Cultivated and built professional and trusted co-worker/customer relationships by asking questions, identifying needs, and providing insightful information regarding Shannon policies and industry best practices. Brought a failed SIEM platform (LogRhythm) back online and tuned it to provide security alerts and relevant alarming on 600+ servers and 1K+ syslog sources. Continuously monitored SIEM assessing and mitigating risks. Used Morphisec and Sophos to lead incident responses in accordance with incident response policy. Performed remediation of incidents and root cause analysis. Performed tuning and automation of e-mail protection appliance to enable 60% better detection of spam/phishing. Completed daily scans to identify vulnerabilities within the network and made recommendations for mitigation. Managed white/black listing of URLs, domains, and IPs in the firewall/DNS. Updated procedures to change timely disablement of accounts (within 24-hours of final shift) from 4% to 88%. Identified 140 Log4J JNDI vulnerable applications by reconstituting ceased Nessus Professional project. Setup SPAM Threats e-mail box for users to send suspect message to for validation and eradication.

Lead a team of 8 in cybersecurity risk assessments and controls selection to meet the business requirements of training squadrons. Lead in the design and operation of compliance monitoring and continuous improvement activities to ensure compliance both with the 36 internal security policies I authored and to federal laws (NIST), DoD regulations (RMF), and engagement defined policies (International Sales Agreements). Composed the installations cybersecurity strategy and align operations to measurable objectives. Co-developed the cybersecurity awareness training used to train ~12K users annually. Perform monthly review of internal security policies to ensure they meet NIST/DISA processes and re-engineer to meet continuous improvement requirements in eMASS and Xacta. Host bi-weekly meeting to monitor project progress and manage risk. Ensure compliance with established Identity Access Management (IAM) program service delivery requirements and identify long-term strategies for planning and certification. Research and analyze the latest capabilities of industry trends to identify cybersecurity engagement and client operational/service issues and communicate this information regularly throughout organization.

Provides administrative oversight, manages projects and personnel, and works with customers to implement and manage solutions to ensure consistent system availability. Plans, organizes, and controls the overall activities of team personnel including: project management, technical work, quality of work and schedules associated with various performance activities to support the customer’s network environment. Serves as customer liaison to ensure all activities are performed in accordance with Air Force requirements and policies, ensuring that performance standards and quality measures are met, and activities are completed in a timely mannor. Plans, directs and completes hardware connections to the local area network, including setup and relocation of work stations. Submits tracks and manages computer systems requirements through AF-approved requirements or other DoD processes. Identifies network problems, analyzes equipment configurations, and takes corrective actions per network tasking order (NTO). Plans, schedules, and implements installation and maintenance procedures associated with edge device systems. Provides backup end-user support for workstations, network hardware, operating system software, and application. Administers HP Insight Control for BladeSystems with BLc3000 blade enclosures and BL460c Gen8 Blade Servers, NetApp FAS2240, Cisco Catalyst 6503R, and an Active Directory Domain using a mixed environment of Windows Server 2008 R2 and 2012 Windows Servers. Application Support includes Microsoft Exchange Server, SMART Boards, APC proprietary software, and Intelligence Mission Applications (Socet GXP, GCCS-i3, PFPS, & JMPS).

Boutique Firm Providing cost-effective CyberSecurity & IT Solutions to local businesses.

Designed and implemented 500K server, workstation, and network upgrade to the Multiple Unified Simulation Environment/Air Force Synthetic Environment Reconnaissance and Surveillance (MUSE/AFSERS) GOTS hardware and software system to make it the largest continuously operating military visualized computer based simulation in the world. Designing and analyzing systems to ensure their reliability and maintainability. Developing security documentations, including security, configuration management and contingency plans in compliance with the base Information Assurance Policies. Develops the procedures used in risk assessments and security tests and evaluations. Analyzing security, software, and hardware logs. Engineering a single technical requirements into multiple technical solutions (primarily for budget or security purposes) for purchase and implementation. UAS Full Motion Video Operator for the MUSE/AFSERS Modeling and Simulation system. Translates real-world mission requirements and information into realistic training recreations using the Vignette Planning and Rehearsal Software (ViPRS) suite. Maintains four Current Image Product Libraries and a 3.6 Terabyte FalconView CADRG and CIB Database. Note: Moved from Sub Integration Innovation, Inc (i3) to Primary Contractor October 2012

Provided technical support during installation, restoration, troubleshooting, and end of life cycle decommissioning of IT equipment to include desktop and laptop computers, cabling, printers, servers, switches, uninterruptable power supplies, and all their associated peripheral equipment. Accurately documented work performed for projects and trouble tickets. Completed warranty repair and replacement of IT hardware and peripherals.

Identified security risks, threats and vulnerabilities to networks, systems, applications, and configured new technology initiatives. Developed, operated, and tested firewalls (Sidewinder), intrusion detection systems (IDS), and the enterprise anti-virus systems (Symantec). Completed assessment and authorization activities within the NIST Risk Management Framework for Certification and Accreditation (C&A) packages. Enterprise level administration of network services such as DNS, TCP/IP, DHCP, and DFS. Conducted Classification Level specific security assessments on AF windows and Solaris 6 based systems. Investigated classified leakage and virus alerts for entry point identification and presented damage risk assessments to the 17 CS/CC and 17 TRW/SSO. Administered Communications Security (COMSEC) and Information Assurance (IA) programs. Loaded encryption keys on KG-95 & KG-175.