Securing information, information systems, and networks supporting DoD contracts.

Serving as the single cybersecurity engineer for an agriculture SaaS company performing all cyber related tasks and assisting infrastructure support and leading implementation of secure code best practices. Responsible for vulnerability management, threat hunting, trend analysis, and security testing of business use cases. Watchguard VPN, application development and software system security (CodeQL, Dependabot), Azure security (Defender) focused on mobile applications, Data Loss Prevention (Purview) modules, end point management (SentinelOne), and Incident Response across varied architectures and data center operations business technology. Proficient in Windows, OSX, Unix, and Linux operating systems, security analytics, statistical analysis, incident reporting, and web application code analysis. Leads incident response coordinating operational and technical staff, leading remediation of incident related vulnerability issues. Conducts regular vulnerability analysis and penetration tests using Kali Linux tools, threat intelligence, and review of system logs, and understanding of emerging technologies, making recommendations for technology and process improvements to strengthen security solutions. Monitors activity across the enterprise SIEM systems on servers, data centers, end point hosts, and conducts vulnerability assessments, supervises risk remediation tasks and leads efforts for disaster recovery. Established training and awareness programs including phishing simulation campaigns to minimize insider threat and prevent successful phishing attacks for end users with a focus on server administration and database administration personnel. Wrote all security policies and established secure operational controls for the organization using the NIST Cybersecurity Framework (CSF).

Led all cybersecurity efforts for internal enterprise and supported customers. Drove company culture to embrace cybersecurity best practices and awareness. Led the organization to successful CMMC Level 2 Certification in accordance with NIST security standards. Led technical engineering design for hybrid networking architecture migration implementing cloud security architecture alongside physical firewall, routers, and wireless access points in the office. Categorized sensitive information to identify storage, use, and protection of Controlled Unclassified Information (CUI) Led vulnerability management and remediation efforts assessing systems and network devices, conduct investigations of, IT security and operational capabilities and conditions, security requirements, using security testing applications, packet inspection, hardware forensic analysis Implemented automation of continuous network traffic monitoring, intrusion detection/prevention, endpoint security technologies across the enterprise. Led the Change Management Board monthly and as needed sessions and maintained strong documentation of baseline and changes to network design and business systems. Led vulnerability management, risk remediation, network security, and disaster recovery efforts. Authored three published professional magazine articles.

Executive leadership of the organization. Performs risk assessment and management, forensic data recovery, disaster recovery, continuing operations planning (COOP) and exercising, small medical practice HIPAA compliance, continuous monitoring, high-tech tools and techniques on national and global organizations. Audits organization information security. Provides risk mitigation plans. Provides on-site consultation in the Greater Philadelphia market. Leads marketing campaigns, business development, profit and earnings analysis, website building and maintenance, social media management, brand promotion, product and program management, and staff training. Interacts with business to business (B2B) customers and builds relationships within the community. Coordinates charitable giving and participation in community events.

Responsible for all Governance, Risk, and Compliance (GRC) activities. Published the Brigade's first Signal Operating Instructions providing guidance to subordinate units on every aspect of Army Signal Operations. Responsible for inventory, maintenance, and secure configuration of Cisco switches, routers, satellite and line-of-sight transmissions, and hundreds of end point management systems. Supervised network design and engineering to ensure reliable distribution of telecommunications throughout the Brigade. Provided IT specific job skills and test preparation raising proficiency and earning over 300 certifications for both their military and civilian career fields. Led subordinate and peer units in two new annual cybersecurity events exercising Blue Team/Red Team and Disaster Recovery.

Led information security assessments resulting in six authorization to operate (ATO). Stood up an abbreviated risk assessment program on emerging technology that sped solutions to operators in the field. Delivered five new products approved for fielding that had been locked for months in inefficiency. Trained seven new employees with computer science background on cybersecurity methods and tools. Led training for Certified Ethical Hacker (CEH) certification resulting in a 95% pass rate for 20 employees across 5 departments.

Led site Information System Security performing network scans, patches, and updates, updated systems monthly to current DISA STIGs, ran ACAS scans, performed risk assessments on physical, environmental, and other RMF control families for an Air Force Virtual Reality pilot training program, conducted IA certification continuing education classes, conducted Sec+ training for select team members, investigated and reported cross domain violations, filled the role as overall information systems security SME.

Planned cyber security operations, network services migrations, tech refreshes, and projects. Led cyber security effort in a highly visible communications project. Engineered and implemented radio and network solutions in forward units under hostile fire. Built Partner Capacity (BPC) training local forces in use of coalition and commercial communications equipment. Managed three telecommunications projects to expand cellular service in Iraq and Syria. Trained Soldiers in creative reverse engineering solutions. Led working groups and planning missions in cyber security, risk assessments, and improved cyber threat assessment. Performed three signal site reconnaissance missions in active combat zones in Syria and Iraq. Received the CISSP certification, completed a PMI course for the PMP.

Led Signal Operations including Help Desk and 24/7/365 in the Network Operations Center (NOC) and Security Operations Center (SOC). Trained and managed staff technicians, prepared daily, weekly, and quarterly reporting on network status, security issues, and progress toward mission goals. Led the NOC modernization mission replacing legacy equipment new laptops, supervised engineering team designing images for release, supervised testing of images, patches, and updates, and led Cyber Incident Response Team (CIRT).

Led 12 information systems service migration projects in preparation for transitioning (expanding, closing, and transferring) forward operating bases (FOBs). Conducted 9 site risk assessments and 4 site feasibility surveys at FOBs across Afghanistan. Trained over 50 teams providing service and security to Afghan cellular towers. Trained 90 soldiers for IT professional certificates (Sec+, Net+, CCNA, CEH). Multiple medals and commendations.

Conducted the company’s first risk assessment. Built a competent security assessment team from the ground up. Introduced Agile Project Management approach turning an unproductive team into the stars of the program. Met professional self-development goals passing CISSP certification test and eMASS system training.

Completed twenty-two IT projects using both waterfall and agility methods. Led security aspects for Apple Pay, Chip/Signature/PIN projects. Led projects for Sarbanes-Oxley (SOX) and Dodd Frank KYC, Payment Card Industry (PCI) and AML compliance. Led command center activities for quarterly code implementation events.

Led Signal Operations including Help Desk and 24/7/365 in the Network Operations Center (NOC) and Security Operations Center (SOC). Trained and managed staff technicians, prepared daily, weekly, and quarterly reporting on network status, security issues, and progress toward mission goals. Led the NOC modernization mission replacing legacy equipment new laptops, supervised engineering team designing images for release, supervised testing of images, patches, and updates, and led Cyber Incident Response Team (CIRT).

Planned and supervised the Target logistics program in Springfield, PA, managed team leaders and over 50 employees in safely receiving, tracking or replenishing stores worth $300,000 per night and ensuring company policies were followed, lead peers in product accuracy for three months and safety for five months, made maximum performance bonuses every quarter and enforced company equal opportunity and sexual harassment policies.

Responsible for squad of 12 soldiers and two satellite terminals with distribution stacks of CISCO Routers and switches, established and maintained secured satellite communications for up to 200 data and voice subscribers, implemented encryption and decryption services, coordinated frequencies and bandwidth with cable and hardware infrastructure installers both inside and outside plant, maintained equipment with frequent software and firmware updates