Subject Matter Expert
Resume:
AHMED A. MAHMOUD
*** ******** *** ******* ** ****0
Cell: 703-***-****
E-MAIL: *********@*******.***
Clearance: TS/SCI with Poly
Summary:
Experienced intelligence professional specializing in the areas of cybersecurity, intelligence
analysis, management, Cloud Engineering, and Arabic language support. Credentials include more than 20 years of experience in providing language and analysis support for the U.S. Government. Summary:
Holds active TS/SCI with Poly clearance. Experienced working in the INDOPACOM, AFRICOM, CENTCOM, and EUCOM AORs.
At the level of Subject Matter Expert in Planning, Decision-making, Management, Leadership, Organization, Meticulous, Reliable, Communicative, Impactful, Ability to collect and analyze information, Ability to investigate a problem and find the ideal solution in a timely, efficient manner, Critical Thinking, Creativity, Interpersonal Communication, Teamwork, and Problem-solving.
Comprehensive understanding of the life cycle of cybersecurity threats (internal and external), attacks, attack vectors and methods of exploitation with an understanding of intrusion set tactics, techniques, and procedures (TTPs). Familiar with core current cybersecurity technologies as well as emerging capabilities. Familiarity or experience in Intelligence Driven Defense, Cyber Kill Chain methodology, and/or MITRE ATT&CK framework. Knowledge of computer security principles. Motivated self-starter with strong written and verbal communication skills, and the ability to create complex technical reports on analytic findings.
Expertise in analyzing a wide variety of text containing advanced, confidential, and complex information and producing reports, correspondence, and formal documentation pertaining to Open Source and All Source intelligence. Provided leadership, guidance, and training to junior staff. Integrate collected intelligence to prepare a comprehensive intelligence report. Familiar with Databases/ programs such as MIDB, LexisNexis.
EMPLOYMENT AND EXPERIENCE
River Hawk Consulting LLC (09/2022- Present)
Cybersecurity Consultant (06/ Present)
Consults with projects and system owners on cybersecurity Endpoint technology requirements, provides a detailed analysis of applicable Endpoint cybersecurity solutions, and prepares background papers on possible/recommended solutions.
Measures effectiveness of endpoint technology stack against known vulnerabilities and compliance requirements
Plans, prepares, and executes tests to assess Endpoint technologies against specifications and operational requirements. Document test analysis and deliver report in formats requested by the customer.
Assists in the implementation of the required government policy (i.e., NIST, NSM-8, CNSS, and ICD-503), and may make recommendations on process tailoring
Responsible for performing assessments that validate established security requirements and to recommend additional security requirements and safeguards.
Supports formal Security Test and Evaluation required by the government accrediting authority through pre-test preparations, test execution, analysis of the results, and documentation of required reports (as needed).
Conduct periodic reviews of system audits and monitors corrective actions until all actions are closed (as needed).
Coach and provide guidance to team members as appropriate.
Senior Cloud Architecture and Cybersecurity ISSO/ISSE (03/2024- 6/2024)
Migrate applications and databases that perform on the cloud.
Monitoring cloud management and data storage services.
Support the customer’s representative in Cloud environment purchasing, optimization,
engineering, and architecture related activities as applicable.
Develop, configure, optimize, maintain and update the environment to ensure that it follows the customer’s organization’s current cybersecurity practice and standards.
Configure and manage security accreditation process authorization and authentication for the system to grant Approval to Operate by the customer’s cybersecurity organization.
Cybersecurity Project Manager (09/2022- 03/2024)
Provide direct oversight of assigned/prioritized Cybersecurity projects.
Shepherd various A&A projects through completion.
Develop and manage program budget/schedule with ownership and accountability of scope and timelines.
Lead cybersecurity engineers to complete the project by dividing work, setting deadlines, working with the allowed budget, and advocating for additional funding if necessary.
Communicate with staff, clients, and stakeholders to make decisions and monitor the progress of the project to keep it on schedule.
Create long- and short-term plans, included setting milestone targets and deadlines.
