Area of focus - Insider Threat

Performs duties as Network Security Product Management team with responsibility for products and services within Boundary Security (DMZ, TPNC, DC Edge) Intrusion Management, Secure Browsing as well as Data and Network Security product areas (Intrusion Management, Firewalls, Web Proxy, Network Security, Data Security).Responsibilities include the definition of the firm’s global network security direction, assisting to develop and communicate security roadmaps, product artifacts and marketing materials.Responsible for audit and compliance areas such as oversight and delivery of internal and/ or external audit actions ensuring timely and high quality delivery as well as resolution of audit and compliance actions/issues.Focus includes on providing technical product expertise for products/services from portfolio; identify and develop new requirements and services to ensure ever increasing value from product and services portfolio.Delivered successes starting by initiating proposals for new products/platforms in alignment with business.Provides and ensure a sustainable and professional stakeholder management on all seniority levels on IT- and business-side.Manage products/platforms life-cycle and maintain specific roadmaps while ensuring conformity to regulatory environment.Develops, negotiates and monitor Operational Level Agreement (OLA), coordinating with Service Management and act as single point of contact for system integrators needing specific details along with associated financial management.Excelling at working in an international and highly complex environment with a high level of cultural awareness.

This role consisted of designing, developing, implementing and integrating C2ISR weapon systems’ IA architecture, systems and system components for use within computer, network, and enclave environments.Worked an IT modernization project to transition enterprise systems from one-off hardware focused legacy system to a virtualized environment with applications with increased functionality, flexibility, and reduced cost of ownership.Worked with OEM vendors to achieve DISA compliance for Linux, Windows, and VMWare, and private cloud systems with Tenable’s ACAS solution and configuration management. Responsibilities include preparing systems for risk assessment, data protection, accreditation, and adherence to Privileged User Management Access (PUMA) policies, validation of technology requirements, usage of SDLC and Agile methodologies.Worked with OEM Developers and Software Engineers to ensure successful end-to-end Software Security and Quality Assurance across multiple clients and testing disciplines (SIT, regression, UAT, automation).Acted as technology SME which provided support to the ISO, ISSO, DCGS Program Management Office (PMO), and System Owner in the area of information assurance management and engineering.

Assisted client in developing organizational structure, defining tool set, and talent recruitment for their Security Operations Center (SOC). Delivered a Computer Emergency Response Team (CERT) whose mission is to monitor, detect, analyze, and respond to unauthorized activity across the enterprise systems while protecting and mitigating any risk to the confidentiality, integrity and availability of IT resources. Also, established and implemented effective, predictable and measurable procedures/processes for the client’s Security Risk Review audit program.Created customized incident workflow and response plan along with developing risk and compliance reporting. Completed the engagement by working with the client’s external vendors to level set expectations and performance measurement criteria via SLAs/OLAs and other agreements.

Filled various leadership roles which responsibilities include developing and coaching team responsible for monitoring the security of websites, applications, computers, databases. Also, delivered Network and Telecommunications services associated with: VoIP PBX, Edge Firewalls, switching and routing, load balancers, cellular, and Wi-Fi.Key results:• Redeployed SEIM, IPS, and WAF based on GAP analysis to bolster our security posture.• Strong understanding of security frameworks including: NIST, ISO, COBIT, and SANS.• Experienced in preparing for security audits such as: ISO, SSAE, and/or SOC-1.• Solid understanding of regulatory requirements including HIPPA, SOX, and PCI.• Working and/or hands-on knowledge of cloud computing platforms (PaaS, IaaS, SaaS).• Developed holistic understanding of attack vectors, current threats, and mitigation and remediation strategies with a firm grasp of the capabilities and limitations of information security technologies.• Solid understanding of network routing protocols (OSPF, EIGRP, BGP) and security protocols (SSL, TLS, IPSEC, PKI, Kerberos, PGP)• Rescued and recovered a failing $1.8M Wi-Fi, mobile device and wireless security project.• Delivered telecommunications road map for advanced mobile unified communications.• Conducted feasibility study, wrote RFP, and delivered in-building campus wide cellular service at no-cost to the university.• Achieved 20% cost saving for Voice over IP hardware and licensing by restructuring deal with incumbent vendor.

Managed various teams of up to 90 Network Engineers, System Technicians, and Cellular Network Analysts who maintained MPLS networks for State and Local Government customers, Roaming for Domestic and International customers, and ISP duties as a DSL service provider. Key results:• Successfully restructured Network Operations Center that acted as a managed service provider responsible for State and Local government MPLS services for the southeast region.• Achieved 90% efficiency and productivity through training, automation, and process improvement.• Met all Service Level Agreements (SLAs) in managing customer’s on-site hardware.• Received Presidential Accommodation for assisting George W. Bush’s entourage while in Latvia.• Designed and implemented an organizational restructure to support TDMA, GSM, UTMS and 4G-LTE.• Hands-on technical mentor of team members with SS7, HLR, VLR, STP, SCP, SSP, and IP nodes.• Working knowledge of LAN, WAN, Ethernet, TCP/IP, T1, Metro Ethernet, MPLS, VPN, VoIP.• Delivered first contact resolution rate of 88% troubleshooting: DSLAMs, routers, ATM, and MPLS.

Gathered, sorted, and scanned intercepted messages to isolate valid message traffic. Performed initial analysis to establish target identification and communications patterns. Maintained analytical working aids to support target collection, identification, and location. Operated communications equipment for Signal Intelligence (SIGINT) collection, processing and reporting.