Remote, contract, Sr. PKI EngineerDeveloped PowerShell + YAML scripts for cert owners for VCert pull automationPKI Team liaison to enterprise on-prem and cloud Kubernetes teams for cert-manager cert automationLed enterprise Tableau teams through Venafi CAPI cert push automation to include VTPP configuration, writing the Stage 1100 PowerShell command injection script, and documentation of team proceduresLed enterprise MicroStrategy team through Venafi Linux PKCS #12 cert push automation to include VTPP configuration, Stage 1100 PowerShell command injection script, and documentation of team proceduresPKI team lead for significant (500+) Venafi adaptable push automation for Imperva certsPKI team lead for SNOW standard change automation. Project is pending SNOW template development by othersPKI team technical SME for Guardium cert pull automation with IBM’s Venafi integrationPKI team primary advisor for PowerShell developmentKeywords: vcert, cert-manager, SNOW integration

Sole developer and maintainer of team scripts to efficiently operate and manage Venafi. Team scripts include new cert owner folder creation, new cert/device/app object creation for automation, monitoring of automation status, weekly management reports, and a simple-to-use corporate tool to determine cert ownership based on thumbprint, serial number, common name or subject alternative nameDeveloped ServiceNow (SNOW) integrations to solve specific team challengesDeveloped and maintained enterprise-scale Venafi adaptable framework driversDeveloped and maintained numerous Venafi sysadmin automation scripts. Primary Venafi sysadminEnterprise SME for Venafi CodeSign ProtectRe-factored existing corporate codebase from API Key to OAuthManage data-in-motion security exception requestsConsult on devops certificate automationDeveloped Powershell functions of Venafi API endpoints for corporate devops usersResponsible for training junior members on team Processes, Procedures and ToolsKeywords: Venafi, API, PowerShell, X.509, PKI, Public Key Infrastructure, PKI, System Administration, Information Security

Enterprise X.509 certificate / asymmetric encryption SMESignificantly reduced unplanned outages due to certificate expirationRevised and modernized corporate X.509 certificate policy. Re-wrote to RFC 3647 CP / CPS standardsSole corporate PKI certificate automator via Venafi APIAutomated ITSM / ServiceNow integration with Venafi API and PowerShellArchitected, championed, developed and implemented Venafi API cert automation solution to corporate ATMsArchitected, championed, developed and implemented Venafi API cert automation solution to IoT devicesArchitected, championed, developed and implemented Venafi API cert automation solution to Dell iDRACsDeveloped DevSecOps interfaces with Venafi Trust Protection PlatformVenafi System AdministratorEstablished a training curriculum for junior team members regarding Venafi and general RFC 5280 knowledgeKeywords: Venafi, API, PowerShell, X.509, PKI, Public Key Infrastructure, PKI, System Administration, Information Security

Information Protection Manager for Cigna Health Insurance. Supporting Cigna Information Protection, Public Key Infrastructure department. Automate, streamline, and improve the efficiency of Cigna’s PKI certificate management. Currently developing Application Programming Interface (API), designing automation architecture, selecting appropriate technology stacks, conducting Use Case analyses, and building project team infrastructure.Revamping global enterprise business process of requesting, installing, and managing PKI certificates. Develop microservices and API for internal developers to consume PKI services for their disparate endpoints.Keywords: PKI, Public Key Infrastructure, Automation, Information Security, Powershell, Microservices, API Development, Python, Jenkins, OpenSSL, X.509, 802.1X, Certificates, Venafi

Contract Application Security Consultant / STIG Engineer for VMware. Supporting Federal Compliance Initiative for vRealize Automation (vRA) and vRealize Operations Center (vROps) product lines.Analyze product components, identify security issues, and create hardening checklists. Principle focus on web servers and web applications. Develop automation scripts, codes, and commands for for vendor security guidelines. Liaison with Defense Information Systems Agency (DISA) for development of Security Technical Implementation Guides (STIGs) and Open Vulnerability and Assessment Language (OVAL) content. Create security mitigation strategies.Keywords : Application Security Automation, STIG, SRG, Virtual Appliance, NIST, DISA, Web Server Hardening, SuSE Linux, Apache, Tomcat, TC Server, SDDC, Cloud / IaaS Security, OVAL, IIS

Assess information security of EMC products for delivery to Federal and commercial customers. Develop hardening guides for virtual data center products. Install, configure, and assess virtual appliances to verify conformance with DISA and NIST guidelines.Document security vulnerabilities and interact with engineering teams for remediation. Establish virtual lab for installation and configuration of virtual appliances.Keywords: NIST 800-53, PKI, Security Technical Implementation Guides (STIG), Data Domain, Remediation, Risk Assessment, ViPR SRM, ViPR Controller, VMware vApp, SAN, SDDC, SRG, DISA

Principle cyber security scripting & automation developer, Information Assurance Section, USAF AOCWS 10.2 Modernization Program. Product manager and primary developer / maintainer of software tool suite that has reduced vulnerability assessment labor requirements for a 200 mixed-host system-of-systems by 90%.The suite of tools provide end-to-end automation of the IA business process. Included are automated Security Technical Implementation Guide (STIG) compliance checks (85% automation of Windows, 75% automation of Linux), metadata referential integrity checks, vulnerability file aggregation, maintenance of current system vulnerability status, integration with SCAP data, version control for vulnerability updates from DISA, and reporting. Reporting of all types are supported; from ad hoc to USAF POA&M.IA Section business process developer. Re-defined business processes and re-aligned section resources to maximize IA productivity. Design, develop, and maintain Data Integrity systems and business practices.Keywords: PowerShell, Linux, Information Assurance, DIACAP, STIG, ACAS, POA&M, Business Model,SQL, RMF, Cyber Security, Automation, Scripter, Innovator

