Senior Manager of a team of security architects providing oversight and approval for security design and standards for all company systems and products.Responsibilities:• Develop and maintain comprehensive security reference architectures and frameworks to fit various systems and environments. This includes assessing potential risks, identifying security vulnerabilities, and defining the security requirements to establish a strong security posture.• Conduct security architecture reviews that provide risk assessments to identify potential threats, vulnerabilities, and weaknesses in the IT environment and the company's products and services. Review security-relevant changes to the IT environment, applications, and solutions used throughout the company to identify potential risks.• Establish cybersecurity policies, guidelines, and standards that cover all aspects of cybersecurity, including system security baselines, data protection, and access control to safeguard products, sensitive information, and assets.• Evaluate existing and upcoming security technologies, tools, standards, and solutions. Recommend innovative security measures to improve the company’s security posture

Responsibilities:• Maintain the Core Product Security Requirements, a baseline of security requirements for all products based on ISO 270001, PCI-DSS, NIST 800-53, NIST CSF, and ISO 27040. • Work with potential and existing customers to answer security-related inquiries and provide documentation and presentations highlighting and explaining the products' security features. • Develop security hardening guidelines and scripts to increase the security posture of products and systems developed for customers.• Work with engineering and product management teams to prioritize security-related fixes and address potential vulnerabilities. Provide risk-based recommendations, explain the nature of vulnerabilities, and perform business impact assessments.

Worked as part of the Hitachi Vantara visualization suite proposal team, configuring cameras, setting up and hardening HVS, and creating VPNs for secure communication between nodes. Created custom small form factor enclosure containing a camera, small single-board computer, and battery to stream video for a week.Managed lab environment, supporting customer demos, testing, and development for multiple teams. Created separated networks for different projects, managed multiple VMWare VSphere installations, and built an active directory infrastructure to manage users across the lab from a single management point.

• Designed, built, tested and deployed a remote management system to allow administrators to control and monitor high assurance Cross Domain Solutions from around the world. This lowers the cost of management by removing the need for multiple administrators to be deployed to everywhere the CDS systems are installed possibly in high risk areas. Helped design and implement a cross domain logging mechanism allowing remote systems and networking equipment to safely and securely transmit logs across security boundaries and consolidate logs from multiple domains to one system. • Worked as part of the HP NetTop development team helping debug, develop and secure the NetTop product. Also supported onsite customers with new deployments of HP NetTop, helping solve problems such as hardware compatibility, operating system upgrades, kernel bugs, software configurations, custom programming and networking issues.• Modified an existing VPN solution to fully harden and minimize the operating system as well as reducing the disk space used by 85% and memory required by 50%. Hardened the system with a custom SELinux policy and updated system to fully support Suite B encryption algorithms, stronger firewall rules and active connection monitoring to ensure stable and secure connections.• Responsible for direct support of the HP NetTop CT&E effort. Assisted CT&E teams to install a custom configuration of NetTop, answering all questions and providing input and analysis of the base operating system as well as the security features of the system as well as mitigating findings resulting from testing. Performed ST&E of the solution at customer site.• Assisted government CT&E and penetration testing teams in analysis of different cross domain solutions ranging from high speed transfer solutions to mobile devices. Performed white box testing, source code analysis, SELinux policy analysis, system design review, and assisted presenting the findings to the CDTAB.

• Team and Technical lead of the security team for the High Assurance Platform, a system designed to allow multiple Virtual Machines to run a system on different security networks ranging from top secret to unclassified. Primary responsibilities included SELinux policy development, addressing CT&E findings, and general platform security. • Taught introductory and advanced SELinux policy development courses to classes ranging in size from 6 to 25 students not familiar with SELinux and/or computer security.• Assisted CT&E teams in doing SELinux policy analysis of the various high security systems. This work included identifying possible vulnerabilities in the system and assessing if the system met its security objectives. • Contributed to the design and integration the Coalition Secure Management and Operations System. Created a system design to meet DCID 6/3 and DODI 8500.2 security requirements. Worked with a team of over 30 system designers, security engineers and Command and Control experts from the UK, Singapore, Canada and Australia to implement a common system for all coalition partners to use.• Created a fully customized SELinux policy for a Cross Domain Solution focused on real time chat across multiple security enclaves. Using both role based access control and type enforcement, created a policy with an emphasis on least privilege. Also contributed to system design, implementation and testing.• Team and Technical lead of 8 developers and system engineers to create a extensible filtering framework enabling the use of custom and off-the-shelf filter mechanisms. Rapidly designed and developed system prototype in 10 weeks far exceeding customer expectations and successfully demonstrated this prototype to many VIPs.

• Installed and maintained software for all schools in county including manual virus removal, upgrading software, and assisting with any and all issues users had throughout the county.• Repaired and replaced servers, computer hardware, printers, and networking equipment• Team leader of summer computer technicians.• Maintained and upgraded countywide network of schools using Novell Netware and Microsoft Windows.