Responsible for leading and managing of all aspects of the CSSP program. Interact with security personnel at customer sites, various levels of management and outside agencies. Develop and refine CSSP policies and procedures. Monitor for compliance and assess impact on defense of computer network. Coordinate and recommend actions in response to IAVA non-compliance.

Managed application hosting for DoD clients. Troubleshoot customer application issues. Deployed updated code for hosted web applications. Ensured infrastructure is configured to comply with DoD STIG’s. Assisted with validating artifacts input into EMASS and ensuring RMF controls were satisfied. Working on automation of server health checks using PowerShell.Key Results:Created GPO to resolve issue with scan not being credentialedCreated reports in Solarwinds to inform management and engineers of low storage on high-impact servers.

Participated in Technical Refresh project where we moved EM7 from older servers running an older version of the application to the latest version running in a hyperconverged environment. Assisted with securing NGINX ciphers to prevent vulnerabilities. Actively supported and installed EM7 for several customers worldwide. Responsible for the implementation and administration of the monitoring tool EM7. Creation and monitoring of alerts based on the agreed SLA's. Configured and monitored EM7 appliances (Oracle Linux).Key Results:Completely migrated and upgraded EM7 environment for managed service provider.Deployed ELK stack to monitor the management network.Deployed Ansible to manage EM7 server configuration and to aid in vulnerability management.

Provided recommendations on implementation approaches and techniques to providers during the design phase of new countermeasures and capabilities. Ensured solutions are compliant with NIST 800-53rev4. Implemented Solarwinds Orion and Server and Application Monitor solution for monitoring environment. Deploying Elasticsearch to assist with environment logging requirements. Troubleshoot problems with various development environment. Assisted with requirements Analysis & Mapping. Assisted with vulnerability mitigation using SCAP tool and ACAS.Key Results:Deployed ELK stack for use as syslog server and central console for log viewingDesigned and deployed virtualized test environment.Deployed Squid proxy server to use for access from sandboxed network to several services.Configured RHUI server for RHEL application servers.Deployed Solarwinds SAM and NPM to monitor infrastructure.

Vulnerability ManagerProvided implementation, engineering, configuration and administration support for ACAS. Provided technical support to customers involving software, hardware and DoD specific configurations. Created reports for management to view and visualize effectiveness of vulnerability remediation plans. Developed compliant documentation to assist with completion of RMF accreditation package. Operated and maintained virtual development environment for agency developed applications. Assisted with creation of change management process. Created policy documentation to comply with DoD controls. Key Results:Developed ACAS reports for management to view progress on mediating vulnerabilities in environment.Created documentation to satisfy RMF controls.

Managed multiple Active Directory environments and associated GPO polices. Provided technical expertise to develop solutions to problems. Configured GPO’s to enable automatic enablement of EM7 monitoring solution. Configured and deployed configuration management database using EM7 and ServiceNow. Tuned alerts and thresholds for em7 solution. Assisted with initiation, planning and deployed of EM7 monitoring solution. Implemented mail relay to enable ticket creation with cross-domain ServiceNow implementation. Assessed vulnerabilities for Windows, Linux and ESXI assets and prioritizing which ones should be addressed. Assisted with SAML configuration to enable single sign-on with ServiceNow implementation. Assisted in the creation, generating, and updating of Plans of Action and Milestones. Helped identify, implement, and maintain appropriate security and compliance measures. Performed SCAP Compliance Checker (SCC) scans to ensure configurations are in accordance with latest DISA STIGs. Implementing and supporting Defense Information System Agency (DISA) Secure Technical Implementation Guides (STIG) for Red Hat Linux and Microsoft Windows Server Operating Systems. Recommended and implemented solutions to remediate findings from security and vulnerability assessmenats.Key Results:Created and managed RMF enabled IAAS offering utilizing Virtustream’s xStream cloud offering.Deployed postfix mail relay to handle email traffic between ServiceNow and other applicationsConfigured SAML to work with ServiceNow.Created policies and configurations to successfully receive production Authority to operate for DISA Onsite Managed services offering accredited to impact level 5.

