• Review Security Assessment Report (SARs) post-assessment; created and completed POA&Ms to remediate findings and vulnerabilities.• Collaborates consistently with PMs, system owners, system administrators, engineers, and developers to create or update system/site policies, procedures, and process guides.• Supported and coordinated workflow activities and the necessary artifacts to successfully achieve an ATO in the RMF process.• Perform continuous monitoring of information system… Show more • Review Security Assessment Report (SARs) post-assessment; created and completed POA&Ms to remediate findings and vulnerabilities.• Collaborates consistently with PMs, system owners, system administrators, engineers, and developers to create or update system/site policies, procedures, and process guides.• Supported and coordinated workflow activities and the necessary artifacts to successfully achieve an ATO in the RMF process.• Perform continuous monitoring of information system with cyber security policy, review the results of such monitoring, and disseminate reports to the designated office, where in some cases reports will be expected to provide data in accordance with each Standard Operating Procedure for each cyber security policy.• Assessed vulnerabilities to determine if additional safeguards are needed and ensure systems are patched, and security hardened at all levels of the “stack,” and monitor to see that vulnerabilities are remediated as appropriate.• Provide weekly status reports to ISSM and CISO on the status of systems within Bureau's portfolio by performing treat hunting activities on all monitoring platform• Conducted internal vulnerability assessments and facilitate external audits• Led security audits to ensure compliance with industry standards (NIST) and regulatory requirements (HIPAA). Show less

• Designed, tested, and implemented operating systems, networks and database products.• Conducted risk assessment and provides recommendations for applications design• Utilize encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security search• Collaborated with the development team to integrate secure coding practices and conduct code review, reducing software vulnerabilities by 30%• Performed digital;… Show more • Designed, tested, and implemented operating systems, networks and database products.• Conducted risk assessment and provides recommendations for applications design• Utilize encryption technology, penetration and vulnerability analysis of various security technologies, and information technology security search• Collaborated with the development team to integrate secure coding practices and conduct code review, reducing software vulnerabilities by 30%• Performed digital; forensic on compromised systems, determining the root cause of breaches and advising on remediation strategies.• Regularly updated and patched systems to protect against newly discovered vulnerabilities.• Assisted in the preparation and delivery of security awareness training sessions for employees. Show less