Coordinates and administers operations activities (business administration, procurement and subcontracts, public relations, financial activities, project management, human resources, facilities management, chief information office and information management, EH&S and quality assurance) to further attainment of goals, objectives and performance expectations. Participates in developing long range performance plans, milestones, goals and objectives. Promotes integrated planning across laboratory operations; establishes goals and measures of success in meeting goals, objectives, and milestones; identifies and prioritizes needs and assures a balanced allocation of supporting resources. Leads the development and implementation of quality assurance, diversity, continuous improvement, and assessment programs, and works to ensure that these programs are effective and integrated to achieve high quality laboratory operations to support the science mission. Develops and proposes plans for the operational infrastructure of systems, processes, and personnel designed to support the science mission. Reviews and analyzes activities, costs, operations, and forecast data to determine department or directorate progress toward stated goals and objectives. Recommends to the Director corrective action plans for shortfalls in operational performance or goal achievement.

Provide Information Assurance & Security Operations support to a major program. We oversee all System Security Plans (SSP)’s and their certification and accreditations for over 40 systems on multiple networks operating at different classification levels. As an ISSE for the program I provide security engineering support by conducting Integrity Monitoring (Tripwire), System Vulnerability assessments (NESSUS), Audit reduction and correlation activities (OSSEC/SPLUNK).Provide Security Engineering support to Web Application Developers, Database Engineers, System Administrators and Network Administrators relating to updates, IAVA compliance requirements, AV scanning, Firewall policies, and patching. Oversee system certificate management and system authorization assignments using a centralized Certificate Authority serviceSr. Network Threat Support Specialist: On the NANA program I provide the Government with essential technical skills to support the threat operations center. The scope of my effort includes support for various analytical requirements. These requirements include but are not limited to multi-source analysis, network and vulnerability analysis, intelligence analysis, threat analysis and reporting, information assurance (IA) analysis, network and media forensics analysis, malicious code analysis, and Computer Network Operations (CNO) synchronization planning and support. I provide reverse engineering utilizing Python to recode most of the tools currently used in the analysis. Our efforts will enable the customer in its goal to establish global network awareness and threat characterization capabilities that will forecast, alert, and attribute malicious cyber activity and enable CNO.

Licensed in MD, VA and DC to Sell, List, Lease or Rent Real Estate. On my down time, when I have it, I like to help those less fortunate to own a piece of the pie, the American dream. For others I enjoy finding that prefect home.

Provided expert-level support to Federal Emergency Management Agency. Executed a wide portfolio of technical assessment services associated with A&A, cyber security control assessments, accreditation package development and all other services required for final accreditation for FEMA's IT Resiliency effort.Conducted vulnerability scans using approved automated security tools to build security plans. Captured IS hardware and software inventories, identified and verified host names and internet network architecture diagrams.Worked closely with internal and external clients in order to maintain cyber awareness for all systems. Initiated the re-accreditation process and maintained documentation for enterprise-level systems throughout all stages of the system life cycle, including anti-virus/anti-malware administration services, operations and maintenance (O&M). Performed risk mitigation by employing Plan of Action and Milestones (POA&Ms), and maintained the IA posture and all requirements for a comprehensive service delivery.Created ATOs for multiple enterprise systems preparing to enter virtualized hosted systems in an Infrastructure as a Service (IaaS) environment. Created Personal Identification Validation (PIV) compliant login solutions using Passlogix. Provided risk mitigation analysis to threats and compiled POA&Ms for open vulnerabilities. Configured intrusion detection systems (IDS) and security event and incident monitoring systems (SIEM).Explored Agile methods to overcome new risks created by enterprise-level IA system interoperability changes. Led teams to have a maximum focus on events leading up to full rate production at most competitive cost.

Provided system engineering support to develop systems and prototypes which seamlessly integrated with current architectures, providing added capability and expansion potential; analyze potential capabilities and opportunities. Provide oversight to multiple development tasks in order to assure that work is being done in accordance with systems and corporate priorities as specified by customer.: Developed requirement, specifications and implementation planning for metadata exploitation, develop workflow schemas and methodologies.Conducted architectural and system design activities to include both development and production environments.Assured that developmental tasks are properly described and are being conducted in accordance with the direction and architecture of the corporation.Prepared and delivered status and strategic briefings.Coordinated requirements and priorities among a broad group of stakeholders, levied these requirements on behalf of the sponsor organization.Tracked progress toward fulfilling requirements.Interfaced across organizational boundaries to promote satisfaction of requirements.Document and organize research to highlight SIGINT opportunities and means by which to capture them.Performed mission analysis to identify possible upgrade areas or coverage gaps and conduct trade-off analysis and or evaluation of emerging technologies and development activities to ensure the most advanced and complete mission system.Developed analytical Prototypes using XKS, SPL, Pig, Pearl

Served as Lead for developing data governance architect for data transmitting, processing and data at rest to enable IC community in sharing data across the enterprise and in the cloud framework. Working with the various Micro Formats and numeration within the various registers. Creating Data governance for the register and other documents as it pertain to the various register. Created framework for the data Stewart in “How to Used Guide” for the Register as well as created training guides. Worked at agency providing assistance and creating documentation and procedures for collection, analysis and dissemination of information across the IC community.Our production team is made-up of cross-functional teams consisting of members from the software development team, quality assurance, business analyst, product management, and security. The teams assimilate product information during the production process and follow departmental and production milestones. The developers, develops and implements production-driven milestones to ensure the quality of published information. All product enhancements are documented and or updated, reviewed, and approved in stages by the software/product board and security. All members of production team share responsibility for these documentation milestones and the standards they protect.

