Serve as USCENTCOM subject matter expert to advise on RMF packages, strategies, and technical components to ensure compliance of NIST 800-53 security controls utilizing eMASS and /or XACTA. in conducting an independent comprehensive assessment of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls. Serve in a technical leadership role that includes consulting on systems and their plans, design, development, implementation of projects focused on Cyber Security. Act as the principal advisor to upper management in Cybersecurity matters. Ensure security improvement designs are evaluated, validated, and implemented as required. Perform cyber defense incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability utilizing ACAS vulnerability scanner, STIGs/SCAP viewer and Trellix Endpoint Security reports. Assess solutions' architectural designs for compliance with NIST 800-53 and DOD related policies for on premise and cloud-based solutions; prepare assessment documentation. Certify that protection and detection capabilities are acquired or developed using the Cybersecurity engineering approach and are consistent with organization-level cybersecurity architecture. Explore and assess the latest technology trends, disruptions and security/IT service business models to ensure Business Technology are maintain and improve the organization cyber competitive edge. Work closely with management to define and promote the strategic direction of the team. Provide strong leadership and direction to team members. Provide subject matter expertise across all Cybersecurity technologies. Create and maintain Cybersecurity technology roadmap. Ensure compliance to audit, regulatory and legal requirements.

Serve as a subject matter expert to advise for RMF packages, strategies, and technical components to ensure compliance of NIST 800-53 security controls utilizing eMASS and /or XACTA. in conducting an independent comprehensive assessment of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls. Serve in a technical leadership role that includes consulting on systems and their plans, design, development, implementation of projects focused on Cyber Security. Act as the principal advisor to upper management in Cybersecurity matters. Ensure security improvement designs are evaluated, validated, and implemented as required. Perform cyber defense incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability utilizing ACAS vulnerability scanner, STIGs/SCAP viewer and Trellix Endpoint Security reports. Assess solutions' architectural designs for compliance with NIST 800-53 and DOD related policies for on premise and cloud-based solutions; prepare assessment documentation. Certify that protection and detection capabilities are acquired or developed using the Cybersecurity engineering approach and are consistent with organization-level cybersecurity architecture. Explore and assess the latest technology trends, disruptions and security/IT service business models to ensure Business Technology are maintain and improve the organization cyber competitive edge. Work closely with management to define and promote the strategic direction of the team. Provide strong leadership and direction to team members. Provide subject matter expertise across all Cybersecurity technologies. Create and maintain Cybersecurity technology roadmap. Ensure compliance to audit, regulatory and legal requirements.

Serve as a subject matter expert to advise for RMF packages, strategies, and technical components to ensure compliance of security controls utilizing eMASS and /or XACTA. Serve in a technical leadership role that includes consulting on systems and their plans, design, development, implementation of projects focused on Cyber Security. Act as the principal advisor to upper management in Cybersecurity matters. Ensure security improvement designs are evaluated, validated, and implemented as required. Perform cyber defense incident triage, to include determining scope, urgency, and potential impact, identifying the specific vulnerability utilizing ACAS vulnerability scanner, STIGs/SCAP viewer and Trellix Endpoint Security reports. Assess solutions' architectural designs for compliance with NIST 800-53 and DOD related policies for on premise and cloud-based solutions; prepare assessment documentation. Certify that protection and detection capabilities are acquired or developed using the Cybersecurity engineering approach and are consistent with organization-level cybersecurity architecture. Explore and assess the latest technology trends, disruptions and security/IT service business models to ensure Business Technology Certify that are maintain and improve the organization cyber competitive edge. Explore and assess the latest technology trends, disruptions and security/IT service business models to ensure Business Technology are maintain, and improve, the organization cyber competitive edge. Work closely with management to define and promote the strategic direction of the team.gy are maintain, and improve, the organization cyber competitive edge. Apply service-oriented security architecture principles to meet organization's confidentiality, integrity, and availability requirements. Present technical topics at technology showcase events, such as key notes at national industry or technology conferences and/or participates on Partner Technical Advisory Boards.

