Professional Service Consultant

• Jan 2022 - Present

Professional Services Consultant

• Nov 2018 - Jan 2022

Lead HBSS Engineer

• Oct 2013 - Jan 2022

Responsible for the design, engineering and operation of the Navy Host Based Security System for IT21, ONENET and the Fleet. Responsible for the design, engineering and operation of the Navy Host Based Security System for IT21, ONENET and the Fleet.

Senior Capabilities Manager

• Jul 2010 - Oct 2013

•Design, develop and maintain the Navy tier 2 Host Based Security System (HBSS) event and asset rollup solution. •Determine current capability improvement and the evaluation of overall HBSS capabilities for efficiencies and deficiencies and forward through proposals through chain of command to Fleet Cyber Command (FCC). •Collaborate with Navy Cyber Defense Operations Command (NCDOC) Enterprise Architects and/or Capability Integrators to determine feasibility of internal/external HBSS requirements. •Assist Navy enterprise networks (NMCI, ONE-NET and Excepted) with HBSS configuration and implementation solutions. •Navy NCDOC POC for various HBSS conferences and meetings. •Coordinate with outside agencies on standardizing HBSS policy configuration and reporting methods. •Evaluate and present feedback to USCYBERCOM on HBSS policy guidance. •Provide in-detailed reviews and reports to vendor on future HBSS capabilities/patches/functionality •Conduct assessments with Naval Research Laboratories on future functionality of the Sentinel event collector agent. •Create, research and review HBSS related rollup and functionality documentation. •Act as HBSS Subject Matter Expert (SME) for FCC in all HBSS related matters. •Maintain liaison with national, military, scientific, technical, and academic organizations and agencies as necessary to perform the aforementioned duties and to ensure required professional knowledge and expertise are maintained current, effective, and in parallel to similar professionals in government and industry. •Participate in networking, systems design and installation to ensure implementation of appropriate systems security policies. •As a team member, assist in the design, build and dissemination of core HBSS reporting widgets, identifying vulnerabilities within the Navy. •Provide purpose, direction and motivation to all junior capability managers and contractors working the NCDOC HBSS mission.

Network Security Engineer

• Jan 2009 - Jul 2010

•Responsible for the deployment of Host Based Security System (HBSS) to Legacy and Excepted Naval Networks throughout the U.S. •Validated and assisted in the configuration of HBSS in accordance with Defense Information Systems Agency (DISA) Security Technical Implementation Guidelines (STIG). •Assisted in troubleshooting Sidewinder firewalls, Intrushield IDPS and Netscreen VPNs in the IA/CND suites. •Worked independently at predetermined Navy sites, and communicated with Network Operation Center (NOC) Engineers to ensure end-to-end connectivity, clear path, to the client systems from the HBSS ePolicy Orchestrator (ePO) server. •Ensured the successful installation of HBSS to all supported Microsoft operating systems. •Worked with site IT staff to deploy HBSS through Active Directory as well as other approved methods. •Investigate problems associated with deployment of HBSS software to client systems to ensuring successful delivery. •Assisted the NOC Engineer (ePO Engineer) in resolving issues and establishing clear data path to the client systems. Clear path includes ensuring proper ports and protocols are open on NOC, site firewalls, and router access lists. •Provided HBSS technical assistance to various commands system engineers. •Insured IA/CND suites meet data rollup requirements for NCDOC, in accordance with Navy Directives. •Insured HBSS was compliant with FRAGO13 and all CTOs.

System Engineer

• May 2007 - Dec 2008

•Assisted the design and implementation of the network and security infrastructure for the Navy asset reduction tool achieving an IATO. •Physical installation and configuration of Juniper SA series device to use as a secure gateway into a DoD trusted network, using PKI/CAC authentication. •Installed and Administered a VM environment using ESX server, Virtual Infrastructure Client and EMC SAN software, hosting an environment for Enterprise use (Trusted and DMZ). •Reviewed and modified key documentation pertaining to the Navy asset reduction tool, including but not limited to, SSAA, Standard Operating Procedures, and network diagrams. •Implemented, managed and monitored an enterprise Windows 2003 Operating System infrastructure. •Monitored, analyzed and tuned Windows application, files, and web servers to ensuring efficient operation and maximize performance. •Received, applied and tested new software releases, software maintenance, software patches, security vulnerability patches, hot fixes and firmware updates while scanning for network vulnerabilities with DISA Gold disk and EYE Software, Retina. •Supported the integration of new application and tools into the server and network environment. •Experienced with Virtual Machine, ESX Server, VMware infrastructure, Windows Server 2003, Juniper Secure Access Device, Cisco, EMC/SAN, and Raritan KVM switches. •Prepared technical drawings for installation planning purposes. Provided oversight for network cabling and server installations. Developed space layouts for equipment arrangement and elevation drawings. Installed network cabling, switches, and routers. •Managed network anti-virus and anti-spamming solutions including, Symantec Antivirus for email gateways, server-managed McAfee Antivirus, and Send mail Anti-Spam controls.

Information Security Analyst

• Jul 2005 - May 2007

•Maintained network security infrastructure and network based services. •Worked with the Technical Services Manager to plan, coordinate, and administer technology security solutions. •Enhanced network reliability; ensured availability and integrity of the network. •Maintained Intrusion Detection Systems and monitored the network for malicious/unusual traffic. •Evaluated type and severity of incoming events and take the appropriate corrective action or escalation procedure. •Detected suspicious or anomalous network activity. •Compiled supporting information and reports, necessary for incident response. •Assisted with system configurations and installation of network security tools. •Administered network security solutions across the world’s largest network. •Supervised team of 12 Members. •Assessed quality and timeliness of the contract. •Generated and Analyzed reports for the improvement of project goal. •Prepared and executed training plan for the team members. •Acted as 2nd level escalation point of contact for any aspect of the customer landscape. •Maintained SLA for the assigned landscape through gathered data. •Provided knowledge, guidance and support to team members on all aspects of customer landscape. •Managed and resolved issues in Active Directory, PKI environments and backup related errors. •Generated reports to identify improvement in the project.