Information Technology Risk Management
Resume:
Gary Cook
**********@*******.***
(SSAN: ****)
Phone: 240-***-****
(COVER LETTER)
I have 20+ years as an IT Profession, 16 years as the Assistant Chief of Information Systems. Manage the access control lists (ACL’s), IP addressing IP/V6, network device security, protocols analysis, TCP/IP concepts and protocols, and VPN configuration and deployment. Enterprise servers and networks topics include desktop applications security, Linux configuration, proxy servers, web server, and Windows server configuration. Network security topics include cryptography, firewall concepts and policies, malware, physical security, risk management and analysis, security fundamentals, and threats and vulnerabilities. Information assurance topics include cryptography, firewall concepts and policies, malware, physical security, risk management and analysis, security fundamentals, and threats and vulnerabilities).
As the ISSO, I Performed the organizations “Security Certification and Accreditation” for a customer base of 3,800 workstations and IT Hand/Software and validated analytical studies on several military organizations IT Security needs in terms of information technology systems requirements. Planned and Deployed Security assessments, disaster recovery plans and implementations on personnel and with information technology systems that provided system capabilities required for projected workloads, and planned layouts and installation of new system(s) or modification of existing system. Established, supervised (15 employees; military/civilian), and then managed the initial “Help Desk” functions for a customer base of approximately 2000 Military/Civilian employees located in multiple areas on base. Active Directory implementation support and maintenance, Exchange implementation support and maintenance, SMS implementation support and maintenance. Implemented system audits formulated in Active Directory, Data & Voice network connectivity, Exchange, BMC Remedy system; also included establishing and creating profiles for “Computer Log-In” accounts, issuing, changing, and unlocking of “Computer Passwords”, giving “Computer Security” briefing and managing the Annual “Information Assurance Program” (Computer security test), performed Tier I, II, III; desktop troubleshooting of “Hardware/Software”, updating of virus protection program, removing computer viruses, defragging infected systems ; upgrade software applications; connecting or re-establishing connection of hardware; re-installing software applications as required to correct damage/malfunctioning software programs. Trained customers on new office software program to include military specific software programs released from Higher Headquarters.
As an "Air Reserve Technician - (ART)", I controlled a Military Squadron of 175 personnel
(Military/Civilian). Duties and Responsibilities included maintaining, managing, and budgeting an IT Security fiscal year budget (2+ million dollars), which involved personnel movement, supply, equipment, and building managing. Collecting this data for weekly and monthly staff meeting to include preparing visual presentation of funding, spending, and forecasting.
Gary Cook
(SSAN: 0609)
**********@*******.***
Phone: 240-***-****
ADMIRAL SECURITY SERVICES
Security Officer/Shift Supervisor, Oct 2014 – Present Guard internal/external entrances and check points, welcome and screen visitors/employees/ contractors, monitor the agency premises, while enforcing the organization's security policies and procedures.
Oct 2007 – April 2014:
The Library of Congress/Science Applications International Corporation (SAIC)
(40 hours a week/Full Time position)
Senior Help Desk/Manager
Provided IT support for the section for the Office of Strategic Initiatives (OSI) for the Library of Congress, Washington DC., to include servicing over 5000 users, performing Tier I, II, III; desktop troubleshooting of “Hardware/Software”, updating of virus protection program, removing computer viruses, defragging infected systems ; upgrade software applications; connecting or re- establishing connection of hardware; re-installing software applications as required to correct damage/malfunctioning software programs. Performing installation and support of Operating Systems (OS), hardware and software, PC, VPN setup and deployment, creating work orders, tracking inventory and weekly reporting for project assistance. Providing front-line advice service to end-users on software and hardware related problems. Performing first-level diagnosis for customer issues maintaining high first call resolution rate. Responsibilities were to open, track and take ownership of incidents and service requests. Manage customer communications and set appropriate expectations. Perform technology support duties. Managing the remedy system to provide support to end users on variety of issues. Troubleshooting desktops and laptops on-site and remotely, or via telephone; troubleshoot hardware and software problem, install software and build workstations accordingly to regulatory baseline via On-command software and Ghost application. Experience in Windows XP migration, Blackberry Configuration, configure VMware workstation. Set up Output Control Software which use on public PC for printing fee. Work independently or within a team to resolve issues in a timely manner. Designated trainer for new employees to get familiar with the work environment as it relates to the architectural topology that is being used by this agency. I am also responsible for managing the IT team, issuing assignments to team members, and following up the work. Prioritize numerous issues of varying severity, and effectively manage the resolution of all issues within the accepted service levels. Utilizing the Library of Congress (LOC) Service Desk/Survival guide, policy, process and procedures in resolving complex issues. Assisted in developing and enforcing service related procedures, and complete work orders using Help Desk Software. Install, configure, upgrade, and maintain desktops, laptops, imaging PCs or laptops using industry standard tools, also configured networked printers, scanners, video cards, system boards, NICs, Wi-Fi cards, switches, hubs, etc. Install, configure, upgrade, and maintain Windows operating systems: Windows Professional and Professional. Install, configure, upgrade, and maintain Windows PC applications: MS Office Pro, MS Outlook. Troubleshoot and resolve both hardware and software related PC problems.