As SCA-R and RMF Team Lead, my team and I support the SCA in conducting an independent comprehensive assessment of the management, operational, and technical security controls and control enhancements employed within or inherited by an IT system to determine the overall effectiveness of the controls utilizing eMASS and/or XACTA. Develop methods to monitor and measure risk, compliance, and assurance efforts utilizing ACAS scans, STIGs/SCAP viewer. Develop specifications to ensure risk, compliance, and assurance efforts conform with security, resilience, and dependability requirements at the software application, system, and network environment level. Draft statements of preliminary or residual security risks for system operation. Maintain information systems assurance and accreditation materials. Monitor and evaluate a system's compliance IT security, resilience, and dependability requirements. Assess the effectiveness of security controls. Perform security reviews, identify gaps in security architecture, and develop a security risk management plan. Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy. Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change. Plan and conduct security authorization reviews and assurance case development for initial installation of systems and networks. Verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations. Perform intermediate-level review of security artifacts for system authorizations, assessing both the technical and functional adequacy of the cybersecurity / information assurance controls. Support, implement, and adhere to all NIST, Federal, DoD, DISA, and JSP policies, procedures, and standards regarding cyber security and the RMF.

As SCA-R, my team and I support the SCA in conducting an independent comprehensive assessment of the management, operational, and technical security controls and control enhancements employed within or inherited by an IT system to determine the overall effectiveness of the controls utilizing eMASS and /or XACTA. Develop methods to monitor and measure risk, compliance, and assurance efforts utilizing ACAS scans, STIGs/SCAP viewer. Develop specifications to ensure risk, compliance, and assurance efforts conform with security, resilience, and dependability requirements at the software application, system, and network environment level. Draft statements of preliminary or residual security risks for system operation. Maintain information systems assurance and accreditation materials. Monitor and evaluate a system's compliance with IT security, resilience, and dependability requirements. Assess the effectiveness of security controls. Perform security reviews, identify gaps in security architecture, and develop a security risk management plan. Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy. Perform risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change. Plan and conduct security authorization reviews and assurance case development for initial installation of systems and networks. Verify that application software/network/system security postures are implemented as stated, document deviations, and recommend required actions to correct those deviations. Perform intermediate-level review of security artifacts for system authorizations, assessing both the technical and functional adequacy of the cybersecurity / information assurance controls. Support, implement, and adhere to all NIST, Federal, DoD, DISA, and JSP policies, procedures, and standards regarding cyber security and the RMF.

As Chief IT Operations Division, I managed the day-to-day operations of the information technology operation division including directing staff, who support administrative computing, networking, user services, telecommunications, and other information technology functions. Established and directed the strategic long-term goals, policies, and procedures for the IT Operations Division. Determine an organization's long-term systems needs and any hardware acquisitions needed to accomplish the organization's business objectives. Gives technical guidance on high priority projects and orients the company to trends in the information technology industry. Responsible for the development of functional or business unit strategy for the entire organization. Executes multiple high impact initiatives to achieve overall organizational goals. Propose budgets for programs and projects, purchase, and upgrades equipment, supervise 21 IT specialists, and presides over IT related projects. Provide technological guidance within an organization, supervise information system and communications network. Design, establish, and maintain a network infrastructure for local and wide area connectivity and remote access. Consult with administration, department managers, and manufacturing representatives to exchange information, present new approaches, and to discuss equipment/system changes. Oversee Internet and computer operations. Assess and anticipate technology projects and recommend appropriate action and resources. Establish and direct the strategic and tactical goals, policies, and procedures for the information technology department. Identify user needs and resolve problems. Ensured security of data, network access and backup systems. Acted in alignment with user needs and system functionality to contribute to organizational policy. Preserved assets, information security and control structures. Served as Information System Security Officer for the IT Division.