Communicate with executives/stakeholders to keep the project aligned with their goals.
Perform quality control throughout development to maintain the expected standards.
Adjust schedules and targets as needs or financing for the project change.
Perform risk management analysis throughout the project lifecycle.
Document, review, and communicate lessons learned.
CGI Federal Inc. Fairfax VA
Director Consulting Expert 06/2021- 09/2022
Researches, analyzes, and writes documents such as cybersecurity intelligence bulletins, alerts, and briefings for all levels of stakeholders, security engineering and executives.
Ensures documentation is accurate, complete, meets editorial and government specifications, and adheres to standards for quality, graphics, coverage, format, and style.
Supports multiple security aspects, including log analysis, implementing, and updating security measures, vulnerability management and serving as an ISSO to obtain ATO compliance based on NIST 800-37 and NIST 800-53(A).
Updated several scripts to ensure software and libraries in use were up to date and in compliance when utilized for gathering disparate log items and creating correlated reports.
Established and updated all NIST required documentation such as the Incident Response Plan, Information System Contingency Plan, and Configuration Management Plan as required by NIST 800-37, NIST 800-53, and NIST 800-53A.
Reviewed and answered all FISMA controls required in Risk Vision and NIST 800-53, including evidence gathering and assisted DevOps in implementing all failed controls.
Developed policy changes and specific guidance for the certification and accreditation process based on information network systems security configurations, regulations, vulnerabilities, and risks.
Perform Cyber Threat Assessment and Remediation Analysis.
Ensures content is developed in an appropriate style for the intended audience to include presentations, bulletins, white papers, memos, policies, briefings, and other products.
Assists with the modern transition MIDB database shall incorporate the captured findings and enable the development and application of future FMI business processes and tradecraft, modern database design principles, and the cleansing and improving of the quality of current MIDB holdings.
Captures MIDB Remark population requirements and works with the Database Engineer to assess the remarks for potential conversion into a structured field regarding Cybersecurity.
Prepared assessments and cyber threat profiles of current events based on the sophisticated collection, research, and analysis of Monitor open-source channels, Computer Emergency Response Teams (CERTs), Audit, Network, Security Institute, Security Focus to maintain a current understanding of Computer Network Defense threat and its impact on Network.
Concept Solutions, LLC Washington DC
Sr. Cyber Intelligence Analyst 2021/ 06/2021
Identified cyber threats, trends, and new developments on various cybersecurity topics by analyzing open-source intelligence and data which includes geopolitical and transnational events.
Hands-on experience with Splunk, SIEM platforms (fire eye, crowd strike) and log management systems that perform log collection, analysis, correlation, and alerting is required.
Responsible for participating in threat actor-based intelligence analysis.
Created relevant, timely, and actionable intelligence products.
Identified and monitored the Tactics, Techniques, and Procedures (TTPs) used by cyber threat actors by analyzing open-source intelligence and data. Provided support to cyber incident response and cyber threat hunting.
Defended against adversarial activity by collecting intelligence that matters and producing tailored analysis driving active cyber defense efforts to deter successful exploitation of client.
Raytheon Blackbird Tech. Inc. Herndon VA
Intelligence Analysis Manager / Subject Matter Expert 12/2007- 10/2020
Expert knowledge of geopolitical issues and events and the use of cyber tools & techniques to influence them in more than one geographic area of expertise, e.g., Middle East, the INDOPACOM, AFRICOM, CENTCOM, and EUCOM AORs.
Conflict analyst and media strategist focused on crisis management and United States public relations efforts in the Middle East and Islamic World including Southeast Asia, Central Europe, AF/PAK region, East Africa, and West Africa.
Experienced in designing and implementing media monitoring/ research projects, measuring public sentiment and analyzing messaging and propaganda.
Developed an evaluation method to assess program strengths and identify areas for improvement.
Prepared reports and research analyses about media trends, news coverage and sentiments related to the Arab and Muslim Worlds as well as in-country issues to inform US policy makers of developments in key areas.