Science Applications International Corporation (SAIC)
(40 hours a week/Full Time position)
Records Management Analyst
Performed Record Analyses, also reviewed the ED Records Disposition Schedules and the General Records Schedules (electronic/paper) to determine those records eligible for revision, formatting, and the immediate destruction, those with unexpired administrative, legal, or fiscal value that are appropriate for transfer to the successor office or storage in a Federal Records Center, and records evaluated as having permanent value requiring transfer to the National Archives and Records Administration. Developed and revised current tracking system of records. Professional experience
Jan 87 – Apr 07:
305th/514th Air Mobility Wing/Information Systems; McGuire Air Force Base, New Jersey
(40 hours a week/Full Time position)
(IT) – Systems Engineer/Network Analyst – Assistant Chief of Information Systems
Provided guidance on plans and procedures and lead efforts for the insertions of solutions required to facilitate IT security expansions of the existing organizations/squadrons. Verified and validated, cost and risk, and supportability and effectiveness analysis for total systems. Manage the “Lifecycle Projects”, for the 514th Information Systems Office of Information Security Section as this concept was in its development stages through the deployment and implementation. Identifying with customer requirements, technical concepts were coordinated with analyses of project resources as it related to the cost and schedules. Analyses were performed at all levels of total system management product to include: network security concepts, server management, systems, software design integration, fabrication, test, installation, operation, maintenance and disposal. Performed the logical and systematic conversion of customer or product requirements into total systems solutions that acknowledged technical, schedule, and security cost constraints.
As the Assistant Chief of Information Systems, I wrote manage and maintain several IT planning publications, regulations, guidance and policies for a DOD agency. Performed periodic evaluation and feedback forums with all of my employees to ensure accuracy and current mandated requirement were being accepted and performed by my entire staff
& customer base of IT customers and end users. I wrote Civilian/Military Annual Performance Appraisals; Annual Reviews; Semi-Annual Rating Performance. Created numerous Military regulations & operating instructions that provided information in work breakdown structures for various categories (i.e. Postal Instruction, computer security and systems, preparing official correspondence, maintenance of office forms, creating official publications, budget and safety regulation) to office personnel and a customer base of 2,000 (military/civilian). Created "Security Violation" reports. Developed and maintained training aides designed to keep the military personnel current on higher headquarters policies. Created "Workgroup Managers Course", military equivalent to
"A++ Certification Course.
Conducted negotiation within the organization with various offsite counterparts, senior managers and staff to obtain information on limitations and capabilities of existing system and capabilities required for information technology requirements of the future (Life Cycle studies and reports). Performed Analytical security studies, also performed for a number of departments serviced by IT processing equipment, reporting formats required volume of transactions, time requirements and cost constraints, and need for security and access restrictions to determine hardware configurations. Evaluated information to determine, recommend, and plan layout for type of computers and peripheral equipment, or modifications to existing equipment and system, that will provide capability for proposed project or work load, efficient operation, and effective use of allotted space.
Established the initial “Help Desk” functions for a customer base of approximately 2000 Military/Civilian employees located in multiple areas on base. Daily operation included establishing and creating profiles for “Computer Log-In” accounts, issuing, changing, and unlocking of “Computer Passwords”, giving “Computer Security” briefing and managing the Annual “Information Assurance Program” (Computer security test) performed desktop and telephonic troubleshooting of “Hardware/Software”, updating of virus protection program, removing computer viruses, defragging infected systems ; upgrade software applications; connecting or re-establishing connection of hardware; re-installing software applications as required to correct damage/malfunctioning software programs. Trained customers on new office software program to include military specific software programs released from Higher Headquarters. Evaluated new releases of software/hardware and submitted results thru the proper agencies for implementation.
Manage the IT Infrastructure for the 305th Contracting Squadron, Manage and maintain servers daily. Assesses system architecture for the DOD Buying/Vendor Payment System “Automated Business Services System” – ABSS. Rotating back-up tapes, scheduling nightly runs and dumps, monitoring and servicing the “brightstar ARC” program, script developing/managing of scheduling of the monthly; weekly, and daily program tasking, managing the “Configuration Data Repository – Admin (CDR-A)” this system monitors and track all DOD Purchases with five separate functions (i.e. logs, packages, servers, solutions, adapter, security settings); “WebMethods Trading Network Console” tracking the entire process of a buying contract; analyzes system needs and requirements, performing technology and process risk, constant checks of “Error, Production logs; Backup Dumps, and Interfaces on the Procurement Desktop – Defense
(PD2); Application; and Adapter servers, also managing the Help Desk functions of this agency, reviews the assessments of vendors for daily and “End of Year” Purchases. Responsible for briefing the 305th Contracting personnel and Higher Headquarters on all programs and systems matters and reporting. Also providing daily, weekly and monthly reports to these agencies. Training of policies and procedures to all personnel (to include annual security, newly deployed programs).
Education:
Industrial Technology (B.S. Program)
Southern Illinois University, Carbondale, IL (Course completion 05/2017) Learning Tree International – Building Great Web Pages Training:
ITIL Certification v3
Security + Certification
Certificate/SAP HANNA
Certified Lead Auditor/Lead Implementer –Certified Certification/Accreditation (Q/CA)
Certified Qualified Access, Authentication & Public Key Infrastructure (PKI)
Certified Network Security & Vulnerability Technician” (Military Equivalent to CISSP) (A- 531- 0022) Coursework was a 342 hours of training; This is a classified training course Covering all aspects of “Network/Computer” Security from the user to the server level.
Certificate Linux Essentials/UNIX Security
Boot-Camp Certificate for Certified Information Systems Security Professional (CISSP)
United States Air Force - Workgroup Manager Course (Military Equivalent to A+ Certification) Asset Management Certification (40hr training course)
As an active member of Institute of Electrical and Electronics Engineers (IEEE)
Personal Information:
United States Air Force/Air Force Reserve: Honorable Discharge/Retired; Outstanding
“Airman of the Year” Medal
Eligible: VRA
Contact this candidate