Experience

Katmai Government Services

• United States
• Defense and Space Manufacturing
• 400 - 500 Employee

• Chief Information Security Officer

  • Jan 2023 - Present

  United States



RC2 security

• Information Technology & Services

• Founder & Managing Director

  • Jul 2008 - Present

  Sterling, Va As Founder and Managing Director for RC2, Robert has over 18 years of proven experience in the complex world of Information Technology and Cyber Security management. Mr. Rubeck founded and developed RC2 to be a premiere information security consultating firm providing Subject Matter Experise in the many areas of cybersecurity compliance for federal agencies, medical and legal industries, the Department of Defense and the intellegence community. RC2's current and past clients include The US… Show more As Founder and Managing Director for RC2, Robert has over 18 years of proven experience in the complex world of Information Technology and Cyber Security management. Mr. Rubeck founded and developed RC2 to be a premiere information security consultating firm providing Subject Matter Experise in the many areas of cybersecurity compliance for federal agencies, medical and legal industries, the Department of Defense and the intellegence community. RC2's current and past clients include The US NAVY, The US ARMY, The US Air Force, The US Marine Corp, The Defense Information Systems Agency (DISA), OPM, TSA, GSA, TDI, and DMI Show less



Octo, an IBM Company

• United States
• IT Services and IT Consulting
• 1 - 100 Employee

• Senior Manager - Chief Information Security Officer

  • Aug 2018 - Jan 2023

  Silver Spring, Maryland



DMI (Digital Management, LLC)

• United States
• Information Technology & Services
• 700 & Above Employee

• CISO - Special Assistant to the CIO

  • Jan 2013 - Aug 2018

  Arlington, va Retained by DMI, INC as a Senior Subject Matter expect (IA) to help develop and maintain an information security program for the US ARMY MEDCOM, Defense Centers of Excellence for Psychological Health/Traumatic Brain Injury (DCoE) • Aligning with G6 CIO, and Senior Program Manager with responsibilities for establishing and maintaining the enterprise vision and strategy to ensure information assets are adequately protected • Provide guidance for identifying, developing, implementing, and… Show more Retained by DMI, INC as a Senior Subject Matter expect (IA) to help develop and maintain an information security program for the US ARMY MEDCOM, Defense Centers of Excellence for Psychological Health/Traumatic Brain Injury (DCoE) • Aligning with G6 CIO, and Senior Program Manager with responsibilities for establishing and maintaining the enterprise vision and strategy to ensure information assets are adequately protected • Provide guidance for identifying, developing, implementing, and maintaining processes across the organization to reduce information and information technology (IT) risks • Provide oversight and direction in the establishment of appropriate standards and controls based on DoD 8500 series, FISMA, and NIST 800 series security controls, policies and regulations • Direct management and technical staff on the establishment and implementation of policies and procedures • Liaise directly with engineering staff to provide guidance on security control applicability based on their boundaries of control. Liaise between engineering staff and senior leadership to report compliance with applicable security controls. Responsibilities include: Information security and information assurance • Information regulatory compliance (e.g., FISMA, 8570.01-M, HIPAA; NIST 800-53, NIST 800-37, NIST 800 Series; AR 25-2, CJCS 6510.01-F, DoD 8510.01 -DIACAP, DoD 8500.2, FIPS 199, FIPS 200, etc) Information risk management • Supply chain risk management • Cybersecurity • Information technology controls • Information privacy • Computer Emergency Response Team / Computer Security Incident Response Team • Identity and access management • Security Architecture • IT investigations/ digital forensics • Disaster recovery and business continuity management • Information Security Operations Show less



TDI (Tetrad Digital Integrity)

