- Lead Program manager for two SIEM integration and Service Adoption Programs with over 400K Assets- Support root cause analysis and corrective action plan development and execution for SOC/PCI/ISO/C5 certification audit- Joint planning for SAP KRITIS compliance audit and execution.- Delivers Month Executive leadership updates on Security program initiatives- Coaches, Mentors, and trains team members in compliance requirements and program management processes.

- Plans/Designs/Executes Security Integration and Improvement Projects to support SIEM Operations and Incident Response organizations- Partners with Internal and External Audits to schedule and conduct bi-annual assessment/certification activities- Supports artifact collection and control assessment of NIST/FEDRAMP accreditation of Travel/Expense products- Designed/instituted continuous monitoring program supporting SOC, PCI, and FEDRAMP requirements for Public Sector Security Office- Lead maturity assessment execution for NIST Cyber Security Framework across 27 SAP Business units- Generated audit artifacts/evidence supporting attestation for SOC/PCI for two lines of business- Established Compliance monitoring and collaboration service for Cyber Defense and Design organization.

-Developed and Maintained Risk Management System (RMF) System Security Plans, artifacts, and body ofevidence- Implemented NIST 800-53 Security controls across multiple information systems, developed test plans andexecuted certification self-tests in Agile development process- Conducted System vulnerability test using numerous scanning tools to including Nessus, Wireshark, NMAP- Developed processes and procedures in alignment with CNSSI 1253, ICD 503, and NIST regulations- Continuously monitors control implementation across diverse information systems- Reviews network infrastructure configuration for compliance with STIG and organization security requirements- Implemented software testing process for automated and manual testing of software developer’s code- Lead Privacy Impact assessments for two new operational information systems achieving full system certificationLife Cycle

- Contract consultant supporting the Command Information Systems Security Managers to draft and maintain Information security policies, processes and procedures supporting the management of the Commands Cybersecurity Program- Authored Command’s initial Cyber Security Instruction and Cyber Security Manual for Naval Surface Warfare Center Philadelphia Division (NSWCPD), completed projects 15 days ahead of schedule- Authored NSWCPD instructions governing the wear of personal fitness devices and Cyber Incident response - Authored, managed, and updated technical procedures supporting accreditation and authorization process for 50 NSWCPD Information systems in accordance with Department of Defense and Navy Risk Management framework- Coordinated with the government lead the closure of five observations from the recent inspector general review of NWSCPD.

- Leads teams of 6 – 8 audit specialists to perform technology audits focused on information security and privacy, computer operations, system development, and change management, IT Portfolio project management, governance and strategy, business continuity management, disaster recovery, network operations, and emerging technologies.- Actively planned and scoped quarterly audit engagements. Guided, monitored, and generated weekly executive reports on audit plan execution and testing.- Built engagement project scope charter; Briefed department executives and gained the approval for quarterly audit scope.- Developed risk mitigation plans for identified deficiencies in operational processes and controls- Built and maintained business relationships with key technical personnel while remaining objective during audit testing.

- Contract consultant for the Department of Defense Information Network Modernization Branch of the Department of Defense Chief Information Officer.- Led Joint Information Environment (JIE) working group to determine capability gaps and drive solutions architecture development.- Reviewed and commented on 15 draft Department of Defense Operation documents (Concept of Operations, Task Orders), Joint Staff Action Procedure (JSAP), and Architecture and engineering artifacts.- Conducted technical assessments of JIE capability requirements, standards, concepts of operations (CONOPS), and known system threats. Drafted change to JIE Concept of Operations and Training Standards to provide clear, concise instructions to mitigate identified capability gaps.- Developed presentation material for briefing various stakeholders within the DoD community regarding the updated policies and processes to improve future systems and capabilities within the JIE portfolio.- Drafted updates for two DoD Instructions documenting recent strategic changes in Cyber Command and Control and Cyberspace Operations.- Joint Working Group Secretary for IPV6 Transition working group; Maintained agendas; meeting minutes, and prioritized workgroup tasks; Administered working group collaboration Microsoft SharePoint site.

