IT Security Specialist, Certified ScrumMaster
Resume:
Mrs. Davina Sasser
IT Security Specialist
************@*****.*** • 301-***-****
LinkedIn Profile • Frederick, MD 21703
Solutions-focused IT Security Specialist with 10+ years of experience designing, implementing, and optimizing cybersecurity infrastructures across federal agencies. Adept at enhancing system security, driving operational excellence, and managing risk through innovative processes. Skilled in leveraging Google Workspace, vulnerability scanning tools, and secure content management systems to streamline operations, increase compliance, and strengthen digital defenses. Proven leader in cross-functional collaboration, security policy development, and strategic IT planning. Committed to continuous improvement and delivering measurable results in high-stakes environments.
Areas of Expertise
Cybersecurity Strategy & Risk Mitigation
Secure Web Development & Content Management
Penetration Testing & Security Audits
Incident Response & Remediation Planning
Vulnerability Scanning & Threat Detection
Web Application Security
Technical Documentation & Compliance Reporting (SSP, POA&M, BIA)
Cloud Migration & System Integration
Procurement Lifecycle & Cost Optimization
Strategic IT Security Planning
Stakeholder Engagement & Cross-Functional Collaboration
Agile Project Management & Continuous Improvement
Technical Proficiencies
Risk Management Tools:
CSAM, ServiceNow, Jira — Risk assessment, vulnerability management
Compliance:
508 Compliance
Operating Systems:
Linux RHEL 6, 7 (command line)
Vulnerability Scanning Tools:
Tenable Nessus, Qualys, Acunetix, OWASP Zap — Threat detection, penetration testing
Programming Languages:
HTML3.2, HTML5, JavaScript, XML, CSS, Visual Basic, C++, PHP
Office & Productivity Tools:
Microsoft Office Suite (XP–2016), Corel WordPerfect, WS_FTP, Dreamweaver, SharePoint, Adobe Suite, Google Workspace (Sheets, Docs, Slides, Gmail, Calendar, Drive) — Real-time collaboration, workflow automation
Compliance Frameworks:
800-30, 800-37 Rev1, 800-53 Rev 4 & 5, 800-53A, SP 800-60, FIPS 199, FIPS 200
Development Tools:
Dreamweaver, SharePoint, Drupal 6 & 7, Adobe Suite, Google Analytics, Bootstrap
Professional Experience
IT Security Specialist/Procurement Officer GAMA-1 Technologies (NASA) – Greenbelt, MD August 2024 – Present
Supports system implementation, integration, maintenance, and operations, including the investigation of complex technical problems. Champion the development and enforcement of cybersecurity policies, technical documentation (SSPs, CPs, BIAs, POA&Ms), and compliance initiatives aligned with NIST and FIPS standards. Lead procurement lifecycle management by conducting strategic sourcing, cost optimization analyses, and vendor collaboration to ensure seamless purchasing and timely fulfillment of business needs. Orchestrate actionable insights through weekly procurement reporting, leveraging data-driven dashboards to guide executive decision-making.
Spearheaded automated procurement reporting initiatives by leveraging advanced Google Sheets modeling and cloud-based collaboration tools within Google Workspace, streamlining data-driven decision-making, optimizing procurement lifecycle tracking, and enhancing cross-functional team efficiency, leading to improvements in operational workflows.
Key Contributions:
●Led data capture efforts for the AWS Resource Requirements Matrix to support the transition of Product Data Quality Services to a Cloud environment.
●Enhanced audit readiness by implementing a centralized repository for procurement artifacts and milestone tracking, streamlining SCA assessment preparation.
●Collaborate cross-functionally with leadership to develop multi-year GRAVITE program budgets (FY25–FY38), ensuring alignment with NASA’s strategic objectives.
●Streamline security assessment preparation by managing artifact collections, POA&M milestone tracking, and post-action reviews to improve audit readiness and compliance scores.
IT Security Specialist ERT Inc. (NOAA) – College Park, MD July 2019 – June 2024
Spreadhead vulnerability scanning across 40+ Federal sites to enhance internal host and external website security. Orchestrate monthly web application scans, scheduling, monitoring, and reporting activities through ServiceNow and an online scheduling platform. Cultivate strong partnerships with NCEP center webmasters, conducting monthly reviews to optimize web security posture and address emerging vulnerabilities. Lead daily credential failure monitoring for network IPs, collaborating cross-functionally to ensure rapid issue resolution. Formulate business processes for swift remediation of high vulnerabilities within 15-day timeframe to mitigate risks. Continuously optimize security playbooks, aligning with evolving threat landscapes and compliance requirements. Prepare for and contribute to annual security assessments and penetration testing. Develop and maintain critical security documentation including System Security Plans (SSP) and Plan of Action and Milestones (POA&M). Administer RSA Authentication management programs, reinforcing identity and access management (IAM) best practices through strategic account governance.
