Cyber Security Engineer

Resume posted by [email protected] in Information Technology & Services.
Desired salary: $120,000.00
Desired position type: Contract

[email protected]
Tel:
Mobile:

Summary

I am a well educated and experienced professional with a wide variety of technical and interpersonal skills that have been honed over the past fifteen years and I hold a DOD Top Secret Clearance with SCI eligibility. In my current role I am Cyber Systems Engineer with the Northrop Grumman Corporation where I am a Cyber and Risk Management Framework (RMF) Subject Matter Expert (SME). In my previous role I served as an Information Assurance Engineer at the Joint InterAgency Task Force South (JIATF-S) where I provided all levels of support in obtaining Authorities to Operate (ATO) for their systems and enclaves using the Risk Management Framework. Previously I was the Information Assurance Manager for all U.S. Army bases in Kosovo where I provided onsite support for the U.S. Army’s 5th Signal Battalion at Camp Bondsteel. In the last assignment before Kosovo I was an Information Assurance Analyst at Bagram Air Base in Afghanistan where I was a part of a team supporting over ten thousand network users over three different enclaves. Prior to working in Information Assurance I have been a Systems Engineer and a Software Engineer, one of these roles was with General Dynamics C4 Systems where my duties required me to support a network exploitation test tool (NETT) with an elite Army Red Team. My areas of interest within computer science are varied but I have passion for cyber security.

Education

Education
August 2000 – December 2003 Eastern Washington University Cheney, WA

  • Master of Science Computer Science.

August 1997 – June 2000 Eastern Washington University Cheney, WA

  • Bachelor of Science Computer Information Systems.

Experience

Experience
November 2018 – Present

Northrop Grumman (Melbourne, FL)

Cyber Security Engineer – 40 hrs/week

  • Advise, guide, and provide direction on the JSTARS weapon system to the Government customer as the system engineering team’s SME for Risk Management Framework (RMF).

  • Perform security control assessments using NIST 800-53 on the JSTARS Platform Information Technology (PITs) systems.

  • Create, update, and review Plan of Actions and Milestones POA&M based on security control findings.

  • Install, configure, and maintain Kiwi Syslog, ACAS, and HBSS servers on virtual machines that have Windows 2019 Server installed.

July 2016 – October 2018

Harpy I.T. Solutions Inc. (Joint Interagency Task Force South Key West, FL)

Information Assurance Engineer – 40 hrs/week

  • Provide guidance on the Risk Management Framework (RMF) process while utilizing the Enterprise Mission Assurance Support Service (eMASS) to manage the JIATF packages.

December 2013 – June 2016

Vectrus Corporation/Previously ITT Exelis (Camp Bondsteel, Kosovo)

Information Assurance Manager (IAM) – 54 hrs/week

  • Provide support and guidance on Army Regulations and Policy as the Information Assurance Manager for the Kosovo Area of Responsibility (AOR) supporting the U.S. Army’s 5th Signal Command. The Kosovo AOR.

  • Lead the IA team in all areas regarding Information Assurance Vulnerability Alert (IAVA) remediation, Security Technical Implementation Guide (STIG) compliance, Risk Management Framework (RMF) / DoD Information Assurance Certification and Accreditation Process (DIACAP) certification and accreditation, Assured Compliance Assessment Solution (ACAS) scanning and reporting, and all other IA related tasks as necessary.

  • Create local security policies as needed to supplement Army policy and regulations for the local Army commands.

  • Army Training and Certification Tracking System (ATCTS) manager for all users in the Kosovo AOR.

  • Participate in or lead investigations that come from information assurance (IA) incidents occurring on or affecting Army assets.

September 2012 – December 2013

ITT Exelis (Bagram Airfield, Afghanistan)

Information Assurance Analyst – 60 hrs/week

  • Perform Information Assurance duties for the U.S. Army 25th Signal Battalion in support of the largest network in Afghanistan.

  • Scan NIPR, SIPR, and Centrix (United Nations classified network) networks with Retina and QTIP scanners to identify network and system vulnerabilities as well as checking for the presence of malware, alerts, and unauthorized software using QTIP scanner.

  • Process Retina scan data for Bagram and other surrounding bases and mitigate, resolve, and report findings up to SWA Cyber Command and U.S. Forces Afghanistan.

  • Participate in the DIACAP accreditation for network systems as well as perform duties in support of Command Cyber Readiness Inspection (CCRI).

  • Utilize the Vulnerability Management System (VMS) to track and report network devices for STIG and IAVA compliance.

March 2012 – September 2012

General Dynamics C4Systems(C4S) (Huntsville, AL)

Systems Engineer/Lab Manager – 40 hrs/week

  • Lab management for the Tactical Airspace Integration System (TAIS) program with duties including network configuration as well as the assignment, configuration, update, and maintenance of TAIS computers.

  • Continuous Integration and Test (CI&T) team member performing ongoing testing on new modules and functionality prior to a new releases of TAIS.

  • Information Assurance team member completing quarterly security updates using Army Gold Disk and Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIGS)

July 2009 – March 2012

General Dynamics C4Systems(C4S) (Huntsville, AL)

Threat Systems Management Office (TSMO)

Systems Engineer – 40 hrs/week

  • Provide onsite support and training to the threat computer network operations (TCNO) team, at the Threat Systems Management Office (TSMO) in Huntsville AL, utilizing the Network Exploitation Test Tool (NETT).

  • Perform duties of a penetration tester, blue team, and/or red team member during scheduled events using NETT and open source software.

  • Provide laptop support; including reimaging, gold disk and retina scans, and inventory control for the threat CNO team at TSMO.

March 2008 – July 2009

General Dynamics Itronix (Spokane, WA)

Software Engineer II – 40 hrs/week

  • Used scripting languages and assembly language to incorporate new BIOS versions into rugged laptop computers.

  • Provided local and international support, during all phases of the development life cycle, for rugged laptop computers.

November 2005 – July 2009

iDynaTECH (Spokane, WA)

Co-founder/Software Engineer – 10 hrs/week till July 2009

Co-founder/Software Engineer – 40 hrs/week till January 2007

  • Developed web based, database driven, client-server application engine utilizing AJAX techniques with the model view controller paradigm.
  • Designed, implemented, and maintain Oracle and PostgreSQL databases.
October 2004 – November 2005

Data Mosaics (Spokane, WA)

Software Engineer – 40 hrs/week

  • Developed of a commission’s tool utilizing Visual Basic for Applications and Microsoft Access at Salesforce.com in San Francisco.

 

August 2001 – May 2003

Washington State University (Spokane, WA)

Software Engineer – 20 hrs/week

  • Participated in the design of an office management tool by extracting use cases from focus groups and provided a detailed design as output.

March 1985 – March 1989

United States Navy (China Lake & San Diego, CA)

Aviation Ordnanceman (AO) 2nd Class Petty Officer (E-5) – 40 hrs/week

  • Performed duties of an AO including but not limited to: maintaining, installing, testing, and troubleshooting weapons systems on naval attack and fighter aircraft at VX-5 Air Test and Evaluation Squadron

Skills

  • Cyber Security 15 years
  • Risk Management Framework 10 years
  • Information Technology 20 years