Cyber Security Engineer
Resume:
Franklin C. Penny
Athens, AL ***** 256-***-**** **.*******@*****.***
Cybersecurity Engineer Profile
Security-focused and award-winning professional with 20+ years in defense networks security, RMF and eMASS framework, systems engineering, and ATO approvals for classified DoD and mission-critical systems.
Proven leader in developing audit-ready eMASS packages by gathering precise artifact evidence and aligning with DoD, NIST 800-53, DAAPM, and DISA STIG compliance standards.
Adept at delivering expert risk analysis, vulnerability management, and actionable mitigation strategies using SIEM tools, ACAS scans, and continuous monitoring protocols.
Valued advisor to executive leaders, skilled in providing cybersecurity recommendations during high-stakes defense operations and improving mission assurance across diverse operations.
Strong mentor and team player, committed to fostering cybersecurity excellence through hands-on training, stakeholder collaboration, and cross-functional leadership under combat conditions.
Recognized for innovative problem-solving, process improvements, and resilience under pressure with demonstrated success in supporting global operations in Space Force, Army, MDA, and joint military environments.
Areas of Expertise
Cybersecurity Expertise Risk Management Framework (RMF) eMASS (Enterprise Mission Assurance Support Service)
DISA STIG Compliance Risk Assessments Vulnerability Management Penetration Testing Incident Response
Security Documentation Security Audits Firewall Configuration Cybersecurity Training High-Stress Decision Making
Professional Experience
Next Step Innovation United States Army Netcom Redstone Arsenal, AL 2024 to Present
Security Control Assessor (SCA)
Oversee evaluation and approval of system compliance through the Risk Management Framework (RMF) to ensure cybersecurity posture aligns with Department of Defense (DoD) standards.
Execute system hardening initiatives and enhanced cybersecurity defenses by applying Security Technical Implementation Guides (STIGs).
Reviewed classified and unclassified evidence within the Enterprise Mission Assurance Support Service (eMASS) to validate security requirements.
Analyzed hardware, software, network boundaries, and IP address configurations to identify and reduce vulnerabilities.
Delivered expert risk-based recommendations to NETCOM leadership at Fort Huachuca, AZ for corrective actions.
ASRC Federal, Missile Defense Agency Redstone Arsenal, AL 2023 to 2024
Senior Cyber Security Engineer
Spearheaded Assessment and Authorization (A&A) processes under RMF to secure Authority to Operate (ATO) for mission-critical networks within the Ballistic Missile Defense System (BMDS).
Conducted interviews and collected critical cybersecurity artifacts to build comprehensive eMASS ATO packages.
Performed continuous monitoring of network health through daily Assured Compliance Assessment Solution (ACAS) scans and adherence to DISA STIG checklists.
Authored security documentation, including RMF control plans, system security plans (SSP), and security policies.
Verity Integrated Systems, Defense Counterintelligence Huntsville, AL 2021 to 2023
Cyber Security Engineer
Directed certification and accreditation (C&A) efforts within RMF to support industrial clients under the Defense Counterintelligence Security Agency (DCSA). Leveraged Security Information and Event Management (SIEM) tools and ACAS to manage vulnerabilities and strengthen incident response capabilities.
Compiled compelling evidence artifacts to upload into eMASS and meet RMF compliance benchmarks for the system.
Assessed vulnerability scan data and test results in accordance with DAAPM, NISPOM, and NIST 800-53 standards.
Delivered complete, audit-ready ATO packages to DCSA and secured operational approval across U.S. locations.
Raytheon Buckley SFB, US Space Force Aurora, CO 2020 to 2021
Cyber Security Engineer
Provided cybersecurity support as Information Systems Security Officer (ISSO) and assisted the Information Systems Security Manager (ISSM) for the Global Positioning System (GPS) Operational Control System. Served as a member of the Systems Engineering Information Assurance Team (SEIT-IA) to ensure end-to-end cybersecurity integration.
Performed RMF certification and accreditation for sensitive systems, which contributed to robust risk mitigation.
Evaluated scan data and test results to ensure compliance with DAAPM, NISPOM, NIST 800-53, and ICD 503.
Submitted ATO packages to the U.S. Space Force approval authority, which enabled secure mission operations.
Executed Assured File Transfers (AFT) and Trusted Downloads for critical software configuration management.
Ironclad Technology Central Command MacDill AFB, FL 2018 to 2020
Information System Security Engineer
Worked with coalition partner nations under Foreign Military Sales (FMS) initiatives to deliver complete ATO packages.
Conducted stakeholder interviews and curated compelling cybersecurity artifacts to develop robust eMASS packages.
Submitted finalized RMF documentation to the Authorizing Official (AO) at USCENTCOM for review and approval.
Technique Solutions Joint Task Force, SouthCom Key West, FL 2017 to 2018
Senior Cyber Security Engineer
Provided compliance support during classified video teleconferences (VTCs) within SOUTHCOM’s area of responsibility. Trained team members on DoD 8570 certification requirements to foster a knowledgeable cybersecurity workforce.
