The Security Control Assessor (SCA) is the senior official having the authority and responsibility for the assessment of Air Force Information Technology across all AFSC Industrial Depot Maintenance (IDM) Industrial Control Systems (ICSs). Leads and provides direction to the Air Force Sustainment Center (AFSC) Security Controls Assessor Representatives (SCARs) to ensure security controls are properly implemented and assessed. Serves as the Subject Matter Expert (SME) of the Risk Management Framework (RMF) teams for IDM across AFSC ensuring the proper planning of cybersecurity requirements. Ensures security controls are implemented IAW the security plan and are assessed IAW the Security Assessment Report (SAR). Validates assessment results from others (e.g., SCAR or ISSM), performing hands-on, comprehensive evaluations of the technical and non-technical security controls for IT and determines the degree to which the IT satisfies the applicable security controls. Makes recommendation to the Authorizing Official (AFSC/EN) as to cyber risk acceptance.

The Security Control Assessor Representative (SCAR) coordinates with the Program Manager (PM), Information Systems Security Manager (ISSM), Information Systems Security Officer (ISSO), and Risk Management Framework (RMF) team to assess security controls for the Security Control Assessor (SCA). Works under direction of the SCA to ensure security controls are properly assessed ensuring security of the system IAW the Authorizing Officials direction. Serves as an active member of the RMF team from its inception, to assist with planning of cybersecurity requirements. The SCAR ensures security controls are implemented IAW the security plan and are assessed IAW the SAP. Validates assessment results from others' (e.g., ASCA or ISSM) hands-on, comprehensive evaluations of the technical and non-technical security controls for the IT, determines the degree to which the IT satisfies the applicable security controls.

Policy and Planning, Enterprise Security Architecture, Enterprise Security Engineering, Systems Security Analyst. Reviews and assesses DIACAP (DoD Information Assurance Certification and Accreditation Process) portfolios including DIACAP POA&Ms, Primary Artifacts, and IA (Information Assurance) Controls. Performs risk assessment, identifies mitigation requirements and develops accreditation recommendations.Provides Information Systems Security Architectural and Engineering guidance and support to the Tinker AFB 72 ABW/SC Application Server eXchange hosting facility projects.Has good communication and interpersonal skills to interact with a wide variety of internal and external personnel with emphasis on follow-through and reporting. Ensures that risk based security solutions are implemented into the design of hosted systems.Identifies DoD level information assurance requirements and advises on implementation of design features to support certification and accreditation.Provides application security and information assurance support for hosted application with the ASX hosting facility. Serves as Technical Information Assurance Specialist for DoD mandated server consolidation and modernization projects of the Tinker AFB 72 ABW/SC Application Server eXchange.Serves as Information Assurance SME for Tinker AFB 72 ABW/SC Configuration Control Board.Working knowledge of the Integrated Defense Acquisition, Technology, and Logistics Life Cycle. Management System.Working knowledge of the DoD Systems Engineering Process.Considered an expert in my area

Provide Information Systems Security Architectural and Engineering support to the Tinker AFB hosting facility projects. Ensure that risk based security solutions are implemented into the design of hosted systems. Identifiy DoD level information assurance requirements and advise on implementation of design features to support certification and accreditation. Responsible for reviewing and assessing DIACAP (DoD Information Assurance Certification and Accreditation Process) portfolios including DIACAP POA&Ms, Primary Artifacts, and IA (Information Assurance) Controls. Perform risk assessment, identify mitigation requirements and develop accreditation recommendations.

Project Lead and Contingency Planning Coordinator for FISMA Compliance Project FY07 .Consolidation Project Liaison for aircraft airframe maintenance server consolidation project.Security Consultant for Tinker AFB IT Consolidation Project 2007-2008.DIACAP Military researcher and security consultant for certification and accreditation of DoD information systems.SUN Solaris 8, 9, 10 systems administration. Provide system support for mid-range Sun servers, including routine maintenance, patching, system backups and restoration, and software and hardware upgrades.Windows 2000 Server and Server 2003 systems administration. Provide system support for 100+ Windows servers, including routine maintenance, patching, system backups and restoration, and software and hardware upgrades.

Provide information security industry best practice consultation and recommendation to clients for business continuity.

Successfully supported multiple versions of Windows operating systems Installed and manage electronic mail systems Managed and secured web services Researched and implemented remote desktop management system Evaluated network for security vulnerabilities Provided guidance for security policy development Developed and tested backup and disaster recovery procedures Installed and managed recommended security countermeasures Administration of enterprise antivirus solution Installed and managed critical update patch management system Developed security awareness training for faculty and staff

Supported Microsoft 2000 Network of 30+ servers over TCP/IP Network of 3000 workstations and trained individuals in Microsoft products and basic computer operations.Provided support for the setup of Dell Server Racks and Servers, installation, configuration and maintainance of Intel 550 and 510 switches, Cisco 3500XL powered switches, and Cisco IP phone network.Maintained OS integrity through the use of Ghost Enterprise console and gained experience in technical and end user support environments.