Security Specialist Application
Resume:
GIAO (TINA) Q. NGUYEN
***** ****** ***** *******, **********, MD 20876
Phone: 301-***-**** Email: **********.*******@*****.***
Availability:
Job Type: Permanent
Work Schedule: Full-Time
PROFESSIONAL SUMMARY
Experienced IT Security Specialist with 15+ years leading large-scale application security and technology integration projects within the Federal Government and defense contracting sectors. Proven expertise in application security (IBM AppScan), database administration (Oracle, SQL), business continuity planning, and IT policy development. Recognized for delivering innovative solutions that enhance cyber resilience and system integrity.
CORE COMPETENCIES
- Application & Cybersecurity (AppScan Enterprise/Source)
- System Development Lifecycle (SDLC & Agile)
- Business Continuity & Disaster Recovery (ISCP/BCP)
- Database Administration (Oracle, PL/SQL, SQL Server, Access)
- Project Management & Risk Assessment
- IT Governance & Policy Compliance
- Java, VB, Oracle Forms, Ada, HTML, C/C++
- Tools: Eclipse, SharePoint, IBM Rational, MS Project, Visio
PROFESSIONAL EXPERIENCE
INTERNAL REVENUE SERVICE (IRS) – 5000 Ellin Rd, Lanham, MD 20706
IT Security Specialist 02/2010 – Present IRS
- Lead cybersecurity initiatives integrating IBM AppScan to secure IRS web applications and reduce late-stage vulnerabilities.
- Develop and update security policies, standards, and Internal Revenue Manuals (IRM).
- Provide expert support for OL5081 system administration and application access controls.
- Analyze and recommend improvements for IT acquisition strategies, risk mitigation, and incident response planning.
- Spearhead training events and AppScan strategy enablement, reducing AppSec risks across multiple teams.
- Lead major IT AD projects, broad in scope, prepare and present findings, or recommend action involving the analysis of complex problems related to equipment and software utilization and acquisition across the IT organization.
-Review, validate and standardize the security policies and security-related Internal Reference Manual (IRM) and procedures in the Security Technology Review (STRB) in IRS and Dashboard, guidelines and guidance on acquisitions, to recommend and to address, mitigate specific security vulnerabilities issues and the problem resolutions. Conduct tabletop exercises with stakeholders to evaluate compliance and disaster recovery readiness.
Key Accomplishments:
- Reduced software vulnerabilities through early-cycle AppScan testing and policy integration.
- Supported agency-wide cyber audits and AppSec reviews, contributing to improved audit outcomes.
CONTACT NAME
- Supervisor: Yu Feng 240-***-****)
- Supervisor: Jacob Hamilton 314-***-****)
BAE SYSTEMS – Rockville, MD
Database Software Engineer, 12/2005 – 02/2010
- Designed and maintained Oracle/Access databases for US/UK defense projects.
- Managed system data integrity, developed data migration strategies, and led security assessments.
- Built GUI tools using Visual Basic to simplify data extraction and test analysis. Supported and maintained the database administration, including running the test, troubleshooting database and led security assessments for the CLASP Project.
IT Software Engineer II, 04/1996 – 12/2005
- Supported Trident II D5 Backfit Shipyard Integration Test Program.
- Wrote test plans, conducted software validation, and migrated legacy code from Ada83 to Ada95.
- Participated in Y2K bug remediation and USPS COA systems development.
CONTACT NAME
- Supervisor: Gima Emery
- Supervisor: ****.*****@**********.***
EDUCATION & CERTIFICATIONS
B.S. in Computer Science – George Mason University, Fairfax, VA
- IBM AppScan Enterprise & Source Security
- Java Certification Training (2012)
- Oracle DBA Training (2005)
- Advanced JBoss Enterprise Development (2011)
TRAINING
- IBM AppScan Enterprise & Source Security and Risk Base Applications Security Training.
- Information Security Contingency Planning (ISCP) sessions
- IRS Java Immersion Training
- Advanced JBoss Enterprise Development Training Online.
- Oracle Database Forms/Reports Developer 10g from Oracle University
- Oracle 9i Comprehensive Hand-On Introduction course 590 from Learning Tree
- Oracle PL/SQL Programming course 493 from Learning Tree, Introduction to SQL Oracle 9i
- UNIX Introduction course 428 from Learning Tree
- Standard Software Process, 1996: Including Project Planning, Policy Project Management
- Quality Assurance, Product Engineering, Configuration Management, and Software Inspections
- Programming in Ada95, Fagan Defect Free Process
- MS. Office, Adobe, MS Project, Sharepoint Application Client, Appscan, Eclipse, Web goat
- Oracle Relational Database Analysis and Design by Advanced IT Training 03, 2005.
- Oracle Database Administration (DBA) training by Learning Tree International 02, 2005.
CERTIFICATION
- IBM Appscan Sources and Appscan Enterprise Risk Base Applications Security Training
- Java Immersion Courses and Java Certification Training class in May 2012
- Advanced JBoss Enterprise Development Training in July 2011
- Oracle Database (DBA) training in Oracle Corporation in February 2005
TECHNICAL SKILLS
- Programming Languages: Java, Oracle Forms/Reports 10g, Oracle Forms/Reports 6i, Oracle PL/SQL, MS Visual Basic, Ada95/85, Database, Microsoft Access, C/C++, Pascal, Assembly, HTML, Excel, MS Word, Refine Software.
- Operating Systems: Windows 7, UNIX/Solaris, Data General 4000, Windows 9x/NT/XP/2000, MS/DOS, VAX 3100/3400, Telnet, M253, M241
- Application/Tools: MS Visual Basic, Microsoft Word, Microsoft Excel, MS Access, Internet Explorer, PowerPoint, SQL, HTML, Visio, MS Outlook, Paintshop Pro 5.0, Sharepoint 2010, PVCS, Oracle Designer/Form/Report Tool, Eclipse.
AWARDS
- IRS Performance Award (2019)
- BAE Systems Customer Recognition (2007)
SECURITY CLEARANCE
- Public Trust – Backgroud check
- Security Clearance (4, 1996)
REFERENCE
- Available Upon Request
Contact this candidate