Joya Davis Email & Phone Number

Reston, VA, US

• Led Unified Communications for the Cyberspace Marine Corp team, ensuring timely vulnerability remediation and seamless technology migrations. Collaborated with Cisco on product infrastructure, policy updates, virtual.
• Managed accreditation packages through the RMF process, achieving Authority To Operate (ATO). Conducted vulnerability scans, system assessments, risk analysis, and provided technical recommendations to ensure.
• Identified non-compliance with security requirements and proposed mitigations for any deviations. Conducted thorough verification and validation to ensure the system met all security requirements. Collaborated with.
• Developed and maintained system documents, including System Security Plans (SSPs), architecture diagrams, contingency plans, and continuous monitoring documentation. Proficient in writing and modifying Standard.
• Participated in monthly and weekly vulnerability meetings, where I created tracking spreadsheets for team review and updated them weekly. Proficiently communicated technical information to non-technical colleagues and.

Reston, VA, US

• Proficiently managed multiple concurrent projects, activities, and tasks under tight time constraints. Collaborated closely with the Security Operation Center to ensure timely remediation of all vulnerabilities.
• Monitoring any Change Tickets that include servers, firewall, and websites making sure they follow security and privacy procedures according to the Smithsonian.
• Managed and secured the Azure environments with any new, current software and hardware. Proficient in documenting in cloud applications such as Archer when developing and updating security authorization packages such.
• Assisting the Smithsonian with insights on how to better secure the network with working closely with the Director of Security and Chief information Officer regarding policies, information security, data protection.
• Quarterly briefings over 200 information technology specialists with how to efficiently respond to threats, including who to contact during possible intrusions, where to go within the Smithsonian, how to protect their.
• Participate in internal and external reviews, inspections, Security Assessments and Authorizations and audits to ensure compliance with federal laws, client’s security policy as well as FISMA and NIST requirements.

Hanover, MD, US

• Identify Cyber vulnerabilities and compliance issues and make recommendations for network access based on the nature of the system, information being processed and mitigations in place auditing routers, firewalls.
• Review ongoing vulnerabilities, comments, and mitigation statements to make sure valid steps are taken to either lower or remove any residual risk.
• Assist with developing and maintain executed Government approved security policies, plans, and procedures.
• Collaborate well with members of the Information Assurance Module team on daily policy issues. Creation of technically detailed reports based on intrusions and events.

• Preformed risk assessments, update and review system security plans (SSP) using NIST 800-18 (Guide for Developed Security Plans for federal information systems), Plans of Action and Milestones (POA&M), Security Control.
• Perform vulnerabilities scan and monitor continuously using NIST 800-137 as a guide with the aid of Nessus Diagnose and resolve software and hardware incidents, including operating systems (Windows) and across a range.
• Knowledge of A&A formerly known as, DIACAP DoD Directive 8500.1 and 8500.2.
• Knowledge of NIST SP 800-53/53ARisk Management Framework RMF.
• Knowledge of FIPS 199 and FIPS 200.
• Updated IT security policies and procedures.

Arlington, Virginia, US

• Collaborating with a team of 15-20 Specialist and Admins to support a depot of over 3000 Customers on multiple projects at a time as needed.
• Running ACAS scans, monitoring environment for abnormalities and submitting report to senior admin for additional hardening and patching as needed.
• Performing follow-ups on given tasks as needed, attending meetings and briefings as new information becomes available or assignments ended.
• Verifying accounts prior to granting information access, protecting customer information per DOD and other regulations.
• Creating accounts in active directory, grouping accordingly and ensuring permissions.
• Performing Nessus (ACAS) scans, evaluating results and creating reports for submission to Senior management on next steps.