• United States
• Computer and Network Security
• 1 - 100 Employee

• Technology Director, Information Assurance and Cybersecurity

  • May 2012 - Jan 2013

  Department of Defense Hired by TDI as a security consultant to perform in the role of a Security PM and Subject Matter Expert for the DoD F-35 Joint Strike Fighter Program Office. I performed the following duties in my role to support the companies risk management practice: • Reporting to Vice President of Defense Programs, managed the federal Information Security practice for the DoD F-35 Joint Strike Fighter Program (JSF) • Provided oversight for a Cybersecurity team consisting of over 75 IA technical and… Show more Hired by TDI as a security consultant to perform in the role of a Security PM and Subject Matter Expert for the DoD F-35 Joint Strike Fighter Program Office. I performed the following duties in my role to support the companies risk management practice: • Reporting to Vice President of Defense Programs, managed the federal Information Security practice for the DoD F-35 Joint Strike Fighter Program (JSF) • Provided oversight for a Cybersecurity team consisting of over 75 IA technical and management workforce personnel • Managed, oversaw and coordinated all aspects of complex security projects • Managed and coordinated with JSF engineering teams to ensure security policies were enforced for all deployed solutions • Enforced security standards across multiple security domains at multiple classification and sensitivity levels • Conducted and lead comprehensive assessments and audits of information security, privacy policies and procedures against applicable regulations, laws, policies and standards such as FISMA, DIACAP, NIST 800 series, CNSS, NIAP, and DoD 8570 • Coordinated with JSF CIO and OCIO to ensure project deliverables and milestones were achieved • Oversaw and managed IAVM compliance for federal systems • Ensured that the security posture for JSF was maintained and in compliance with federal guidelines and policies • Performed security requirements reviews to ensure security controls were established and implemented • Collaborateed with engineering teams to plan, design, and develop systems architectures based on DoD and federal security requirements for all phases of the SDLC • Analyzed results of security assessments and assigned risk. • Prepared C&A recommendations to senior IA leadership based on level of risk Show less



Tangible Security

• United States
• IT Services and IT Consulting
• 1 - 100 Employee

• Senior Principal Information Security Manager

  • Aug 2011 - Aug 2012

  Mclean, Virginia Hired to help company re-structure its IT security practice and provide guidance to ensure compliance was achieved with federal programs. I also was hired to help ensure the DoD PKI Program at DISA successfully obtained an ATO. Through my efforts I helped the company secure a larger footprint in the federal security marketplace. I performed the following duties in my role to support the companies risk management practice: • Reported to DoD PKI Federal Program Manager • Served as… Show more Hired to help company re-structure its IT security practice and provide guidance to ensure compliance was achieved with federal programs. I also was hired to help ensure the DoD PKI Program at DISA successfully obtained an ATO. Through my efforts I helped the company secure a larger footprint in the federal security marketplace. I performed the following duties in my role to support the companies risk management practice: • Reported to DoD PKI Federal Program Manager • Served as cross organizational Senior Information Assurance Manager for DoD Federal PKI program at DISA • Provided guidance to senior management and corporate business units in the development, implementation, and administration of Information Security policies and procedures • Served as senior consultant performing advisory services, and providing assistance in managing risk to an acceptable level through a shared vision with the DISA CIO and DISA FSO organizations • Coordinated C&A activities across multiple federal organizations • Ensured project deliverables and milestones are being achieved • Servered as a technical liason with Bus Dev units to provide technical insight and expertise for capture and proposal teams. Show less



Connected Logistics

• United States
• Defense and Space Manufacturing
• 1 - 100 Employee

• Lead Information Assurance Manager

  • Feb 2011 - Aug 2011

  Springfield, Virginia (Short Term Contract work) Served as Lead Information Assurance Manager for ARMY PEO-EIS organization under PM-P2E.



EIM - US ARMY Publishing Directorate (APD)

• Senior IT Project Manager - Information Assurance

  • Aug 2010 - Aug 2011

  EIM, Arlington, VA Reporting to CTO, provided security guidance to a program with 33 FTE's and an allocated budget of $24 million annually • Developed and managed capital budgets for the IMO • Managed federal security projects with a focus on ensuring C&A activities were completed • Lead team in support of Information Security management and architecture for DoD ARMY IA program • Performed role of senior IAM to the ARMY APD organization supporting 6 branches and over 40 DoD ARMY systems • Apointed security team… Show more Reporting to CTO, provided security guidance to a program with 33 FTE's and an allocated budget of $24 million annually • Developed and managed capital budgets for the IMO • Managed federal security projects with a focus on ensuring C&A activities were completed • Lead team in support of Information Security management and architecture for DoD ARMY IA program • Performed role of senior IAM to the ARMY APD organization supporting 6 branches and over 40 DoD ARMY systems • Apointed security team members to support C&A activities for DIACAP • Served as an advisor to ARMY APD SIAO and IAPM • Coordinated and meet with CA and DAA representatives to discuss all accreditation activities and efforts • Prepared POA&M updates to senior management on current status of the accreditation SDLC • Developed and interpreted IA requirements for DOD IA security program to ensure compliance with IA Policies (AR-25-2, DODI, DIACAP, FISMA, NIST, DOD 8570, ETC) Select Accomplishments include: Created an Information Management Office tasked with managing IA security posture and accreditation status for entire ARMY program all while staying under budget by 20% during first 6 months. Integrated T&I environments into a fully accredited system and provided overall direction for implementation of this project Consolidated technology security related functions to central office which created an estimated 50% cost savings for technology related travel expenses of over 300K a year. Initiated and implemented a transition plan for moving from DITSCAP to DIACAP Successfully managed reconciliation of thousands of IA vulnerabilities and helped program achieve its first ATO Strengthened core skill sets organizationally by implementing the DoD Workforce Improvement Program and overseeing certification of over 400 privileged users throughout multiple organizations. Implemented a COOP plan at 3 locations and reducted downtime outages by 30% in first 90 days. Show less