Seasoned, accomplished, well educated and certified Senior Staff Engineer proficient in leading teams accountable for full spectrum of Information Assurance entities including certification / accreditation, policy & procedures, SCIF build-out, physical/personnel/ network security. As Information Systems Security Manager (ISSM) also served as advisor/consultant, utilizing DCID6/3 and JFAN6/3 to ensure FISMA compliances for more than 50 remote sites globally for INTEL. Twenty-year career dedicated to IT work particularly to information security within chiefly corporate environments and the National Security Protection. Strong leader as well as team player, building solid work units of trusted talented professionals. Outstanding education and training with firm concentration in IT field, coupled with relevant certifications and impressive and extensive and successful work experience present exceptional candidate for IT leadership position.

Specialties: OS and Windows Forensic w/Encase FTKP tools. COMSEC Custodian auditor - Crypto Brief, handle equips, key, log and updates. ISSM Agency trained. SANS Intense Forensic, CISCO Professional Track; C&A Methodologies - DITSCAP (DoD), NIACAP (Non-DoD), GISRA, DCID6/3, JAFAN6/3, NIST800 and DOJ; NIMS 700/800, Six Sigma/Lean Thinking, Systems Integration & Engineering, Intro Acquisition Mgnt, and Contracting Management. SCIF Accreditation, Data Transfer Officer Roles & Responsibility. Stoodup IA Program

Developed and supported information assurance initiatives for Shared Vision including reviewing of vulnerability analysis, secure architecture design, policies & procedures, writing SSP’s and preparation of accreditation and certification. Utilized DCID6/3 methodology and continuation in research and development of leading technologies and industry standings.Leveraged knowledge of agile development process to provide security oversight for Global Virtualization Services (GVS) and Integrated Exploitation Services (IES). Collaborated with development team on incorporating customer input and anomaly resolution, leading to delivery of projects on-time and with increased customer satisfaction. Provided C&A testing of security requirements for deployment systems in lab setting. Within specified lab, would configure system to specified requirements and load security patches. Upon completion, I would then test the system using DISA Gold [Windows] or RSS [UNIX]. Making selections of the specify scanning options we wanted to run, usually several test run back to back. Upon completion would review report and compare to IAVA if needed, and if system were within compliances would pass on to the verification division for processing and then on to deployment.Security oversight for numerous programs initiated by the Net-Centric Integration Intelligence Programs Division. Led project activities to ensure confidentiality and security, including risk assessments and mitigation, vulnerability analysis, enterprise architecture design, system security plan (SSP), perimeter defense, documentation, policy and procedure development, and certifications

Ensured alignment of all automated information systems (AIS) with Federal IA policies. Actively reduced vulnerabilities and mitigated risks by conducting detailed security analyses and integrating architectural security controls. Applied C&A expertise to evaluate the feasibility, impact, and cost effectiveness of various security solutions utilizing Nessus, nMap and other penetration tools to test and secure Network infrastructureMember of two critical security-centric boards, the Firewall Administrative Policy Board (FAPB) and the Community Applications Services and Protocols Evaluation and Review (CASPER). Services and Protocols Evaluation and Review (CASPER). My role has centered on the corner stone of security [confidentiality, integrity, & availability] (CIA) coupled with Non-repudiation, accountability, and access control. Proficient in working with DCID 6/3 methodologies and processes, have preformed security testing and vulnerability analysis assessment for more than 15 years. At NGA performed C&A process on the average of 25-30 systems per month. Given the appropriated team or a team that possess synergy and C&A became a job that was easily performed. Proficient in working with DCID 6/3 methodologies and processes, have preformed security testing and vulnerability analysis assessment for more than 15 years. At NGA performed C&A process on the average of 25-30 systems per month.While working for CSC/NGA was the Lead ISSO for a 3-person team that was responsible for the certification, analysis and testing of all NGA information system for the assurance required by FISMA to meet. In requirement validation we validate the project requirements before the design process begins. We validate the objectives to certify completeness and consistency, ensure compliance to standards, ensure there’s no conflicts or ambiguous with requirements and we check for technical errors. .

US Environmental Protection Agency (EPA) customerPossess a broad knowledge of all facets of information technology to include Information Systems Security (INFOSEC), Security Architecture, Network Management, Systems Analysis and Design, Change Management, Configuration Management, Disaster Preparedness, Network Security, Security Audit, Certification and Accreditation (C&A) of classified and unclassified network systems and excellent troubleshooter.• 2+ years in management, supervised up to 12 engineers, scientist and technicians• Certified and Accreditation of Information System (IS) and SCIF (Information and Physical security)Specialties: OS and Windows Forensic w/Encase FTKP tools. COMSEC Custodian auditor - Crypto Brief, handle equips, key, log and updates. ISSM Agency trained. SANS Intense Forensic, CISCO Professional Track; C&A Methodologies - DITSCAP (DoD), NIACAP (Non-DoD), GISRA, DCID6/3, JAFAN6/3, NIST800 and DOJ; NIMS 700/800, Six Sigma/Lean Thinking, Systems Integration & Engineering, Intro Acquisition Mgnt, and Contracting Management. SCIF Accreditation, Data Transfer Officer Roles & Responsibility. Stoodup IA Program

Vulnerability, Analysis, Assessment, and Processes. Triage, Virus capsulation, System Administration, Help desk support global, Certification and Accreditation. Design Unix Boxes of various favorites and prepare securely for deployment and installation.

Programmer analysis and RDM SME, Programmed in COBOL, FORTRAN, Clipper, C+Developed and designed from conceptual concepts thru design, unit & system testing, thru full life cycle process to retirement. The full SDLC