- Responsible for managing the day-to-day mission tasks for the Cyber Security Operational Teams; Monitored Training and Qualification against established standards. Provided Reports to Executive Headquarters for United States Air Force, United States Transportation Command, and United States Cyber Command.- Executed stand up of 3 x 39 Man teams and 4 Support offices in accordance with Air Force Project schedule.- Generated monthly status reports utilizing a range of Microsoft Office products. Developed Team status report template utilized across four Air Force Squadrons.- Drafted standard operating procedures for financial management, training, and crew operations.- Developed tactical execution plans for two DoD named operations; successfully met operations objectives and secured Department of Defense Internet Access Point boundary; piloted a new cybersecurity inspection program.

- Responsible for task prioritization, organization, schedules, deliverables, and timelines for 20+ military, civilians, and contractors.- Developed orders, test plans, and metric reports for the DoD Joint Information Environment (JIE) - Led JIE Service Desk pilot utilizing 400-member test group; successfully validated Joint Service desk concept in a challenging multi-Combatant Command support environment- DoDIN operations Subject Matter Expert on cross-command Joint Planning Groups (JPG), Crisis Actions Teams (CAT), and DoD working groups

- DoDIN operations SME on cross command Joint Planning Groups (JPG), Crisis Actions Teams (CAT), and DoD working groups.- Synchronize Operations planning/execution for 3 lines of operation. - Authored, reviewed and enforced command orders for combatant commands, services, agencies and field activities. - Prepared and present briefing to senior executives. Develops desk guides and standardized briefing formats for the operations center work roles. - Supported Director of Operations in special project implementation.- Expedited the establishment and stand up of the USCYBERCOM current actions branch. Developed work roles and responsibilities. Trained new members on work roles. Delivered current actions branch ready for work in six weeks.- Developed implemented command orders format based on Military Standard 6040. Consolidate multiple orders formats used across the command. Expedited message delivery to 64 external DoD organizations.

- Approves, tracks, manages and enforces DoD policy for 16,000 change management and maintenance requests across the DoD annually. - Enforced DoD flash media ban, DoD Information Assurance Certification and Accreditation Process, and Ports and Protocols Management polices across the 64 DoD organizations. - Coordinates with DoD activities to develop plans of actions and milestones for implementation of Vice Chairman of Joint Chief of Staff Host Base Security initiative. - Manages DoD NIPRNET (Non-Secure Internet Protocol Route Network) Boundary security policy. Utilized commercial network management tools (Arbor Peakflow SP) to identify network attacks, anomalies and non-compliance with DoD policy. - Provides daily situation briefs for senior executives on DoDIN Operations projects, policy, and operations status.- Designed/Authored/Implemented new Period of Non-Disruption policy. Trained 25 watch standers on implementation and reporting procedures. Provided timely mission assurance during contingencies across the DoD.- Lead DoD White list clean-up effort. Identified 65K abandoned servers. Built updated boundary access control list. Closed vulnerable ports from boundary. Reduced IP server exposure at the DoD NIPRNET Boundary.- Lead planning and remediation efforts of saturation to DoD network timing source “tick and tock.” Developed near term and future courses of action. Coordinated cross agency approval. Tracked implementation ensured reduction frequency of network timing request while implementing a more robust network infrastructure.- Directed DoD efforts to insert Global Leap Second in 2012. Coordinate the community announcement. Developed step by step instructions for implementation.

- Provided Tier 3 support for critical/difficult to resolve network Defense Information Systems Network (DISN) outages on ATM, TDM, and Optical Backbone trunks- Implemented computer network defense procedures to resolve network vulnerabilities in accordance with DoD/CJCS standards - Monitored DoD IP Boundary and modified network security policy - Generated and maintained 18,000-line CISCO Access Control List and briefed senior leaders on status of on-going initiatives and high priority outages- Led three personnel in the management of a $300B digital and satellite communications network directly supporting the President, Vice President, and DoD senior executives - Tracked resolution of 9K+ annual outages using Remedy ticketing software

- Led three federal civilians in the management of a $300 Billion Dollar digital and satellite communications network directly supporting the president, vice president and other DoD senior executives. - Tracked resolution of 9K+ outages annually using remedy ticketing software.- Provides command and control guidance to the 64 DoD Agencies in operations, security, and sustainment of the Department of Defense Information Network (DoDIN). - Tracks global unauthorized network and host intrusions. - Produced reports for DoD Senior executives on the status of DoD communications.- Authored Training evaluation for operations centers watch analyst. Identified individual’s strengths and weaknesses. Provided focused remedial training.