Transportation Security Administration (TSA)

• United States
• Government Administration
• 700 & Above Employee

• Enterprise Security Project Manager

  • Feb 2009 - Oct 2010

  TSA Reporting to VP of federal engineering, managed a team of 15 FTE's with an allocating budget of $15 million annually. * Oversaw day to day developmental and operational functions for enterprise security related projects * Defined and executed Implementation plans, reviewed project goals, timelines, plans and constraints. * Managed technical employees to ensure that financial goals are being met. * Provided senior leadership with project status information and milestones reached. * Ensure IA… Show more Reporting to VP of federal engineering, managed a team of 15 FTE's with an allocating budget of $15 million annually. * Oversaw day to day developmental and operational functions for enterprise security related projects * Defined and executed Implementation plans, reviewed project goals, timelines, plans and constraints. * Managed technical employees to ensure that financial goals are being met. * Provided senior leadership with project status information and milestones reached. * Ensure IA requirements were implemented and considered throughout the complete SDLC for all security projects. Select Accomplishments include: Developed and Executed a Business Development plan that contributed to an improvement of 45% in project related productivity. Designed, Managed and oversaw $3 million data encryption project that enabled a FIPS compliant encryption solution across enterprise of 20,000 hosts and 80,000 users. Initiated a process improvement effort that improved on-time delivery of projects to 98% from 78% within 6 months of handling project related functions. Oversaw completion of 7 large project implementations from project initiation to production implementation and rollout to include: Windows client migration to Windows 7, Office 2007 upgrade, Exchange server 2007 upgrade, multiple client image builds. Designed a training program for the helpdesk and tier 2 teams that reduced 85% of call escalation to engineering and development, providing the customer on average 300k in extra cost savings. Show less



Kforce Inc

• United States
• IT Services and IT Consulting
• 700 & Above Employee

• Senior Information Security Consultant

  • Jul 2008 - Feb 2009

  Short Term Contract work Performed services as a security adviser to DISA PPSM CIO and DISA PPSM TAG/CCB * Worked as an enterprise security architect overseeing security design and implementation for DISA PPSM program. * Recommended enterprise security policies and procedures. * Ensured security architectures were validated according to FISMA, and DIACAP policies and guidelines. * Participated in data classification activities for PPSM * Defined and executed security project plans, reviewed project goals, timelines,… Show more Performed services as a security adviser to DISA PPSM CIO and DISA PPSM TAG/CCB * Worked as an enterprise security architect overseeing security design and implementation for DISA PPSM program. * Recommended enterprise security policies and procedures. * Ensured security architectures were validated according to FISMA, and DIACAP policies and guidelines. * Participated in data classification activities for PPSM * Defined and executed security project plans, reviewed project goals, timelines, plans and constraints. Developed an Enterprise security solution that was implemented DoD wide by DISA. Show less



Credant Technologies - Now Dell Data Protection

• United States
• Software Development
• 1 - 100 Employee

• Senior Deployment Architect

  • Oct 2006 - Jul 2008

  Reporting to Director and VP of Client Services, managed day to day project activities and delivered customer tailored security solution architectures. * Acted as an interface for the customer with issues relating to development and product management to ensure customer requirements were met. * Oversaw creation and delivery of product training solutions for customers and 3rd party partner vendors. * Managed cost and ensured performance was delivered within allocated budget for both cost… Show more Reporting to Director and VP of Client Services, managed day to day project activities and delivered customer tailored security solution architectures. * Acted as an interface for the customer with issues relating to development and product management to ensure customer requirements were met. * Oversaw creation and delivery of product training solutions for customers and 3rd party partner vendors. * Managed cost and ensured performance was delivered within allocated budget for both cost reimbursement and fixed firm price contract vehicles. * Coordinated with software development team to ensure customer delivery timelines were on schedule. * Defined and executed Statements of Work. Select Accomplishments Include: Oversaw over 100 successful security solution implementations with a 98% customer satisfaction rating. Achieved an Increase in services generated revenue by 80% in 16 months of managing security implementations by increasing productivity and introducing cost cutting measures throughout the organization. Developed a vendor security training program utilized by vendor partners to ensure they were prepared to do customer installations. Scoped, designed and managed large scale mobile security software implementation projects based on DOD and Public C&A processes. Created Technical security baseline for project documentation that was utilized for all future projects. Show less



