Senior Security Risk Analyst

• Apr 2022 - Present

Third Party Trust Risk Analyst

• Jan 2021 - Present

Security Architect

• Aug 2017 - Dec 2020

Provide guidance on implementing FISMA requirements to ensure regulatory compliance and industry best practice. Participate in projects and the technology review board to evaluate new solutions and major changes ensuring compliance requirements are met and sound security practices are followed. Audit security controls ensuring compliance with DISA STIG and IRS SCSEM. Review firewall rules and architectural documentation to ensure both are accurate. Contribute to vulnerability management program by conducting vulnerability scanning and providing guidance to IT operations team for remediation. Conduct integral part of risk management by reviewing policy exception and firewall change requests. Advise SOC on indicators of compromise to configure alerts and incident response procedures. Administer security tools such as Tenable Nessus, Varonis, Gigamon, FireEye ETP, and FireEye HX. Key Contributions: • Expedited upgrades to Palo Alto Firewalls, F5 BIG-IP VPN Gateways, and Gigamon appliances ensuring agency employees could securely and reliably work from home during the national COVID-19 emergency • Evaluate new solutions and major architectural changes to ensure compliance with NIST 800-53 based policies, PCI and IRS regulatory requirements, and industry best practice • Create and maintain custom Nessus audit files based on DISA STIG and IRS SCSEM security controls to automate compliance scanning • Collaborated with IT operations team to ensure continued compliance with IRS SCSEM resulting in no critical findings during the 2019 IRS audit • Issue security findings and follow up on POA&Ms confirming findings are successfully remediated • Evaluate cloud services based on IRS mandates, state legislation, and agency requirements

Security Architect

• Jun 2016 - Aug 2017

Provided information and guidance to state agencies on increasing their security posture. Performed vulnerability assessments for state agencies. Provided guidance for meeting compliance with NIST, South Carolina DIS200, and other regulatory requirements. Managed security tools such as the statewide secure file sharing (eRoom), Privilege Account Security (PUM) solution, and SafeNet two factor authentication system. Researched potential threats and created reports that were sent to the state Security Operations Center, division leadership, and other state agencies. Key Contributions: ● Authored Service Security Plans, Plan of Action and Milestone documents (POA&M), and NIST based policies and procedures ● Utilized tools such as Tenable Nessus and IBM AppScan to perform vulnerability assessments ● Communicated results of vulnerability assessments along with recommendations on remediation or mitigation to stakeholders including agency leadership and technical staff ● Performed Vulnerability Assessment for State Elections Commission in preparation for the 2016 Presidential Election

Technical Consultant/Systems Engineer II

• Nov 2015 - Jun 2016

Consulted full time at Harris Teeter as a Systems Engineer II. Upgraded and deployed solutions to support retail operations. Supported upgrades and installation of proprietary software by deploying virtual and physical servers. Troubleshot issues involving Active Directory, VMWare, Microsoft Server, and other applications. Documented solutions and procedures to be used by operational support teams. Key Contributions: ● Upgraded Tivoli Storage Manager for Virtual Environment software to the most current version ● Upgraded Dell InTrust Software ● Utilized Shavlik and Windows Server Update Service to deploy updates and patches to all workstations and servers on the domain ● Upgraded DHCP and DFS servers from Windows Server 2003 to Windows Server 2012R2

System Engineer/ Senior System Administrator

• Nov 2014 - Nov 2015

Proposed, designed, tested, documented, and implemented new technology solutions as a member of the Enterprise Architect team for NORAD/NORTHCOM. Upgraded antiquated hardware and software to meet evolving needs of NORAD/NORTHCOM. Authored documentation and procedures for solutions using ITILv3 doctrine. Verified interoperability and compliance of new solutions through testing and evaluation in a lab environment. Provided support to operations team during outages or as needed. Key Contributions: ● Communicated directly with customer to collect solution requirements and provide multiple course of actions, recommendations, solution overviews, and updates ● Designed and documented a multinational continental wide XMPP based collaboration solution ● Deployed Forescout CounterAct to control user access based on Active Directory groups as well as verifying workstation compliance ● Tested Fortinet firewall for data loss protection allowing traffic only on specific ports and protocols between specific systems while blocking all other traffic ● Redesigned Active Directory Forest for NORAD/NORTHCOM headquarters and remote sites including OU and GPO structures to enforce compliance and role-based access controls to domain resources ● Assisted in design and implementation of storage upgrade from EMC to NetApp ● Implemented Blue Coat proxy to control and monitor user browsing

System Administrator

• Jan 2012 - Nov 2014

Managed the BlackBerry Enterprise System for over five thousand Army Reserve VIP users. Functioned as secondary Exchange Administrator providing prompt troubleshooting and support efforts to complete requests and resolve issues. Promoted to Active Directory SME where I maintained over 30 domain controllers. Managed Active Directory, DNS, GPOs, and Sites and Services enforcing enterprise wide compliance with stringent DISA Security Technical Implementation Guides (STIG). Key Contributions: ● Migrated Domain Controllers from Microsoft Server 2008 to Microsoft Server 2008R2; Virtualizing 70% of the Domain Controllers ● Architected and implemented the reorganization of Active Directory OU structure; streamlining GPO structure, improving Role Based Access Controls, and increasing enterprise compliance with DISA STIG guidance from 70% to over 95% ● Coordinated with external WAN group to ensure accurate Sites and Services controls for over 1500 subnets providing faster and more reliable user authentication services to users at multiple Army Reserve locations across the continental United States ● Authored and maintained documentation for BlackBerry and Active Directory administrative and troubleshooting tasks

System Administrator

• Jul 2011 - Dec 2011

Managed Enterprise wide Microsoft Distributed Files System and print services. Resolved data replication failures, user access issues, and printing problems. Replaced print and Distributed File System servers at Army Reserve sites across the Continental United States. Provided follow up support after migration to minimize user impact. Key Contributions: ● Administered over 70 Distributed File System namespaces and replication groups ensuring availability and integrity of shared data ● Transferred data and print services from end of life hardware to enterprise solution increasing reliability of services and data integrity ● Prepared new data center to support equipment and services from decommissioned data center ensuring a rapid and successful migration

Information Systems Technician

• Jun 2002 - Aug 2009

Enlisted member of the United State Air Force. Performed a wide variety of tasks pertaining to information technology. Expediently adapted and gained new knowledge, skills, and abilities to perform required duties at each assignment. Ensuring the operating system, applications, and devices were compliant with DISA STIG. Utilized SCCM for vulnerability management by applying software and antivirus updates. Mentored junior employees providing them with guidance and training. Key Contributions: ● Upgraded BlackBerry Enterprise Servers from Microsoft Server 2003 to Microsoft Server 2008 ● Migrated Defense Messaging System to Automated Messaging Handling System ● Created training lab using VMWare to enable junior employees to gain experience on a wide variety of applications and operating systems ● Authored procedural documentation and troubleshooting guides reducing trouble tickets by 75%