Data Analyst Information Technology

Location:

Providence Township, PA, 17560

Posted:

May 21, 2025

Contact this candidate

Resume:

Joseph F. Kullmann

*** ********** ***** *** **********, PA 17560

Mobile: 202-***-****

Email: *********@*******.***

Objective:

A Challenging position in Information Technology and/or Information Systems Security that offers opportunities for growth.

Work Experiences:

I have more than twenty five years of experience in the Information Technology field, hold a current US Government Top Secret security clearance. I am well versed in the latest computer technology and software applications and am a United State Marine Corps veteran.

Training and Certifications

Current US Government Top Secret security clearance

Splunk Administrative training

AWS

Agile Leader training

eMASS Certification training

ServiceNow Administrative training

Information Systems Security Manager training

COMSEC Account Management training

Have an A+ Certification for a Computer Technician

Certified Toshiba Hardware Technician, and an IBM Hardware Service Technician Certifications

Dell Certified Technician Certificate

Advanced PC Configuration/Troubleshooting and Data Recovery (Learning Tree International)

Windows 7 basic and advanced training

Windows 10 basic and advanced training

Administrative courses pertaining to the Microsoft Office Suite and the various law firm applications and specialized and customized templates

Booz Allen Hamilton (December 2021 – Present)

May 2024 – April 2025 Booz Allen Hamilton (Senior Security Analyst VA TSS 2.0 SR01-23 project) Remote

• Work as a Senior Security Analyst with the U.S. Department of Veterans Affairs (VA) to assist them with updating and maintaining their cybersecurity posture.

• Integral part of the FISMA Containerization Asset to Boundary (FCAB) team assisting the VA with the alignment of all VA system and Area Boundary assets.

• Educating teammates on the development of Splunk scripts to allow them to customize, refine, or develop their own queries which has led to an increase in the team’s overall efficiency.

• Conduct FISMA system analysis to understand existing systems and asset inventory as currently gathered and documented from various sources to include, but not limited to Enterprise Mission Assurance Support Service (eMASS) and VA's Continuous Diagnostics and Mitigation (CDM) Splunk, which will then be easily manipulated using Microsoft PowerBI.

• Working directly with VA Information System Owners (ISO) daily ensuring all of their system assets are reported correctly and accurately within eMASS.

• Validating the expected asset data against the actual data reported in Continuous Diagnostics and Mitigation (CDM). Worked with the ISOs/SSs to correct any differences.

• Responsible for reporting all asset findings and alignment recommendations to the VA Governance Board for proper implementation and monitoring as part of Continuous Diagnostics and Mitigation (CDM).

• Personally responsible for the discovery, analysis, implementation, and validation of all decommissioned systems within the VA enterprise to ensure all assets were decommissioned or relocated to new system boundaries. This included more than 10,000 assets within more than 611 systems in accordance with the Federal Information Security Modernization Act for the VA enterprise.

• Assisted with the writing and design of the FCAB eMASS decommission SOP. These procedures were implemented by the VA as the governing rules and regulations before any eMASS systems are to be approved for decommission. This helped to eliminate orphaned assets by over 40%.

• Working with other FCAB team members to properly discover, validate and align more than 300,000 orphaned. This limited security vulnerabilities across the VA enterprise.

• Assisting the FCAB implementation and alignment team on proper methods to monitor and align all VA system and area boundary assets using Splunk, eMASS, BigFix, Tenable/Nessus and Forescout to limit security vulnerabilities across VA’s over 1260 FISMA systems.

• Working directly with VA Governance Board to properly align more than 200 VASI systems and hardware assets associated with them to a valid ATO and eMASS boundary to and ensuring that all vulnerabilities are minimized. This properly aligned more than 5,000 orphaned (unaligned) assets to eMASS/ATO boundaries.

• Designed and implemented tracking spreadsheets and presentation slides for the VASI to eMASS ATO alignment that assisted the VA Governance Board to better understand guidance and what decisions were made. This helped to produce better productivity by over 30%.

• Main senior Data Analyst (DA) overseeing, assigning project ownership to other junior DA’s and validating of more than 65,000 orphaned assets ensuring they are properly aligned to a new eMASS system for Special Purpose assets.

