Cybersecurity Governance Leader for Federal Programs
Resume:
Ogom Obinor
Cybersecurity Governance Specialist
Cybersecurity professional with 10+ years of experience leading enterprise security programs across federal environments. Expertise in authorization to operate (ATO) Lifecyle, risk management framework (RMF) compliance, and continuous monitoring (ConMon). Directed vulnerability management across 400,000+ federal system under NASA’s CyPrESS and BITSec contract, sustaining >90% remediation compliance and strengthening FISMA performance scorecard. Skilled in continuous diagnostic and mitigation (CDM), POA&M validation, NIST 800-53 control families, and audit readiness. Active Secret Clearance.
Career Accomplishments
Directed Nessus vulnerability management across 400,000+ host assets under NASA’s CyPrESS contract, sustaining >90% remediation compliance and supporting RMF continuous monitoring (ConMon) requirements.
Consolidated CISA known exploitable vulnerabilities (KEV) and SOC Mitigation Action Report data into Tenable Security Center (Tenable.sc) dashboards improving Zero-Day remediation by 75%.
Led a vulnerability reduction working group focused on strengthening NASA IT infrastructure, leveraging CDM tools to mitigate threat aligned with RMF and FISMA requirements.
Converted a 4.5-hour instructor-led Tenable.sc course into a 40-minute OnDemand module, reducing training time by 85% and enabling agency-wide accessibility.
Deployed the Engineering Directorate (EA) IT Policy Management System at NASA Johnson Space Center (JSC), and White Sands Facility (WSTF) strengthening IT compliance oversight, risk management, and operational governance.
Delivered executive-level compliance briefings to CISOs and NASA leadership, aligning remediation priorities with FISMA scorecard and ATO sustainment.
Professional Experience
NASA Johnson Space Center (JSC)
Enterprise Cybersecurity Lead January 2024 – Present
Houston, TX
Lead enterprise cybersecurity governance under the CyPrESS contract, supporting 11 NASA Centers with a focus on Zero Trust and RMF-aligned security operations.
Owned enterprise security engineering operations across 11 NASA Centers, identifying performance anomalies, and strengthening ATO sustainment for mission-critical systems.
Led enterprise Nessus vulnerability/discovery scanning of mission critical host assets, delivering scan to sustain ATO packages and mission assurance in RISCS (NASA’s eMASS equivalent).
Managed Python automation pipelines that normalized configuration and vulnerability data, reducing POA&M update time by 60% and improving ConMon reporting accuracy.
Evaluated and integrated DevSecOps security controls including dynamic application security testing (DAST) (Burp Pro, App Scan) enforcing OWASP Top 10 FedRAMP compliance.
Managed NASA’s vulnerability disclosure and bug bounty program in alignment with OMB M-22-09, ensuring timely mitigation of externally reported vulnerabilities reported.
Designed and administered secure AWS infrastructures (EC2, RDS, S3, Route 53, and CloudFront) improving cloud security compliance and reducing configuration drift by 40% across supported services.
Led coordination between SOC, CISO and penetration testing teams to define ROE requirements, validate exploitable vulnerabilities, access control effectiveness, and sustain ConMon compliance.
Cybersecurity Engineer / Analyst August 2019 – December 2023
Houston, TX
Directed vulnerability management and authorization support for mission-critical NASA and DoD systems, ensuring secure configurations and RMF/ATO compliance.
Scanned 300+ authorized and unauthorized host systems with Nessus, SentinelOne, and Symantec before network reconnection, strengthening RA-5 compliance.
Subject matter expert (SME) for Tenable.sc and Nessus, owning vulnerability scanning across Windows, Linux, and OT environments, achieving > 90% scan coverage maturity.
Implemented DAR/DIT encryption controls NIST 800-53 (SC-13 SC-28) and enforcing least privilege controls (AC-2, AC-6) across privileged accounts, strengthening Zero Trust.
Mentored a 4-member team under the BiTSEC contract, closing skills gaps in Log analysis, vulnerability management, incident containment, and cloud security best practice.
Authored work instructions (WI), standard operating procedures (SOP) to standardize enterprise vulnerability processes across NASA centers.