- Supervised six personnel responsible for monitoring/maintaining/restoring $515M Iceland Air Defense System - Established daily work priorities, conducted personnel evaluations, remotely monitored four radar sites, 350 voice and data circuits, and 23K pieces of communication equipment locally/remotely managed - Directed quality standards-based testing of end-to-end circuits, systems, and networks; coordinated system fault resolution across multiple organizations and support tiers; executed over-the-air rekeys supporting aircraft communications- Project manager on tactical data-link installation project for the Iceland Military Air Defense Zone; worked with contract lead to establish installation timelines, technical and operational test plans, publish test results, and generate status reports for executive leadership - Operations Subject Matter Expert for working group that established initial capability document for next generation remote cryptographic key system; generated requirements for key delivery and key management in a single secure system- Responsible for training and standardization program for 24x7 Network Operations Center- Defined policies and procedures for licensing network professionals 22 network operations crew technicians- Maintained 200 item master training program and coordinated with regional training officer to schedule career professional and technical training - Acquired Joint Tactical Information Distribution Training System (JTIDS) training team, coordinated classroom and logistical support culminating in on-site training for network operations technicians; saved over $100K in travel costs- Built reports and briefed Division leadership on program status, budget, and deficiencies

- Lead 4 shift personnel continuous operations of a $950M dollar missile/150 Circuit missile and nuclear detection warning system.- Identifies, initiates and directs preventative, corrective and emergency circuit restoration actions for communications circuits and equipment - Established work schedules. Ensures training meets station qualification standards. Assigns daily work tasks - Operates and maintains $640M Survivable Communications Integrated Systems. Monitors alarm conditions and directs communication restoral for 32 remote facilities utilizing HP overview monitoring system - Instructor for initial/continuation work center training and qualification. Evaluates 20 facility technicians on 183 individual tasks- Operates precision test equipment to monitor, analyze and test circuit performance in accordance with Air Force and Defense Information Systems Agency Policy and Directives- Generated crew aid diagrams from engineering documents, identify test points, circuit operating parameters, and end to end system flow. Aided in facility 99% uptime rate

- Operated, configured, and maintained 650 analog/digital circuits in support of $640M Survivable Communications Integrated System - Monitored circuit performance utilizing digital protocol analyzers and oscilloscope - Coordinated with remote stations for isolation and correction of communications failures - Performed and documented quality control tests and initiated corrective actions for facility hardware software faults - Prepared and submitted status reporting in accordance with Defense Information System Agency station reporting directive - Maintained 87 encryption devices and performed daily re-keys utilizing KYK-15 and AN/CZY-10 keying devices; maintained secure telephone equipment (STU-III)- Trained 45 contract personnel on System Control Facility processes and procedures resulting in seamless transition during government outsourcing initiative

- Operated, configured, and maintained 1,200 analog and digital circuits traversing the Korean Peninsula - Performed fault isolation, quality assurance tests, and maintenance on facility telecommunications equipment- Monitored and maintained the Asynchronous Transfer Mode (ATM) Fiber backbone and digital cable system - Maintained digital microwave line of sight backbone - Utilized commercial test equipment to perform in-service and out-of-service quality control testing- Led transition of 48 inter-switch trunks from digit microwave backbone to ATM fiber backbone; completed project on time and improved communication resiliency by 30%

- Monitored, troubleshot, and restored 280 voice and data circuits - Managed and repaired inter-switch trunks maximizing system up time - Operated and maintained classified and unclassified internet protocol router networks (SIPRNET/NIPRNET) supporting the Defense Information System Network (DISN) - Performed Defense Information System Agency (DISA) Facility Control Office (FCO) functions - Remotely monitored the European digital backbone for alarms and status utilizing TRAMCON (transmission monitor control computerized monitoring) system - Provided upstream reporting in accordance with Defense Information Systems Agency reporting procedure utilizing the Defense Messaging System (DMS) - Performed Helpdesk functions supporting Microsoft Exchange and Novell network call center supporting 5000 user network; fielded calls, opened tickets, and managed ticket priority using Remedy ticketing software