• Collaborating daily and weekly with our team to ensure transparent communication, project priorities and effective team efforts.

June 2023 – May 2024 Booz Allen Hamilton (Security Integration Senior VA TSS SR6A project) Remote

• Serves as an integral part of the team as a Security Integration Senior Analyst with the U.S. Department of Veterans Affairs (VA) supporting the efforts of Security Tools Rationalization to discover, categorize, find ownership/management, and conduct interviews for all of the VA security software tools.

• Develops written SOPs for the proper procedures on how to conduct analysis, find software owners/managers, validation of the software and interview all the owners for the software security tools. The SOP further includes what tools we used for our analysis and how to use them.

• Provides recommendations and assistance with the creation of a new SharePoint team site to better track our accomplishments and make it easier for management to access our data that we have gathered.

• Provides expertise of knowledge, understanding, and experience with cybersecurity analysis. Serving as a Team lead for helping to mentor and train all new analysts hired into the SR6A project.

• Team Lead for approximately 5 individuals for overseeing proper escalation and validation of security tools where no owners were initially found; perform validation by pulling the SCCM reports to verify that the software is no longer in used. This entailed more in-depth review and research to find software owners, conduct interviews, updating of our tracking spreadsheet to ensure management is aware of progress accomplished.

• Assumed the role as a team lead for a team of approximately 10 members to analyze a comprehensive list of approximately 650,000 pieces of software from BigFix of VA software utilized. We were able to minimize this list by over 70%. This helped to better understand what pieces of software and security software are utilized but have not been reported to or validated by the VA.

• Conducted analysis, interviews, and validation for over 200 pieces of potential security-based software utilized around the VA. This helped reduced the list down by over 50% of what is no longer utilized, such as what tools are used by the CSOC, or software tools that have no security capabilities at all.

• Applied NIST RMF, TIC 3.0 and ZTA tool capabilities to the security software tools being analyzed.

• Implements extensive research in providing our team with a variety of different approaches to search for owners/managers, and capabilities of the various security software tools. Resulted to minimizing the downtime by approximately 30%.

April 2023 – June 2023 Booz Allen Hamilton (Senior ATO Analyst VA TSS SR10B project) Remote

• Work as a Senior ATO Analyst with the U.S. Department of Veterans Affairs (VA) to assist them with updating and maintaining the ATO posture for approximately 30 Software as a Service (SaaS) and FedRamp VA Systems.

• Integral part of the ATO Continuous Monitoring team assisting the VA with the rewriting and updating of numerous SOP’s, and other documentation for compliance with system’s ATO.

• Analyzed and wrote and rewrote eMASS system CCI controls ensuring that over 30 SaaS systems were compliant to operate as stated in their ATO. This decreased non-compliance by more than fifty percent.

• Educated teammates on the development and writing of SOP’s, and all other documentation for all of the various eMASS systems which has led to an increase in the team’s overall efficiency.

• Responsible for reporting all deficiencies to the VA System Owners for proper implementation and monitoring as part of Continuous Diagnostics and Mitigation (CDM).

• Collaborating daily and weekly with our team to ensure transparent communication, project priorities and effective team efforts.

August 2022 – March 2023 Booz Allen Hamilton (Security Analyst VA TSS SR18 project) Remote

• Work as a Security Analyst with the U.S. Department of Veterans Affairs (VA) to assist them with updating and maintaining their cybersecurity posture.

• Integral part of the FISMA Containerization Asset to Boundary (FCAB) team assisting the VA with the alignment of all VA system and Area Boundary assets.

• Educated teammates on the development of Splunk scripts to allow them to customize, refine, or develop their own queries which has led to an increase in the team’s overall efficiency.

• Never exceeded set deliverables deadlines, never had a system denied/rejected by GRC committee and received praise by the customer for my method of data presentation.

• Worked directly with VA Information System Owners (ISO) daily ensuring all of their system assets are reported correctly and accurately within eMASS.

• Validated the expected asset data against the actual data reported in Continuous Diagnostics and Mitigation (CDM). Worked with the ISOs/SSs to correct any differences.