RICE University
Cyber Security Analyst (Consultant) January 2019 – July 2019
Houston, TX
Enhanced IT performance and enterprise resource planning (ERP) security by 20% through vulnerability scheduled Windows/Linux systems scans reducing system-wide risk by 95% in Q1 2019.
Delivered remediation and audit readiness reports aligning vulnerability metrics with CISO governance and compliance objectives.
NASA Johnson Space Center (JSC)
Senior Systems Analyst / IT Security Analyst August 2017 – June 2018
Houston, TX
Authored end user IT security policy templates for JSC engineering directorate (EA) users streamlining compliance processes using Lean Six Sigma practices
Led deployment of the EA IT Policy Management System, enhancing IT compliance oversight, risk management, and operational policy guidance to support RMF requirements.
Completed network mapping of JSC Engineering Directorate systems and validated secure configurations against NIST 800-53 RA-5, improving architecture visibility and reducing attack surface.
PinnacleART
Project Risk Engineer August 2015 – June 2016
Pasadena, TX
Mechanical integrity consultant for root-cause analysis and risk-based integrity (RBI), utilizing IDMS and RBI solutions to develop equipment mitigation strategies for client’s MI projects.
Baker Hughes February 2012 – July 2015
Network Operation Engineer
Odessa, TX
Managed enterprise vulnerability analysis and compliance reporting across multiple regions (North America, Asia-Pacific, and Africa) sustaining audit readiness and incident containment efficiency.
GE Oil & Gas July 2010 – February 2012
Enterprise Applications Engineer
Detroit, MI
Implemented defense-in-depth controls and secure coding practices, reducing vulnerabilities by 30% and incident response time by 25%.
Detroit Energy 2007 – 2009
Process Controls Energy - Intern
Detroit, MI
Built predictive monitoring systems analyzing 200M+ data points, improving operational efficiency by 15% and reducing downtime by 10% across Fossil-Fired and Nuclear Power Plants.
Education
Bachelors, Electrical & Computer Engineering - University of Michigan - May 2009
Associate in science, Honors - Mott Community College - 2005
Associate in computer network administration, Honors - Mott Community College 2005
Becoming a Transformational Leader - Emerging Leaders Program
Henry Patton Endowed Scholarship
Information Technology Certifications
CompTIA Security+ with CE (Active, DoD 8140 Compliant)
Certified Scrum Master
Professional Affiliations And Volunteer Work
National Society of Black Engineers (NSBE)
Habitat for Humanity
Houston Food Bank
NASA Judge - Science and Engineering Fair of Houston
InfraGard – Houston Chapter
Core Competencies
Cloud Computing: Amazon Web Services (AWS) S3, IAM, VPC, RDS, CloudFront, Route 53 Snowball AWS host scanning Google Cloud (GCP) Google Cloud Shell Kubernetes Containers CloudTrail Cloud Monitoring
Vulnerability Management: Nessus Qualys HCL AppScan Tenable Security Center (Tenable.sc) Tenable OT Nmap Burp Suite Pro Sentinel 1 OWASP Top 10 KEV Analysis Asset Discovery
Big Data: Splunk Dashboard (SIEM)
Endpoint Management: IBM BigFix Nessus Agent
Database & Programming Languages: MySQL Python CI/CD Integration (Jenkins, GitHub Actions)
Machine Learning: TensorFlow Google Colab Jupyter Notebook
Natural Language Processing (NPL) & Speech Technologies: Speech Synthesis Markup Language (SSML)
Zero Trust, Identity: CISA ZTMM, OMB M-22-09 Identity and Access Controls (AC-2, AC-6) Encryption (SC-13, SC-28)
Cybersecurity Frameworks: Federal Information Security Modernization Act (FISMA) Risk Management Framework (RMF) NIST 800-53 NIST 800-37 NIST Cybersecurity Framework (CSF) FedRAMP
Configuration Management: PowerShell IBM DOORS DOUG
Process Improvement: Lean Six Sigma Quality Management Business Process Management Plan-Do-Act-Check (PDAC)
Visual Analytics, WireFrame & Design: Tableau MS Visio Figma Balsamiq
System & Network Security: MacOS Security Hardening Windows OS Linux
Contact this candidate