IT Security Expert
Information Unlimited Inc. (IUI)
Total years of experience :27 years, 6 months
working as a contractor with IUI (www.IUI.com) as an IT Security Expert in the Destrict of Columbia Department of Employment Services in Washington, DC (DOES.Dc.gov) to perform a vulnerability scans, penetration tests, and software security assurance tasks.
worked as a contractor with Implify, Inc. (www.implifyinc.com) as an IT Software Security Consultant in the Destrict of Columbia Department of Employment Services in Washington, DC (DOES.Dc.gov) to perform a vulnerability scans, penetration tests, and software security assurance tasks.
worked as a federal contractor with ASM Research, LLC. (www.asmr.com) as Senior PM Analyst in the Continuous Readiness in Information Security Program (CRISP) at the Department of Veterans Affairs (www.va.gov) to perform an Information Assurance (IA) audits.
worked as a federal contractor with 1Source Consulting, Inc. (www.1-sc.com) as Senior IA Security Specialist in the Financial Operations Development department at Pension Benefit Guaranty Corporation (www.pbgc.gov) to perform an Information Assurance (IA) task projects, such as, prepare, review, update, and maintain IT Security supporting artifacts and documents. Plan, develop, implement, and maintain an Incident Response and Audit Program for events of interest.
Worked as a federal contractor with TJFACT, LLC (www.tjfact.com) and Technatomy Corporation (www.technatomy.com) for US Department of Veterans Affairs (www.va.gov) as a System Security Practitioner and Auditor dealing with documenting and reviewing the security and privacy controls, Certification & Accreditation (C&A) package, Assessment & Authorization (A&A), Security Assessment Plans (SAP), and Security Assessment Reports (SAR) Packages in accordance with NIST, RMF, FISMA and HIPPA standards and compliances.
Working knowledge of Information Security C&A for ICD 503 process and procedures to include NIST SP 800-30, 800-37, 800-39, 800-47, 800-53A, 800-60, 800-137, CNSSI-1253, CNSSI-4009, CNSSP-22 and FISMA compliancy requirements and Communicate effectively (written and verbal) with all members of an organization and work in a diplomatic and professional demeanor.
Provided some short term consultant opportunities on applications software security, network security, and project/program management in support of any Network and Information Security training offerings. I taught and tutor college students Cisco technologies, Network+ and Security+ courses.
Handled the installations, configurations, and troubleshooting of the hardware, software, and networks. This includes configuring network printers, scanners, Cisco routers, switches and VOIP phones, and Windows XP/Vista/7 troubleshootings.
Managed the development, integration, and implementation of an enterprise-wide automated on-line poultry inspection system via visible near infrared technology and was responsible for network, system and software security. Managed the laboratory routers and switches, and analyzed the network packets. The objective of this project is to develop a real-time, effective system for detecting diseases and contamination on poultry carcasses on-line.
In this position, I worked directly with Subject Matter Experts from varied onsite companies, some of whom supported different contracts from the IDS Team, Certification and Accreditation and System administration department. My principle duties of managing the laboratory routers and switches and analyzing anomalous network packets required me to translate their inputs and data into reports for both our senior and non-technical management. Working under minimal supervision, I created finished products that ranged from operational reports, to System Initialization, Data Collection, Data Modeling and Mining, and Model Prediction reports.
These products were utilized by high-level personnel in the USDA Laboratory areas of operations to make decisions that affected the networking and security posture of our networks and IT infrastructure. I utilized the best practices as defined in the NIST SP Publications 800-37, 800-53 and 800-53A, and OWASP.
- Reader and teaching assistant for lower and upper division physics courses
- Worked as a team member for research and development a relativistic heavy ion physics experiments
(E895 and STAR). This includes development and upgrading the applications software prototype for a
charged elementary particles spectra and flow analysis. Used FORTRAN, C/C++, and UNIX systems
Completed the following courses: Data Communications, Network Security Fundamentals, Information Security Capstone, Business Statistics, Principles of Accounting 1, Principles of Accounting 2, Intermediate Accounting 1, and Intermediate Accounting 2
Completed the following courses: Program Management, Aligning Project Management with Organization Strategy, Requirements Management, Budget and Financial Management, Coaching and Mentoring for Improved Performance, and PgMP Exam Preparation. Each course is 22.5 PDU’s
Jan. 1998 – Dec. 2000. Completed a Ph.D physics courses March 1998 – Dec. 2000. Completed the following computer science courses: FORTRAN programming language, C programming language, Object Oriented and Software Design in C++, Data Structures and Algorithms in C++, and Computer Graphics
Received 3 times an honor award for an academic exellence