• Personally responsible for the discovery, analysis, implementation, and validation of more than 150,000 assets within more than 75 systems in accordance with the Federal Information Security Modernization Act for the VA enterprise

• Assisted the FCAB implementation and alignment team on proper methods to monitor and align all VA system and area boundary assets using Splunk, eMASS, BigFix, Tenable/Nessus and Forescout to limit security vulnerabilities across VA’s over 1000 FISMA systems.

• Collaborating daily and weekly with our team to ensure transparent communication, project priorities and effective team efforts.

December 2021 – July 2022 Booz Allen Hamilton (Security Engineer ICE RAVEN project) Remote

Integral part of the security operations group helping to oversee the day-to-day security operations for the ICE RAVEN project.

Ensured that all security vulnerability findings were continuously monitored and remediated for over 200 Windows and Linux servers within the AWS Government Cloud environment.

Worked directly with the ICE RAVEN project’s Information Systems Security Officer (ISSO) to assist with the efforts of writing SOP’s, security plans, and security control implementation statements for the current ATO assessment.

Assisted with the efforts to decommission old and outdated servers that were no longer in use or required. These efforts helped to reduce security scanning vulnerabilities by approximately 30%.

Directly correlated the efforts for upgrading approximately 35-40 MS Windows 2012 and 2016 servers to MS Windows 2019 to further reduce security vulnerabilities.

January 2019 – November 2021 EYP, Inc. (Information Systems Security Manager) Washington, DC

Successfully responsible for obtaining three ATO’s for two classified secure spaces and three classified Information Systems.

Establish, maintain and monitor all security controls within the eMASS system for classified systems to ensure that all controls meet government requirements

Perform continuous monitoring of all secure spaces and classified Information Systems to ensure no tampering, no risks are present, all Information System event logs match room sign in logs, all systems are securely patched with all security updates.

Responsible for the daily opening and closing of the secure spaces, setup of the secure computer systems and daily operations of the secure spaces to include password changes, setup of computer account, software installations, etc.

Responsible for the handling, logging, monitoring and destruction of all classified material for the EYP, Washington, DC office and secure spaces.

Worked together with the ISSM from EYP’s Albany office to write and maintain all of the security policies and procedures for the EYP classified and unclassified spaces and office as a whole.

Worked closely with the Facility Security Office (FSO) to ensure all employees and visitors of EYP that require access to the secure spaces are properly cleared for access, and are provided the appropriate access briefings

Assistant FSO assisting with the verification of security clearances, obtaining Visitor Access Requests (VAR), and the escorting of cleared or uncleared visitors within the EYP office and/or secure spaces for various activities.

Sole IT support for the Washington, DC office for over a year and a half

COMSEC Custodian and Account Manager for all classified architectural jobs within EYP.

Responsible for all Shoretel VoIP telephone accounts and upgrade of Shoretel switch.

Set up all new hire user accounts and computers for the Washington, DC office.

Provided remote technical support to end users that are out of the office by assisting with software, hardware, networking and wireless connection issues.

Worked with end users to provide clean up to computer systems that are infected with spyware/adware, malware, and viruses.

Assisting end users with maintenance of computer systems, provide hardware upgrades to include the installation of additional laptop or desktop memory upgrades, replacement hard drives, etc.

Responsible for departing employee and contractors. This included alerting and coordinating with the departing manager, account expiration, termination of all network and special business application access, collection of all hardware and software

Troubleshooting and setup of iPad, iPhones and Android devices.

Provided training to all new personnel within both the Washington, DC office and other remote office locations as needed

Day-to-day troubleshooting activities for numerous architectural projects

Responsible for issuance and maintenance of all loaner equipment.

Provided restoration of architectural project files that were either corrupt or deleted.

Work with the EYP Network Administrator on the daily maintenance of all the DC EYP servers, antivirus software updates on the network and general network monitoring.

March 2018 – January 2019 Zolon Tech, Inc (Contractor to Dept of State) Rosslyn, VA

Responsible for coordination and setup of video teleconference meetings for Diplomatic Security Department of State. This includes both classified and unclassified meetings.

Team lead for designing and implementing Windows 10 images for standalone laptops for Diplomatic Security personnel.

Main point of contact for ensuring that all equipment is accounted for, inventoried and reported to Department of State personnel.