As Information Systems (IS) Supervisor / Sr. Data Systems Integrator, I planned, directed, and developed direct reports and supports the work efforts of indirect personnel including overseeing the training of the team within their assigned area of responsibility in the application of inspection processes, customer requirements. Provide leadership in the balancing of compliance practices with other business initiatives to allow all objectives of the business to be satisfied. Coordinates any necessary maintenance of system content. Responsible for performing and overseeing preventive maintenance and support calls. Perform equipment and system upgrades, installations and/or modifications working with vendors, service providers and customers regarding outages and problems. Conduct personnel performance assessments and makes recommendations regarding the movement of personnel. Manage and direct small, medium, and larger size projects including budget and all business documentation. Identify resource needs and allocation, propose options for ongoing customer, systems and project support including resource forecasting. Conducted reviews and analysis of IS Plans, and Information Management Plans. Managed 21 personnel team of consultants, programmers, developers, and analysts. Provided risk assessment. Created project documentation. Reviewed estimates. Prepared proposals. Flagged potential issues. Developed security standards, procedures, and guidelines for multiple platforms. Utilized in-depth technical knowledge and business requirements to design and implement secure solutions to meet customer / client needs while protecting the corporation's assets. Provided contributions to threat assessments and quality control for the Cyber and C4I threat reports for network operations. Provide Security Test and Evaluation operational support services, to generate the related artifacts, DIACAP/RMF documentation and requirements consistent with NIST and ICD 503 policies.

As a Regional Network Operations Manager, I’m responsible for managing the RNOSC-I which may involve working closely with teams in other regions to ensure that network operations are running smoothly 24/7. Network operations are handled by multiple teams located in different regions in Iraq. Lead and manage the Regional Network Operations team, ensuring that they provide a high-quality service to our customers and meet our service level agreements (SLAs). Develop and maintain processes and procedures for managing the network infrastructure, including monitoring, maintenance, upgrades, and troubleshooting. Provide oversight of vendor partners who provide Level 1 network support, ensuring that service levels are being met and incidents are being resolved in a timely manner. Monitor network performance and capacity to ensure that it meets the needs of the business and our customers. Work closely with other teams, including Security, Applications, and Infrastructure, to ensure that the network infrastructure is integrated and aligned with our overall IT strategy. Manage relationships with key vendors and service providers, ensuring that they deliver services that meet our requirements and SLAs. I was available to respond to incidents and provide support as needed. Responsible for coordinating with the regional operation network teams to ensure that incidents are resolved quickly and effectively. This may involve working with teams in other regions to provide support as needed. Provide escalation support if an incident cannot be resolved by the operation team alone. This may involve working with senior management and other teams to resolve the issue. Provide regular reporting on weekend incidents and recovery work to senior management. This includes tracking key performance indicators and providing recommendations for improvements. Provide support and leadership in the event of operational incidents on weekends.

As an Information Manager / CJOC Watch Officer, I performed the full range of team leadership duties and provides administrative and technical supervision for accomplishing the work of the unit. Gathered, reviewed, and collated message traffic to alert appropriate leadership and organizations to new developments and significant changes to their area of responsibility. Assisted in the preparation, analysis, development, review, and implementation of CJOC Watch policies, procedures, and standards. Plan and direct activities, and partners with Intelligence Research Specialists on the analysis, evaluation, and interpretation of data to assess its relevance and determine the significance of impact for the area of operations. Assisted Watch Officers in conceptualizing, planning, drafting, and presenting analytic products and preparing executive communications materials. Lead and oversaw the deployment of a variety of data analysis tools, techniques, and procedures, using advanced analytics to position the office to target complex, domestically, and internationally focused illicit finance threats. Produced Watch operational and intelligence products, both written products and oral briefs, under supervision, and develop written products/oral briefings of findings to supervisor prior to presenting to superiors; and established and leverage a network within NATO Partners and the Intelligence Community to obtain information significant to other agencies.

• As a Sr. Information Technology Specialist / Website Manager/Developer, I supervised the deployment, installation, operation, and unit level maintenance of multi-functional/multi-user information processing systems. Determined requirements, assigned duties, and coordinated activities of personnel engaged in information system analysis and maintenance. Developed and administered onsite training programs. Compile output reports in support of information systems operations. Analyzes telecommunications information management needs, and requests logistical support and coordinates systems integration. Supervised, performed maintenance management and administrative duties related to facility operations, maintenance, security, and personnel. Also performed Information System Security Officer (ISSO) duties, supervising ISSO functions, provided technical assistance, resolved problems for information services support personnel, functional users, and functional staff. As Web Manager, I utilized a few programs to maintain and develop web pages (HTML, Dreamweaver, Java Script, Photoshop, and Fireworks), Share Point. Other expertise were Enterprise Consultancy and Customer Service, Section Equal Opportunity Leader.

