James Hill, Pmp, Sec Plus, Azure Fundamentals Email & Phone Number

Tucson, AZ, US

Arlington, VA, US

• Serve as the Cyber SCRM Cloud Assessor Lead for the Cyber SCRM team in the CISO organization. I provide Risk Assessment expertise for Cloud Service Providers and Services. Other responsibilities include:
• Conducting thorough risk assessments of cloud service offerings (CSOs) in accordance with FedRAMP baselines and if not FedRAMP, equivalence to NIST 800-171, any adherence with Cloud Security Alliance (CSA) CAIQ, SOC2.
• Perform risk management assessments to include, but not limited to, meeting with business users, sending questionnaires and reviewing vendor responses, reviewing external vulnerability assessments, reviewing security.
• Report on team status and provide metrics updates for team reviews.
• Understand and pivot risk measures in accordance with gov't policy. Write up assessment results, and QA other's reports.
• Escalate items within the team assessments as needed.

San Jose, CA, US

• Serving as a Federal Compliance Strategist on the Cisco Global Cloud Compliance (GCC) group within the Security and Trust Organization. Other responsibilities include:
• Act as a subject matter expert in FedRAMP, NIST SP 800-53 & 53A Rev 4 &5, NIST SP 800-37, FISMA, NIST RMF, CMMC, NIST SP 171, NIST FIPS 199 & Data Classification, DoD SRG IL
• Review, analyze, and evaluate business systems and user needs in areas of Authorization and Accreditation (A&A;) and Plans of Action and Milestones (POA&Ms)
• Developing technical documentation related to FIPS 199, NIST SP 800-37, NIST SP 800-53 REV 4, continuous monitoring, and POA&M management
• Work with multiple stakeholders (internal and external) across product lines to document the implementation of FedRAMP security compliance control implementations for technical, management, and operational requirements.
• Review current system security measures, identify security compliance gaps, and propose remediation solutions and options necessary to secure a certification

Hollywood, MD, US

• Served as a Senior Cloud IA Specialist supporting a Cloud Security & Compliance team that is responsible for the managed security services of various cloud-based infrastructures and solutions. I leverage knowledge of.
• Maintain eMASS accreditation packages with continuous monitoring and annual assessments
• Support operational threat analysis based upon log correlation tools
• Support contingency and incident response activities
• Develop monthly and quarterly reports based upon system, vulnerability and network monitoring and alerting capabilities
• Develop risk management framework information assurance documentation

Hollywood, MD, US

• Serve as a Cyber Security subject matter expert for government clients in a fast-paced, demanding environment. I assess program security compliance, support program briefs, coordinate and compile program security.
• Serves as a member of the NAVAIR RMF Surge Team, providing specialized support to at risk programs.
• Support various NAVAIR customers through all steps of the RMF Process, to include network Security Categorizations, development of the Cybersecurity Program, and implementation of the Continuous Monitoring Program
• Development of the Security Control Implementation Plan and associated policies, including negotiation with SCA/AO organizations regarding SC tailoring and overlays, System Security Plan (SSP), Security Assessment Plan.
• Conducting Independent Validation and Verification (IV&V) testing on the client network, utilizing automated ACAS scans, as well as automated and manual DISA STIG reviews, and collating the output into an actionable.
• Serving as a Navy Qualified Validator (NQV) and conducting RMF Step 4 Assessments.

Arlington, Virginia, US

• Serve as a Cybersecurity Cloud Engineer supporting the PEO EIS Navy Commercial Cloud Service (NCCS) Program Office. Responsibilities include:
• Provide cybersecurity technical expertise and recommendations to program offices that are transitioning various systems into the Navy commercial cloud.
• Provide recommendations to the Cybersecurity related portion of the Cloud Brokerage process to the Program Manager and to various other Program Offices.
• Review security requirements, verify implementation, and provide mitigation recommendations to the Program Manager to support the Navy Program Offices requiring the use of Navy Cloud Broker services.
• Utilize knowledge of FEDRAMP, DOD policies and cloud-based best-practices to assist Program Offices in hosting DOD/DON information in cloud hosting environments.

