

ZAPATA TECHNOLOGY, INC., Remote Augusta, Ga. 4/2017 – Present

Zapata Assistant Facilities Security Officer (FSO)

The Assistant Facility Security Officer (FSO) manages security clearances. Responsible for supporting over thirty-five cleared personnel, maintaining, and continuously monitoring security clearances.

Submit employees for security clearances via the National Industrial Security Program (NISP),

Conduct semi-annual organization security inspections.

Submit personnel for polygraphs.

Verify security clearance for potential new hires.

Submit employee visit access request (VAR) using the Defense Information System for Security (DISS).

Monitor company contracts via the Army Centralized Contracts and Security (ACCS) Portal.

Create and update organizations' security training.

Assists with the insider threat program (ITP).

Submit employees for Common Access Card (CAC).

ZAPATA TECHNOLOGY, INC., Fort Eisenhower, GA 11/2021 – 01/2022

EAST COAST REGION DISTRIBUTED COMMON GROUND SYSTEM-ARMY (DCGS-A) INFORMATION SPECIALIST Responsible for supporting over 28 DCGS-A systems, with the provision of operational and technical adviser to the East Coast Region and 513th MI BDE. Prepared and updated DIACAP, DCID 6/3 packages, network configurations, security documentation, translated security requirements, and other supporting security documentation. Evaluate policies, regulations, and vulnerability trends and provide feedback on problematic patterns. Performs security test and evaluation (ST&E) on DCGS-A and non-DCGS systems, utilizing ICD 503 Risk Management Framework (RMF).

Supported the provision of operational and technical advisers to the East Coast Region and 513th MI BDE.

Prepared and updated DIACAP, DCID 6/3 packages, and ICD 503 Risk Management Framework (RMF), network configurations, security documentation, translated security requirements, and other supporting documentation.

Performs security test and evaluation (ST&E) and Security Technical Implementation Guides (STIGs) on DCGS-A and non-DCGS systems, utilizing ICD 503 Risk Management Framework (RMF).

Analyze RMF and DoDI 8500.2 IA security controls and organizations’ business processes and develop material and non-material solution controls.

Continuously monitors and maintains current knowledge of DCGS-A hardware, software emerging and present-day technology, guiding the organization and unit.

Perform monthly or as-required vulnerability scans using the Assured Compliance Assessment Solution (ACAS) for both Top-Secret and Secret systems. Assist units by verifying information Assurance Vulnerability Management (IAVM) compliance, performing Computer Vulnerability and exposure (CVE) reviews, and taking corrective action based on their ACAS results.

Works effectively with the customer, evaluates policies, regulations, and vulnerability trends, and provides feedback on problematic patterns to the Program or Records (POR) manager and other project team members on the development. Estimates timelines for Certifications and Accreditation through eMASS.

Apply commonly used concepts, security levels, best practices, and procedures within a particular engineering discipline required by DODI 8500 Information Assurance (IA) services, controls against system baselines, and vulnerabilities.

Measures software baselines to include operating systems against known vulnerabilities by coordinating corrective action.

Construct a Plan of Action and Milestones (POA&M) with a mitigating strategy for system vulnerabilities that cannot be patched.

Works independently with minimal direction on DoD IT operating environment and network security.

Develop and document IA processes for the DCGS-A Fixed family of systems supporting organization(s) as required. Document correspondence, manuals, and accreditation/certification packages as required for the DCGS-A Fixed systems.

Performs independent or collaborative research on solutions for IA requirements and current IA capabilities against future requirements and provides strategies to close any capability gap.

Performs duties as a project coordinator responsible for installing Internet and other technological services.

Performs the Army Training & Certification Tracking (ATCTS) manager duties, ensuring, maintaining, monitoring, and reporting that the task order Field Service Engineers (FSE) contractors comply with all required IA training and mandatory training for their job responsibilities.

Complete and submit system access documentation: System Authorization Access Request (SAAR), Acceptable Use Policy (AUP), Privileged Access Agreement (PAA), and Duty Appointment Orders.

