Information Management/ Knowledge Management Specialist

• Jul 2022 - Present

Create intuitive and responsive web parts in Microsoft SharePoint utilizing JavaScript/React, HTML, CSS. Create intuitive and responsive web parts in Microsoft SharePoint utilizing JavaScript/React, HTML, CSS.

Software Engineer

• Jan 2022 - Jul 2022

Technologies: MVC, ReactJS, C#/.NET, Entity Framework, ADO.NET, ASP.NET, SQL, SSMS, HTML, CSS, Bootstrap, JavaScript, Yarn. ● Contributed to a fast-paced development team utilizing Agile methodologies by participating in code reviews, daily stand ups and weekly code talks. ● Contributed to implementation of source control and work-flow management through Github, Git and Trello. ● Created responsive components using a mixture of Bootstrap, vanilla CSS and Javascript. ● Designed and implemented a feature enabling an end-user to efficiently and securely edit their profile. ● Utilized stateful components to handle conditional rendering based on end-user status throughout a session. ● Implemented React Router for dynamic routing throughout the application. Show less

Information Systems Security Manager

• Nov 2020 - Jan 2022

- Collaborated with various project managers across multiple programs to ensure security is implemented from start to finish and meeting proposed product milestones. - Assessed the security posture of Special Access Programs for various government agencies by performing configuration audits, vulnerability assessments, and assured file transfers. - Configured and managed McAfee Host Based Security System (a security suite which allows for centralized control of anti-virus, intrusion prevention, and data loss prevention modules). - Assessed software vulnerabilities, and hardware/software configurations utilizing Tenable Nessus Professional. - Conducted incident response and investigated possible instances of data spillages to ensure data integrity and confidentiality. - Oversaw day-to-day information system security operations including hardware and software implementations. - Documented compliance actions within the approved automated compliance tracking system and developed plans of actions and milestones (POA&M). - Interpreted the Joint Special Access Program Implementation Guide (JSIG) in determining technical Information Assurance (IA) requirements to ensure proper implementation of the Risk Management Framework (RMF). - Developed security documentation for information system authorization, security management, and continuous monitoring of both networked and standalone classified systems. - Ensured records are maintained for all relevant devices throughout each information system's life cycle. Show less

Associate

• Jun 2019 - Nov 2020

Federal Bureau of Investigation ● Lead accreditation efforts for multiple Amazon Web Services based cloud and on-premise programs, utilizing both Linux (RHEL/Ubuntu) and Windows (10/Server 2016) based operating systems. ● Advise program management in implementing appropriate security controls based on the requirements of the Federal Information Security Management/Modernization Act of 2002/2014 (FISMA), Federal Risk and Authorization Management Program (FedRAMP) and guidance of the National Institute of Standards and Technology (NIST). ● Analyze logged security events, and provide vulnerability and compliance metrics utilizing Splunk, CloudWatch, CloudTrail, and Tenable Nessus. ● Coordinate with developers and infrastructure teams to develop security documentation that accurately depicts the policies and procedures of each managed program in order to obtain authorization to operate on federal networks ● Conduct internal security assessments to test and document evidence of Department of Justice reported security implementations. ● Create plans of action & milestones to address individual program vulnerabilities and non-compliant technology areas while considering the obligations of system owners, program management, and resource requirements/limitations of administrators. ● Serve as security advisor on program change control boards, conducting risk analysis of change proposals and report findings and recommendations to system owners and program management. ● Document decommissioned assets and assist in development of decommissioning plans as required. Show less

Cybersecurity Manager

• Jul 2016 - Aug 2019

● Led the cybersecurity section of Marine Corps Forces Korea (MARFORK) in providing cybersecurity training to users and ensured leadership maintained awareness of its cybersecurity posture.● Utilized enterprise tools such as McAfee’s Host Based Security System (HBSS), Tenable Nessus, Lansweeper, and Blue Coat Proxy to monitor/investigate malicious activity and develop effective mitigation strategies.● Ensured information technology assets are in compliance with Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs).● Utilized STIG viewer, Security Content Automation Protocol (SCAP), Windows PowerShell, PuTTY, and Tenable Nessus to conduct network vulnerability and configuration assessments.● Conducted Assessment and Authorization (A&A) activities, guided by the National Institute of Standards and Technology’s Risk Management Framework, to provide analysis of system security and data safeguards.● Collaborated with subject matter experts in building Plans of Action and Milestones (POA&Ms) in response to Department of Defense (DoD) enterprise security advisories and DoD auditor recommendations.● Conducted daily physical security inspections of MARFORK’s critical network infrastructure. Show less

Marine

• Jul 2009 - Aug 2019

Cybersecurity Technician

• Oct 2013 - Jul 2016

● Responsible for implementing and monitoring security measures for Marine Corps Forces Pacific (MARFORPAC) information systems networks and ensured the customer's systems and personnel adhered to established federal security standards.● Ensured timely patching and configuration of over 1000 networked assets utilizing IBM BigFix and Tenable Nessus.● Assisted in the development and execution of cybersecurity policies, plans, and procedures for MARFORPAC, enhancing its security posture.● Maintained FortiGate Unified Threat Management devices to secure the deployment of Marine Corps Enterprise Networks to multiple sites in support of multinational exercises.● Provided support in the handling of incidents and unauthorized disclosures of information on Marine Corps Forces Pacific's local area network and developed policies to proactively prevent incidents. Show less

Data Network Specialist

• Apr 2010 - Oct 2013

● Installed, configured, and managed networked systems in both stand-alone and client-server environments.● Maintained, configured, and installed network and security devices while deployed in austere tactical environments.● Provided desktop support to a dynamic customer base of over 300 users with unique operational requirements. ● Configured, tested, and maintained SolarWinds Orion Network Performance Monitoring tools.● Configured, tested, and maintained a local Windows Deployment Service (WDS) server for rapid deployment of Microsoft Windows 2000, Windows Server 2008 R2, and Office 2010 activation. ● Maintain documentation for installation and configuration of NetApp Fabric-Attached Storage (FAS) hardware and Data ONTAP software. Show less