January 2015 – March 2018 EYP, Inc. (Systems Administrator) Washington, DC

COMSEC Custodian and Account Manager for all classified architectural jobs within EYP.

Instrumental in helping to design and implement a new IT help support plan using Zendesk support software to provide more proactive, faster and better support system to all EYP employees.

Designed and implemented a Windows 10 image to help streamline computer operating system upgrades and new user setups.

Responsible for all Shoretel VoIP telephone accounts and upgrade of Shoretel switch.

Set up all new hire user accounts and computers for the Washington, DC office.

Provided remote technical support to end users that are out of the office by assisting with software, hardware, networking and wireless connection issues.

Worked with end users to provide clean up to computer systems that are infected with spyware/adware, malware, and viruses. Assisted end users with maintenance of computer systems, provide hardware upgrades to include the installation of additional laptop or desktop memory upgrades, replacement hard drives, etc.

Troubleshooting and setup of iPad, iPhones and Android devices.

Provided training to all new personnel within both the Washington, DC office and other remote office locations as needed

Day-to-day troubleshooting activities for numerous architectural projects

Responsible for issuance and maintenance of all loaner equipment.

Provided restoration of architectural project files that were either corrupt or deleted.

Worded with the Network Administrator with daily maintenance of all the DC EYP servers, antivirus software updates on the network and general network monitoring.

September 2008 – November 2014 The Carlyle Group (IT Customer Support Technician) Washington, DC

Designed and implemented an executive support plan to provide more proactive, faster and better support to all Carlyle executives. This plan resulted in superior support to all users.

Designed and implemented a new hire support plan. This consisted of better follow up with the users after two and four weeks, ensuring that they received all the proper access that was required, VPN support and more.

Sole remote IT support for the Carlyle Sao Paolo, Brazil office.

Team Lead for the Washington, DC off and co- team lead for the Rosslyn Office Service Desk in overseeing the day-to-day activities and ensuring proper and timely resolution of matters.

Supervised numerous contractor personnel within the IT Department.

Assisting with the setup of video conferences, projectors for meetings, WebEx connections.

Responsible for training of all new personnel and contractors.

Part of a six-person Service Desk team providing end user support to all US Offices for approximately 1,450 users and contractors. Assisted with the Carlyle international office end users as needed to include software, hardware and networking and wireless troubleshooting and support.

Responsible for providing management with a detailed morning checklist that includes any critical, major and minor server alerts that need attention using Insight Manager and testing of all systems to ensure everything is operational.

Setup of all new user accounts, assignment to all user groups that users in Active Directory, distribution lists, network folder security and maintenance.

Responsible for maintaining and issuance of all loaner equipment to include laptops for both loaners and contractors, projectors, and other equipment within the Washington, DC and Rosslyn, VA Carlyle IT Department.

Assisted with the testing of Remedy for a transition to a new incident management system.

Responsible for the reset and maintenance of Active Directory accounts, passwords and voicemail password.

Troubleshooting of various Citrix and remote log on issues through both the VPN and wireless connections.

Troubleshooting various issues with Blackberries and users not receiving emails, address book replication/duplication, upgrading of devices and Desktop Manager software. Setup of Blackberry accounts on the Blackberry Exchange Server and assigning the various IT policies to their devices, as appropriate.

Assisting in the rollout of new laptops, desktops, reimaging, server maintenance and more.

Provide Tier II support to end users when necessary to ensure users can work by providing desk side support, projector setups and other software and hardware troubleshooting as necessary.

Provide remote technical support to end users that are out of the office by assisting with software, hardware and networking and wireless connection issues.

Working with end users to provide clean up to computer systems that are infected with spyware/adware, malware, and viruses. Also, provide cleanup of computer systems that are slow and unresponsive, provide hardware upgrades to include the installation of additional laptop or desktop memory, replacement hard drives, etc.

Extensive troubleshooting of iPads and iPhones to include the setup of wireless and setup of connections to active sync of exchange email and calendar.

Provided detailed knowledge base articles to assist other Carlyle offices and IT Staff with troubleshooting various problems and issues.

