- Successfully obtained and maintained SOC 2 Type 2, SOC 3, PCI DSS v4.0, and HITRUST v9.3 attestations and certifications- Maintained Security posture and management program- Implemented Single Sign On everywhere to enforce security governance and ensure IT and Security IAM controls- Performed internal and external security questionnaires and assessments for posture and business growth initiatives- Communicated Security and Compliance goals to the board of directors and executive management- Transformed Security and Privacy Policy standards and posture in alignment with ever-changing initiatives

- Successfully overhauled technical security controls to enable holistic and centralized management of security posture and controls- Maintained compliance with HIPAA via AWS Security Hub, Inspector, CloudWatch, MACIE, among other SaaS services- Realigned security and privacy program to HITRUST and SOC2 requirements- Instituted collaboration-based organization policy and system based procedural documentation and workflows- Provided Security SME to customers, internal stakeholders, and engineering teams- Performed in depth risk assessment to ensure strategic initiatives aligned with security compliancy requirements- Provided security overviews for prospective clients and customers to ensure due diligence and due care was provided- Managed a budget of $500,000 for security and compliance initiatives

Provided Subject Matter Expertise for the preparation, creation, and validation of graduate level examinations for accredited universities and colleges. Subject Matter expertise included: Cloud security, management, and operations. Management information systems and project management involving information technology. Globalization of IT infrastructures and solutions and emerging technologies.Notable ExamsCloud Security and Management Exam, Western Governor’s University September 2018 – November 2018Management IT Micro Exams, Western Governor’s University March 2019 – June 2019Project Management Essentials, Western Governor's University June 2020 - July 2020

Notable Achievements- Successfully prioritized, guided, and produced a full FedRAMP Moderate Readiness Assessment Review for listing on FedRAMP MarketplaceGuided the overall assessment and authorization process in line with a risk assessed SaaS solution in compliance and alignment with federal mandates, federal agency requirements, and industry regulations within AWS Public Cloud and GovCloud. Evaluated and prioritized control family needs to include implementation summaries, tools, processes, procedures, and plans. Defined process owners to coordinate with technical teams to maintain day to day operational effectiveness overseeing a team size of 15+ agile engineers. Captured and defined artifact formats and evidence gathering for 3PAO information system audits. Coordinated and/or created key system security plan sections and diagrams to effectively answer controls and attachments including, but not limited to, system components, users, authorization boundary, network architecture, interconnects, hardware and software inventory, and data flow diagrams. Monitored the implementation of management, operational, and technical controls to meet FedRAMP Moderate and High Baselines in alignment with FISMA and RMF, HIPAA, and PCI-DSS. Developed and maintained incident response plans, procedures, and tools to ensure full continuous monitoring, auditing, and vulnerability management capabilities. Prepared and managed budgetary constraints for business development and appropriate growth. Purchased, configured, and managed Qualys Cloud Platform, CylancePROTECT, and KnowBe4 KCM GRC for full security operations awareness and continuous monitoring initiatives. Managed an annual budget of $100,000 for security and operational tools.

Notable Achievements- Successfully produced a full FedRAMP Moderate Package- Successfully prioritized, guided, and produced a full FedRAMP Moderate Readiness Assessment Review for Agency Authorization- Lead the Security and Privacy Program for a 24/7/365 SaaS Healthcare Solution- Proposed and implemented a continuous monitoring solution that saved the company $200,000 initial and $50,000/year recurring- Provided key input to bring in $135 million dollars from business development and new business- Authored a security defect identification, management, and remediation workflow and procedure set for enterprise-wide awarenessEnsured compliance and conformance with mandated Veteran Affairs (VA) Security Assessment and Authorization (A&A) process through the Veteran Focused Integration Process (VIP) guidelines. Maintained and achieved Authority to Operate (ATO) and Conditional ATOs where appropriate. Ran static code analyzer scans using Fortify on source code to ensure secure code and secure design review artifacts were enough. Guided development teams on issuance of compensating controls and security controls to ensure full compliancy with A&A and section 508. Lead cloud adoption initiatives and provided guidance and training on struggles with cloud adoption with respects to security within and of the cloud. Assisted in the software review to bring out of date applications up to compliance via new software, dependencies, and the occasional recode of software. Provided information assurance and privacy SME analysis and input for multiple programs specifically with matters related to security, secure code review, quality code review, secure design review, patient safety, and patient privacy aligned to the authorization process. Assisted on acquisitions and contract proposals by providing information security, cloud security, cloud architecture, and overall security expertise. Utilized HP Fortify, Microsoft Threat Modeler, and Risk Vision.

