Coordinated efforts focusing on continuous improvement for security operations, including incident response and remediation. Focus on incident dwell time reduction.Superfluous log volume reduction for the SIEM solution, resulting in false positive reduction and overall month-to-month cost savings from log ingestion.Development of Incident Response Procedures for critical and high volume recurrent events.

As part of a new strategy for the cyber security program, in this new role I continued to participate in incident response and day-to-day SOC activity while focusing on the continuous improvement of established security solutions utilized by the SOC and IT team members.Performed day-to-day SOC activity centered on event monitoring and remediation. I coordinated incident response, directed incident investigation, containment and recovery, documented incidents, and improved incident reporting metrics. Worked closely with the SOC team to continuously improve incident response and prevent recurrence of incidents.-Achieved significant increase in logging volume, dramatically improvement visibility and accuracy for CSOC-Continuous improvement of incident response, introducing automation responses based on event criteria reducing SOC response times-Delivered high quality incident reports to both technical and executive audiencesContinuous improvement of vulnerability management program for IT. Build relationships with asset and application owners to drive patch compliance.-Prioritized remediation based on asset factors and vulnerability criticality-Achieved massive reduction of total vulnerability count within 1 year-Managed OT vulnerability management solution, increasing visibility into previously unknown lab and production segments

Led SOC operations & engineering, focusing on day-to-day event monitoring and remediation. I coordinated incident response, directed incident investigation, containment and recovery, documented incidents, and built incident reporting metrics. Worked closely with the SOC team to continuously improve incident response and prevent recurrence of incidents.-Established SOC processes, runbooks & escalation procedures-Enabled enhanced monitoring & alerting, reducing SOC response times-Delivered high quality incident reports to both technical and executive audiences-Managed cyber security projects and technical development for high-priority cyber security gaps, focused on increasing visibility and insight with industry standard solutionsIntroduced a vulnerability management program for IT, focusing on building relationships with asset and application owners to drive patch compliance.-Increased visibility into assets globally-Prioritized remediation based on asset factors and vulnerability criticalityProvided guidance and assisted with onboarding of multiple locations during M&A activity, integrating corporate cybersecurity standards and solutions into project timelines.-Completed successful 3rd-party risk assessments-Oversaw penetration testing activity and oversaw remediation of findingsParticipated in Solution design assessments, advising on security controls and best practices.-Established relationships with IT leaders to introduce cyber security standards for each assessment

I focused on day-to-day incident response and event analysis, initiating and overseeing remediation activity.-Reviewed incident details with SOC and improved detection and prevention rulesets-Worked with SOC to prevent recurring events and improve response timesLead projects and efforts within the IT Security team to improve overall company security posture-Maintained vulnerability management solution, improved scanning methodology and developed actionable reporting metrics-Implemented dual-factor authentication company wide-Introduced and managed advanced malware solution-Developed use-cases and performed extensive testing on multi-month high-priority proof-of-concept, evaluating multiple solutions to determine best fit

-Conducted application and vendor risk assessments.-Utilized evidence gathering techniques to investigate all alerts related to DLP.-Participated in policy standardization, reducing redundant policy and SOPs and improvement overall guidance documents

Project managed full level 3 PCI-DSS compliance initiative for Princeton Theological Seminary.Performed malware and unwanted/unauthorized application removal on endpoints.

This was a dual responsibility role. Child Youth, & School Services (CYSS) provides childcare, school-age services, tutoring, youth sports and after school programs on military installations.I acted as a Technology lab lead, providing mentoring and tutoring for middle school and high school aged youth, with specifics to the computer and homework labs. The goal was to provide a safe and interactive environment where youth can participate in pre-planned activities. Additionally, I ran the local HIRED! program, permitting juniors and seniors opportunity to intern with CYSS facilities.From an IT standpoint, I supported the buildings IT equipment acting as a local IT lead. Responsibilities included maintaining and updating endpoints, re-imaging endpoints, diagnosing and resolving local network issues.

Designated Section Leader for 11 soldiers in both wartime and garrison environments. Monitored, tracked and processed all personnel actions in regard to career progression of subordinate soldiers. Maintained up to date records on all necessary paperwork ensuring adequate mentoring and growth for soldiers in sectionTrained section of 11 soldiers and additional sections up to a total of 40 soldiers on combat tactics and standard operating procedures (SOPs). Led section of 11 soldiers on over 400 combat patrols and operations while under stressful conditions throughout the 2006-2008 Iraq deployment. Served initial deployment in Iraq as US Army Specialist 2004-2005Responsible and signed for over $12,000,000 in military equipment (vehicles, weapons, various peripherals) with no reported losses after 9 months of active deployment