Experience

Federal Government
• IT Services and IT Consulting
• 700 & Above Employee
• Security Specialist

  • Dec 2011 - Present


Nangwik Services LLC

• Program Manager

  • May 2011 - Dec 2011

  Program Manager for supporting the NOAA-NCSC effort. Program Manager for supporting the NOAA-NCSC effort.



DHA, Inc.

• Real Estate

• IT Security Specialist and Program Manager

  • Mar 2010 - May 2011

  Provide IT security support for all aspects of the Law Enforcement National Data Exchange (N-DEx) system. Review, draft and update security documents. Coordinate the development, update, and review of system security documents and accreditation plans, direct management reviews, make risk and vulnerability assessments, and provide security awareness training. Attend design reviews, assist in the development of test scenarios and procedures to evaluate information security requirements, track components and deliverables, compile and formulate technical documentation. Research, test, and implement Best Business Practices (BBPs) for secure operating systems, and assist with the configuration for both host and network based security architectures (routers, firewalls and intrusion detection systems (IDS)). Coordinate the implementation of Mitigation Plans for non-compliant systems. As Task Manager, oversee the day-to-day aspects of DHA support to the Law Enforcement National Data Exchange (N-DEx) program. Create and submit deliverables to include invoices, travel reports, status reports, staff accomplishment reports and other management documents as requested. Assist client with developing requirements and job descriptions for new positions. Foster client satisfaction to gain the highest ratings on quarterly satisfaction surveys for reporting periods as manager. Develop, test, and implement management tools. Maintain and update cost and budget data, travel expense reports, results of client meetings, and other management data. Monitor and approve time sheets and assess contract burn rates to ensure operation with established monetary limits. Analyze management success and communicate through a prepared business review presentation to corporate management. Assist corporate employees with human resource issues and personal and professional career development. Supervise and mentor 22 corporate and sub-contractor personnel assigned to task and report on all DHA employees. Show less



Electronic On-Ramp, Inc.

• United States
• 1 - 100 Employee

• Network Security Engineer

  • Sep 2008 - Jan 2010

  Coordinates the development, update, and review of system security and accreditation plans and tracking systems, directs management reviews, and make Risk and Vulnerability Assessments, along with providing Security Awareness and Training. Attends design reviews, assists in the development of test scenarios & procedures to evaluate Information System Security Engineering (ISSE) support requirements, track components, and deliverables; compile, and formulate technical documentation. Research, Test, and Implement Best Business Practices (BBP's) for secure operating systems, and assists with the configuration for both host & network based security architectures (routers, firewalls and intrusion detection systems (IDS)). Coordinate the implementation of Mitigation Plans for non-compliant systems. Perform on-site visits of U.S. Army posts in preparation for certification efforts to DIACAP standards, through accepted AR25-2 and DOD 8500.2 controls. Maintain certification and accreditation packages on multiple client systems. Perform system vulnerability assessment testing on several DoD and Commercial systems in accordance with DISA Security Technical Implementation Guides (STIGs) and through the use of eEye Retina. Maintains close liaison with supporting System Administrators (SA) to promote security at all levels of IT operations. Ensures systems are operated and maintained in accordance with security regulations. Report to the client’s senior IAM, or the IAM designated representative, any attempts to gain unauthorized access to information or any system failure of disclosure, loss of integrity, or unavailability of system information. Scan systems to validate threat assessment and Information Assurance Vulnerability Alert (IAVA) compliance. Show less



Evolvent

• United States
• IT Services and IT Consulting
• 1 - 100 Employee

• System Security Engineer

  • Apr 2008 - Sep 2008

  Prepare, distribute and maintain plans, instructions, guidance, and standard operation procedures (SOPs) concerning the security of system operations for Federal, DoD and commercial systems. Including Contingency Plans, Continuity of Operations, Information Assurance Security Policy, and FISMA related reports. Review threat and vulnerability assessments to enable client’s to properly analyze the risks to Information Technology (IT) systems and determine appropriate measures to effectively manage those skills. Review and evaluate the security impact of system changes, including interfacing with other IT systems. Participate as a member of the certification and accreditation team providing system security guidance. Prepare and oversee preparation of certification and documentation as required. Perform certification and testing. Maintain certification and accreditation packages on multiple client systems. Perform system vulnerability assessment testing on several DoD and Commercial systems in accordance with DISA Security Technical Implementation Guides (STIGs) and through the use of eEye Retina. Maintains close liaison with supporting System Administrators (SA) to promote security at all levels of IT operations. Ensures systems are operated and maintained in accordance with security regulations. Report to the client’s senior IAM, or the IAM designated representative, any attempts to gain unauthorized access to information or any system failure of disclosure, loss of integrity, or unavailability of system information. Scan systems to validate threat assessment and Information Assurance Vulnerability Alert (IAVA) compliance. Show less



Innove

• Italy
• IT Services and IT Consulting
• 1 - 100 Employee

• PCI Qualified Security Assessor

  • Jun 2007 - Mar 2008

  As a QSA and network administrator for small, fast growing information technology contracting firm performed Payment Card Industry (PCI) security assessment of network and information systems of large retail food chain. Assisted in drafting policies and procedures, evaluated network architecture and infrastructure, captured and analyzed network data traffic and verified wireless security configuration. As the technical lead on a network security assessment of mid-sized food manufacturing company, tested physical security procedures and performed social engineering within established guidelines. Performed vulnerability scanning of both internal and external Internet Protocol (IP) addresses. Captured and analyzed network data traffic. Provided in-house IT support for both voice and data networks. Configured Linksys routers and switches, Watchguard Firebox firewall appliance and Digium Asterisk PBX. Assisted users by providing first response service for workstation and software issues. Show less



