Contributions focused on taking cybersecurity best practices from large defense contracting environments and tailor a cybersecurity program suited for an emerging technology provider with a startup culture. Key contributions at VSC included implementing email encryption, designing secure infrastructure, achieving NIST SP 800-171r1 and CUI compliance, establishing security baselines, configuration management, change management & incident response / reporting practices, and designing and prototyping a cost-effective open-source hybrid-cloud Security Information Event Management (SIEM) log collection and aggregation platform.

Servant leader and part the Global Security Solutions group, supporting cybersecurity team rockstars in all aspects of RMF transition and ATO sustainability at the Raytheon Missile Systems campus in Tucson, Arizona.

In this position, I functioned as an ISSE/IASAE and IPT lead, providing cybersecurity advisory services and systems security engineering guidance to ISSOs and ISSMs within the Technical Security group supporting multiple programs for a variety of defense & intelligence community customers. Primary focus items included counterintelligence and insider threat mitigation, JSIG / ICD 503 / DIACAP Risk Management Framework (RMF) Accreditation & Authorization (A&A), Continuous Monitoring (ConMon), Security business process automation & test automation. Contributions were to develop and implement a software assurance / integrity verification program for a significant program, create and publish a Basis of Estimate (BoE) template for Lockheed Martin Aeronautics programs to quantify additional cost estimates for JSIG accreditation impacts, draft an organizational IASOP with NIST SP800-53 common controls across the Palmdale Skunk Works site, and design, implement and test several cybersecurity capabilities, features and assurances relative to insider threat, configuration management, auditing, access control, network security, media control, test & evaluation and forensic investigations. I meet/exceed DoD 8570.01-M qualification criteria for these aforementioned roles and functions.

Contributions were to lead the security architecture, logical and physical design, implementation, assessment, and support of deliverable systems for the Mission Communications & Processing Directorate Advanced Programs group, as well as to serve as an Information Systems Security Officer / Manager for the IS&GS National programs at the Goodyear, AZ campus. Many projects included transitioning multiple systems from certification & accreditation (C&A) under the legacy Director of Central Intelligence Directive (DCID) 6/3 risk management framework (RMF) to Intelligence Community Directive (ICD) 503, and integration of legacy systems into customer enterprise services in accordance with the IC Joint Architecture Reference Model. Among the core Information Assurance work products as part of these activities included business capture / project planning, documentation, security architecture and engineering, system development, implementation, verification and testing and sustainment / support of various NIST SP 800-53 and CNSSI 1253 security controls. I functioned exclusively as the security architect and security systems engineer, as well as providing system engineering support & sustainment services through O&M transition. At the Goodyear, AZ factory, I also served as a COMSEC subject matter expert (SME), supporting a variety of FASTLANE, TACLANE and SafeNet inline network encryptors (INEs) and related cryptosystems. Routinely used WASSP, SECSCN, Retina, Nessus, nmap, and OWASP ZAP as assessment tools, targeting a variety of assessment targets to include VMware ESX, Citrix XenServer / XenApp / XenDesktop, Windows Server 2008 R2 / 7 Enterprise, Active Directory / GSSAPI, RedHat Enterprise Linux (RHEL), Solaris, IIS / Apache, Oracle 11g / PostgreSQL / MySQL / MSSQL, Cisco IOS / Foundry / McAfee Sidewinder / JuniperOS, and NetApp.

Primary contributions were to support the Sensor Processing Security Engineering Team’s Operations and Maintenance effort. In this role, responsibilities included vulnerability management program activities, assessment of system / product defects, developing remediation solutions, and developing / executing certification test plans and component test plans. Frequent coordination and continuous communication with the customer certifier to deliver the most resilient security support structure within delivered products was essential. Ensured effective application of remediation solutions to the system baseline without regressing system performance or capability. C&A of deployed systems in accordance with DCID 6/3 and ICD 503 requirements were a core responsibility, and the ability to develop and apply solutions to meet NIST SP 800-53 and CNSSI 1253 common controls were routinely demanded. Focal SME for Public Key Infrastructure (PKI), Atrribute-Based Access Controls (ABAC) and x.509 certificate provisioning.

