Supports IMCOM as a Jr. ISSM developing Risk Management Framework packages using eMASS. Works as part of a team to ensure RMF packages are developed, as required by DoD 8500.01, using NIST 800-53r4. Develops documentation, TTP’s, RMF artifacts and manages POA&M’s using eMASS.

Developed policies and procedures using NIST 800-53r4, JSIG and sub guidance for an air gaped network.Knowledge of several computer environments: Configuration, evaluation, and guidance on security control implementation on multiple environments including but not limited to Windows Server, Windows 10, and Red Hat 8.Continuously monitored event logs with the use of Security Onion, EPO/ESS, Linux Var Logs, and Windows Event Viewer. Secured Windows and Linux servers and workstations utilizing DISA STIG Viewer and SCAP Compliance Checker.Utilizing Nessus/ACAS to run scans and administer patches throughout the network to keep it up to date and secure.

Conduct secure equipment (e.g., secure telephone and encryption devices) and classified keying material inventories, inspections and other COMSEC related support and oversight functions.Administer a Top Secret inventory and document control program to account for COMSEC equipment and materials.Conduct inventories per agency policy and reports any discrepancy to government customer.Courier classified information and author receipts for classified materialsEnsure Automated Information Systems Security requirements, related to COMSEC duties, are complied.Ensure proper physical security accreditation has been issued by designated Program Security Officers for supported facilitiesTrain personnel in COMSEC procedures and the use of related equipment.

Monitored events from Endpoint Security Solutions (ESS) to facilitate data loss prevention (DLP) exemptions to optimize mission readiness throughout the command.Provided security and compliance throughout the network with the use of ACAS to scan for vulnerabilities and advise on patch management.

Provide technical Cryptographic Modernization, Key Management Infrastructure (KMI), Common Access Card (CAC), and Public Key Infrastructure (PKI) support in the implementation of PKI daily operations in support of Classified (SIPRNet) and Unclassified (NIPRNet) Networks assigned to USSOCOM. Perform identity verification and human and component applicants, and the authorized issuance of certificates to human applicants. Detail-oriented and have in-depth PKI knowledge to provide Local Registration Authority (LRA) services. Provide technical support for Cryptographic Modernization, Key Management Infrastructure (KMI), Common Access Cards (CACs), and PKI in the execution of daily operations.