Syracuse Research Corporation

• United States
• Veterinary Services
• 1 - 100 Employee

• Senior Data Analyst/Information Systems Security Manger

  • May 2006 - May 2007

  As a Senior Data Analyst, responsible for the analysis and assessment of data generated by the CREW/Duke system. Generated comprehensive reports based on the CREW/Duke data analysis. Drafted the data analyst handbook that is used within the company as the primary training tool for current and future Duke data analysts. As the Information Systems Security Manager (ISSM), maintained several security plans and ensured that the Information Systems (IS) are operated under the National Industrial Security Program Operating Manual (NISPOM) regulations. Served as the primary IS interface between the company and the local Defense Security Service Information Systems Security Representative and other security professionals. Show less

• System Engineering Manager

  • Oct 2005 - May 2006

  Software Configuration Manager (CM) for the San Antonio Operations office. Developed a comprehensive configuration management plan for all software in development and maintenance. Managed all aspects of large database application project including planning, evaluating, testing, and installation of software and hardware, security, and accreditation.

• Network Administrator

  • Oct 2001 - Sep 2005

  Managed user accounts and maintained web pages using Dreamweaver MX. Developed scripts to manipulate data and perform system administration functions. Maintained, troubleshot and repaired all hardware associated with the network environment. Maintained, troubleshot and modified Oracle forms for data entry and retrieval into databases. Used PL/SQL queries to modify and retrieve data from Oracle databases to comply with customer’s requirements. Analyzed customer requirements for hardware and software and solicited quotes from vendors. Brought extensive experience in computer hardware and software from both military and private sectors. Responsible for the daily administration of a UNIX-based network, maintained user accounts, and performed backups of critical data. Responsible for maintaining the facility’s Silicon Graphics and Digital Equipment Corporation computers. Maintained several forms that comprise portals to Oracle databases, and developed new forms that will enable customers to access their data more efficiently and reliably. Show less

• IT Services Manager/ISSM

  • Jul 1997 - Sep 2001

  As the Information Technology Services Manager, he was responsible for the overall operation, maintenance, and security of all information processing resources. Managed two distinct networks, one for classified research and analysis, and the other for Internet and corporate Intranet access. Duties included data routing and implementing network perimeter security. Installed, maintained, and expanded the scope of corporate network services. By performing research, planning, and evaluation of technologies, he was able to move, add, or change network operations that included local area network (LAN), wide area network (WAN), voice, and data services. Show less


City of Cibolo
• United States
• Government Administration
• 1 - 100 Employee
• Councilman

  • 1999 - 2003


Century Technologies, Inc.

• United States
• Information Technology & Services

• Network Administrator

  • Jan 1997 - Jul 1997

  System administrator for Windows based servers and workstations, and MS Exchange local area network. Supported over 1200 users including one-on-one training, install, configure, upgrade, and relocate workstations and servers to maintain network integrity and security. Troubleshot and resolved hardware and software problems, including network troubles. Developed automated database application for equipment accounting and trouble call tracking moving from paper documentation to electronic tracking increasing efficiency by more than 250% and adding the ability to measure and report statistical data. Show less



United States Air Force

• United States
• Defense and Space Manufacturing
• 700 & Above Employee

• Computer and Electronic Switching Systems Technician

  • Jul 1982 - Dec 1996

  Selected as Quality Control technician to plan, schedule, forecast, evaluate, and analyze all training for a 130-person maintenance division. Prepared reports, charts, and graphs to brief trends to the division head. Inspected and evaluated installation of computer and network hardware to ensure compliance with established communications electronics standards. Administered Windows NT 3.51 local area network workgroup. Directed the customer service office and provided equipment tracking and availability, resource scheduling, outage reporting, and briefings to division heads and command staff. Oversaw and directed the daily operation of a 20 technician maintenance section. Performed installation, configuration, and all phases of maintenance on a wide range of Sun, IBM, and SGI servers and workstations including local and wide area networks utilizing thicknet, thinnet, and fiber optic technology. Designed, planned, and implemented a fiber optic local area network spanning six buildings, 150 terminals, and 10,000 feet of cable. Compiled, analyzed, prepared, and maintained the unit’s status of resources and training systems database. Computed and assessed the combat readiness posture and briefed the command staff. Crafted training materials and instructed new managers. Provided accurate, comprehensive data on assigned personnel and equipment, allowing over 65 percent of assets to be deployed in support of operation “DESERT SHIELD.” Deployed, recovered, installed, configured, and maintained the Communications Nodal Control Element tactical technical control facility and the mobile telephone switch. Senior technician responsible for the Communications Nodal Control Element. Supervised three junior technicians. Kelly AFB, TX, Apr. 1992 - Nov. 1996 Rockville NYI, Iceland, Mar. 1991 - Mar. 1992 Tinker AFB, OK, Feb. 1986 - Nov. 1990 Luke AFB, AZ, Jun. 1983 - Feb. 1986 Show less