Researched and analyzed conflict processes, root causes, actors, spoilers, social structures and human terrain components.
Analyzed, authored, and edited technical data for use in documents such as cybersecurity intelligence bulletins, alerts, and briefings.
Extensive training in CT, CI, and religious ideology dealing with terrorism. Worked with a team to analyze and report on various issues relating to counterterrorism (CT) and counterintelligence (CI).
STG Inc.
Foreign Media Analyst 2/2006- 12/2007
Analyzed Foreign and domestic media.
Produced written reports and documentation of the analysis performed on the media.
Translated, edited and updated databases containing political, economic and financial terms from English into Arabic and from Arabic into English.
Middle East expert (Geopolitical, ethnic, and cultural environment).
Conduct all-source and open-source research to assess counter-intelligence threats to the US government pertaining to Middle East, East and West Africa, and South East Asia.
Prepared end reports and research analyses related to the Arab and Muslim Worlds as well as in country issues to inform US policy makers of developments in key areas. Familiar with databases/programs such as Open-Source Enterprise, LexisNexis.
Practical understanding of geospatial Intel tools such as ArcGIS and Google Earth.
Department of State
Liaison Interpreter 06/2004- 10/2010
Participated as a contract Interpreter and Liaison for law enforcement delegations from Arabic speaking countries who are participating in the State Department Anti-Terrorism Assistance Program and the International Visitor Program.
Interpreted for multiple courses, such as: Interdicting Terrorist Organizations, Advanced Crises; Counter Assault Team, Anti-Kidnapping; Critical Incident Management, Explosive Incident Countermeasures, Executive Forum; Hostage Negotiations, Major Case Management; Post Blast Investigation, and Tactical Commanders Course.
MZM Inc.
Cultural Advisor/Analyst Iraq (08/2003- 06/2004)
Based in Iraq, Subject matter expert in Middle East Culture and Language (Arabic).
Foreign media analysis and rapid exploitation.
Participated in Counterintelligence, counterterrorism, and force protection activities and investigations.
Advised Coalition Provisional Authority (CPA) on subjects regarding the Iraqi public and the Iraqi culture.
Extensive skills in both written and oral communications. evaluate, analyze, fuse, and interpret reporting from multiple sources to produce current intelligence products.
Provides solutions to a variety of complex problems.
United Airlines
Scheduler Coordinator 06/1993- 06/2003
Issued daily job assignments for more than 300 employees.
Coordinated schedule requirement for 450 employees to ensure adequate staff coverage.
Conducted problem resolution in labor-management relationships. Excellent negotiation and diplomatic skills.
Served as a Liaison Shop Steward to ensure implementation of working agreements between the company and the union.
Ogden Aviation Allied
Supervisor 02/1992-05/1997
Supervised employee performance.
Coordinated use of more than 200 staff.
Provided guidance and interpreted company policies and procedures to assist employees in performing functional tasks.
Assisted the manager in performing administrative tasks as necessary.
Settled and resolved customer complaints.
EDUCATION
George Washington University, School of Engineering and Applied Science Washington, DC
Master of Engineering in Cybersecurity Policy and Compliance September 2019
American University, Washington College of Law Washington, DC
Master of Law (LLM), International Legal Studies May 1998
Northern Virginia Community College Virginia
American Legal Assistant Program May 1996
Cairo University, College of Law Cairo, Egypt
Bachelor of Laws (LL.B.) JD Equivalent
Certifications:
Certified SAFe 6 Scrum Master
CompTIA Security+
Training:
Certificate of Completion/ Introduction to AWS Organizations
Certificate of Completion/ AWS Well-Architected
Certification of Completion/ AWS Partner: Accreditation (Sales) Test
Certificate of Completion/ AWS Partner: Cloud Economics Accreditation
Certificate of Completion/ AWS Partner: Accreditation (Technical)
Certificate of Completion/ AWS Partner: Accreditation (Business)
Certificate of Completion/ AWS Cloud Practitioner Essential
Contact this candidate