Founder

• Nov 2009 - Present

Launched an innovative startup to provide federal contractor IT service support for worldwide implementation and sustainment of mission systems within Department of Defense, Federal and Civil agencies as well as enable growth within private sector and philanthropic institutions to empower decision-makers manage risk, compliance and IT security initiatives limiting impact to business and IT operations. ASSURSEC is a SBA HUBZone certified firm. Vision: {engage | innovate | secure | assure | manage} ASSURSEC provides a full range of innovative information technology and engineering services from planning, development and design to test, staging, independent verification and validation through secure operations and reliable maintenance in areas: * Information Technology & Cyber Security * Strategy and Management Consulting * Scientific and Engineering Support Specialists in: - Government & Commercial Cyber Security Consulting - Certification & Accreditation, DIACAP, FISMA & NIST 800 series, PCI Compliance - Network and System Vulnerability Audits, Assessments, Analysis & Remediation - Risk Management, GAP Analysis, Business Project & Process Management and Proposal Support - Enterprise Architecture (Design & Implement) - Infrastructure Services, COOP/DR, Storage & Virtualization, Mobile Media, Licensing Strategy & Secure SDLC - Incident Response, PenTest & Computer Forensic Analysis - C-level Executive Leadership Briefings & Reporting At ASSURSEC, we aspire to engage our clients, help innovate new solutions to secure infrastructures, applications and systems and assure their regulatory compliance to support enterprise risk management. This is our mission. Show less

Sr. Network and Security Architect (SME)

• Oct 2016 - Sep 2019

Sr. Systems Security Engineer - SME

• Jan 2014 - Sep 2016

Sr. Systems Security Engineer

• Nov 2013 - Dec 2013

Serve as an Information Systems Security Engineer (ISSE) in support of a Federal client's centrally managed systems including Clinical, Resources, Logistics, and Executive Information and Decision Support systems. The specific responsibilities include working as part of an integrated team of systems and operations engineers and Information Assurance (IA) analysts in support of multiple major systems. The specific duties included:- Interaction with software development and sustainment vendors to ensure they applications and software operate securely; to test, identify and detect software vulnerabilities using established software scanning tools- Develop technical risk assessments, mitigations, and security controls for any findings; to usean established security vulnerability checklist to guide security and penetration testing; work with the Tier III development contractor to identify and mitigate known vulnerabilities- Develop Plans of Action and Milestones (POA&Ms) to resolve any security vulnerabilitiesand findings, including timelines- Provide Security engineering oversight consulting throughout the product lifecycle as a member of the engineering support team- Assist where needed in the development of system and security designs- Provide oversight of software design and development activities with an emphasis on application and system security applying analytical and computational techniques and methodology- Develop and recommend technical solutions to support client requirements in solving moderate to highly complex network, platform, and system security problems based on federal and industry INFOSEC policies, doctrine, and regulations- Conduct secure system engineering and development, including system/security requirements analysis and secure system definition and specification development of INFOSEC policies and procedures utilizing technical and analytical skills. Show less

Security Analyst/Content Development

• Nov 2012 - Feb 2013

Support worldwide implementation of Verizon Risk Compliance Management Web Portal within Security Solutions Group at Terremark/CyberTrust (a Verizon Business division). Develop IT security and compliance related content for various IT Security, Compliance and Cloud related applications. Interface with product managers, analysts, operational and development teams to develop content for multiple product offerings. Utilize written, analytical, organizational, interpersonal, detailed-oriented and customer-service focus skills with strong grasp of IT Security concerns, relevant laws and standards. Show less

Sr. Systems Engineer / Lead

• Jan 2012 - Aug 2012

** Recipient of 2011 Acentia Chairman's Award for individual and team contributions ** Acentia (formerly ITSolutions LLC) Falls Church Virginia Support worldwide implementation of mission critical medical infrastructure to the Federal client. Provides life-cycle support for Enterprise Architecture customer initiatives, leading to the execution of tasks related to the implementation of systems, developing applicable deliverables within assigned timeframes and pilot new mobile platform technologies. Support Program Manager with the execution of the task. Direct hiring efforts and supervise employee career development. Show less

Sr. Systems Engineer (Enterprise Solutions - Strategy | Design | Innovate)

• Jan 2011 - Jan 2012

** Recipient of 2011 Acentia Chairman's Award for individual and team contributions ** DoD Medical, Acentia (formerly ITSolutions LLC) Falls Church Virginia Support worldwide implementation of mission critical medical infrastructure to the Department of Defense (DoD) Military Health Systems (MHS) Cyber-infrastructure Services (MCiS). Provides life-cycle support for Enterprise Architecture customer initiatives, leading to the execution of tasks related to the implementation of systems, developing applicable deliverables within assigned timeframes and pilot new mobile platform technologies. Support Program Manager with the execution of the task. Direct hiring efforts and supervise employee career development. Show less

Sr. Security Analyst (Information Assurance Officer)

• 2010 - 2011

Provide federal contract support to the Federal client program. Provide Information and Computer Security Full Life Cycle support, including but not limited to, Network Enclave and Application Certification & Accreditation (DIACAP), Vulnerability Management through VMS, Threat Assessment and Mitigations following security scans, Incident Response and Risk Assessment Process Development, Security Architecture Development. Provide support to Network Operations and Software Development teams to meet Theater and Garrison Warfighter missions (Classified). Earned reputation of “Ambassador”. Show less

Sr. Security Analyst - Risk, Security & Information Assurance (IAM)

• Nov 2008 - Mar 2010

Develop an Information Assurance and Security program for the Federal client program office reporting directly to the Govt. SCS client to support applications provide global services to the warfighter and their families. Enjoy laying the foundation of secure systems architecture, Access Management and Risk Assessment procedures, and helped support network operations center and application development to meet agency goals. Interact with global data center vendors to determine production and alternate computing facilities supporting disaster recovery/COOP solution. Institute regular IV&V scans, risk assessments, reviewed System Security Plan (SSP) and Disaster Recovery/Contingency Plan (DRP), and delivered regular briefings and updates to the Designated Approving Authority (DAA) with recommendations for process and solution delivery improvements. Show less

Information Security & Assurance Engineer

• Aug 2007 - Oct 2008

Provide federal contract support to the Federal client program. Provide Information & Network Security Full Life Cycle services, including but not limited to, Certification & Accreditation (DIACAP), Vulnerability Management, Threat Assessment and Mitigations, IV&V, Incident Response Process Development, Forensic Analysis and Reporting, Software Risk Assessments and Security Architecture Development. Provide support to Network Operations and help management strategize to develop Security Operations division. Show less

Business Development Consultant

• Feb 2006 - Dec 2006

Business Intelligence Implementation Consultant

• Jul 2003 - Feb 2004

President & Cofounder

• 2000 - 2004

Sales - Financial Services & Banking Consultant

• Mar 2002 - Jul 2003

Business Intelligence Consultant & Technical Support Engineer

• Feb 1999 - Apr 2001