Monument, Colorado, United States
Highly skilled Senior Information Systems Security Officer offering 8 years of extensive knowledge and experience in systems security, vulnerability management, threat analysis, and system administration. Proven ability to create and deliver solutions tied to security compliance, organizational development, and systems optimization. Skilled problem identifier comfortable with managing systems, projects, and teams in a range of IT environments. Career supported by extensive coursework in the acquisition of a MBA and BSc, along with the CISSP, CISM, and CASP+ certifications. Active DOD Top Secret Clearance and Counterintelligence Polygraph.
As a Navy Reserves Officer Recruiter, I specialize in sourcing and recruiting highly qualified individuals for direct commission into the Navy, particularly for the Information Warfare Community (IWC) designators, including Intelligence Officers, Cyber Warfare Officers, Space Officers, Cryptologic Warfare Officers, and more. In addition to IWC, I actively support the recruitment and commissioning of candidates into various other Navy officer communities, including the Navy Aviation, Supply Corps, Civil Engineer Corps, and Medical Corps. My role involves: -Leading the recruitment of diverse and exceptional candidates with specialized skills, ensuring they meet the qualifications and leadership standards for service as Navy officers in both active duty and reserve capacities. -Conducting outreach and information sessions for active duty Navy Officers transitioning into reserve officer roles (NAVET) and other service veterans (OSVET) looking to serve in a reserve capacity. -Providing tailored guidance through the commissioning process, ensuring candidates understand the unique opportunities within the Navy Reserves, with a particular focus on IWC career paths. -Collaborating with Navy commands and partners to develop recruitment strategies and outreach initiatives that align with current needs and future requirements for both Reserve and Active Duty personnel. By fostering connections with candidates from diverse backgrounds, I am dedicated to shaping the next generation of Navy leaders while advancing critical missions across the Navy Reserves.
•As the N6 Department Head, leads the Office of Naval Intelligence network warfare missions in developing tactics, techniques and procedures to realize tactical, strategic and business advantages afloat and ashore. •Drives interoperability with Joint, Allied and Coalition partners. •Optimizes Naval organization effectiveness through cutting-edge technologies, Knowledge Management techniques and a culture of innovation. •Oversees the work of 7 Information Systems Technicians who serve as specialists in information technology.
•Developed organizational policies in accordance with the Joint Special Access Program (SAP) Implementation Guide (JSIG), applying and enforcing those policies across multiple customer programs, improving compliance rates by 39% and enhancing system security to reduce vulnerabilities across the organization. •Leveraged the National Institute of Standards and Technology, NIST SP 800-37 Risk Management Framework (RMF) to begin the Assessment and Authorization process and ultimately achieve an Authorization to Operate (ATO) for 4 information systems. •Managed the Splunk environment, including monitoring and alerting on system performance and availability, elevating management information by onboarding logs related to vulnerability management to Splunk and creating dashboards for senior management to track vulnerability status. •Conducted vulnerability scanning utilizing Nessus to analyze configurations and facilitate implementation of configurations and hardening settings for networks, operating systems, applications, databases, and other information system components. •Maintained the Trellix Endpoint Security deployment, including the anti-virus and firewall infrastructure for the information systems, ensuring the compliance and currency of the software version as well as the anti-virus definitions.
•Managed and oversaw the execution of RMF activities for various information systems across a team of 5 ISSOs and 3 ISSEs. •Restructured the customer’s cybersecurity program by identifying deficiencies in continuous monitoring/reporting, implementing measures to correct weaknesses, and developing a detailed plan to ensure all cybersecurity policies and controls were met. •Executed the Risk Management Framework (RMF) process for 3 information systems and achieved low-risk Authorizations to Operate (ATOs) for all 3 systems including a standalone developer network, cross-domain solution, and a TS/SCI interconnected system. •Continuously monitored information systems to locate any potential vulnerabilities or security risks, mitigating any found vulnerabilities, and correcting deficiencies when needed. •Processed 6 decommissioning packages for obsolete systems, including systems classified at SAP, SCI, and TS levels. •Maintained the Security Control Tractability Matrix (SCTM) in accordance with NIST 800-53 and drafted a Plan of Actions & Milestones (POA&M) when needed to correct deficiencies and ensure compliance within the program network. •Conducted monthly vulnerability scans via ACAS Nessus Scanner, recorded all vulnerabilities found, and determined proper mitigation measures without jeopardizing operations. •Used the DoD SCAP (Security Content Automation Protocol) tool to identify security compliance issues and mitigate them. •Drafted and maintained the Systems Security Plan (SSP), Plan of Actions & Milestones (POA&M), and Security Controls Tractability Matrix (SCTM) to correct deficiencies and ensure compliance within the program network. •Coordinated, installed, and configured the SAPF’s (Special Access Program Facility) local infrastructure including copper/fiber patch panels, TACLANE, Cisco routers, switches, KMM/KVM, HP servers, and VoIP phones while loading cryptography keys and ensuring network functionality.