Todd Epps Email & Phone Number

Washington, DC, US

Virginia, United States

As the Team Lead for DISA Connection Approval Process (CAP) Authority to Connect (ATC) Team, manage CAP Team members that are Security Control Assessor Representative (SCA-R), whom performs assessments for new and existing DoD owned or controlled Information Systems (ISs), connecting to DISA Common Information Technology (CIT) managed unclassified and.

United States

As a Luitenent of the PSO force, Enforce GSA, FPS & DHLS policies and procedures. Reporting directly to FPS concerning real time threats as needed. A team member in charge of all security related access & response, securing facility renovations projects, general ingress and egress, identification of personnel via VAR’s. Supervise daily operation of.

United States

United States

Create, manage, and execute the security assessment schedules for client information systems. Analyze vulnerability data from multiple sources including the Assured Compliance Assessment Solution (ACAS), DISA Security Technical Implementation Guides, and Security Content Automation Protocol (SCAP). Provide input to the program Planned of Action and.

Fairfax, VA

Provide in-depth technical expertise in support of DOD scaled enterprise architecture that incorporates application/database environments. Provide cybersecurity/information assurance vulnerability assessment, STIG, IAVA/IAVM compliance, vulnerability patching, mitigation and remediation. Assist/contribute to the development accreditation and compliance.

Patuxent River Naval Base

• Cybersecurity analysis of Naval Aviation systems.
• Analysis of associated networks/systems and developing requirements for integration, testing, and maintenance of the networks/systems.
• Assist in the development of system IA documentation to support certification of compliance to applicable Cybersecurity standards including the DoD 8500 series regulations, RMF 800-53, CNSSI 1253 Risk Management.
• Information Security policies and procedures to process and protect DoD information.
• Apply knowledge of policies, regulations, and Executive Orders in the marking, handling, and dissemination of material and information and creation and use of Security Guides.
• Participate in, and/or provide Cybersecurity training and awareness.

Sterling, VA

As a PSO, enforce DEA, US Customs, FPS & GSA policies and procedures. Carry out Common Wealth Public Title 9.1, while adhering to DHLS rules and regulations and reporting directly to FPS concerning real time threats as needed. A team member in charge of all security related access & response, securing facility renovations projects, general ingress and.

Pentagon

• Performed vulnerability assessments using Retina, STIG Checklist, 8500.2 controls, and VMS on computers, servers and routers.
• Performed risk assessments on information assurance (IA) tools, applications and software to be included in the Certification and Accreditation package.
• Team Lead for the Telecommunications Monitoring and Assessment Program, which included proper labeling, usage, maintenance and retirement of all telecommunication equipment.
• As the Lead for the Information Assurance Assistance Program (IAAP) lead team of four to develop, implement, inspect, train and support organizations IA Programs. These programs identified IA requirements, regarding.
• Tracked to mitigation all (IA) vulnerabilities and incidents that affected the Pentagon and Air Force National Capitol Region (AFNCR) Backbone (POA&M’s).
• Provided briefing of Time Compliant Network Orders (IAVM) status to Base Commanders at weekly Standup.

• Performed reviews of CAP packages. These packages either requested new or continued connectivity to the Pentagon Classified and Unclassified backbones. Packages included Request for ATC or IATC, ATO or IATO, Consent to.
• Provided recommendations to the Certifying Authority (CA) and Designated Approving Authority (DAA) based on analysis of CAP package.
• Tracked and assisted customers to the resolution and mitigation of findings to maintain connection approval status or achieve connection approval worthiness (POA&M’s).

• Performed Application Security Test and Evaluations for Certification & Accreditation (C&A) efforts on applications prior to and after platform migration (STIG Checklist & 8500.2) to ensure the inclusion of these.
• Maintained and edited C&A documentation; such as IT Registry, Pre-cert checklist, action items, SSAA, and Classification Guide for DISA GIG-BE.
• Created and implemented information filing and acceptance systems and procedures for Unclassified, Confidential, and Secret materials for DISA GIG-BE.
• Performed security evaluations regarding C&A and ST&E, executing Retina, Gold Discs, ISS/SSR scripts, and manual checklist to ensure SIPRNet-CV compliance. This was performed on DISA facilities (OCUNUS/CONUS) to.
• Performed scans utilizing ANTLERS for the Department of Education Office’s.
• As part of the TWM infrastructure team, worked as system administrator to create user account within corporation for network access and VOIP accounts.

Master Of Science, Information Technology, 3.90

Bachelor Of Science, Information Systems, 3.24

Bachelor Of Science, Electronics Engineering Technology, 3.3

Activities and Societies: Digital Electronics Tutor, Presidents Club