Ensure all task order contractors follow all INSCOM and directs annual training. Supports the Department of Defense (DoD) Information Assurance Certification and Accreditation Process (DIACAP) and Regional Computer Emergency Response Team (RCERT).

I was designated as a Data Transfer Agent (DTA) for the 513th, performing data transfers between classified and unclassified systems.

Note: Contract ended.

a3 Missions, Fort Eisenhower, GA 8/2021 – 11/2021

Savant Catalyst Information Assurance Engineer III United States Army Cyber Command

Responsible for supporting ARCYBER G6 in conducting packet capture deconstruction and defensive cyberspace operations to preserve Army cyberspace capabilities and protect Army systems and networks. Using passive network mapping and analytical tools to discover gaps within the network architecture. Analytical tools include Enhanced Network Visualization Suite (ENVS), Wireshark, Centurion, and Pathfinder (PF).

Provided weekly system status reports of potential advanced persistent threats (APT).

Created a map of current assets based on types of operating systems (OS) and devices.

Developed several Tactics, Techniques, and Procedures (TTP) on operation requirements.

Performed network traffic analysis on captured packets using Wireshark.

Note: Position was eliminated.

ZAPATA TECHNOLOGY, INC., Fort Eisenhower, GA 4/2017 – 8/2021

Supported the provision of operational and technical advisers to the East Coast Region and 513th MI BDE.

Performs security test and evaluation (ST&E) and Security Technical Implementation Guides (STIGs) on DCGS-A and non-DCGS systems, utilizing ICD 503 Risk Management Framework (RMF).

Analyze RMF and DoDI 8500.2 IA controls and organizations’ business processes and develop material and non-material solution controls.

Continuously monitors and maintains current knowledge of DCGS-A hardware, emerging software, and present-day technology, guiding the organization and unit.

Collaborates effectively with the customer, evaluates policies, regulations, and vulnerability trends, and provides feedback on the development of problematic patterns to the Program or Records (POR) manager and other project team members. Estimates timelines for Certifications and Accreditation through eMASS.

Measures software baselines to include operating systems against known vulnerabilities by coordinating corrective action.

Construct a Plan of Action and Milestones (POA&M) with a mitigating strategy for system vulnerabilities that cannot be patched.

Works independently with minimal direction on DoD IT operating environment and network security.

Performs independent or collaborative research on solutions for IA requirements and current IA capabilities against future requirements and provides strategies to close any capability gap.

Performs duties as a project coordinator responsible for installing PM on technological services.

Performs the duties as the Army Training & Certification Tracking (ATCTS) manager ensuring, maintaining, monitoring, and reporting that the task order Field Service Engineers (FSE) contractors comply with all required IA training and mandatory training for their job responsibilities.

Complete and submit system access documentation: System Authorization Access Request (SAAR), Acceptable Use Policy (AUP), Privileged Access Agreement (PAA), and Duty Appointment Orders.

Ensures all task order contractors' compliance with all INSCOM and directs annual training. Supports the Department of Defense (DoD) Information Assurance Certification and Accreditation Process (DIACAP) and Regional Computer Emergency Response Team (RCERT).

Perform the duties as a designated Data Transfer Agent (DTA) for the 513th, performing data transfers between classified and unclassified systems.

Strayer University, Augusta, GA/Remote 1/2015 – Present

Adjunct Professor (Ground and Online)

Facilitated class discussions, taught the developed course curriculum instructional design, and evaluated and assessed students’ achievements.

Strong role model for peers and students.

Achieve and maintain a high satisfaction rating with students and staff.

Taught/facilitated the following courses/classes:

SEC310: Homeland Security Org and Administration

CIS499: Information Systems Capstone

CIS170: Information Technology in Criminal Just

CIS111: Intro to Relate Database Management Systems

CIS106: Intro to Info Technology

CIS333: Networking Security Fundamentals (Wireshark - packet capture analysis tool)

SEC420: Perimeter Defense Techniques

CIS210: Systems Analysis and Development

CIS498: Undergrad Info Tech Capstone

CIS000: Tutoring: Online Tutoring (Jan 2021 – Present)

CIS324: Commuter Ethics

CIS375: Human-Computer Interaction

Sotera Defense Solutions, Fort Eisenhower, Ga. 8/2014 – 4/2017

Supported the provision of operational and technical advisers to the East Coast Region and 513th MI BDE.

