Cyber Mission Specialist and results oriented cyber security expert. Responsible for vulnerability management and risk management framework. Evaluates enterprise information systems within identified programs to assess cybersecurity status. Employs cyber tools and risk mitigation strategies to help manage security posture. Develop policy and strategy to apply appropriate security controls and procedures in accordance with Risk Management Framework (RMF) to enhance security of assigned information systems. Assist in maintaining and managing the proper accreditation for all information systems of interest.

Cyber Security Expert, results oriented information security matter expert responsible for evaluating enterprise information systems within identified programs to assess cybersecurity status. Employs cyber tools and risk mitigation strategies to help manage security posture. Develop policy and strategy to apply appropriate security controls and procedures in accordance with Risk Management Framework (RMF) to enhance security of assigned information systems. Assist in acquiring the proper accreditation for information systems of interest.

Cyber IA Analyst subject matter expert responsible for evaluating enterprise information systems within identified programs to assess cybersecurity status. Develop policy and strategy to apply appropriate security controls and procedures in accordance with Risk Management Framework (RMF) to enhance security of assigned information systems. Assist in acquiring the proper accreditation for information systems of interest.- Cyber IA Analyst subject matter expert responsible for evaluating identified programs within AFLCMC information systems to assess cybersecurity status- Leverage ACAS Security Center instances operating on Red Hat Enterprise Linux (RHEL) to manage plugins pushed to Nessus scanner(s) - Support patch management and vulnerability assessments by ensuring ACAS baselines are compliant with the latest STIGs and patched to-date with the latest vendor provided patches- Assist with tuning Nessus scanners and policy to yield the greatest results- Research and implement industry best business practices to increase security and reduce risk- Develop strategic policies to reinforce the application of appropriate security controls and procedures in accordance with RMF enhancing security of assigned information systems- Collaborate with information assurance, network operations, and system administration teams to ensure fidelity and integrity of data produced by cyber tools- Ensure the system security compliance is achieved, maintained, and reported to management- Monitor and accurately characterize enterprise risks to help lead remediation efforts- Analyze, interpret, and recommend solutions for system improvements in technologies and security requirements- Support and sustain the establishment, enhancement, and continual improvement of integrated sets of ArcSight correlation rules, alerts, searches, filters, reports, and responses- Utilize various SIEM platforms to leverage real time analysis of generated security alerts

- Support enterprise architecture to help ensure 24/7 availability, access, and integrity of data and services- Propose categorization of information systems based on types of information processed in accordance with National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) model- Facilitate ongoing coordination with stakeholders for increased understanding in development and application of security controls, security tradeoffs, and critical decisions based on the intent of the ICD 503, NIST 800-37 and DOD 8510 security requirements- Report compliance with system security plans on information data stores, systems, hardware, and networks to improve situation awareness and improve future planning- Help ensure systems are in compliance with required security features and implemented with required security features and safeguards for system enhancement- Help identify security significant events and advise Program Manager (PM) on recommended solutions/actions based on security assessments feedback - Provide technical assistance to the government efforts to conduct cost/benefit analysis for security design decisions to identify security gaps and offer recommended solutions- Review and analyze vendor documentation for government and commercial solutions to perform security engineering analysis and reviews to help refine government cyber policies, procedures, and requirements- Analyze IA policies, procedures, and requirements to provide security recommendations for operational functionality of systems in detail to support the development of interoperable, systems- Provide recommendations on strategic defense of essential network infrastructures and operations against compromise by ensuring integrity and robustness of interconnections between networks of different security domains- Research, develop, implement, train, and manage KM initiatives; coordinate KM business efforts, utilizing best practices across the KM community

