Electronics Engineer
CurrentAuthors planning documents for DoD system accreditation, including System Security Plan, Security-Focused Configuration Management Plan, Disaster Recovery Plan, Incident Response Plan for Risk Management Framework (RMF) requirements; Reviews documents for RMF accreditation packages; map RMF controls to policy definitions in policy documentation; Review NIST and DoD documents as required for guidance in developing policies; review existing contract documents for compliance with policies. Establish policies and procedures and security artifacts to meet RMF requirements. Involved in the selection process for auditing/continuous monitoring logging/analysis software. Review status of Security Technical Implementation Guidance (STIGs) on information system, identify critical vulnerabilities using STIG viewer tool.Earned CISSP June 2017.