Performs security test and evaluation (ST&E) and Security Technical Implementation Guides (STIGs) on DCGS-A and non-DCGS systems, utilizing ICD 503 Risk Management Framework (RMF).

Analyze RMF and DoDI 8500.2 IA controls and organizations’ business processes and develop material and non-material solution controls.

Continuously monitors and maintains current knowledge of DCGS-A hardware, emerging software, and present-day technology, guiding the organization and unit.

Perform monthly or as-required vulnerability scans using the Assured Compliance Assessment Solution (ACAS) for both Top-Secret and Secret systems. Assist units by verifying IAVM compliance, performing Computer Vulnerability & Exposures (CVE) reviews, and taking corrective action based on their ACAS results.

Measures software baselines to include operating systems against known vulnerabilities by coordinating corrective action.

Construct a Plan of Action and Milestones (POA&M) with a mitigating strategy for system vulnerabilities that cannot be patched.

Works independently with minimal direction on DoD IT operating environment and network security.

Develop and document IA processes for the DCGS-A Fixed family of systems supporting organization(s) as required.

Document correspondence, manuals, and accreditation/certification packages as required for the DCGS-A Fixed systems by providing support for assessment and authorization (A&A).

Performs independent or collaborative research on solutions for IA requirements and current IA capabilities against future requirements and provides strategies to close any capability gap.

Performs duties as a project coordinator responsible for installing Internet and other technological services.

Complete and submit system access documentation: System Authorization Access Request (SAAR), Acceptable Use Policy (AUP), Privileged Access Agreement (PAA), and Duty Appointment Orders.

Ensure all task order contractors comply with all INSCOM and directs annual training. Supports the Department of Defense (DoD) Information Assurance Certification and Accreditation Process (DIACAP) and Regional Computer Emergency Response Team (RCERT).

I was designated as a Data Transfer Agent (DTA) for the 513th, performing data transfers between classified and unclassified systems.

ManTech INC, Fort Eisenhower, GA 05/2014 - 8/2014

Information Special III- EAST COAST REGION DISTRIBUTED COMMON GROUND SYSTEM-ARMY (DCGS-A) INFORMATION SPECIALIST Responsible for supporting over 28 DCGS-A systems, with the provision of operational and technical adviser to the East Coast Region as well as the 513th MI BDE. Prepared and updated DIACAP, DCID 6/3, ICD 503 Risk Management Framework (RMF) packages, assessment and authorization (A&A) support, network configurations, security documentation, translation security requirements, and other supporting documentation. Evaluate policies, regulations, and vulnerability trends and provide feedback on problematic patterns. Utilize analytical tools to perform security tests and evaluations (ST&E) on DCGS-A and non-DCGS systems.

Continuously monitors and maintains current knowledge of DCGS-A hardware, emerging software, and present-day technology to guide the organizations and units. Effectively works with the Program or Records (POR) manager, DCGS-IA specialist, and other project team members on developing and estimating timelines for Certifications and Accreditation through eMASS.

Apply commonly used concepts, security levels, best practices, and procedures within a particular engineering discipline required by DODI 8500 Information Assurance (IA) services and controls against system baselines and vulnerabilities.

Measures software baselines to include operating systems against known vulnerabilities by coordinating corrective action.

Construct a Plan of Action and Milestones (POA&M) with a mitigating strategy for system vulnerabilities that cannot be patched. Works independently with minimal direction on DoD IT operating environment and network security.

Monitor and ensure contractors are compliant with ATCTS and INSCOM training requirements.

ManTech, Inc. lost the contract to Sotera Defense Solutions.

CACI, INC (MAINZ Kastel GE, Fort Eisenhower, ga, San Antonio, TX) 09/2010 - 5/2014

Information Special III

Supported the provision of operational and technical advisers to the National Security Agency (NSA), Federal Department of Defense (DoD), Army, and other military services by assisting military, civilians, and contractor personnel in matters relating to information systems security (ISS).