Information Assurance Engineer (IAE) / Plan of Actions and Milestones (POA&M) Manager functioning as an information system security subject matter expert (SME) on Risk Management Framework oversight, Privacy Act, Foreign Affairs Manual (FAM), Foreign Affairs Handbook (FAH), National Institute of Standards and Technology (NIST) standards and guidelines, Federal Information Security Management Act (FISMA), Health Insurance Portability and Accountability Act (HIPAA), E-Gov, OMB Circulars A-11 and A-130, and Clinger-Cohen (formerly the Information Technology Management Reform Act of 1996) as they apply to data, application, and information systems security.- Strategically integrated security controls into the design of IT resources during the early phases of their system development life cycle (SDLC) to minimize vulnerabilities early- Manage POA&M activity and report metrics for Consular Affairs/Consular Systems and Technology (CA/CST) automated information systems (AIS) throughout SDLC- Engage external organizations and leadership outside of CA/CST to edit, submit, complete, and closeout POA&M tickets as necessary- Responsible for Assessment and Authorization (A&A) and Privacy Impact Assessment activities for CA/CST AIS- Provide timely A&A support for assigned systems- Track and report A&A status to the IAE Team Lead and the Project Manager (PM) to help identify any obstacles that may impact the completion of the A&A- Ensure A&A packages are submitted and follow up to ensure IA approval is obtained prior to systems’ Authorized to Operate (ATO) expiration date

Lieutenant Colonel served as Cybersecurity/Information Assurance (IA) Team Lead responsible to plan, analyze, coordinate, and develop strategic level inspection plans to assess Army information systems and identify non-compliance to recommend corrective solutions for the Secretary of the Army to improve cyber readiness. Proactively communicate with Army senior executive leadership face-to-face and through correspondence to refine cybersecurity policy and facilitate improvement of Army cyber operations and Federal Information Security Management Act (FISMA) reporting. Provided advice and guidance to The Inspector General of the Army for reporting root causes of deficient/non-compliant IT security programs and events inclined for the loss of data, increased cyber-attacks, and decreased cyber readiness, resulting in revised, improved cyber programs. Assisted Army organizations/customers with methods to enhance cyber readiness through coaching, teaching, and training utilizing NIST standards and cybersecurity best business practices. Subject matter expert on inspection methods, tools development, scheduling, coordinating, and program management to recommend optimal cyber solutions and strategies for implementation. Maintained subject matter expert knowledge in all Department of Defense and Army directed cyber policies to facilitate well informed and objective decision making to support organizational goals. Planned, designed, and implemented SharePoint content management strategies to manage inspection team cybersecurity records, enabling real time collaboration and effective records management. Leveraged Citrix, VPN, OneNote, and other IT tools to perform concurrent operations during travel.

Director of Information Integration for Training and Doctrine Command (TRADOC) communications, information management and IT office. Planned, implemented, and managed Information Technology (IT) operations and communication projects to support 33 subordinate organizations and Headquarters (HQ) staff to assess and address IT requirements. Satisfied strategic, operational, and training mission requirements by providing quality enterprise initiatives and information technology solutions to support over 53,000 Army personnel spanning across 16 military installations utilizing process improvement strategies and techniques. Managed HQ SharePoint Portal and Army Knowledge Online presence, which included development, testing, product release, and help desk management/support, to improve organization-level security programs and cyber readiness. Detail focused for effective development and employment of IT policy to ensure legal compliance with Information Management, Records Management, Knowledge Management, TRADOC Publications, FOIA, Privacy Act laws and regulations.

Director, Plans for Global Network Enterprise Construct (GNEC) initiatives. HQ TRADOC lead responsible for planning and integration of Army enterprise initiatives to include Enterprise Email, Army Data Center Consolidation Program, and Cloud Services. Represented 33 subordinate elements at 14 regional installations, comprising over 50,000 personnel, to provide deliberate plans to leverage existing technology with future enterprise concepts and capabilities to accomplish strategic objectives.

Joint Staff Information Systems Officer at a Strategic Headquarters encompassing two North America and 26 European countries. Developed military strategic policies, plans, and procedures for the Automated Personnel Management System (APMS) to improve the management of Bi-Strategic Command manpower and personnel. Established Human Resources database training, policy, and facilities to support APMS implementation across the North Atlantic Treaty Organization (NATO) to expand a unified, human resource management effort. Accountable for development and coordination of all Human Resources database training, policy, and facilities.

Division Automation Officer (DAO) responsible for supervising 22 Soldier section, responsible for providing planning, technical expertise, and remote direct support maintenance and upgrades for over 500 Standard Army Management Information Systems (STAMIS) to include 21 Combat Service Support Very Small Aperture Terminals (VSAT)/C4 VSAT dispersed over 19 geographic locations. Managed external government and contracted STAMIS/Logistical Network (LOGNET) support personnel to provide required external automation and IT support.