Manages DoD Information Assurance Certification and Accreditation Process (DIACAP) certification program for over 20 assigned major transportation information technology systems within United States Transportation Command (USTRANSCOM).Leads a team of senior and mid-level security engineers; coordinates with other project staff to assign work prioritiesServes as the Information System Security Officer for two programs providing information systems security advice, guidance, and training for program management staff and usersLeads development of local policies and migration plans to transition from DIACAP to Risk Management Framework (RMF)Manages, develops, and implements programmatic compliance with DoD Instruction 8500.01, Cybersecurity, DoDI 8510.01, Risk Management Framework (RMF) for DoD Information Technology (IT), and National Institute of Standards and Technology (NIST) Special Publication 800-53Leads coordination of DIACAP certification and accreditation and RMF assessment and authorization packages using the DoD Enterprise Mission Assurance Support Service (eMASS)Conducts security risk assessments by evaluating system vulnerabilities, current threats, impacts, and safety factors; recommends mitigations and then makes recommendations to the Certifying Authority Representative/Security Controls Assessor based on residual riskProvides consultative advice to system and software engineering staff on information assurance and system security issuesSupports program management staff with Federal Information Security Management Act (FISMA) complianceEvaluates source code compliance with best security practices using industry standard tools, including HP Fortify Static Code AnalyzerAssesses system vulnerabilities using industry standard tools, including DoD Assured Compliance Assessment Solution (ACAS) and Tenable NessusAssists with new business development, writing proposals, and staffing and workload estimates

Manages program DIACAP process for worldwide enterprise transportation computing systemDevelops Plans of Action and Milestones (POA&M) to support DIACAP comprehensive packages and other program requirementsAssists in entering required DIACAP data into the Enterprise Information Technology Data Repository (EITDR) in support of the Air Force Security, Interoperability, Supportability, Sustainability and Usability (SISSU) programEnters and maintains accreditation information in the U.S. Transportation Command Corporate Resource Information Source (CRIS)Advises program management and software developer on security issues and regulatory requirementsCoordinates system accreditation on Navy, Army and U.S. Marine Corps networksCoordinates Air Force Time Compliance Network Order tracking for enterprise systemResponsible for system ports, protocols and services compilation, coordination and registration with Air Force and DoD authoritiesAnalyzes new system interface design description documents and provides guidance on security and ports, protocols and services issuesCompiles, edits Information System Plan and coordinates with Air Force and DoD Joint Staff for approval as required by DoD guidance and public law

Provided expert technical and logistics advice on radar systems to Air Force major air commands and the Electronics Systems CenterFocal point for administering $3 million per year logistics support contractDrafted performance based contract work statement, evaluated technical proposals and provided recommendations to government contracting officersResearched competitive bids for sourcing spare parts and repair actions, ensured best value for money spentDevelops course materials and provides technical training on tactical radio equipmentTracked spares for the supported radar systems to include location, serviceability and repair statusMaintained and interpreted trend analysis and mean time between failure data to recommend purchases of spares, tools and test, measurement and diagnostic equipmentIdentified and pursued follow-on work with customersSupported $65 million tactical radar acquisition as advisor, technical support and test engineerReviewed and improved system technical documentation including developing new procedures

Compiled and coordinated DoD Information Technology Security Certification and Accreditation Process (DITSCAP) packages for worldwide enterprise transportation systemCoordinated and negotiated with Air Force major command and Navy certification authorities to secure authorization to operate on their networksMonitored and managed the vulnerability and system security reporting processProcessed and approved new workstation area security officer accountsReviewed and monitored new user accountsPerformed database audits utilizing structured query language (SQL) commandsPerformed Solaris/Unix security audits and intrusion detection monitoringTested new, pre-release security services application software for suitability and reliabilityIdentified and documented software deficienciesUtilized Microsoft Office 2000 suite of applications, Solaris 2.6 and 8, Sybase interactive SQL, Sun and Intel platforms, Symantec Enterprise Security Manager 5.5 (ESM), Symantec Intruder Alert 3.5 (IA

Chief of Air Traffic Control and Landing Systems Special Maintenance TeamsLead and supervised six person senior technical support teamManaged Ground Radar career field for headquarters Air Mobility Command (AMC)Technical lead on AN/MPN-25 Deployable Air Traffic Control Radar SystemDeveloped specifications and test criteria for acceptance and operational testing of software and hardware deployed on new systemsMember of Air Force-level team to develop database selection criteria for specific Air Traffic Control performance indicatorsResponsible for supporting all AMC Air Traffic Control radar systems, provided remote technical support, on-site repair and training, and advanced troubleshooting services