Supported state agencies OITS, Dept. of Corrections and Highway Patrol:• Created/Maintained IT Security policy, procedure, guideline and related documents to comply with state laws, NIST SP 800-53, RMF, CSF, and Criminal Justice Information Services (CJIS)• Performed IT Security GRC assessment and audit support services• Organized MS Teams and SharePoint for optimal team collaboration• Provided OITS liaison services during major cybersecurity breach recovery at KS Judicial Center• Submitted process improvements suggestions to management• Performed required periodic continuous monitoring activities• Created and performed Security Awareness presentations and tips sent via email

Supported US Dept. of Veterans Affairs (VA):• Assisted with creation of DevSecOps SOP documentation.• Organized MS Teams and SharePoint for optimal team collaboration.• Provided IT security compliance expertise.

Supported multiple teams at US Dept. of Agriculture (USDA) and US Dept. of Education (ED):• Supported ATO Assessments to demonstrate compliance with NIST SP 800-53.• Provided FISMA audit support using NIST CSF and RMF.• Created/Maintained standard operating procedure (SOP), policy and directive documents.• Created/Maintained Memorandum of Understanding (MOU) and Interconnection Security Agreement (ISA) documents.• Created/Maintained Implementation Statements in CSAM tool for generating System Security Plan (SSP).• Created/Maintained Inheritance relationships in CSAM.• Generated a variety of reports as needed from CSAM.• Created/Monitored Plan of Action and Milestones (POAM) in CSAM.• Created/Maintained privacy documents, including Privacy Threshold Analysis (PTA), Privacy Impact Analysis (PIA) and System of Record Notice (SORN) to reduce compromising Personally Identifiable Information (PII).• Created/Maintained Security Impact Analysis (SIA) used to comply with Change Control Management.• Created/Maintained ICAM intranet website, including cybersecurity news articles, using SharePoint.• Implemented process improvements by organizing email and SharePoint folder structures.• Performed required periodic continuous monitoring activities.• Created presentations for training and demonstration to executives and all levels of development personnel.• Met daily with Subject Matter Experts (SMEs) using Microsoft Teams and various online meeting apps.• Utilized Planner tool within Microsoft Teams and Atlassian Jira for project management.

Supported the US Dept. of Interior (DOI), Bureau of Reclamation (BOR):• Performed ATO Assessments to demonstrate compliance with NIST SP 800-53.• Provided FISMA audit support using NIST CSF and RMF.• Created/Maintained standard operating procedure (SOP), policy and directive documents.• Created/Maintained Implementation Statements in CSAM tool for generating System Security Plan (SSP).• Created/Maintained Inheritance Relationships in CSAM.• Generated a variety of reports as needed from CSAM.• Created/Monitored Plan of Action and Milestones (POAM) in CSAM.• Created/Maintained privacy documents, including Privacy Threshold Analysis (PTA) and Privacy Impact Analysis (PIA) to reduce compromising Personally Identifiable Information (PII).• Created/Maintained Security Impact Analysis (SIA) used to comply with Change Control Management.• Implemented process improvements by organizing SharePoint folder structures.• Performed required periodic continuous monitoring activities.• Created presentations for training and demonstration to executives and all levels of development personnel.• Provided weekly status reports to management. Some included exports from Jira.

• Managed annual IT self-assessment in compliance with NIST RMF for over 60 systems to maintain Department of Education, Federal Student Aid, Authority to Operate (ATO).• Conducted continuous monitoring for FISMA compliance for IT General Controls (ITGC), Software Development Life Cycle (SDLC) methodology and change management processes.• Reviewed/Updated System Security Plans (SSP) quarterly in compliance with NIST SP 800-53.• Created presentations for training and demonstration to executives and all levels of development personnel.• Performed required periodic continuous monitoring activities to produce metrics documentation.• Facilitated continuous monitoring results review meetings with leadership personnel.• Contributed to discussions regarding process improvement for Agile and Waterfall methodology policies and standard operating procedure (SOP).• Created annual Computer Based Training for Information Systems Security Officers (ISSO).

