Perform NIST SP 800-53A v4 security assessments services encompassing various industry standards (NERC, NISTR 7628) for evaluating organization’s security posture. Provide consultation guidance for compliance to RMF NIST 800-37 and NIST Cybersecurity Framework for improving critical infrastructure.Advise on AWS well-architected framework cybersecurity strategies for cloud computing services and deployment models, identifying proper shared responsibilities security architectures to be included in contracts and service level agreements (SLA) for different operating environments.

Provided security best practices, principles, and techniques throughout information system architecture, design, requirements definition, implementation, verification, validation, and operational testing phases resulting in holistic risk-based cyber resilient systems eliminating/reducing potential threat and vulnerabilities.Advised on secure system development practices, principles, techniques per ISO/IEC/IEEE 15288, NIST 800-218, and NIST 800-53 v4 for adequately addressing cybersecurity requirements in System Design Lifecycle (SDLC).

Designed, developed, integrated, and tested secure embedded systems meeting stakeholder's security needs/requirements, risk, and protection needs commensurate threat/vulnerability potential vectors resulted in verified, validated, and mission-effective ATO certified secure operational system performance.Authored, maintained, and updated RMF Assessment and Authorization (A&A) package deliverable artifacts, System Security Plan (SSP), Security Assessment Report (SAR), Plan of Action Milestones (POA&M), Security Control Traceability Matrix (SCTM), CyberSecurity Test Plans, Contingency Plan (CP) and other security related documentation including Supply Chain Risk Management (SCRM), and program protection Program Implementation Plans (PIP) concerns. Managed Vulnerability Management identification and analysis utilizing Nessus, SCAP, OpenSCAP, and IAVA process for compliance with current Security Technical Implementation Guides (STIG)/Security Requirements Guides (SRG) employing time developed automated scripting for patching identified system vulnerabilities.

Designing, integrating, configuring, testing, troubleshooting, and supporting COTS cyber security equipment and software solution solutions of critical digital assets in industrial control systems for their compliance to various regulatory compliance standards such as NEI-08-09, NERC-CIP, 10 CFR 73.54, NIST 800, ISO 27001, and DHS Cyber Security Framework.Engineered, implemented, and supported customized information system security hardware (VMware ESXi vSphere / VCenter 6.0 and custom Virtual Machines) for protection of nation-wide critical industrial control systems employing company proprietary physical sensor components simultaneously increasing company sales.

Performed as self-directed individual contributor in remote worker setting for Physical Design Engineering of block level design and Chip level assembly assistance of multiple 20M plus Fujitsu 55nm and TSMC 28 nm first pass success ASIC designs.Led first pass success physical design implementation with power gating CPF of 500 MHz dual-core Cortex-A9 IP core in 55nm process node with Sign-Off closure in Primetime STA and Mentor Calibre.Managed first pass success physical design layout using Cadence EDIS tools of 800 Mhz DDR-IO phy, turn-key Verilog soft macro IP core Synopsys DC synthesized to 1.8 Ghz fractional PLL, and 500 Mhz low data skew hierarchical block with Sign-Off closure in Primetime STA and Mentor Calibre targeting of 65nm.

Performed as Security Analyst with 6C Secret Clearance in a managed security service operation center for securing U.S. Department of Education/Federal Student Aid infrastructure for reducing impact of risk security incidents onto assets all along implementing appropriate countermeasures for continuously improvement of security posture.Orchestrated Arcsight and RSA enVision SIEM tools for performing investigative analysis of correlated security events until resolution, possibly leading to new SIEM filters proposals, and/or if necessary including initiation and escalation of incident response handling procedure for incident containment, eradication and recovery.Collaborated in team preparation and delivery of daily teleconference customer security posture brief reporting on security key performance and risk indicators, Antivirus device endpoint metrics and investigative work, trending analysis, and continuous service operation, maintenance and patching for achieving guaranteed contractual service level agreements.Managed corroborative investigative analysis of 3rd party MSSP suspicious event alerts in an extremely high priority severity 1 mode of operation for verifying and validating positive/negative nature of real-time security event potentially leading to a high impact security incident.Oversaw BMC Remedy ticketing system for incident, problem, change, configuration, release, and request management in compliance with ITIL service management best practices. Owned HIDS, HIPS, NIDS, NIPS changes as required by BMC Remedy ticketing system which also included report on outages as necessary for these IDS/IPS system.Generated procedures documentation as part of team member development for becoming Subject Matter Expert per management’s discretion.Performed in 24/7/365 environment security operation center for supported DoED/FSA infrastructure high level SLA requirements.