As an Information Systems Analyst / Automation Chief, I was responsible for the health and welfare of four military members and two government employees. Responsible for supervising the deployment, installation, operation, and unit level maintenance of multi-functional/multi- user information processing systems. Performed duties as Automation Chief; determined requirements, assigns duties, and coordinated activities of personnel engaged in information system analysis and maintenance. Developed and administered onsite training programs. Compiled output reports in support of information systems operations. Analyzed telecommunications information management needs, and requests logistical support and coordinates systems integration. Ensured that spare parts, supplies, and operating essentials are requisitioned and maintained. Supervised, performs maintenance management and administrative duties related to facility operations, maintenance, security, and personnel. Performed Information System Security Officer (ISSO) /Systems Administrator (SA) duties, Supervises ISSO functions, maintained updated antivirus protection and security protection on all automation resources. Provided technical assistance, resolve problems for information services support personnel, functional users, and functional staff. Provided desktop computer support which includes diagnosing and resolving any workstation operating system software, application software or hardware problems; provided user instruction for any workstation operating system software or standard application software; setup and configured standard workstation operating system software, all authorized standard application software, and all related services and authorized application software. Other Duties: Network Administrator. Exchange Administrator, AA&E Key Custodian, Unit Prevention Leader, Retention Leader, and COMSEC Carrier.

As an U.S. Army Recruiter, I established and maintains contacts, interviews, and advises civilian personnel to obtain qualified applicants for enlistment into the Army. Contacted representatives of schools, public officials, personnel managers, parents of prospective applicants, religious and civil leaders, and others to present the Army as an employment and career opportunity. Presented formal and informal talks on advantages of the Army at civic and service organizations and student bodies. Distributed and displayed recruiting publicity material. Established liaison with local radio, television, and newspaper agencies. Writes, edits, or presents recruiting material for use by local communications agencies. Conducted Interviews and counsels’ prospective enlistees. Discussed individual aims and goals to include security, personal aptitudes, training opportunities, job satisfaction and stability, advancement, prestige, and military life. Explained Army benefits including medical care, dependent allowance, housing, reenlistment bonus, retirement program, military/civilian educational opportunities, travel, recreational benefits, and all similar programs. Evaluated applicants’ occupational, educational, and psychological background to determine Army programs with specific individual appeal. Explains occupational and organizational structure of the Army to applicants, parents, and interested groups of individuals. Administered and scored screening physical examination, and enlisted screening test of applicants and counsels regarding reasonable occupational aspirations within the Army. Counsels disqualified applicants. Assisted in administration of Armed Services Vocational Battery (ASVAB) and explains results to school officials and students. As IMO, I was responsible for monitoring the efficiency, security and performance of the Recruiting Station’s technology and network systems.

As Information Systems Operator and Analyst, I installed, operated, maintained, and performed limited field level maintenance on computer systems, Information Technology (IT) networks, and cable and wire communication systems. Performs system administration (SA) and maintains computers and servers within the computing environment (CE) and the network environment (NE). Performed network administration (NA); installed, configured, and maintained network computing equipment within the network (i.e., routers, switches, desktop, and laptop computers). Performed duties associated with Communication Security (COMSEC) Account Management IAW Army Regulation (AR) 380-40. Provided SA to IT platforms in varying operational environments. Provided SA and direct support for digital management systems. As Information Systems Security Officer, I performed information security functions, provided the security services and attributes of availability, authentication, confidentiality, integrity, and non-repudiation; verified and implemented network security policy vulnerabilities from network defense teams; Network and IT management, which includes incident and problem processing, change request processing, availability management and user interaction. Assisted in the planning, configuration, management, and monitoring of the local area network (LAN).