Enterprise Security Service Division Chief
Arlington, Va
Responsible for cyber security tool infrastructure, end-point configuration management, security audits and consulting services on the Department’s Sensitive but Unclassified (SBU) and Secret (CLAN) level networks. • Managed system lifecycle of cyber security tool infrastructure including IDS/IPS, DLP, SIEM, packet capture, and compliance/vulnerability scanners.• Acted as a trusted advisor to the DoS CISO for discovering and remediating vulnerabilities discovered during… Show more Responsible for cyber security tool infrastructure, end-point configuration management, security audits and consulting services on the Department’s Sensitive but Unclassified (SBU) and Secret (CLAN) level networks. • Managed system lifecycle of cyber security tool infrastructure including IDS/IPS, DLP, SIEM, packet capture, and compliance/vulnerability scanners.• Acted as a trusted advisor to the DoS CISO for discovering and remediating vulnerabilities discovered during iPost/Continuous Monitoring compliance and vulnerability scans. • Evaluated security configuration requirements for operating systems, application software and network devices. • Advised the CIO on mitigating enterprise risks from the “Mobile Diplomat” initiative. • Persuaded Skills Incentive Program panel consisting of CIO, SAIT Dean and Deputy Director General to extend IT skills incentive benefits to Regional Computer Security Officers for retention purpose.• Devised strategies to neutralize advance cyber threats based on Intelligence Community (IC) agency inputs.• Audited effectiveness of physical, procedural and technical security controls of DoS missions worldwide. • Standardized on IronKey USB flash drives and activated Symantec SEP USB whitelisting functionality globally to secure mobile data and prevent unauthorized data transfers.• Enforced cyber security policy compliance, adjudicated exception requests and revised outdated policies.• Advised Department IT developers and system owners on compliance with Federal IT standards and regulations such as NIST, CNSS, FIPS and FISMA.• As acting Office Director, led the Department’s incident response and containment of a fast spreading Spear Phishing attack that exploited database servers worldwide. Coordinated with system owners to remediate the exploited and vulnerable servers. Instituted temporary firewall blocks to secure unpatched servers. Show less