Hewlett Packard Enterprise

• United States
• IT Services and IT Consulting
• 700 & Above Employee

• Senior Consultant - CA Unicenter/Security Architect

  • Jul 2004 - Oct 2006

  Reporting to Program Manager of Army Operations, Designed, Developed and Managed the Army's Enterprise Management Architecture for the HRC(Human Resources Command) * Performed assessments, design and implementation of CA enterprise solutions using CA Unicenter NSM, AMO, SDO, UMP, and various Etrust Identify and Access Management security options as needed. Select Accomplishments Include: Implemented an enterprise security solution for all UNIX and Windows servers across 3 geographical… Show more Reporting to Program Manager of Army Operations, Designed, Developed and Managed the Army's Enterprise Management Architecture for the HRC(Human Resources Command) * Performed assessments, design and implementation of CA enterprise solutions using CA Unicenter NSM, AMO, SDO, UMP, and various Etrust Identify and Access Management security options as needed. Select Accomplishments Include: Implemented an enterprise security solution for all UNIX and Windows servers across 3 geographical sites and consisting of over 400 enterprise servers. Developed and implemented a comprehensive Identity and Access Management solution that allowed for users from different functional applications authenticate using one central database. Managed development and implementation of ARMY HRC Unicenter Management Portal (Executive Dashboard) that allowed for executive support and management to view and monitor critical enterprise applications. This provided an increase in productivity by 50% throughout the enterprise for critical downtime outages. Show less



International Monetary Fund

• United States
• International Trade and Development
• 700 & Above Employee

• Computer Systems Officer

  • Feb 2001 - Jul 2004

  Reporting to Division Chief, managed security operations for a tier 2 network security team. * Participated in policy creation, development and deployment as it related to the organizations infrastructures, network security and business continuity. * Oversaw risk assessments and identified threats and exposures related to networking and remote access. Select accomplishments include: Managed an implementation of a CISCO PIX firewall solution to over 95 different countries around… Show more Reporting to Division Chief, managed security operations for a tier 2 network security team. * Participated in policy creation, development and deployment as it related to the organizations infrastructures, network security and business continuity. * Oversaw risk assessments and identified threats and exposures related to networking and remote access. Select accomplishments include: Managed an implementation of a CISCO PIX firewall solution to over 95 different countries around the world to ensure remote offices had secure remote connectivity to HQ office. This effort created a savings of over $20 million of year by leased facility costs globally. Developed overall network access security policy for remote users across multinational zones which provided for a more secure environment through the entire organization. Developed SLA's for customer satisfaction and improved customer satisfaction results for network security team by 27% from 65% to 92% Show less



COMPUTER ASSOCIATES

• Network Administrator

  • Aug 1999 - Mar 2001

  Administered a network of 10,000 plus nodes. * Managed the deployment, installation and configuration of client/server components on the network. * Configured enterprise management components of Unicenter. Deployed and configured local LAN/WAN equipment. * Performed exchange and AD user account administration. * Monitored network performance for trend analysis. Select Accomplishments Include: Configured an in house RAS solution that enabled local users to connect remotely via VPN.… Show more Administered a network of 10,000 plus nodes. * Managed the deployment, installation and configuration of client/server components on the network. * Configured enterprise management components of Unicenter. Deployed and configured local LAN/WAN equipment. * Performed exchange and AD user account administration. * Monitored network performance for trend analysis. Select Accomplishments Include: Configured an in house RAS solution that enabled local users to connect remotely via VPN. Implemented a RAID solution which provided additional fault tolerance and satisfied COOP requirements. Managed Win2K rollout and automated Y2K patch solution for rollover to year 2000. Show less



SERVICE USA

• Technical Support Specialist

  • Jul 1995 - Aug 1999

  Provided technical support to end users. * Installed, configured and upgraded COTS and custom applications. * Performed upgrades to software and operating systems components for workstations and servers. * Troubleshot hardware failures on desktop and laptop computers. Select Accomplishments Include: Created an online solution database for troubleshooting top recurring IT trouble tickets. Resolved an issue with remote access connectivity to HQ office which allowed for workforce to… Show more Provided technical support to end users. * Installed, configured and upgraded COTS and custom applications. * Performed upgrades to software and operating systems components for workstations and servers. * Troubleshot hardware failures on desktop and laptop computers. Select Accomplishments Include: Created an online solution database for troubleshooting top recurring IT trouble tickets. Resolved an issue with remote access connectivity to HQ office which allowed for workforce to resume connections to office from remote sites after 6 months of downtime. Show less