- Helped small businesses set up and reconfigure their network infrastructure during COVID, including setting up the wireless access points to reach outside dining areas to promote social distancing- Spearheaded the implementation of test-driven security practices within CI/CD pipelines, aligning with DevSecOps principles and ensuring seamless integration of security measures.- Engineered automation solutions tailored to the NIST Risk Management Framework (SP800-37, SP800-53/53a), significantly reducing manual workload and enhancing compliance adherence.- Developed and meticulously tracked Plan of Action and Milestones (POA&Ms), swiftly addressing security vulnerabilities and ensuring regulatory compliance within specified timelines.- Documented and standardized processes to facilitate knowledge transfer, empowering team members to conduct automated assessment reviews efficiently and accurately.- Designed and deployed cutting-edge security assessment automation tools, revolutionizing DevSecOps practices and expediting secure software development cycles.- Delivered training sessions on backup and data recovery to raise awareness of ransomware threats and equip teams with essential skills for incident response.- Implemented and managed robust network security measures, including firewall configurations and continuous monitoring, to safeguard against unauthorized access and cyber threats.- Configured cloud platforms including AWS, Microsoft Azure, and Google Cloud Platform for small business and enterprise applications, while also implementing cloud access security broker (CASB) solutions for enhanced security and control.- Developed and deployed automation solutions leveraging Python, Bash, Java, and PowerShell scripting languages, streamlining repetitive tasks and enhancing operational efficiency while minimizing errors

- Delivered endpoint security and monitoring for systems across diverse organizations.- Oversaw and managed a range of endpoint agents, including MS Defender, Crowdstrike, and Trend Micro.- Implemented robust cloud security protocols leveraging Microsoft Azure, ensuring compliance with industry standards as a cloud access security broker (CASB) and safeguarding sensitive data against cyber threats.- Demonstrated proficiency in designing and deploying secure Azure infrastructure, including identity and access management, network security, and encryption protocols, enhancing overall cloud security posture.- Applied Python and PowerShell scripting expertise to develop multiple automation solutions, collaborating with team members to streamline various tasks.- Leveraged extensive expertise in ServiceNow to design a multitude of executive and team dashboards, facilitating quick solution generation and informed decision-making.

- Assessed vendors and products for security compliance using tools like SecurityScorecard, security risk matrix, and other websites to gather information to determine the risk to the business.- Managed and maintain internal vulnerabilities and compliance metrics. Continuously worked with 75+ business segments to ensure systems were maintaining consistent patching cadence.- Utilized tools like Tanium, Tenable, and ServiceNow to pull reports, run scans, and create a dashboard to gather information in an easily digestible format to quickly determine and develop prioritization for driving vulnerability remediation across the company. This led to a 63% reduction in overall vulnerabilities.- Collaborated with cross-functional teams to design and deploy automation solutions within Google Cloud Platform's BigQuery environment, resulting in a 40% reduction in manual labor. Automation initiatives included form generation, SLA notifications, and external reporting systems, optimizing workflows and enhancing productivity across the organization- Trained 2 new hires during my tenure. Setup a training schedule with various topics to go over to ensure that they were given every opportunity to be successful in their new position- Managed the migration project to transition Tanium with ServiceNow Vulnerability Response Module from a custom connection to the new API Plugin connection, reducing data update intervals from 7 days to just 5 hours. Additionally, automated processes were implemented to streamline data synchronization, ensuring timely and accurate information delivery to customers.- Utilized JIRA to manage and maintain work and workload and completed all tasks in a timely manner.

- Provided vulnerability management, patch management, and incident management to the various Disney Studios and partners including the following: Walt Disney animation, Pixar, Lucasfilm, Marvel, etc- Developed the STARVE methodology for the incident response that better fit with the dynamic workflow of the vastly different studios.- Used Qualys, Tanium, Tenable, Crowdstrike, and Bigfix to gather vulnerabilities, prioritize, and deploy packages to patch the system on a semi-regular cadence and to accommodate the random “no patching” timeframes of movie production- Self-taught action scripting within BigFix to create packages to deploy to systems- Led the project to deploy Crowdstrike on 10k machines across the different studios.

- Managed over 30 programs and ensured all were in compliance with various frameworks (JSIG, NIST, FedRamp, RMF, etc). Also provided incident response and was the sole security person on the program roster.- Responded to various incidents (mainly spillages) all within 48 hours upon discovery.- Generated lessons learned and use case documentation to present to leadership due to the frameworks shifting to RMF or newer versions where appropriate.- Maintained Top Secret Clearance to perform ISSO duties across multiple system security plans(SSP) including the following: Audits, SSP creation and maintenance, independent assessments, security consulting for plan owners- Provided insight to move classified to "thin clients" where appropriate to cut down on System administrator maintenance time and reduce the risk of fraud, waste, and abuse- Used multiple frameworks to create SSPs across the company including the following: NIST, JSIG, FedRAMP, DIACAP, and DIAG to name a few- Used Nessus, Retina, SEIMS, and various tool used to block USB and CD drives to ensure all controls were implemented and maintained on a daily basis

- Provided Help Desk, Network, and Information Assurance services across the installation- Deployed Gold images across 15k machines within 30 days leading a team of six soldiers- Reduced ticket queue from over 1k work tickets to under 25 within 30 days by creating a dashboard to group types of requests and assigning them to my team, while also providing guidance to properly address the tickets and maintain a 99.9% customer satisfaction rating- Maintained over $250 million dollars worth of equipment over 4 years with zero loses- Obtained Soldier of the Year and NCO of the Year for 4 years straight- Led the SNAP team of 15 Soldiers to Sendai, Japan to provide network service to the people of Japan during the Earthquake, Tsunami, and Nuclear reactor epidemic