United States
An IT support specialist at heart, I've had the opportunity to provide desktop support to multiple companies over nearly 10 years and somehow managed to not lose my mind. One day I heard about information security and was very intrigued at the thought of security as a career path. From certification and accreditation to defense contracting and the Risk Management Framework, I'm forever learning new things in this field.
Providing technical consulting services with a focus on Cybersecurity and GRC.
As an associate for Booz Allen Hamilton (BAH), I provided consulting services for both the Health Sector and the Citizen Services Sector. In support of the Health Sector, I provided system steward services to the Veteran's Affairs (VA) in support of the Risk Management Framework (RMF) compliant efforts. As a system steward, I assisted the VA in bringing their medical systems into compliance under RMF, which involved compliance with the security controls listed in Special Publication (SP) 800-53. As part of the compliance effort, our team generated and revised FISMA related documentation to be included as part of the authorization submission package. In support of the Citizen Services Sector, I was the governance analyst tasked with generating a new implementation plan to support the Department of Energy's (DOE) enterprise deployment of their Endpoint Detection and Response (EDR) solution. The newly generated implementation plan was submitted to the Cybersecurity Infrastructure Security Agency (CISA) as a prerequisite to obtaining CISA funding for EDR deployment. Additionally, I revised an the DOE's existing implementation policy that was disseminated to all DOE sites nationwide.
(Oribtal ATK acquired by Northrop Grumman) During my time at NG, I served as an Information Systems Security Officer (ISSO) as part of the Enterprise Services group. I had the privilege of working with some awesome people and was part of an excellent team. Our focus was in maintaining security packages for multiple system ATOs to include the day-to-day monitoring tasks of auditing and system scans. Additionally, our team worked very closely with the IT team to mitigate any found vulnerabilities. During my tenure at NG, I also filled the role of Information Systems Security Manager (ISSM) before my departure to my next position. It was a great experience working with and leading such a great group of folks.
I had the pleasure of serving as the ISSO in support of the program's RMF authorization efforts for an integral set of missile test equipment. The role of ISSO provided many opportunities to collaborate with colleagues from various contracting entities, as well as, frequent coordination with government agency representatives. In addition to performing ISSO duties, I also provided on site desktop support to Orbital ATK personnel located at Vandenberg AFB.