Timothy Medlock, Cissp Email & Phone Number

Falls Church, Virginia, US

• Completely overhauled the cybersecurity program of one of the largest legacy programs in the U.S. Government inventory ► Program was over 20 years old and required a drastic cybersecurity overhaul ► Implemented a.
• Identify cyber security issues within the software engineering process and provide solutions to applicable leadership. This includes interacting with internal and external subcontractor technical staff and external.
• Responsible for maintaining Risk Management Framework (RMF) compliance which includes ensuring applicable documentation such as the System Security Plan (SSP), Continuous Monitoring (ConMon) Plan, and applicable.
• Currently leading a cybersecurity effort to employ Zero-Trust Architecture within the cloud environment, which includes both securing and accrediting the system.

• Identify, quantify, and mitigate risks with networks and servers utilizing the NIST Risk Management Framework (RMF)
• Routinely, conduct and respond to regulatory audits such as Federal Information Security Modernization Act (FISMA) and Command Cyber Operational Readiness Inspections (CCORI)
• Routinely, conduct vulnerability scanning and analyze associated reports, then respond accordingly with the development or maintenance of Plan of Action and Milestones (PoA&M) which includes a mitigation strategy
• Security Lead and representative for the organization Configuration Control Board (CCB)
• Act as the primary contact between the Systems Engineering, Software Development, and Cyber Security Teams within an agile software development life-cycle

• Act as the primary contact between the Systems Engineering, Software Development, and Cyber Security Teams within an agile software development life-cycle
• Lead and participate in progress review meetings to discuss cost, schedule, and technical performance with respect to implementing cyber security controls, policy/procedure adjustments, patching cycles, and.
• Identify cyber security risk within the software engineering process and provide solutions to applicable leadership. This includes interacting with internal and external subcontractor technical staff and external.
• Responsible for maintaining Intelligence Community Directive (ICD) 503/Risk Management Framework (RMF) compliance which includes ensuring applicable documentation such as the System Security Plan (SSP), Continuous.
• Ensure that external representatives are supplied with applicable information to make executive-level decisions for granting approval to operate within a given environment.► Develop and disseminate Bodies of Evidence.
• Developed and implemented an easily-trackable and maintainable process to track cyber security findings within multiple secure enclaves, with cross-domain solutions (CDS) between each enclave, and totaling.

San Diego, CA, US

• One of two leads that developed and executed the Host-Based Security System (HBSS)/McAfee ePO effort within the U.S. Navy's (PWM-160) CANES program
• Provided installation, configuration, and policy development leadership for the ePolicy Orchestrator (ePO) server. This included support for all point products such as McAfee Agent, VirusScan Enterprise (VSE), Policy.

San Diego, CA, US

• Participated in the preparation of proposals, and the development of new business► Participated on most levels of the proposal process to include: blue, pink, red, green, and gold teams► Routinely provide support for.
• Provided interview and hiring support for new candidates and employees
• Participated with support staff, project and program managers, and executive management to develop and implement current, annual and long-term technical, schedule, quality, and business objectives for the organization

San Diego, CA, US

• Provided Assessment & Authorization (A&A) support to legacy DIACAP-accredited systems that connected to an Risk Management Framework (RMF)-accredited, Common Control Provider (CCP)
• Developed a methodology and framework to allow legacy DIACAP-accredited systems to inherit controls from an RMF CCP. This included updates to all applicable documentation such as the System Security Plan (SSP) and.

San Diego, CA, US

• One of two leads that created and executed the Host-Based Security System (HBSS)/McAfee ePO methodology within the U.S. Navy's (PWM-160) CANES program for all ships receiving HBSS.► Developed and executed initial.

San Diego, CA, US

• Provided Assessment and Authorization support to the Navy's PMW-160 Consolidated Afloat Network and Enterprise Services (CANES) program► As a Risk Management Framework (RMF) pilot program, CANES was required to be.

San Diego, CA, US

• Developed a business plan and model which allowed the organization to organically grow a commercial cyber security service to world-wide customers utilizing a "Managed Service" model► Included developing business.

Falls Church, VA, US

• Provided Program-level field test support to the U.S. government as a Subject Matter Expert (SME) in requirements validation, design validation, test observance and information assurance to theJoint Program Executive.

Falls Church, VA, US

• Routinely participated in the preparation of proposals, and the development of new business► Participated on most levels of the proposal process to include: blue, pink, red, green, and gold teams► Provided support for.

Falls Church, VA, US

• Provided initial acquisition support for PMW-160 on the Consolidated Afloat Network and Enterprise Services (CANES) Program► Provided project management support that included organizing, planning, scheduling, and.

Chantilly, US

• Utilized the Waterfall Software Development Lifecycle extensively to provide software engineering support for several Special Access Programs (SAP)► Utilizing Rational Requisite Pro to validate requirements.

Mclean, VA, US

• Utilized the Waterfall Software Development Lifecycle extensively to develop tactical software applications for the U.S. Navy within the UNIX and Windows 2000 environments.► System was one of the very first.

Washington, DC, US

• Provided system's engineering support to Space and Naval Warfare Center, Pacific (SSC-PAC)► Wrote several new requirements for software being developed► Tested and integrated tactical software for the U.S. Navy and.

Master Of Science - Ms, Cybersecurity & Information Assurance

Bachelor Of Science, Computer Science