Analyze, troubleshoot and maintain network and server infrastructure to ensure availability. Ensure all Microsoft and third party patching is performed. Assist with supporting various teams with IT assets. Assists Configuration Management Working Group with task involving IBM Jazz system. Assist with the completion of CSSP cases. Perform Nessus Security scans to ensure all known vulnerabilities are mitigated or documented within a system Plan of Actions and Milestones. Assisted with migration to Palo Alto firewalls. Develop plans to complete team projects and tasks. Implement and enforce security policies. Ensure all certification, accreditation and system security documentation is kept up to date using EMASS. Assist with the completion of RMF package to migrate DIACAP ATO to RMF to include completion of RMF system categorization and SSP. Ensure that all assets are migrated to Windows 10 by December 31, 2016 deadline. Ensuring compliance of all assets.Key Results:Migrated workstations from XP and Windows 7 to Windows 10Upgraded VMWare ESXI and Vcenter to 6.5.Moved Lab to new location.

Completely virtualized server infrastructure. Assist with completing package to receive RMF ATO for newly built information system. Implementing network controls to comply with NIST 800-53 rev 4 and STIGS. Use of SCAP tool to ensure compliance. Installed, configured and maintained several Solarwinds monitoring tools to monitor our hardware and applications. Installed, configured and maintain new core switch. Replaced layer 3 firewall with one capable of application level inspection. Maintains backups of servers to comply with DOD and Army requirements. Completely virtualized server infrastructure. Manage all production systems and test Microsoft SQL 2005/2008 Database instances. Implemented internal ticketing system to track user problems. Assists with the migration to new web based CRM to increase efficiency of employees. Member of the security incident response team. Manages databases containing over 2 million records of highly sensitive data and develop Ad-hoc SQL queries to address various multi-departmental issues and concerns. Using Nessus to scan for vulnerabilities.Key Results:Virtualized entire environment without losing operational functionality.Designed and deployed veeam backup implementation .Configured Site-to-site VPN from headquarters to colocation site.Maximized value of VMWare investment

Run manual and automated processes to assess systems and/or networks for security vulnerabilities. Participate in threat analysis and investigate mitigation solutions. Assist in the operation and maintenance of computer security tools and systems. Analyze security event data (both user-reported and system-generated)and take prescribed responsive actions including assisting in computer forensic analysis.

Effectively monitor core, mobile device and other essential application services on enterprise NIPR and SIPR networks in support of 17k+ users using BoxTone MDM, SolarWinds and Microsoft Systems Center Operations Manager (SCOM) 2007 R2 for 500+ active servers. Provide routine server maintenance, patching and tier-3 troubleshooting and escalated notifications for active alerts, events and error messages to include server failures, insufficient disk space and network outages.

Ensured that the network connectivity throughout a company's LAN/WAN infrastructure is on par with technical considerations at the network level of Global Science & Technology's hierarchy. Managed software and appliance licenses, maintaining the standards for server installations and applications and monitoring the performance of the network, checking for security breaches and poor data management practices.Responsible for all network equipment. Evaluated and installed Solarwinds Orion Network Performance Monitor to improve bandwidth utilization and create a network baseline. Increased disaster recovery readiness by installing service to backup network configurations to file server nightly. Monitored and maintained Postini Spam Filter for Microsoft Exchange. Assist with design efforts for off-site server communication. Assisted co-workers with various problems on Windows and Apple systems.

Performed network administration within our Cisco/Juniper infrastructure, and was the point of contact and responsible party for Firewall Administration (Cisco ASA/Palo Alto), VPN Administration (Cisco ASA/Palo Alto), Switch Administration (Cisco/Juniper), Wireless System Administration (BlueSocket), performing maintenance on all Network equipment, and participating in the Networks Group Team within the Institute. Installed and configured Cisco ASA and Palo Alto firewall. Created VLANs on Cisco and Juniper Network devices to assist with traffic flow on network. Installed, configured and managed Symantec endpoint Encryption Created computer images using Symantec Ghost Suite. Created, modified and deleted users using Cisco CallManager and Unity systems. Handled new user orientations for the Virginia office. Removed viruses and malware from user systems. Assisted staff in synching company smartphones to exchange server. Provided outstanding Desktop/Helpdesk support to staff both onsite and offsite, remotely via telephone.

Handled technical troubleshooting within an enterprise environment, including system crashes, virus and malware removal, slow-downs and data recoveries. Engaged and tracked issues, with responsibility for the timely documentation, escalation (if appropriate), resolution and closure of trouble tickets. Maintained backups using Symantec Netbackup solution. Assisted with migration of hardware inventory into sharepoint asset management site.