Eric Johnson, Mscsia Email & Phone Number

United States

• Provide cybersecurity analysis and continuous monitoring, detection, update, and maintenance of security tools, systems hardening, and patching of software and firmware of systems across the enterprise network.
• Create, develop, and implement information security guidelines and policies to enforce information security principles.
• Conduct risk assessments for IT system boundaries, analyze and document security risks, breaches, and other cyber security incidents and the impact they cause.
• Manage system Authority to Operate (ATO) processes and create artifacts, control implementation details, and Plan of Actions and Milestones (POAMs/POA&Ms) through eMASS.
• Collaborate with technical and non-technical staff across business units and within the IT team to minimize exposure to threats.
• Manage the security related policies, procedures, laws, and regulations of assigned information systems.

Remote

• Assisted with coordinating patching and remediation activities that resulted in a decrease in workstation and server vulnerabilities to 18% and 28% by tracking and patching a set of identified vulnerabilities across.
• Created and implemented a BigFix and Qualys Cloud Agent deployment tracker to track the installation of 2000+ BigFix and Qualys Cloud Agents on client information systems throughout the organization.
• Assessed clients' incident management solution, incident alert processes, breach response, and reporting processes to develop solutions to improve the client’s incident management program.
• Supported organizational governance, reporting, risk, and event monitoring data requirements.
• Developed and updated the client’s incident response policies and procedures in coordination with the client’s vulnerability management program to identity and patch high risk vulnerabilities before they become.
• Documented, and developed reports to brief leadership about the program’s cybersecurity posture.

Charleston, South Carolina Metropolitan Area

• Completed vulnerability Assured Compliance Assessment (ACAS)/ Nessus vulnerability scans to identify host and network-based vulnerabilities.
• Supported authorization activities and ensured compliance with RMF and development of security Plan of Actions and Milestones (POA&M) mitigations.
• Assessed and mitigated system security threats/risks throughout the program life cycle.
• Reviewed certification and accreditation (C&A) documentation and provide feedback on completeness and compliance of its content.
• Implemented DoD Security Technical Implementation Guides (STIGs)
• Developed and implemented patch management policies and procedures.

Norfolk, Virginia, United States

• Developed, implemented, and evaluated various cybersecurity solutions to ensure maximum operability and security of Navy Readiness Reporting Enterprise applications and systems.
• Supported the development of Risk Management Framework (RMF) Assessment and Authorization (A&A) documentation and uploaded approved documentation to Enterprise Mission Assurance Support Service (eMASS) system.
• Contributed to the security planning, assessment, risk analysis, risk management, and certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its content.
• Maintained the security posture of information systems including patching and implementing STIGs.
• Identified vulnerabilities and weaknesses and performed mitigation and closure.
• Served as a key player in the development, monitoring, and maintenance of security plan updates.

Newport News, Virginia, United States

• Administered remote access to customer equipment, troubleshooting and resolving issues, with minimal downtime.
• Leveraged Microsoft SCCM to deploy patches and system images remotely.
• Deployed patches to remediate Information Assurance Vulnerability Alerts (IAVAs).
• Managed customer request for technical support with Remedy to document, track, and manage hardware and software issues.

Chesapeake, Virginia

• Conducted weekly performance reviews of the network to identify potential risks.
• Installed, configured, and updated network features and security to maximize daily productivity.
• Analyzed internal network traffic flow and troubleshot system performance issues.
• Verified patches and updated virus definitions on systems using existing automated tools.
• Oversaw the identification, authentication, and authorization of end users using Microsoft Active Directory.
• Implemented hardware and technical equipment to replace obsolete technology and support modern system capabilities.

Falls Church

• Fixed broken hardware and software, maintained system security features, and provided troubleshooting to resolve issues.
• Conducted remote/on-site support sessions with clients to provide personalized customer service.
• Trained new Technicians in SOPs, quality customer service, and escalation points to build a high performing team.

Hanover, MD

• Prioritized and processed 30+ daily support tickets to assist 7k+ end users in obtaining system access, troubleshooting hardware or software issues, and configuring settings.
• Documented resolutions to common problems to create technical knowledge base for Technicians and end users.
• Trained new Technicians in SOPs, quality customer service, and escalation points to build a high performing team.

Master Of Science - Ms, Cybersecurity And Information Assurance

Bachelor Of Science (B.S.), Computer Networks And Cybersecurity