Authored RMF control plans, organizational security policies, and comprehensive System Security Plans (SSP).
Completed and submitted eMASS RMF packages to SOUTHCOM’s Authorizing Official for timely ATO approvals.
Booz Allen Hamilton, Missile Defense Agency Redstone Arsenal, AL 2016 to 2017
Cyber Security Staff for Director of Testing (DT) Ballistic Missile Defense System
Drafted Event Cyber Security Plans (ECSP) and Interim Authority to Test (IATT) documents for critical testing activities. Ensured compliance with Security Technical Implementation Guides (STIGs) and Cyber Task Orders (CTO).
Represented the ISSM during flight and ground test planning sessions to provide expert cybersecurity guidance.
Contributed to requirements development, authored test plans, and conducted penetration testing for BMDS assets.
Jacobs Technology US Army Research Laboratories (ARL) Orlando, FL 2015 to 2016
Senior Cyber Security Engineer for Advanced Technology and Simulation Division (ATSD)
Documented network vulnerabilities, implemented mitigation strategies, and supported incident response with U.S. Cyber Command. Submitted ATO packages for new networks. Maintained all network artifacts within eMASS to support A&A.
Conducted comprehensive network scanning, analysis, and continuous monitoring aligned with RMF protocols.
Employed SIEM tools and ACAS solutions to ensure continuous compliance and proactive threat management.
MCR Federal Army Program Executive Office Aviation Redstone Arsenal, AL 2011 to 2015
Cyber Security Engineer for US Army MQ-1C, Gray Eagle, Unmanned Air Vehicle (UAV)
Performed cybersecurity assessments of the MQ-1C Gray Eagle UAV, ground control stations, and associated support equipment worldwide.
Conducted FISMA assessments in collaboration with independent IA authorities to ensure system compliance.
Acted as a trusted agent during Red Team operations to execute vulnerability scans and penetration testing cycles.
Venturi Aerospace, Inc. Huntsville, AL 2010 to 2011
SETA and Test Engineer for Missile Defense Agency, AN/TPY-2 (FBM) Radar and SBX Radar
Planned and coordinated flight and ground tests for the Missile Defense Agency (MDA) program office. Managed requirements in DOORS, ensured data management integrity, and delivered results to the MDA Data Center.
Performed post-flight analysis and simulation modeling using MATLAB and presented findings to stakeholders.
Reviewed test plans, generated post-test reports, and provided actionable recommendations to the MDA leadership.
Raytheon Huntsville, AL 2004 to 2010
Systems Engineer – BMDS Program, AN/TPY-2 Radar (FBX-T, X-band) and SBX Platform
Served as Test Conductor and Data Manager to oversee radar system operations and SATCOM communications in Japan. Supported global network planning initiatives and conducted site surveys alongside the National Team.
Operated UNIX-based radar systems and managed SATCOM Link-16 connectivity at forward-deployed locations.
Facilitated secure transfer of test data from sea-based radar platforms to Raytheon laboratories for detailed analysis.
Additional Experience
Cyber Security Engineer Jacobs 16th Electronic Warfare Squadron, USAF
Cyber Operations Craftsman USAF Reserve
Education and Certification
Bachelor of Science in Information Systems Technology University of Maryland
Associate of Science in Information Systems Technology Community College of the USAF
Security + CE Certificate CompTIA
Systems Engineering Certificate University of Alabama
Professional Aeronautics Embry Riddle Aeronautical University
Technical Skills
Platforms: Windows 10, 11 Windows Server 2019 R2, UNIX (Solaris, HP-UX), Linux (Red Hat, Ubuntu), Mac OS, Android, iOS, Unix - Sperry 1100 Mainframe
Networking: LAN / WAN Administration, VPN, TCP/IP, Novell, SMS/SQL, 100BaseT Ethernet, Secure ID, Cisco Routers & Switches, Juniper Switches, Firewalls, VoIP
Languages: C++, HTML/HTML 5, Java, JavaScript, PHP, CSS
Tools: Enterprise Mission Assurance Support Service (eMASS), eMASTER, Assured Certification Accreditation System (ACAS), Nessus, MS PowerShell, Citrix, Symantec Endpoint Protection, Command Workstation, VMware, Microsoft Office Suite, Access, MS Project, Army Portfolio Management System (APMS) DOORS database, Enterprise Reporting System (ERS), STIG Viewer, CMRS
Awards
Decorated Combat Veteran, 920th Combat Rescue USAF
Achievement Award for presenting test readiness to the Government Raytheon
Achievement Award for new remote access to Vandenberg AFB Radar Data Raytheon
Excellence Award for the restoration of a US Network after Satellite failure Scientific Atlanta
Affiliations
Information System Security Association (ISSA)
Huntsville Chapter, International Council of Systems Engineering (INCOSE)
Huntsville Armed Forces Communications and Electronics Association (AFCEA)
Security Clearance
Top-Secret Clearance
Contact this candidate