Provided tier 2 support on a 24/7/365 network configuring and setting up new security services through Cisco ASAs, F5 LTM/GTM, McAfee Firewall, Cisco switches and Cisco routers. Interfaced directly with customer to ensure efficient and effective resolution of issues and concerns to meet service level agreements. Educated tier 1 personnel on incident response technologies and security posture remediation where required. Ensured continuation of security environment in relation to posture, incident response, direct connect services, secure VPN services, and intranet services. Configured and deployed Firepower and Firesight appliances for intrusion detection including Advanced Malware Protection operations. Identified and remediated GAO identified controls to ensure compliance with NIST 800.53 and other government regulations such as FISMA.

Researched, Designed, Created, and Reviewed Security architecture plans in accordance to standards such as ISO 27001 and NIST 800-53. Utilized and created system hardening templates based on Security Technical Information Guides. Maintained and managed Ansible roles for DISA STIG Unix compliant systems. Designed and built network and security system architecture in private and public cloud environments to facilitate proper scaling, resource utilization, and security awareness. Focused on utilization of Free and Open Source Software to manage financial constraints and proper due diligence with regards to information security. Designed and architected security and environmental monitoring solutions based off the ELK stack, OSSEC, Zerobin, Etherpad, GitLab, and Prometheus.io. Utilized as the foremost security systems SME for a wide array of programs and pursuits. Created Information Security Management Systems and System Security Plan documentation for anticipated accreditation. Unified security design and operating procedures to be proactive rather than re-active. Interfaced directly with customers ranging from peer level to C-level counterparts.

Monitored 24/7/365 networks and systems for viruses, worms, botnet, and other malicious activity on public and privately accessible networks. Applied SIEM methodology through suites such as Splunk, ArcSight ESM, and McAfee ESM on a day to day basis. Utilized programs and devices such as Nessus, Orion, McAfee Security Appliance, Snort, RSA, Sourcefire Defense Center, Sourcefire IDS, and Cisco Firesight, Cisco Firepower. Pioneered the configuration and deployment Cisco Firesight and Firepower IDS devices for two diverse networks with over 25,000 devices extending over 150,000 nodes. Communicated directly with customer facing peers and higher-level manager providing educational and informational input on new and upcoming information security threats and vulnerabilities.

Provided technical support for IP services by employing test methods to investigate and remedy network anomalies in a 99.999% uptime environment. Monitored for, analyzed, and troubleshot network problems within an operations center utilizing network management and monitoring tools Worked with local exchange carriers, ILECS, IXCs, internal and external groups as needed to resolve network issues. Remotely worked with onsite technicians and telecommunication partners to resolve network problem. Interfaced directly with customer peers and managers.

Managed and configured a multi-platform computer network for 140+ people. Configured HP switches and access points in order to effectively cover entire building. Setup and managed PfSense firewall to properly NAT (PAT), distribute DHCP addresses, and protect against threats. Regarded as SME on all technical matters related to network, computers, AV, and general technical problems. Designed, programmed, and implemented organization’s website and web host. Performed site survey to best implement, provide, and ultimately support wireless network across facility.

Engineered all-in-one project tracking system using web development, database, and critical thinking skills. Utilized my routing, switching and UNIX skills to deploy networking devices. Assisted in the building of production-based voice gateways within the Cisco voice over IP system (CUBE & VXML). Overhauled and upgraded network devices by applying skills obtained by CCNA training and previous jobs.

Created and modified applications based on Android SDK on the Java Development Platform. Completed graphic design work to provide demos and showcase dynamic webpages. Coded in languages including XML, SQL, PHP, HTML, .NET and JAVA. Deployed UNIX based web server for development and production resources.

Responded to issues that arose across Purdue’s Campus related to networking. Configured Cisco switches and routers to integrate with existing network. Utilized critical thinking to troubleshoot network problems ranging all tiers. Installed hardware in new buildings across campus (full building installs).