• Launched alternative complimentary healthcare business.• Developed business plan, IT infrastructure, and all aspects of marketing.• Received local media awards and built relationships in chamber of commerce through marketing efforts and public speaking.

• Established change management procedures for environment with 15+ developers working on an average of 25-30 projects daily to prevent unauthorized updates to objects.• Maintained development environment providing 3 levels of secure testing (unit/system, regression, and user acceptance) before promotion to production environments.• Maintained Software Development Life Cycle (SDLC) manual establishing Requirements gathering, Development, QA testing, and Implementation methodology. • Managed Sarbanes-Oxley (SOX) IT General Controls (ITGC) compliance for development and deployment process earning public commendation from CIO.• Implemented new Change Management (Deployment) tool for the automated promotion of an average of 30-50 objects in weekly software updates to over 60 production sites. • Collaborated with Change Control tool vendor to add Project Management component to aid in status tracking of approximately 50-60 active projects.• Trained new, and mentored all, employees in proper use of all above documents and tools.• Facilitated migration of Microsoft Office documents from local server to SharePoint to support collaborative updating by team.

• Modeled complex relational database for Dairy Industry ERP system using design tools such as MS Visio.• Ensured relational database integrity rules for IBM midrange (AS400, iSeries, System i) using LANSA development tool to prevent the deletion of vital data, while also safely purging unneeded data.• Created documentation procedure to clearly communicate needs and identify relationships for an average of 50-70 file/table definition changes per year.

• Re-engineered application for customer who was displeased with initial implementation. Business analysis with end users revealed workflow improvements. I delivered a presentation to executive management which resulted in an additional $40,000 in consulting fees for successful completion of project.• Maintained over 50-page manual defining programming and design standards for a complex Dairy Industry ERP system providing a consistent appearance and operation. Trained new employees and provided continuous mentoring to all employees regarding compliance with these standards.• Assisted QA and users with testing to assure all test cases were evaluated.• Researched new technologies to determine whether they provided productive business benefits and ROI.

• Partnered with salesman to generate the largest sale in LANSA history.• Demonstrated software development tools to audiences ranging from personal to group presentations of 10–20 developers, project leaders, IT managers and executive management to illustrate gains in productivity by using these tools. • Re-designed standard demonstration to show customers how they can create a complete maintenance suite application in less than 30 minutes.• Developed proof-of-concept projects to convince the prospective customer of the tool’s increased productivity value in their current system.• Addressed concerns of development staff regarding the tool’s value to them and eased their transition toward learning a new technology.

• Demonstrated software development tools to audiences ranging from personal to group presentations of 10–20 developers, project leaders, IT managers and executive management to illustrate gains in productivity by using these tools. • Developed proof-of-concept projects to convince the prospective customer of the tool’s increased productivity value in their current system.• Addressed concerns of development staff regarding the tool’s value to them and eased their transition toward learning a new technology.

• Convinced IT management to conduct research project using new tool to graphically document existing system. Provided data models for complex database and process flow diagrams to help identify areas for process improvement, resulting in lower cost development.

• Created and maintained online Tips & Techniques and Development Standards manuals to improve programming methods and implementation of Object Oriented techniques. Manuals provided faster development of more efficient code for entire team and consistent design of user friendly screens.• Developed QA system to facilitate and track testing.• Established Synon User Group to educate development team in an inexpensive and collaborative manner. Negotiated with local IBM office for use of facility, persuaded developers at local businesses to attend. Regularly attended by 10-20 developers per meeting.

• Trained developers to use Synon development tool using combination of lecture and practice exercises. Continued students’ education through mentoring while working on projects together.• Facilitated workshops for Business Systems Analysis & Redesign of our local office Project Management methodologies. Incorporated these methodologies as a team leader on 2 large projects for Cargill.