** Remote Only*** Review and edit of DCSA RMF documentation such as Security Controls, System Security Plan (SSP), Disaster Recovery Plan (DRP), Incident Response Plan (IRP), etc.* STIG-ed SCIF (Sensitive Compartmented Information Facility)* Developed Schedule and Milestone Exell doc* HW/SW requirements* Developed documents for artifacts of closed room (SCIF)'.... Facility Diagram, Data Flow Diagram, DTA (Data Transfer Agent) Authorization Form, Acceptable Use Policy Form...

Documentation of the RMF Security Controls including CCIs.Started Hardware/Software Baseline for Information System.

Job requirements changed, do not match my work experience/expertise

- Top Secret clearance- Working with the NCR - IADS (National Capital Region - Integrated Air Defense System) group.- Maintaining ATO (Authority To Connect) status for the system- Completed Risk Acceptance Letters to justify for risks acknowledge by the RMF process-Maintained eMASS documentation for RMF including artifacts and system updates-Maintained RMF Security Control AC-2 for all users of the system ( AUP, Cybersecurity Awareness, 2875, IATI, II, and III, certifications...)- Maintaining PAA (Privileged Access Agreement), Cybersecurity Awareness, DD Form 2875, AUP (Acceptable Use Policy), and other certifications for users of the system - Hardware/Software list maintenance- IP list of the system- ISA (Interconnection Security Agreements)

ISSO for the IM SHORAD projectJob requirements did not match work experience

Interim Top SecretMDA TEDeveloped RMF Security Controls documentation for the MDA TCE lab.Self Assessment process for all controls in eMASS.Changed departments in MDAMDA DE - System High/Booze Allen HamiltonSoftware Assurance position

U.S. Army Aviation and Missile Research, Development and Engineering CenterDocument creation, Standing Operating Procedures (SOPs), IAW RMF (Risk Management Framework) for a variety of Security Categorizations for various AMRDEC systems according to FIPS 199, Standards for Security Categorization of Federal Information and Information Systems.SOPs created according NIST Special Publication 800-53 (Rev. 4), Security Controls and Assessment Procedures in RMF.ISSO for SSDD MDACNET, Missile Defense Agency tail-site:Data Transfer and Trusted Download documentation including archiving Transfer logs Authorization of personnel for all data transfer activity.Hardware/Software(CCB approved) list for ATC (Authority To Connect)Verifying approx. 200+ client/host/server systems for accuracy in IP, MAC and generally related system information.ISA (Interconnection Sec Agreement)Security Clearance

Security Clearance: SecretCyber Security Specialist in support of the HQ ACC Army's Chief Information Officer/G6 (CIO/G6) staff elements and subordinate units for the Procurement Automated Data & Document Systems (PADDS). Strategic development, updates / maintenance of DoD IA policies. Ensuring ACC Command is following most recent Policies, Directives, Instructions, Army PAMs, AR (Army Regulations), etc. to assure DoD compliance.Developed PADDS DIACAP System Security Plan (SSP), Contingency Plan, Incident Response Plan (IRP), Concept of Operation (CONOPS), Continuity of Operations (COOP), Connection Approval Process (CAP) for Army Agent of the Certification Authority (ACA) for IATO accreditation.Reviewed and revised ArmyHire[dot]com hosting requirements for an RMF compliance.Review/audit IA status, assist deployment of IA policies across the HQ Army Contracting Command (HQ ACC) enterprise, integration of IA policies into other functional policies where appropriate, support development of a command-wide community of practice.Mapping DoDI 8500.2 IA Controls to DoDI 8510.01 Risk Management Framework (RMF) for DoD Information Technology (IT) for PADDS.Currently compiling artifacts/documents into Enterprise Mission Assurance Support Service (eMASS).

Security Clearance: SecretProvide IA Analysis activities for Army's Program Executive Office, Missiles and Space (PEO MS):- Retina / Nessus SecurityCenter vulnerability scans on all PEO MS networks, Defense Research & Engineering Networks (DREN) and DMZ's.- Acknowledgment of PEO MS networks and DREN IAVMs- Disseminated scan results to teams for mitigation. Verify via mitigation scans- Retina scans exported out for VMS input

Security Clearance: SECRETIA Analyst team member responsible for auditing / vulnerability mitigation of HW/SW for the USACEs (US Army Corps of Engineers), “Energy Enterprise Data Reporting System” (EEDRS) to attain / maintain DIACAP ATO from DAA.;- eEye Retina, - DISA SCAP and Security Tech Install Guides (STIGs)- IAVM / IAVAs- DoD established policies, practices and procedures IAW; DoDD 8500.1 / 2, AR 25 -1 / 2, NIST SP 800-37 (Security Certification Phase), NIST SP 800-53 Rev. 3 / 4, AGM (Army Gold Master), Security Configuration Guides (SCGs), etc. - Physical security inspections of installed HW; i.e. routers, meters, computers - Develop 'final report' for USACE and customer (Army / NG units) End of Contract - SEPT. 2013

IA Analyst – (Information Assurance Analyst)Kuwait – Camp VirginiaContractor (Short Term - 6 months) - ITT-EXELIS TAC-SWACAASecurity Clearance: SECRETIAVM (Info Assurance Vulnerability Management), per DoD; -'Retina' Scanner 'DOD-CERT IA TAVA' system notifications; Vulnerability remediation and assessing security status of network / GIG;-Tracking / mitigating other security issues e.g. non-compliant IS's; - Develop 'status reports' to Sr. level in re: SIPRNET / NIPRNET networks;- 'PDQ Deploy Installer' employed at times for remote patching.- 'Remedy'- ticketing and monitoring internal technical issues.Began initial implementation into IA program:- 'DISA VMS' - Registration / management of assets; Track vulnerabilities / compliance records for POA&M's.STIGs / STIG ViewerSCAP; (using XCCDF Components)

2005Taught Computer Networks: TCP/IP, Active Directory, Group Policy, Business Continuity / Disaster Recovery Planning, IT security basics, C,I and A, AAA, etc., Basics (federal) regulations (i.e. SOX, HIPAA, PCI), Windows Server 2003, Access Control, etc.

Krystal Air Corp. - Odor elimination spray - Owner/President Developed, marketed, wholesale/retail sales of Krystal Air. Developed website for marketing and Internet sales. SEO (Search Engine Optimization) management. Created e-commerce solution for online sales. PGP (Pretty Good Privacy) encryption of customer data in transit and at rest. PCI DSS compliance. Appropriate data retention policy, back-up strategy (BCM/DRP).Continuously increased high search engine rankings (majority top 10, many top 5) for content, tested keywords, site content for optimum SEO, relevant link reciprocation. Krystal Air supplier sold to another company. No longer active.

IntelliCom International - W. Des Moines, IA - CTO Maintained office LAN, security, install / troubleshooting hardware and software, patch management, desktop support, employee training, data back-up, disaster recovery / business continuity planning, access control.Developed interactive content for kiosks / websites, Flash (presentations, kiosk touch-screen applications), Photo Shop.Designed, maintained 'IntelliCom' and 'AXS2Net' websites. Currently inactive.'Helios Health' (Atlanta, GA); 10 months. Medical education, touch-screen kiosks connected to WAN. IntelliCom CTO to 'resurrect' company. (Era of 'dot bomb'). Led tech team for ~ 1,400 kiosks to meet HIPAA requirements, reviewed kiosk communication network with telcoms for best cost/benefit configuration.Redesigned web site (site content, tested keywords, relevant link reciprocation) for maximum search engine placement and revenue production, updated medical content. IntelliCom’s interest in Helios bought out by partners.