• Supportting multiple contracts simultaneously while delivering high quality solutions to clients. Lead security monitoring activities (Symantec SIM, Arcsight, Splunk), identifying, reporting, and mitigating security incidents according to defined escalation processes. Maintained the integrity of the IT system security controls by conducting periodic security assessments, and ensuring security compliance of the system.• Lead vulnerability scanning and remediation processes and configured tools (Nessus, UPC, and AppScan) to meet program requirements. Compiled monthly dashboard reports to management and lead remediation efforts. Collaborated with system administrators to ensure the required security controls were implemented in accordance with NIST 800-53 requirements. Coordinated the remediation of any security controls found to be deficient during scans, assessments, or internal security reviews.• Lead various compliance activities including the compliance documentation process to ensure the real time accuracy of documents such as the System Security Plan and Risk Assessment. Owned the development and approval of Interconnection Security Agreements. Lead the Security Impact Analysis process for code deployments and changes to the system. Lead all Contingency Plan (CP) related processes such as documentation updates, coordination with the disaster recovery site, and the Tabletop Tests. Served as lead during 3rd party Security Control Assessments to ensure all documentation, applications, processes, and controls are current and compliant to meet FISMA and Client Data Protection requirements in order to maintain the system Authorization to Operate (ATO).

Led FISMA assessments within federal bureaus and independently lead information security and risk assessments within commercial entities. Provided detailed reports regarding findings and recommendations, following rigorous assessments and testing of security controls and processes. Assessed and tested controls dealing with Access, Program Change, Computer Operations, Auditable Events, as well as other ITGC controls. Interviewed security officers, and performed entity-wide assessments on information security programs to determine whether they comply with NIST, ISO, or other industry standards. Developed detailed documentation regarding the following: steps performed during the engagement, findings and deficiencies, and the condition, cause, criteria, effect, and recommendation for control failures. Advised management on areas of improvement of security controls.

Used tools such as Clearcase, Clearquest, Bladelogic, Mainframe, and Humming Bird in the Data Pulling and Access Recertification and Reporting process(AR&R). Performed Monthly Privileged User Reports(MPUR) and Financial Security Audits(FSA). Also performed ad-hoc Information Security Requests(ISR).

Installed and configured Cisco network devices. Configured Cisco switches to support required network connections. Used the following tools to monitor network health and activity: Cisco Works, CA Ehealth, IP Monitor, Spectrum, VitalQIP, and Abovenet.

Prepared detailed test cases and summaries for modifications to the Selling System. Used Mercury Load Runner, Virtual user Generator, and HP Performance Center to strategically plan and execute performance and capacity tests on selling system upgrades and changes. Created and edited VUGen scripts for load tests. Analyzed and presented test results.

Worked with team of lead architects on the development of a new Microsoft Sharepoint 2007 environment projectTroubleshot problems within the infrastructure in conjunction with Microsoft support and JPMorgan Chase resources Trained team members on how to use the new Sharepoint environment

Repaired, updated, and installed software on computers at all Caddo Parish SchoolsAssisted the Data Processing Department with IT development and maintenance