Minnetonka, Minnesota, United States
Information security professional specializing in security architecture and product security engineering. Background in network security monitoring, secure product development, and security assessments. Specialties: Information Assurance, Cyber Security, SANS GCFA, CISSP-ISSAP
Security Technical Program Manager in Mixed Reality team.
Define and conduct innovative research on the security of computer and embedded systems, including computers, operating systems, software applications, computer networks, communications devices, control systems, and communications networks, with an emphasis on the security of control systems. Systems of particular interest include SCADA (Supervisory Control and Data Access), DCS (Distributed Control Systems), access control systems, and digital video systems.
Systems engineering role incorporates Information Assurance and Systems Security Engineering principals into development activities to support and ensure successful DoD certification outcomes. Tasks include development and decomposition of technical and assurance requirements, secure system design and architecture, allocation of requirements to software and hardware subsystems, execution of trade studies and white papers, verification and validation in support of DITSCAP, DIACAP, and other IA-specific DoD certifications. Performed program protection tasks such as development of operational security plans, vulnerability assessments, and maintenance and audit of computer systems and data in accordance with NISPOM guidance. Served as IA Technical Lead, responsible for a team of systems security engineers working in cooperation with platform engineering team, software and hardware engineers. Participated in programs requiring application of specialized security technologies and engineering analysis. Acting Blue Team lead, supporting development of business and strategic goals in the Cyber Security and Cyberwarfare arenas, and attended 2010 AFCEA USSTRATCOM Cyberspace Symposium.
Newly created position, responsible for guarding against data leaks using network monitoring and content protection tools as well as reports of sensitive data found online. Created investigation and reporting procedures, assisted in tool evaluation and implementation, and created custom tools for specific tasks as needed. Prior position was SOC Tier 1 analyst, which required real time monitoring of events from IDS, firewall, and other network sources.
Half-time position held while enrolled in undergraduate and masters programs. Duties included general computer help and troubleshooting, system updates, and website maintenance and design. Implemented file server and Active Directory throughout department as well as usage tracking system for computer lab. Also routinely evaluated department security policies and monitored servers for network attacks and issues.