Responsible for developing scripts that improve Information Management and data integrity for the Information Assurance team of the Northrop Grumman Air Operations Center Weapon System (AOCWS) 10.2 development project. Developed Windows STIG-compliance automation program (OSCR). Combining PowerShell, .NET, XML parsing, XCCDF, Linux bash, VMWare, PuTTY, SQL, SCAP, STIG Viewer, and other DISA tools, the tool has significantly reduced IA labor requirements and improved project data integrity.Developed procedures for enhancing communication, coordination, and collaboration among IA team members to continuously improve data integrity metrics.Developed PowerShell utility (PARVATI) for automated Business Rule compliance. PARVATI monitors IA information flow to ensure external and internal data consistency with overall project metadata.Developed UNIX / Linux STIG-compliance companion (SONAR) to OSCR. SONAR is a bash script adjunct that automates manual compliance checks for Linux machines. Revamped and improved information management process of IA department. Northrop Grumman units external to AOCWS; e.g., Joint Stars, GCCS-J, etc.; have requested briefings on the combination of scripts, programs, and procedures that have dramatically improved AOCWS IA data management.Supervision of Scripting and Automation team members for project IA section.Northrop Grumman Cyber Division exercised hiring clause in temp-to-hire contract.Keywords : PowerShell, Linux, bash, Information Assurance, Cyber Security, SQL, Business Model, PuTTY, SSH, CompTIA Sec+ (CE)

Founded, grew, and sold SaaS business.Designed, developed, marketed, and sold proprietary CRM SaaS. CRM integrates with Payments Gateway, GMail / GCal, referral program, help desk system, and multiple leads sources. Responsible for ensuring PCI compliance.Consultant to DoD Prime contractors on Aviation Command and Control software. Responsible for SME interviews, UML, BPEL, and BPMN documentation of software requirements. Developed web surveys and conducted workshops to gather requirements. Designed User Experience, dashboards, and optimization algorithms for workflows.Key Terms: CRM, Marketing Automation, SaaS, DoD, Command & Control

Designed and implemented Sharepoint access control security policies and procedures in advance of HQMC C4I Cyber Command Readiness Inspection (CCRI). The new policies enforce least privilege and implicit denial doctrinal guidelines in accordance with DoDI 8500.01, March 14, 2014. Created training materials to monitor and evaluate compliance.Reviewed system configurations to ensure compliance with security requirements and compliance with SECNAV INST 5211.5E, Department of the Navy (DON) Privacy Program.Compliance review of established standards, guidelines, policies, and procedures. Provided recommendations to senior leadership to mitigate Information Security risks in accordance with DoDI 8510.01, Risk Management Framework (RMF) for DoD Information Technology (IT), March 12, 2014.Key Terms: Sharepoint Development, Cyber Security, Information Assurance, Personally identifiable information (PII), Compliance, DoD, SaaS, Entrepreneur

10+ years experience in all aspects of security, information assurance, data architecture, quality assurance, and configuration management for IT solutions across an enterprise. Responsible for IT procedure development and policy auditing. Member of Configuration Management Control Board. Successful implementations of secure macro- and micro-scale data portals and visualizations to facilitate seamless information collaboration across institutional and functional boundaries.Information Management Officer for MFR, 4th MAW, 3rd MAW.Developed, implemented, and maintained a three-tier Marine Corps Reserve scheduling, reporting, and payment system. Ensured compliance with DISA STIGs for web application security.Led DIACAP Certification and Accreditation process for in-house developed web applications.Developed and maintained Flash Reporting system.Managed IT department.Key Terms: Sharepoint, web development, SQL, jQuery, SSIS, SSRS, AJAX, SPServices, JavaScript, HTML, CSS, Information Assurance, Cyber Security, XSS, XSRF, Session Hijacking, Cross-Site Scripting, Cross-Site Request Forgery

Conducted engineering simulation, modeling, and optimizations to solve chemical process bottlenecks in the company. Provided corporate-level functional expertise in Computational Fluid Dynamics. System administrator for UNIX supercomputer.Automate and optimized model runs via extensive UNIX and proprietary scripting.Presented modeling successes to national and international engineering simulation/modeling conferences. Presented data visualization best-practices to R&D department scientists.Conceptualized, developed, and implemented web services that enabled front-line engineers to use a corporate supercomputer to solve and visualize ad hoc engineering problems.Key Terms: Modeling and simulation, Professional Engineer, Computational Fluid Dynamics, CFD, Finite Element Analysis, FEA, R&D, UNIX, System Administrator, bash scripting, Data Visualization

Provided subject matter expertise for custody transfer measurement systems for refining, pipeline, and crude oil gathering operations.Represented Conoco on the American Petroleum Institute’s Committee on Liquid Measurement.Project manager for pipeline and refinery projects.Led and championed improvements to accounting systems and techniques for custody transfer business processes.Key Terms: Project Engineer, Metrology, Project Manager

Squadron pilot. Desert Shield / Storm. Embarkation officer. Prior enlisted.