Information System Security Engineer

• May 2022 - Present

Cyber Analyst

• Oct 2017 - May 2022

Provide cybersecurity risk analysis and assessments to ensure the security of client networks, using output from security analysis, FISMA reports, and internal assessment reports to make certain compliance of IT security mandates and standards were satisfactory. Generate written reports and briefings regarding information security risks associated with the organization's information systems and applications. Ultimately recommending immediate measures to respond to identified high security risks. Provide consulting efforts toward the development and implementation of information risk strategies to ensure the protection of confidentiality, integrity, and availability in alignment with the organization and IT initiatives. This was achieved by collaborating with different organizational business units to develop a tailored risk analysis tool. This effort also resulted in the development of a process for a manual method of registering and monitoring risk. Other activities performed include triaging of security vulnerabilities to assist organization's leadership with prioritization of remediation activities. Security assessment report findings were categorized into High, Medium, and Low exposure/vulnerability related issues built upon the SANS 20 and NIST 800-53 Show less

Information Assurance Engineer

• Oct 2015 - Oct 2017

Focuses on the development, operation, management, and enforcement of IA for systems and networks. Achieved by: Facilitating the development, risk analysis, and vulnerability remediation to help programs maintain an acceptable security posture. Collaborate closely with data owners, information system owners, and users to ensure secure use and operation of information systems and networks. Ensure application of IA policies, principles, and practices in the delivery of organization information technology services. Assess and help direct the implementation of identified system patches and fixes associated with technical vulnerabilities. Identifying and applying the appropriate level of recommended remediation to system weaknesses or vulnerabilities. Performs risk identification, assessment, response, coordination and monitoring of risks to support risk management activities at all phases of the SDLC. Conducts mission-oriented risk assessments and delivers risk-based recommendations to the CIO and supporting staff that account for mission, and IA considerations. Provides analysis support throughout the RMF and documents risk based recommendations, and coordinate all reviews with appropriate stakeholders in support of CIO responsibilities. Supports the maintenance of enterprise IA requirements; working with the appropriate groups within the organization. Achieved by: Recommending and participating in activities that pursue the prevention of repeated vulnerability assessment findings. Reviewing baseline changes and new requirements to determine IA implications and affect solutions to mitigate resulting risks. Assists in managing the coordination, prioritization, tracking, mitigation and remediation of vulnerabilities that may impact the organization for all audits, assessments and inspections Provides support to define, implement, and execute a system of measures and metrics to monitor, track, and report organization IA compliance to align with Continuous Monitoring Show less

Network Engineer

• Oct 2013 - Oct 2015

- Tasked to support system integrations and upgrades of the enterprise telemetry network and subsystem. Activities included determining requirements, providing site specific installation plans, updating system diagrams, as well as configuration and installation of Cisco 2960 switches and Cisco 2901 ISR routers running STP,EIGRP and using PPP and Frame relay, Dell R330 servers and Dell 3020 workstations running Red Hat Linux. - Developed training materials for site personnel and standard operating procedures for telemetry network users to support continuous operations - Provided standardized router and switch configurations to meet DISA’s Security Technical Implementation Guides using Cisco best practices for security, STP and QOS. - Responsible for troubleshooting connectivity issues and performance monitoring on the WAN and LAN. - Responsible for “Move, Add, and Changes” for users in Cisco 2960 switched environments. - Responsible for adding and/or disabling accounts on local area workstations for users of the telemetry system via Active Directory - Reconfigured the WAN to incorporate GRE tunnels, as well as configuration and testing of TACLANE network encryptors in an effort to provide additional network security. - Assisted with the re-design, implementation and sustainment for a mobile secure voices and data travel kit. Activities consisted of implementing firewalls and routers to create a L2L IPSec transport for HAIPE encryption between devices, testing and coordination to setup network infrastructure. Show less

Network Engineer

• Aug 2012 - Oct 2013

- Worked on the Defense Information Systems Network, Network Management Support Services-Global /Network Engineer Program, specifically for Defense Unified Capabilities VOIP Network Management efforts. Provided and assisted in solutions to team and other colleagues via architectural design and research that aligned with the Unified Capabilities Operational Framework and Service Oriented Architecture based Operational Support System. - Assisted with the design and implementation of Real Time Services Element Management System and supporting WAN Network Management infrastructure for the Unified Capabilities VOIP Multifunction and WAN soft switches. Activities included network and computer systems engineering, planning, design, surveys, hardware integration and installation. - Standardized network diagrams to be followed by field representatives to eliminate inconsistencies within the network. - Installations included racking and cabling of network equipment, and verifying connectivity of equipment to headquarters. Network equipment consisted of Cisco Routers (2811)/Switches (2960), Lantronix Ethernet Terminal Server, and McAfee 510F Firewall Appliance. - Identified LACP solution to mitigate loops and faults after broadcast storms became apparent in the network between a cisco device and avaya device. - Responsible for securing existing and newly deployed switches by use of Cisco best practices, also responsible for keeping network equipment in compliance with DISA’s Security Technical Implementation Guides. Show less

QA Analyst

• Mar 2013 - Jul 2013

- Conducted quality assurance testing of configuration management system that supports configuration and network management, and provisioning of key DOD services. Activities included acceptance, functional, and regression testing by way of a detail-oriented, methodical, and thorough approach. - Responsible for documenting and reporting bugs, errors etc. to development team in timely manner. - Conducted quality assurance testing of configuration management system that supports configuration and network management, and provisioning of key DOD services. Activities included acceptance, functional, and regression testing by way of a detail-oriented, methodical, and thorough approach. - Responsible for documenting and reporting bugs, errors etc. to development team in timely manner.

Jr. Network Technician

• May 2012 - Aug 2012

- Responsible for managing and installing upgrades for customers. Activities included installing network devices and cabling of network devices. - Responsible for keeping equipment records and data center layout up-to-date. - Responsible for coordination of system outages for upgrades, testing of fire suppression, electrical outages, backup power and HVAC system. - Responsible for managing and installing upgrades for customers. Activities included installing network devices and cabling of network devices. - Responsible for keeping equipment records and data center layout up-to-date. - Responsible for coordination of system outages for upgrades, testing of fire suppression, electrical outages, backup power and HVAC system.

Network Analyst (Student)

• May 2011 - Dec 2011

- Responsible for troubleshooting any connectivity or network issues of campus WAN of residence hall or academic building LAN. Systems include Enterasys Network Devices, Windows XP and 7 computers, Avaya VOIP phones, and Aruba wireless network devices. - Responsible for monitoring network infrastructure for entire campus with LAN/WAN; achieved by Enterasys Console desktop application, Arbua desktop application and University Trouble ticket system. - Configured and installed network switches and peripherals - Maintained and composed network documents containing network topologies of the campus buildings and layouts of WI-FI devices in each building Show less