Sergio Saenz Email & Phone Number

Annapolis Junction, Maryland, United States

Ft Meade

• Supervises staffing and effectiveness of team across enterprise programs in support of Risk Management activities to include o Authorization & Accreditationo Risk Analysis, Prioritization, and Mitigation o.
• Authors enterprise and program policies, as well as program security plans, Standard Operating Procedures (SOP), as well as Tactics, Techniques, and Procedures (TTP)o Enterprise Voice Services (EVS) Vulnerability.
• Cybersecurity Change Advisory Board (CAB) Chair responsible for voting on all Enterprise Voice Services changes and providing security impact analyses to the Program Management Office (PMO)
• Provides executive cybersecurity briefs to PMO weekly
• Provides vulnerability management metrics to directorate Information System Security Manager (ISSM) and executive leadership
• Manages program level Ports, Protocols, Services Management (PPSM) requirements and authorization

Ft Meade

• Supervises staffing and effectiveness of team across directorates so support Information Assurance activities to include o Authorization & Accreditationo Risk Analysis, Prioritization, and Mitigation o Cybersecurity.
• Sole author of Cybersecurity Architecture requirements and implementation guidance on highly sensitive communication systems
• Primary communication interface with senior leadership across programs
• Developed/Published Information Security Vulnerability Remediation Policy
• Successfully created and implemented a project plan to test and document Risk Management Framework compliance across two major programs on an aggressive timeline
• Successfully transitioned two DISA programs from DIACAP to RMF

Mobius Group allows businesses to grow their Information Technology infrastructure, regain the performance of aging systems, and measure/improve Network Security to keep up with the fast evolving threats of the modern age. We specialize in Windows and Unix systems, IT Security, and Network Infrastructure design.

Ft Meade

• Cybersecurity Subject Matter Expert/Project Manager
• Managed contractual requirements/deliverables
• Supervised contract staffing, effectiveness, and implementation
• Developed/Published Information Security Continuous Monitoring Strategy
• Developed/Implemented Introduction to RMF Controls training for ISSMs.
• Developed/Implemented RMF Control Family training for ISSMs.

Ft Meade

• Security Incident Response manager for DMZ REL / Partner Countries on REL SIPR enclave
• Orchestrates Information Assurance Vulnerability Management (IAVM) across DoD / Multinational Coalition Partner Assets
• Insures Security compliance of REL partner assets through DoD Vulnerability Management System (VMS)
• Responsible for DoD STIG compliance across all DMZ REL SIPR assets (Windows / Redhat / Network Devices)
• Author of multiple unattended/silent Bash scripts created for deployment/configuration of efforts engineered offsite in support of real world missions across the globe
• Correlates Multinational efforts through collaborative working groups in order to meet mission specific goals

U.S. Army Research Laboratory

• Performs security vulnerability scans and tests for known and unknown vulnerabilities existent within a Nationwide DoD infrastructure
• Analyzes test cases and provides regular progress reports
• Maintains extensive knowledge of up to date threats and threat patterns
• Leverages a strong IT security background in the identification and assessment of cyber security mechanisms
• Provides technical advice and assistance on interpretations of cyber security requirements
• Provides autonomous support, performing Network Integrity Assessment (NIA) support, including Network Assessment (NA) in order to quantify integrity of DoD networks and supporting personnel’s ability to counter cyber.

• Provides communication security, crypto-security, transmission security, emission security, computer security, information assurance and equipment and products as a means of protecting telecommunications and.
• Prevents exploitation through intercept, unauthorized electronic access, or related technical intelligence threats. Ensures authenticity, integrity, protection and availability of information transmitted by information.

• Responsible for DoD STIG compliance across various Unix platforms, such as Solaris 9 & 10, Redhat 5, Ubuntu 9 & 10, used for class/unclass web servers
• Administers Webjob, a network framework that deploys scripts/patches across both Windows & Unix systems
• Bash / Windows Shell scripting
• Cisco Ironport Administration
• Monitors system health, such as drive space, real time log analysis, unknown UID/GIDs, system permissions, system time, log rotation
• Responsible for analyzing and/or administering security controls for information systems.

• Develops, implements, enforces, and communicates security policies
• Responsible for analyzing and/or administering security controls for information systems.
• Conducts network and system security assessments
• Develops assessment tools and techniques in order to access aspects of network security including intrusion detection, incident response, vulnerability assessment, and vulnerability research
• Provides autonomous support, performing Network Integrity Assessment (NIA) support, including Network Assessment (NA), Host Intrusion Assessment (HIA), and Defense Assessment (DA) activities in order to quantify.

• Liaison to Network Security team, in order to harmonize exploitation detection/prevention in an IT environment of eleven hundred users.
• Advisory board member on Government Task Force charged with purchasing/upgrading two million dollars of computer equipment.
• Author of new DOJ computer image standard, created in order to increase efficiency, in compliance with DOD security standards, NIST 802.

Ba, Cyber Security

Assoc., Computer Systems And Networking