Experience

CENTERPOINT Inc.
• Book and Periodical Publishing
• 1 - 100 Employee
• Cyber Security Analyst/Data Analyst

  • Aug 2021 - Present


Advance IT Concepts (AITC)

• PKI Registration Authority

  • Jul 2020 - Present

  • Provide support services for the management of the 24/7 PKI (Public Key Infrastructure) daily operations for Headquarters, Department of the Army (HQDA) Chief information office/G6 (CIO/G6) Cyber Security Directorate CAC/PKI Division. • Work with Local Registration Authority (LRA), Enhanced Trusted Agent (ETA), and Trusted Agent (TA) to process PKI requests. • Perform CAC/PKI and RA/LRA functions related to the creation, revocation, suspension and issuance of NIPRNET Alternate smart card logon (ASCL), SIPRNET and Deployed Forces (DF) network tokens associated PKI credentialing for all daily operations. • Created role-based PKI certificates and NPE (Non-person entity) certificates for all military, civilian, and contractor personnel. • Configured personnel certificates using CA (Certificate Authority) sites to upload user credentials for NIPR and TMS (Token Management System) to upload credentials for SIPR tokens and GO tokens. • Maintain RA (Registration Authority) spreadsheets for compliance of user’s password and assisted with password resets and recovery of old PKI certificates. • Issues tokens in one of two ways either shipping them to ETA’s/TA’s or having personnel come in-person to sign DD 2842. Show less



IPKeys Technologies LLC

• Functional Cybersecurity Analyst

  • Mar 2020 - Jul 2020

  03/2020-07/2020 • Assessment & Authorization (A&A) and Risk Management Framework (RMF) compliance analyst at Defense Information Systems Agency (DISA) under the Connection Approval Branch. • Performed analysis to validate established security requirements and to recommend additional security requirements/safeguards based on NIST controls 800-37 Risk Management Framework, 800-53 Security and Privacy controls, and 800-60 Security Category Mapping. • Validated supporting system Authorization Decision Document (ADD), Authorization to Operate (ATO) memos, and POAMs for accuracy to access DISA circuits. • Processes packages for NIPR, VPN, and SNAP user accounts. Generates security documentation, including security assessment reports, system security plans, contingency plans, and disaster recovery plans. • Analyzed documentation using IA Controls (IACs) under DoD 8510.01 RMF. • Resolved customer issues, workflow quality assurance, and cybersecurity analysis efforts; and to resolve production-related problems as it relates to Connection Approval Process (CAP) processing and applicable SOP updates, not to exceed five documents monthly. • Reviewed and analyzed DoD System Authorization Access Request (SAAR) DD 2875. • Manages the support process with regard to analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections, and periodic audits. • Reviewed and assessed mission partner component systems, network connection packages, and security features/mechanisms, connectivity drawings/topologies, RMF Security Authorization Packages, and other security documents for compliance with DoD, Joint Staff (JS), and DISA IA requirements in the NCR (National Capitol Region). Show less



IBA (Irving Burton Associates)

• United States
• IT Services and IT Consulting
• 1 - 100 Employee

• Systems Access Analyst (Team Lead)

  • Dec 2013 - Mar 2020

  • Assisted in the implementation of the required government policy, made recommendations on process tailoring, participate in and document process activities. • Review and analyze forms used within DoD to grant access to UNIX/WINDOWS systems, such as the DoD System Authorization Access Request (SAAR) DD 2875 as well as the Account Authorization Request Form (AARF). • Ensured IP Addresses, User IDs, and password information is sent to the correct individual requesting Access. • Determined GFE laptop configuration, such as administrative rights and installation of appropriate VPN for Windows or UNIX server access. • Reviewed and ensured compliance of forms used to create EPAUS accounts to enable PKI use for two-factor authentication such as (ALT Tokens) using form DD 2842. Additionally, supporting the move of users over to Virtual Desktop Infrastructures (VDI). • Reviewed computer system capabilities, workflow, and scheduling limitations to determine if requested program or program change is possible within the existing system. • Monitored and analyzed user activity for all SDD products, providing direction for future marketing strategy and product development. • Promoted to Team Lead after 10 Months; Accomplished and exceeded all goals. Displayed exceptional leadership skills. Show less



Interactive Process Technology Associates

• Administrative Specialist

  • Mar 2013 - Dec 2013

  2013 • Applied analytical and evaluative methods and techniques; knowledge of program goals and objectives, work processes, and administrative operations of an organization; experience performing complex and provided advice to management in formulating and implementing short-term/long-term program plans. • Developed Crediting Plans for Management: Determined knowledge, skills, abilities, and other characteristics necessary for the recruitment and placement of well-qualified candidates in competitive staffing actions. • Presented Management with Technical Information on PMTA: Advised Program Manager on performance plans PMTA. Show less



CHRONOS SYSTEMS INC

• United States
• IT Services and IT Consulting
• 1 - 100 Employee

• Access Control Specialist

  • Aug 2011 - Mar 2013

  • Performed biometric scans on all personnel who are issued new CAC’s using the C-Cure, Ice Ware, and RAPIDS/DEERS system. • Created and updated Building Passes for the Pentagon using the AMAG Symmetry Security Management System, which provides advanced security solutions for the Access Control system. • Created and provisioned Common Access Cards (CAC) using the RAPIDS/DEERS system. • Processed access control system activities such as updating badge/access data within the access control system, issuing new or canceling badges, responding to door or access alarms within the system, and changing access control status of specific doors. Show less