Key Contributions:
●Implemented strategic security measures leading to robust defense mechanism for over 40 web applications.
●Reduced vulnerability response times by deploying efficient processes for immediate issue identification and resolution.
●Enhanced team efficiency by developing and maintaining documentation of vulnerability management processes/best practices.
●Spearheaded development and execution of security solutions by collaborating with management to evaluate security products.
●Transitioned to proactive security model by initiating and managing Requests for Change (RFCs) related to server security issues.
Web Developer CyberData Technology, Inc. (NOAA) – College Park, MD February 2018 – July 2019
Executed monthly and on-demand vulnerability assessments using Acunetix across 20 high-visibility center websites, driving continuous enhancement of web security posture. Coordinated and operationalized scan cycles, ensuring compliance with strict security protocols, timely reporting, and actionable insights. Produced weekly threat intelligence reports, synthesizing scan results and engaging cross-functional stakeholders—including center webmasters—to define remediation roadmaps. Maintained and updated .php and .shtml web assets in a Linux-based CLI environment, preserving system integrity and uptime. Spearheaded RFC-driven change implementations, fortifying website and server infrastructure to proactively mitigate attack vectors. Deployed strategic Apache/Tomcat backend rewrites and redirects, enhancing site navigation, SEO performance, and user experience.
Key Contributions:
●Improved web security by routinely managing/refining web vulnerability scanning processes, contributing to robust digital defenses.
●Led security management of web servers by developing and implementing strategic changes that fortified web infrastructure.
●Maintained consistent performance and up-to-date content by managing updates and maintenance for over eight intranet sites.
●Streamlined web operations by innovating report generation/scan coordination techniques, reducing response times to security threats.
Web Content Manager Tatitlek Corp - GeoNorth (DoD) – Mclean, VA March 2016 – February 2018
Directed the end-to-end content lifecycle, from strategic planning and content acquisition to deployment across multi-site ecosystems. Championed QA/QC operations, partnering with content specialists to uphold editorial integrity and ensure consistent content quality. Designed and deployed custom CSS solutions within Drupal CMS, elevating UI/UX and reinforcing visual brand identity. Authored and governed comprehensive Drupal web style guides, leveraging CSS/HTML to align site architecture with user behavior and organizational goals. Orchestrated content production schedules to streamline workflows and meet project milestones efficiently. Delivered training initiatives and instructional materials, empowering cross-functional teams with the skills to maintain, manage, and evolve digital content platforms.
Key Contributions:
●Elevated content standards and consistency across all digital platforms through effective leadership in the QA/QC process.
●Managed user interactions by promptly responding to inquiries aimed at improving user satisfaction and website accessibility.
●Improved search engine rankings and user engagement by optimizing web content for search engines using taxonomy/keywords.
●Enhanced website usability and visitor engagement by developing comprehensive style guides and updating CSS, resulting in a more intuitive and aesthetically pleasing user interface.
Website Developer/Drupal Site Administrator ActioNet, Inc. (DOE) – Germantown, MD March 2015 – March 2016
Identified and defined system requirements and operational needs in collaboration with stakeholders, ensuring tailored system functionalities. Educated stakeholders on Drupal 7 functionalities, including basic operations and content management, enhancing user competence and system utilization. Designed websites to ensure compliance with Section 508, guaranteeing accessibility for all users. Delivered comprehensive training to content owners on Drupal operations, enabling efficient page creation and updates.
Key Contributions:
●Enhanced and maintained Drupal systems by implementing security updates and upgrades to secure data integrity/system stability.
●Established and deployed site navigational frameworks and developed web pages by using HTML and JavaScript, responsive to client specifications and requirements.
●Managed communications and site-related queries to ensure consistent support and guidance while serving as the principal contact for over four stakeholders.
Additional Experience
Web Content Analyst – Contract
Aquilent (SAMHSA), Laurel, MD, December 2014 to March 2015
Web Content Analyst – Contract
Celerity (FINRA), Washington DC, June 2014 to November 2014
Web Developer/Program Analyst – Contract
Master Key Consulting (NIH), Bethesda, MD, January 2006 to May 2014
Certifications
Certified ScrumMaster (CSM Web Development Customer Service: Tools of the Trade HTML JavaScript Fundamentals XML SharePoint 2010 Power End User Drupal 7 Site Building
Contact this candidate