Served as the primary ISSO, and effectual ISSM for core-customer SCI programs and select SAP/SAR programs. Served as a system administrator and primary ISSO for Special Programs @ LM Goodyear, as well as for several other information systems. Transformed C&A structure from 11 stovepipe C&A packages to a Site Master SSP / Addendum SSP format. Worked to meet / exceed AIS security requirements on several internally- and/or externally-connected AIS from initial plan to ATO, to include plans and policies IAW DoD 5105.21M-1, DCID 6/x, NISPOM Chap. 8, JAFAN 6/x and others. Provided and managed Security Education and Awareness Training program regarding AIS Security. Processed and approved change requests to the Security Support Structure (hardware and software moves, additions, and changes affecting accreditation). Routinely reviewed audit logs, backup processes, and account usage statistics. Provided oversight and assistance to antivirus and patch management processes IAW customer guidance and IAVA’s.Conducted vulnerability assessments and penetration testing for select programs IAW customer guidance and/or program objectives. Supported ethics & fraud investigations, as well as other forensic activities. Initiated protective and/or corrective measures when security incidents occurred, and was a primary campus CIRT POC. Participated in red teaming activities on several national security information systems. Campus focal point for COMSEC equipment trouble resolution on KG-75 FASTLANE, KG-235 SECTERA, KG-175 TACLANE INE’s and associated CCI.

Provided design, development and support for several classified SCI/advanced program automated information systems (AIS) at the Air Force Research Laboratory, Mesa Research Site. Served as the primary system administrator, primary ISSO, and effectual ISSM for all SCI AIS, to include JWICS. Served as a system administrator and primary ISSO for Mesa’s SIPRNet AIS. Served as SA & ISSO for several other AIS. With the assistance of the previous site ISSM, built and maintain several internally- and/or externally-connected AIS from initial plan to ATO; established the SSP, SOP, Site Security CONOPS, and several other C&A plans and policies IAW DITSCAP, DoD 5105.21M-1, DCID 6/3, 6/4, 6/9, NISPOM Chap. 8, JAFAN 6/x and others. Created andmaintained configuration management baselines, system diagrams, and user training. Routinely reviewed and maintained audit logs, backup processes, and account usage statistics. Conducted antivirus and patch management IAW DIA guidance and IAVA’s. Conducted vulnerability assessments for SCI AIS IAW AFMC ISSM guidance. AFMC/XRIS had sourced Mesa during employment term as having implemented superior best practices in the implementation of Information Systems Security/Information Assurance for SCI AIS. Was a member of Mesa’s IT Threat Working Group, and routinely interfaced with AFOSI and the FBI. Also functioned as a senior support engineer for the Mesa Network Control Center (NCC). Supported client/server and supporting network architectures throughout all layers of the OSI model. Installed and supported COMSEC devices (specifically KG-194, KIV-7, TACLANE, and SECTERA INEs), VPN’s (Nokia CryptoCluster and Cisco 3300), routers, switches, firewalls (Cisco PIX, NetScreen and Sidewinder), operating systems (Linux, NT4/W2K/XP/2003), Active Directory migration/implementation, network services, Video Teleconferencing Systems (H.320- and H.323-based Polycom, Tandberg, Picturetel, VTel, and custom distributed multipoint systems).

Specializing in the services sustainment sector, my duties included responding to inbound phone calls from GTE Communications residential and small business customers to diagnose, troubleshoot, and provide solutions to their repair related issues on internet, local telephone, long distance, paging, and cellular communications service. Ability to perform complex troubleshooting was essential. Furthermore, extensive knowledge of various internet technologies, communications devices and related hardware, the public switched telephone network (PSTN), Signaling System 7 (SS7), central office switching / trunking systems, CDMA/TDMA/GSM, transmission protocols, and familiarity of the media was vital to my success at GTE.