I partner with organizations to aid in establishing Cybersecurity as a Business Enabler. My primary areas of expertise are Risk Management, Vulnerability Management, NIST/ISO Compliance, Cybersecurity Architecture, Cybersecurity Design, Cybersecurity Engineering, Cybersecurity Training (Cybersecurity Awareness, Cybersecurity Fundamentals, Cybersecurity Management) and Leadership.

Senior-level engineer helping define and implement cybersecurity solutions. Apply/adapt current and future cybersecurity services, and information assurance tools and techniques to build solutions that comply with US Government guidance. Consideration of business interests and strategies for cybersecurity and cloud computing, work with a range of information assurance topics and products. Specific responsibilities are to foster a thorough understanding of mobile threats and vulnerabilities across the technical team; develop and validate design options and architectures; document, explain and demo solutions to clients and business stakeholders; manage technical tasks to budget and schedule. Interact with cross-functional peers in Tyto Athene, vendors and USG leads to develop product roadmaps, assess impacts, establish priorities, justify schedules and budgets, provide status, resolve issues and mitigate risks.

Completed training in Cyber Warfare Operations, Cyber Operations Planning and Computer Incident Response. Create and conduct Cyber training for senior leaders with limited Cyber knowledge and junior level members just coming into the field. Was the Information System Security Officer (ISSO) and Team Lead for a US Cyber Command hosted experiment. As ISSO worked with Command and Facility Owners to ensure security processes and procedures were followed and validated. Managed a five member team to design and build a computer network. Performed duties as a Cyber Capability Analyst, research and documented cyber tools needed for a study to identify and fill critical needs for the Cyber mission forces. Involved in the State Partnership Program, program was established to work with Maryland State Government organizations to train ANG, Army NG, and State Government personnel on Network Security Issues, Hacker TTPs, and Cyber Operations.

Cyber Security Technical expert for the Mid-Atlantic region, responsibilities include development of technical sections of proposals, responding to Requests for Information, and creation of Statements of Work. Provide support to the Business Development group in Pre-Sales meetings and assisting with tech discussions. DFARS and FedRAMP project manager. Supervisor responsibilities include interviewing potential employees, assisting with the development of goals, and generating mid-year/annual reviews. Lead for the development and implementation of the Cyber Lab in the Columbia Maryland Office. Was the Information Assurance Officer (IAO) for the Navy Regional Dispatch Centers. Responsibilities were; primary IA technical advisor to the PM and to maintain IA oversight of the systems within the RDC. IA oversight includes the development of DIACAP documentation, architecture review, requirements development, policies, processes, and procedures to provide adequate security for all associated assets. Conduct initial and annual security testing and evaluate COTS products to be implemented within the architecture of the RDC environment. RDC systems include NERMS, ECMS, Positron, and 911-RMS. Prior to assignment as the RDC IAO, was a team Member of the Information Assurance Team for the Commander Naval Installation Command (CNIC) Emergency Management Programs specifically PSNet. Test Team Lead for the security testing of the ELMR program. Responsibilities included interfacing with the system Manufacturer, interface to Navy client, collection of test data, conducted testing using DISA test tool (STIGs, SRRs, eEye Retina), filling in where required to insure completion of testing on schedule, development of In/Out Briefings, and to brief Senior Management. DIACAP documentation created and updated includes SIP, DIP, Security Test Plan, Architecture Overview, C&A Plans, Risk Assessment Report, Validation Plans, Scorecards, IAC Implementation Plans, POAMs, and system drawings.