Christopher Mcvay Email & Phone Number

Montgomery, IL, US

Vienna, VA, US

• Collaborate with Veterans Affairs (VA) users to assess cyber risks and develop strategic plans
• Review and evaluate VA Plan of Action and Milestones (POA&Ms) information
• Provide recommendations to VA system owners and assisted in implementing solutions
• Prepare reports and briefings for VA executive-level stakeholders
• Conduct trending analysis on POAMs to track progress and identify areas to improve within VA systems

Washington, District Of Columbia, US

• Protect IRS information systems and information via analysis and correlation of network security events while providing response for containment, eradication, and cyber security incidents.
• Produce security event notifications via in the form of advisories, alerts, and bulletins to inform assigned system/application owners as well as users of identified weaknesses and/or deficiencies associated with.
• Record and report cyber incidents in accordance with the National Institute of Standards and Technology (NIST)

Upper Marlboro, Maryland, US

• Perform security steward activities: Support Centers Disease Control and Prevention (CDC) and OD ISSO, OD Staff, CSPO staff, and OD Business Stewards in creating SA&A packages and completing required documentation.
• Ensure system documentation and reviews: Complete and review system documentation, analyses, tests, and enhanced security control assessments (ESCA) to meet deadlines; new systems should receive Authorization to.
• Coordinate with system SMEs: Collaborate with OD and CSPO System SMEs to ensure accurate and updated system documentation according to policies and procedures
• Develop and track POA&Ms: Document system weaknesses, corrective actions, costs, and responsible parties in POA&Ms; ensure timely processing of reschedule and closure requests to avoid expiration
• Track deliverables and conduct evaluations: Use tools like Trusted Agent and RSA Archer to track SA&A, annual assessments, and BCP deliverables; complete software security evaluations and cloud security testing using.

Upper Marlboro, Maryland, US

• Develop and deliver security training: Create on-demand, web-based user security training content through the LMS, using various approaches like gamification to engage different learning styles and reduce security.
• Provide daily reporting: Notify CDC users of their Role Based Training (RBT) and Security Awareness Training (SAT) statuses, utilizing HHS RBT Non-Compliant reporting to track annual user compliance
• Assist users with security responsibilities: Support CDC users with Significant-Security Responsibilities (SSR) in modifying system security controls based on their roles as Executives, Managers, and IT Administrators
• Support new users: Help new users who do not yet have access to the CDC network with SAT by submitting service desk tickets to the MISO Help Desk through Secure Access Management Services (SAMS)
• Conduct security awareness campaigns: Develop, create, and deliver end-user security training, including SAT campaigns and phishing email exercises, to reduce security incidents

• Receive and store notifications: Store cyber vulnerability notifications for at least one year in a repository and ensure they are delivered to the Defense Contract Management Agency (DCMA) as required
• Monitor compliance and conduct analyses: Monitor compliance with NIST 800-53 Rev 4 SI-5 and conduct regular trend analysis on vulnerability scan results, including trends in severity, recurring vulnerabilities, and.
• Update and report POA&Ms: Update and report Plans of Action and Milestones (POA&Ms) according to NIST 800-53 Rev 4 CA-5 milestones, and respond to vulnerability information requests
• Provide support and report compliance: Provide remediation support to system administrators, report compliance to US Cyber Command, and enhance vulnerability management processes through formal improvement methodologies
• Collaborate and document processes: Collaborate with DoD and non-DoD organizations to share vulnerability information, provide weekly compliance reports, and document all processes in diagrams, work instructions, and.

Reston, Virginia, US

• Continuous monitoring: Provide 24/7/365 monitoring of network-based security sensors for anomalies and unauthorized activities, following NIST 800-53 Rev 4 SI-4
• Reporting and assessments: Deliver quarterly trending reports and monthly threat assessment reports to DCMA, including recommended actions to mitigate risks, under NIST 800-53 Rev 4 CM-6
• Incident management: Maintain awareness of cyber events, provide daily situational awareness briefs, and report incidents to Tier 1 using designated mechanisms, ensuring compliance with CJCSM 6510.01B
• Analysis and documentation: Provide initial and post-incident analysis reports, document all processes in diagrams and SOPs, and review them annually or as needed based on lessons learned
• Operational effectiveness: Measure and report the operational effectiveness of tasks through approved test plans, and provide quality and service delivery reports to DCMA monthly, quarterly, and annually

Reston, VA, US

• Serve as a technical liaison between the 26th Network Operation Squadron (NOS) and the Combat Information Transport System (CITS) Program Management Office (PMO)
• Provide technical support to the Boundary Protection Team by:o Assisting with support renewals, procurement and sustainment of Integrated Management System (IMS) and Gateway Equipmento Creating and submitting.

Reston, Virginia, US

• Provide onsite and remote Tier3 technical support for Air Force Combat Information Transport Systems (CITS), including installation services
• Manage incidents and problems to resolve hardware, software, and operational issues for CITS Network Management/Network Defense systems
• Offer advanced technical support and guidance on information management, architecture, infrastructure planning, and testing procedures
• Ensure operational reliability by overseeing information security policies, processes, and practices
• Utilize expert communication skills to collaborate with internal and external customers, organizations, media, and public groups

Master Of Science (M.S.), Computer And Information Systems Security/Information Assurance

Bachelor Of Science (B.S.), Criminal Justice, Information Systems