Description :

1. Reviewed and analyzed proxy exception requests for DHS networks in alignment with security policies.
2. Managed and tracked multiple security incidents using a Remedy web-based ticketing system to ensure timely resolution.
3. Served as Change Manager for DHS HQ Information Assurance team, overseeing change requests and approvals.
4. Maintained an organized tracking system for Remedy tickets, enhancing efficiency and accountability.
5. Evaluated and approved new Privileged Account Requests (PARs) for the DHS HQ component, ensuring compliance.
6. Generated comprehensive weekly and monthly reports for Federal Management on PAR activities.
7. Updated and reviewed Change Requests (CRs) across various DHS networks to maintain security posture.
8. Created and managed Information Security Vulnerability Management surveys within a SharePoint portal to track compliance.

Experience

0-2 Years

Level

Entry Level

Education

B.S. Cybersecurity

Description :

1. Managed the security protocols for multi-million dollar Air Force information systems, ensuring compliance with federal regulations.
2. Revamped security procedures to align with evolving requirements, enhancing operational readiness.
3. Delivered Information Assurance support for Certification and Accreditation activities, ensuring system reliability.
4. Optimized account management processes, significantly improving user access efficiency within secure networks.
5. Provided strategic security recommendations, aligning new system requirements with established directives.
6. Developed sanitization procedures for sensitive information systems, ensuring compliance with DoD standards.
7. Coordinated with internal and external stakeholders to track and resolve security incidents effectively.

Experience

5-7 Years

Level

Junior

Education

B.S. Info Sec

Description :

1. Developed and maintained Standard Operating Procedures (SOPs) to ensure compliance with security policies.
2. Served as Trusted Agent for Public Key Infrastructure (PKI) within the organization.
3. Managed the creation and approval of SIPR and NIPR accounts to ensure secure access.
4. Verified and approved Virtual Private Network (VPN) accounts to maintain secure communications.
5. Ensured the establishment of Tenant Security Plans for all departments.
6. Documented certification and accreditation activities, preparing Security Plans and updating Plans of Action and Milestones (POA&M).
7. Enforced access controls to prevent unauthorized personnel from using information systems.

Experience

0-2 Years

Level

Junior

Education

BSc Cybersecurity

Description :

1. Developed and sustained a comprehensive Information Systems Security Program, enhancing organizational security posture.
2. Established and enforced information security policies, ensuring compliance with industry standards.
3. Reviewed and endorsed subordinate units' System Security Plans for compliance with security protocols.
4. Supervised Information Assurance Officers (IAOs), ensuring adherence to established security policies.
5. Coordinated technical and security training for 25 IAOs, enhancing their operational effectiveness.
6. Reviewed and approved system certification documentation, advising the Designated Approval Authority on security risks.
7. Implemented procedures for the secure handling of system memory, media, and output, ensuring data protection.

Experience

7-10 Years

Level

Senior

Education

M.S. Cybersecurity

Description :

1. Supported the configuration-change management process to ensure compliance with security standards and improved security posture across the environment.
2. Conducted regular audits of security controls and documented findings to ensure adherence to regulations.
3. