Additional Responsibilities: Senior Solutions ArchitectExpertly designed, developed, and deployed an Azure Cloud environment for a global enterprise, ensuring robust security for multiple Azure tenants with a Zero Trust methodology to maintain ISO 27001 compliance.• Modernized Zero Trust security architecture across multiple tenants, enhancing overall security posture of Azure and Microsoft 365.• Deployed cloud secure posture management tools to monitor and protect multiple tenants.• Designed and implemented Azure virtual WANs (SD-WAN), Azure firewall policies, and virtual networks.• Led the integration of Azure DevOps and CI/CD pipelines, enhancing development efficiency.• Directed application modernization initiatives DevOps team, boosting performance and scalability.• Mentored and guided engineers through complex deployments and providing ongoing support.• Managed projects to ensure timely and successful completion.

• Educate the next generation of cybersecurity professionals across diverse cybersecurity domains.• Lead weekly sessions and conduct hands-on labs to prepare students for certification.• Recently promoted from Associate to Lead Instructor, demonstrating dedication and expertise.

Streamlined secure cloud advisory services for customers, ensuring secure cloud adoption and migration using the Microsoft RaMP and Well-Architected Framework.• Standardized Cloud Security Advisory & Migration services for all cloud platforms.• Composed security posture assessments, cloud security readiness, and strategic planning services.• Conducted Microsoft cloud security workshops.• Created a continuous security maturity assessment methodology for evaluating the technical implementation of security tools.• Formalized the security model for NTT Data's well-architected framework, ensuring secure cloud deployments that meet regulatory requirements.

• Designed a classified private cloud IaaS platform using a Zero-Trust security architecture for the U.S. Department of State aligning with DHS CISA Zero Trust• Designed micro-segmentation deployment and Cross Domain solution using Forcepoint• Architected SOCaaS for private cloud

• Developed in-house security program including detection and response, log management, and vulnerability management, and Azure/Microsoft 365 security using cloud-native tools.• Designed and managed SIEM (AT&T USM Anywhere) and EDR tool (Sentinel One) for Managed Security Services.• Trained employees on MSSP security tools and managed security tool deployments.• Managed customer relationships and developed onboarding processes.

• Supported the U.S. Department of State, providing expertise on security vulnerabilities and risks, and conducting security impact analysis for infrastructure changes.• Supported the U.S. Department of State, providing expertise on security vulnerabilities and risks, and improving security operations capabilities.• Completed a SOC maturity assessment and formulated gap analysis using MITRE ATT&CK framework to achieve a DHS Level 4 CMMI for SOC services.• Provided proof-of-concept (POC) for Prisma CSPM integrations with Azure, AWS, and GCP• Prepared a Cloud Security monitoring reference architecture for a multi-cloud ecosystem.

• Developed zero-trust architecture with network segmentation, identity and access management, and cloud service integration, ensuring compliance with NIST SP 800-171.• Designed identity management (ICAM) solution.• Integrated Cloud Access Security Broker (CASB) and policies for incident response and data loss prevention.• Engineered attack vector analysis and threat modeling using Red Seal.• Formulated policies for mobile device and application management (MDM/MAM), including BYOD.

• Designed a cyber security architecture for hybrid cloud solutions for regulatory compliance.• Implemented a cybersecurity solution to exceed regulatory requirements.• Develop a strategy for cybersecurity operations with a hybrid cloud solution.• Drafted and implemented cybersecurity process improvements and automation.• Integrated security tools with hybrid cloud environments.• Developed Zero Trust using Palo Alto vNGFW & NGFW, Rapid7, & Symantec DCS• Developed Roles and Responsibilities for Transparent Data Encryption (TDE)• Developed a process for application integration with TDE• Ensured the hybrid cloud solution met NIST and OPM security standards.

• Supervised two Security Engineers to keep taskings on track• Implemented security-engineering principles for the FTC• Coordinated continuous improvement in Secure System Development Life Cycle (S-SDLC)• Managed System Monitoring and Log Event Management tool (Solarwinds LEM)• Coordinated the alerting, event, and log correlation to meet the needs of the CIRT team.• Managed all Plans of Actions and Milestones (POA&M) to ensure proper remediation efforts.• Worked with stakeholders to develop a strategic roadmap for continuous infrastructure improvements.• Developed a continuous monitoring process for the infrastructure group.• Conducted vulnerability and risk assessments to follow continuous monitoring requirements.• Reviewed and updated processes and policies to comply with OMB and FIMSA requirements• Developed and maintained Security Content Automation Protocol (SCAP) compliant audit files for Tenable Security scanner.• Provided recommendations for security architecture and risk mitigation in accordance with NIST and FIPS guidelines.

