Marcus Terry Email & Phone Number

Washington, DC, US

London, GB

• Provides cloud security support to help develop, implement, configure, administer, and report on cloud security capabilities, technologies, tools, risks, vulnerabilities, events, and incidents to include implemented.
• Ensure security activities, procedures, practices, capabilities, technologies, tools, and security controls comply with federal, DoD, and Army policies, standards, and guidelines
• Work with enterprise compliance organizations to align with ARMY enterprise security architecture framework and security policies and procedures
• Provides support to designs, test, and implementation of secure operating systems, networks, and database products
• Conducts risk assessments and provides recommendations for application design
• Manages Tenable.sc for AWS IL 4/5/6

• Reviews violations of computer security procedures to eliminate violations
• Develop, execute, and maintain full-scope Computer Network Defense (CND) and Incident Response (IR) operations that monitor for, detect, protect against, and respond to cyber exploitation and attack efforts against all.
• Detect cyber intrusions, while reducing false positives to 1% and while not allowing false negatives in the methodologies that are implemented
• Ensure that all alerts are monitored, interpreted, analyzed, and investigated to ensure that network intrusion attempts are detected and prevented from expanding the scope of exploitation beyond the initial detected.
• Respond to all classified message incidents (CMI…aka “Data Spill”), serving as the CMI action officer and completing all tasks defined in the CMI standard response procedure
• Conduct Cyber Threat Analysis

Dulles, VA, US

• Provides on-site technical and administrative Security Assessment and Authorization (A&A) and Continuous Monitoring (CM) support for the client enterprise wide under the NIST Risk Management Framework (RMF)
• Implements security engineering principles to review security requirements, verify implementation, and provide mitigation recommendations throughout the system life cycle to facilitate secure systems for A&A and.
• Provides security requirements analysis of systems and cloud architectures and designs
• Identifies technical gaps and solution recommendations for services, acquisition, development, migration, implementation, and monitoring
• Explains security controls/requirements and guidance to the System Owners and System Teams and recommending implementation strategies
• Identifies vulnerabilities and recommending mitigation alternatives for POA&M items

Falls Church, VA, US

• Coordinates with program management and customer counterparts to ensure compliance with national IA/IS security requirements.
• Provides Information System Security Officer (ISSO) support for classified and unclassified sensitive systems as Applicable.
• Assists the Director of Information Assurance (IA) in developing and maintaining the enterprise classified Information Systems (IS) Security Program for the protection of classified information, systems, and networks..
• Acts as a mentor for junior members on the IA team.
• Assists in the development of classified information systems security policies, plans, and procedures and serves as a key reviewer of unclassified systems information security policies and plans.
• Performs IS related incident investigations to include policy violation, insider threat activity, and/or inappropriate employee behavior on clients classified and unclassified IT infrastructure.

Reston, Virginia, US

• Participates as a member of integrated government/contractor teams providing information assurance/information systems security (INFOSEC) support to organizational IA/CND activities for DOD organizations
• Performs risk assessments and security testing as part of a security engineering team
• Ensure new and existing products conform to information security policies, standards, and best practices
• Supports project team in using the following tools, ACAS, eMASS, SCAP, and DISA STIGs. Provides consulting support to the Authorization Officer in the system authorization process

• Supporting the DHA in life cycle security from inception of the program through accreditation to obsolescence. Monitoring the implementation of, and compliance with, C&A standards within DoD to ensure uniform.
• Performing Cyber Security Information Technology activities including: risk assessments, annual reviews, ATOs and Branch Service Accreditation.
• Reviewing and providing technical documentation required for the application, system, network, and site certification and accreditation process.
• Developing and maintaining C&A Plans of Action and Milestones (POA&M).
• Using eMASS for POAMs, DIACAP/RMF packages, remediation, mitigations, risk assessments, and security analysis to support system authorizations.
• Identifying and assessing security requirements and deficiencies in applications, systems, and local and wide area networks (LANs and WANs).

Reston, VA, US

• Participates as a member of integrated government/contractor teams providing information assurance/information systems security (INFOSEC) support to organizational IA/CND activities for DOD organizations
• Performs risk assessments and security testing as part of a security engineering team
• Ensure new and existing products conform to information security policies, standards, and best practices
• Supports project team in using the following tools, ACAS, eMASS, SCAP, and DISA STIGs. Provides consulting support to the Authorization Officer in the system authorization process

Master'S Degree, Computer And Information Systems Security/Information Assurance

Bs, Information Systems