Gregory Surber Email & Phone Number

Billerica, MA, US

Billerica, Massachusetts, US

Seattle, Washington, US

Curriculum development and online classroom instruction for Cybersecurity Auditing Masters-level course and Cybersecurity introductory Bachelors-level course.

Reston, VA, US

• Management of enterprise security group consisting of cross-disciplinary IT and cybersecurity subject matter experts.
• Interacting and consulting with security specialists, operation specialists, and management in other organizations and outside agencies and offices to fulfill security monitoring, reporting, and remediation requirements.
• Conducting and managing system security evaluations, audits, and reviews.
• Supervising the administration, security, and continuous operation of computer systems and network infrastructure.
• Ensure enterprise compliance with appropriate systems security policies, including DoD STIG requirements.
• Architect, configure, deploy, and maintain multiple enterprise cybersecurity architecture solutions including enterprise-wide privilege access management solutions resulting in the reduction of local administrator.

Bellevue, WA, US

• At Puget Sound Energy, a Washington state energy utility that provides electrical power and natural gas in the Puget Sound region, I guided teams by providing technical expertise and configuration requirements for.
• Managed enterprise security group consisting of 25 representative subject matter experts from various disciplines.
• Mentored non-technical systems and application owners to ensure a proper understanding of security requirements.
• Lead vendor product evaluations, testing, and selection for security information and event management (SIEM), vulnerability scanning, and third-party patching tools.
• Architected, engineered, and managed enterprise-wide vulnerability management solutions for assets both on-premises and within hosted AWS cloud space.
• Created a library of known, trusted, and approved server and workstation virtual system base images reducing the time to deploy authorized, securely configured systems from days to minutes.

Arlington, VA, US

• Provided support to customers at every level to ensure cybersecurity and risk requirements were effectively promoted. I was able to accomplish this mission by:
• Oversaw security awareness program, providing mentoring on security requirements and current program conditions to peers and superiors.
• Implemented security functionality for Windows, UNIX, and Linux systems in support of multiple Department of Defense-related workloads.
• Led effort to relocate workload from decommissioned office space to new location, ensuring confidential information was properly managed across multiple well-established, secure systems.
• Curated existing Certification & Accreditation documentation, based on NIST standards, including optimizing policies, analyzing potential risks, and providing oversight to ensure computing infrastructure and.
• Developed Certification & Accreditation documentation for new incoming workloads, ensuring all security requirements were followed and properly recorded.

Alexandria, Virginia, US

• The Department of Defense Education Activity is responsible for planning, directing, coordinating, and managing prekindergarten through 12th grade educational programs on behalf of the United States Department of.
• Defined and managed the work efforts of a team of individual information security contributors including responsibility for hiring, firing, performance appraisals, and pay reviews.
• Provided strategic input to the executive management team regarding the information security direction for the agency.
• Evangelized information assurance across the enterprise through regular and ad hoc informational promotions, educational initiatives, and in-person training sessions.
• Directed enterprise information security program through the transition from the Department of Defense Certification and Accreditation Process to the Risk Management Framework.
• Negotiated grievances relating to information security issues with two teacher unions.

As an Adjunct Professor of Information Technology, I was able to help guide adult learners through courses on Introduction to Operating Systems (IT103), Networking Protocols and Procedures (IT220), Structured Cabling (IT113), Introduction to Linux Operating System (IT250), and Linux System Administration (IT302)

US

Working for the Department of Defense Information Systems Agency gave me the chance to mentor and work alongside my fellow Information Assurance Officers and system administrators on methodologies and tools useful for ensuring security in highly sensitive, national security systems.

Norman, Oklahoma, US

The University of Oklahoma Honors College allowed me the opportunity to expand my hands-on technical skills in system administration, networking, and end user support. As part of the University of Oklahoma Cyber Forensics Lab, I helped engineer, build, and test systems that would be used by investigators of cybercrime.

Master Of Science - Ms, Cybersecurity

Bachelor Of Science - Bs, Sociology-Criminology