Performed security tests and evaluations (ST&E), used XACTA to input changes to System Security Plans (SSP) and trouble ticketing program to resolve IT-related issues.

Collaborate effectively with the customer, the Program Manager (PM), and other project team members to meet, track the development, and estimate timelines of certifications and accreditations; ensure best practices and understanding; apply sound security engineering principles and methodology to all requirements.

Applies DODI 85002. IA control areas include continuity of operations, enclave boundary defense, security design, configuration, identification and authentication, physical and environmental enclave, computing environment, vulnerability, incident management, and personnel.

Assigned as a Local Registration Authority (LRA) issuing Military, civilian, and contractors Public-Key Infrastructure (PKI) for hardware, software, policies, and procedures to protect, create, manage, distribute, store, and revoke digital certificates.

Migrated over thirty systems for NCAD to XACTA.

ITT (TAC-SWACAA, IRAQ) 392ND Expeditionary Signal Battalion 08/2009 - 09/2010

Service Desk Lead Administrator

Oversaw seven contractors and two military personnel while serving as the Camp AR Ramadi, Iraq Service Desk Administrator Lead, responsible for providing technical knowledge and customer service to over 2500 United States Army Soldiers and civilian contractors. Re-imaged/baseline over five hundred workstations, two days ahead of schedule. Provided Information Assurance and workstation training to military and civilian personnel, reducing workstation/user downtime. Created and updated over 40 Standard Operating Procedures (SOPs), providing administrators and network users with a way to troubleshoot computer issues. Received two U.S. Army certificates of appreciation for outstanding service and achievement.

Provided detailed and insightful cyber instruction to soldiers, civilians, and contractors.

Developed and employed tracking technology for remedy tickets for initial submission to completion.

Science Applications International Corporation (SAIC) MacDill AFB, FLA 06/2009 - 08/2009

Network Watch Officer (NWO)

Oversaw the daily operations of the Help Desk, Tier 1, 2, 3, and Military Watch Officers. Managed the daily operations of CENTCOM’s help desk, tier 1, 2, and 3. Prepared the CENTCOM Daily Operational reports for the J6.

MILITARY EXPERIENCE

United States NAVY 09/1986 - 06/2009

INFORMATION SYSTEM SECURITY TECHNICIAN SENIOR CHIEF (ITCS) PETTY OFFICER

Enlisted Surface Warfare Specialist (ESWS)/ Enlisted Aviation Warfare Specialist (EAWS)

Honorably served 23 years in the United States Navy. While serving on active duty, I was a leader and an information technology (IT) technician.

Oct 2007 – June 2009

USS Iwo Jima (LCC-20)

Senior Chief Petty Officer.

Supervised 35 Sailors in Network and Automated Data processing (ADP) Systems.

Enlisted Service Warfare Surface (ESWS) Qualifier qualified 150 sailors.

Nov 2005 – Sept 2007

SOCOM MacDill AFB

Information Systems Security Manager (ISSM).

Command Watch Officer.

Aug 2002 – Nov 2005

COMSECONDFLT

Command ISSM Certified and Accredited (C&A) NIPR/SIPR /JWICS Networks (First time networks were accredited.

Jan 1999 – Aug 2002

NRD Richmond, Va

Recruited eighty-three applicants

July 1994 – Dec 1999

Precomm/USS RUSSELL (DDG-59)

Local Area Network Manager (LAN) (Novel and Unix Servers).

Safety Manager – earned three safety “E.”

Radio Supervisor.

Dec 1989 - July 1994

NCTAM MED/SATCOM Naples, IT

SATCOM Supervisor

Mar 1987 -Dec 1989

USS FIFE (DD-991)

Antenna Petty Officer.

Radio Supervisor.

Sep 1986 – Mar 1987

NTC San Diego/Radioman “A” School

Recruiter Training/Radioman Training.

Professional Development

Adjunct Professor Cyber Security - Strayer University (January 2015 – Present); U.S. Navy - Senior Enlisted Academy (SEA), Newport, Rl. (Oct 2007), Information System Security Manager (NEC IT-2779), Network Security Vulnerability Technician (IT-2780).

Contact this candidate