Pensacola, FL, US

• Served as the Program Manager and Cyber Security Lead in support of the NAVWAR Acquisition and Contracts E-Commerce (ACE-C) production systems. Responsibilities include:
• Provided Information Assurance (IA) oversight for all system accreditation, vulnerability management and compliance efforts.
• Established processes to govern all Performance Work Statement (PWS) related tasks, including risk management, schedule management, cost management and quality management.
• Reviewed schedules, milestones, budget, risks, and deliverables with Government client and business line
• Delivered weekly and monthly status reports that provided programmatic and financial updates

Mclean, VA, US

• Served as the Information Assurance Officer in support of the SPAWAR Online Public Enterprise Navy (OPEN) Program. Responsibilities include:
• Created, modified, and maintained DIACAP and RMF accreditation packages for a U.S, Navy system hosted in the Amazon Cloud (AWS). Participated in the Navy's transition from DIACAP to RMF.
• Drafted system diagrams, hardware/software lists, ports & protocol tables, and other support documentation.
• Ensured system design and implementation were consistent with DoD policies, requirements, and directives, including compliance with Security Technical Implementation Guidance (STIG), Security Requirements Guides.
• Evaluated security controls, identified Cyber vulnerabilities and compliance issues. Remediate existing vulnerabilities and developed mitigations that minimized the impact, likelihood of risks, and worked with the.

Montreal, Quebec, CA

Facilitate all aspects of the Scrum framework including sprint planning sessions, daily scrum, scrum of scrums, sprint reviews, sprint retrospectives, design, discovery and other brainstorming meetingsInstill Agile project management best practices including production impact analysis, risk management, cross-team inter-dependencies, release scheduling.

San Diego, CA, US

Provide project and administrative management support for the Navy SPAWAR PMW 790’s Shore Tactical Assured Command and Control (STACC). Responsibilities include:Provide liaison support to project managers, support/provide data calls, updates and reviews of program acquisition and installation schedules, action item trackers and technical reports; track and.

Provided oversight for the planning and execution of joint cyber exercises involving DOD, DHS, FBI and NSA entities. Responsibilities include:Lead supervisor of a diverse exercise support team consisting of 25 subject matter experts (SME) from the U.S. Air Force, U.S. Navy, U.S. Coast Guard, British Navy and Australian Army Design, procurement, deployment.

Supervised a Joint DOD IT response center that provided Service Level Management (SLM) and critical network support across the DOD Global Information Grid (GIG). Responsibilities included:Scheduled, coordinated and monitored more than 2000 world-wide critical circuit outages Developed and implemented an Standard Operating Procedure (SOP) to improve daily.

Washington, DC, US

Selected over 144 candidates in my career field to participate in the US Coast Guard‘s Advanced Computer and Electronics Technology Program. This program provides senior enlisted personnel the opportunity to build a high level of technical and managerial competency

Washington, DC, US

Successfully lead an IT division that directly supported a Search &Rescue Air Station that maintained 10 aircraft and 14 vessels and a Disaster Strike Force Team. Responsibilities included:Daily supervision of a diverse cross- functional customer support center consisting of 10 military and 4 contractor personnel providing system administration for over.

Washington, DC, US

Served as the technical liaison for Coast Guard units to include 5 medium-ranged drug interdiction vessels, a coastal Aids to Navigation vessel and the Coast Guard’s Basic Training Center. Responsibilities included:Coordinated and supervised the $2.4M upgrade of the Coast Guard antiquated computer system to a windows based platform. Provided superior.

Washington, DC, US

Sole Telephone technician that provided telecommunication support for a major Coast Guard Training Center: Responsibilities included:Maintained a Private Branch Exchange (PBX) and Voice mail system that supported 1500+ usersRe-designed the base-wide intrusion system to increase overall security and readiness by 50%

Washington, DC, US

Served as a basic boat engineer at a Coast Guard Aids to Navigation unit supporting 4 vessels. Responsibilities include:Performed general marine vessel maintenance and repair work

Washington, DC, US

Served in various roles within a Marine Corps infantry unit. Responsibilities included:Managed the daily operations of a 81MM Mortar section consisting of 15 combat- ready marinesLead a security detachment consisting of 3 M60 machine guns and 10 combat- ready marines

Bachelor'S Degree, Computer And Information Systems Security/Information Assurance

Associate Of Arts And Sciences (A.A.S.), Computer Technology/Computer Systems Technology

Aas In Applied Electronic Studies, Computer Science