• Managed all Plans of Actions and Milestones (POA&M) to ensure proper remediation efforts.• Worked with stakeholders to develop a strategic roadmap for continuous infrastructure improvements.• Developed a continuous monitoring process for the infrastructure group.• Conducted vulnerability and risk assessments to follow continuous monitoring requirements.• Reviewed and updated processes and policies to comply with OMB and FIMSA requirements• Developed and maintained Security Content Automation Protocol (SCAP) compliant audit files.• Provided recommendations for security architecture and risk mitigation in accordance with NIST and FIPS guidelines.• Assumed additional duties Windows engineering team leado Maintained 100% availability of critical services over a 3-month period, o Managing upgrade projects, development endeavors, and administration tasks.o Mentored Systems Engineers to achieve a 95% vulnerability remediation.

• Trained third-party assessment team in USPTO security best practices and RMF process.• Provided senior-level management with recommendations for enterprise security control remediation. • Developed procedures for conducting security/risk assessments in accordance with the federal guidelines (i.e., NIST, OMB, and FIPS).• Conducted security and risk assessments of government networks to ensure compliance.• Developed system accreditation boundaries, network diagram, system security plans, security categorization, and certification & accreditation packages in accordance with NIST guidelines.• Conducted initial risk assessment during the System Development Life Cycle.

Other positions held: Information Assurance Analyst/Technical Lead (May ‘08 – Jul ‘09)• Managed a nine-person team that excelled to ensure that the US Patents & Trademarks Office FISMA requirement would be successful.• Coordinated independent assessments of 32 Master information systems and 270 sub-systems and applications in less than 4 months.• Managed security authorization and accreditation process for US Patents & Trademarks Office, Federal Aviation Administration, US Department of Agriculture, Foreign Services Institute, and Department of State’s information system.• Coordinated meetings and presented security/risk assessment findings to stakeholders• Assisted in drafting Plan of Actions and Milestones (POA&M) at USPTO.• Conducted system, network, database and application scan using Tenable, AppScan, and DPProtect.• Analyzed all scan results and provided recommendations for remediation.• Trained assessment team and scan team to certify security and vulnerability assessments.• Provided Information System Security Management support for US Department of Agriculture Headquarters as a subject matter expert and liaison to multiple agencies.• Assisted USDA with Plan of Actions and Milestones (POA&M) management, Cyber Security Assessment Management (CSAM) tools, and CSAM training.• Developed system accreditation boundaries, network diagram, system security plans, security categorization, and authorization & accreditation packages

• Evaluate, implement, and maintain system, network, and information security, protecting them against some of the latest computer threats plaguing the industry.Other positions held: Information Operation Analyst (Sep ‘07 – May ‘08), Information Assurance Security Officer (Mar ’01 – Mar ‘07), Information Systems Analyst (Sep ‘00 – Feb ‘01), System Administrator (Apr ‘00 – Aug ‘00)

• Conducted penetration testing activities for military installations worldwide. • Developed open-source attack packages using HTML, PHP, and Python• Developed phishing email campaigns using rich text email template• Developed social engineering scenarios to test the human component.• Assisted with presentations summarizing attack methodologies, vulnerabilities, overall state of network security, and mitigate methods to reduce overall risk and attack vectors.• Maintain knowledge and proficiency with a wide range of commercial, open source and proprietary software, attack methodology, emerging trends, methodologies and exploitable vulnerabilities that plague the industry.

• Assisted the Information System Security Managers (ISSM) to develop and implement procedures to meet compliance requirements that ensured the Marlboro facility-maintained compliance under NISPOM.• Development, documentation and presentation of a comprehensive Information Systems security education, awareness and training program.• Development, documentation and implementation of comprehensive Information Systems Security Plans (ISSPs) and SIPR-Net plans to obtain authorization.• Conducted periodic self-inspections of the programs.• Ensured remedial activities for all identified findings and vulnerabilities.• Develop program procedures to govern marking, handling, controlling, transporting, sanitizing, reusing, and destroying media and equipment.

• Manage twenty small business IT environments that included desktop support, firewall administration, server administration, back-ups, storage, and endpoint protection suites.

• Provided Desktop support, application support, printer support, and network cabling support.• Conducted the efficient rollout of endpoint end-of-life replacements of over 300 workstations.