• Developed an Enterprise Security program at a fast-paced, hi-tech, multi-national IT service company based on NIST 800-53 • Authored and consulted on security documents for large financial and health care firms globally • Instituted a security training program for employees and staff augmentation • Managed remote cybersecurity talent worldwide for various customers • Consults for various clients on a wide range of cybersecurity areas including GRC, asset and service acquisition • Manages a team of 20 providing security both internally and consulting externally with customers

• Splunk Subject Matter Expert supervising and troubleshooting installation and operation of agents on datacenter servers and in AWS for the Department of Information Resources • Basic rule tuning of the SIEM to reduce false-positive alerts • Extensive knowledge of Splunk architecture and it’s various components. • Investigated and evaluated new Cyber technologies offered to State of Texas by the Security Operations tower and assessed new vulnerabilities and the tools and techniques to remediate them • Firewall Rules Committee member evaluating and improving submitted rules from various state entities and deciding if they match best practices and the rules of least privilege • Researched and architected solutions to enhance security improvement for the Texas Department of Information Resources

• Cyber Security Architect working with the Virginia Information Technologies Agency and the Commonwealth of Virginia to manage, design, develop, and enhance Risk Management policies and procedures • Elevated risk management issues to VITA making sure that the towers that service the Commonwealth were meeting their contractual obligations • Co-authored SAIC’s System Security Plan based on the NIST 800-53 framework • Authored the Security Plan for future modernization of VITA’s infrastructure • Reviewed and approved agency system security plans before they were passed to the Virginia Information Technology Agency • Consulted on various project implementations as a subject matter expert from design to implementation • Used RSA Archer to upload and retrieve information relevant to evaluating corporate Risk and a System Security Plan • Led team to write and review system security plans and the overarching annual security plan for companies providing services to the State of Virginia

• System Administrator for the SSN794 Montana, Virginia Class Submarine • Performed Setup and installation of servers and wiring in LAN room of the pre-commissioned unit in preparation for crew to join. • Troubleshot issues that arise from the system architecture. • Performed Daily checks on 14 virtual servers each on the Unclassified and the Classified servers to ensure system health • Administered Active Directory for unit. • Configured servers and desktops according to the Department of Defense STIG framework

• Led the Cybersecurity research effort at USAA focusing on leading edge technologies that would be incorporated into the environment. • Collaborated with Directors, Architects, and Engineers to gain insight into the problem being researched and then defined the criteria at which the goals would be met. • Acted as the liaison between the project owners and the vendors ensuring that all interactions would be fair and unbiased • Concluded with comprehensive White Papers and/or oral reports detailing the findings of the efforts and a recommendation according to the facts given and the company’s needs. • Implemented UEBA (User and Entity Behavior Analytics), Cloud Packet Capture, and Emailage. • Worked with Twistlock for Docker container security • Team Lead responsible for developing and improving my team to deliver superior service to the customer

• Administrator for Leibsoft’s Enterprise Random Password Manager (ERPM) recording a high success rate of privileged account management and server environment security with weekly built-in server administrator password changes – PAM (Privileged Access Management and Identity Access Management) • Analyst for corporate wireless intrusion detection system – Analyzed alerts and made sure there was complete coverage of facilities that was required to be monitored. • Information security server lab manager – maintained a server lab for security testing purposes by both installing and configuring the assets. Operating systems included Linux, Server 2012 R2, and VMWare. • McAfee Endpoint backup analyst – Backup on Intel Security’s McAfee Endpoint Orchestrator and assistant making sure the endpoint agent is installed and talking to the EPO server. • Assisted in implementing DFARS controls and compliance of NIST 800-171 in a multi-national, Fortune 500 company • Changed permissions and passwords in Active Directory to secure the corporate network Manages Server Lab used in Testing Network security programs and issues.

Tasked with teaching Executives, Directors, and administration at various properties, cybersecurity practices such as password change and complexity, how to clean your desk at the end of the day, and other best practices. I was also guest speaker at corporate conferences on the importance of cybersecurity education in the workplace.

OSHA trained in Bloodborne Pathogens. I facilitated the packaging and shipping of blood and its components to various hospitals throughout Arkansas from the Jonesboro facility.