May 2007 – September 2008: Covington & Burling (Help Desk Analyst) Washington, DC

Part of a 6 person Help Desk responsible for answering all incoming calls to the Helpdesk to troubleshoot both hardware and software issues to include the Microsoft Office Suite, Imanage version 8.0, Adobe Acrobat Professional, Symantec Antivirus, and many other firm related applications.

Troubleshooting of remote log in problems through Citrix and VPN.

Responsible to the reset of Active Directory account passwords, and voicemail passwords.

Help to monitor the various servers, troubleshoot problems with the Websense (internet firewall) server, and assist with the update of filters for the Websense server.

Monitoring of Helpdesk email and troubleshooting any incoming emails for Attorneys, Paralegals and all staff personnel.

Responsible for troubleshooting problems various types of Blackberries and upgrading the operating systems on them and the Desktop Manager software.

Assisting in the rollout/upgrade of Desktop computers and laptops for all attorneys, staff and paralegals

Ghosting and reimaging of both new computers and laptops equipment that has been having problems and needed to be reimaged

Setup and monitoring of Active Directory accounts for new and departing staff and attorneys.

Various Jobs between 1995 – 2007

Military Experience:

November 1987 – November 1995: United States Marine Corps (various locations)

Held a supervisory position overseeing all facets of personnel management to include pay related items.

Coordinated and managed all aspects of financial, personnel, and administrative requirements involving the deployment of over 5000 people on various contingencies throughout the globe including Bosnia, Cuban Emigrant Uprisings, and the Haitian Evacuation.

Assisted in the preparation and management of individual personnel records, including their family members.

Served as liaison between the financial sections of the operations and management staffs, monitoring the bottom line.

Increased efficiency of the administrative unit by over 30% by creating databases that eliminated manual procedures

Handled all administrative procedures for over 50 employees and their family members for a period of six months.

Assisted in the input of new trainees into the Marine Corps. This was composed of and not limited to typing of all contracts and waivers pertaining to enlistments and legal matters.

Advised the executive officer on the status of bringing new trainees into the Marine Corps.

Managed all statistical data to ensure the accuracy and timely reporting of all past and present information to the executive officer.

Developed and implemented databases that helped to track and manage thousands of personnel throughout the globe and the financial aspects incurred. Thus increasing efficiency by 25%.

Oversaw the management of all settlements (money) in regards to personnel travel claims.

Software Applications:

Various Architectural software applications including many Autodesk applications to include Revit, AutoCAD and A360

Nessus Essentials vulnerability scanning software

SCAP and STIG scanning tools

CISCO AnyConnect Secure Mobility VPN client

Shoretel VoIP telephone software

FortiNet VPN client

Juniper Pulse VPN client

Newforma project management software

ITSM (Frontrange software) incident management software

Zendesk Ticketing System

HEAT Ticketing System

Remedy Ticketing system

Various versions of Veritas Backup Utility software

Windows Active Directory

Office 365 Administrative Account Management Console

Trend Micro Server Antivirus Software

Various versions of Blackberry software Operating Systems and Desktop Manager

All legal applications to include: Imanage, IPLink, MacPac, DocXchange, Workshare Protect, DeltaView and more.

Microsoft Office Suite (Office 97 through Office 365)

Lotus Notes

Various Symantec utilities to include: PCAnywhere, Norton Ghost, Symantec Anti-Virus, Symantec Endpoint Protection, Norton Anti-Virus, Norton Utilities, and more

Alteris Imaging software

RightFax desktop and server software

Novell Netware software applications to include ZEN Works.

Netmeeting

SMS Remote Utility Software

IBM Backup software

MozyPro backup software

iPass wireless software and wireless air cards

Operating Systems and Various Hardware Equipment:

Windows NT through Windows 10

Windows NT 4.0 Server, Server 2000 both basic and advanced, Windows 2003 Server and Windows 2007 and 2008.

Brief experience with Linux

Many different types and models of Blackberry’s to include T-Mobile, Verizon, Cingular, Nextel and Sprint providers

Many different types and models of HP LaserJet and some Xerox printers.

Dell, IBM/Lenovo, Toshiba and HP/Compaq desktops and laptops.

Wireless support of various providers and configurations

Apple iPads and iPhones, and various Android cell phone devices and tablets.

Contact this candidate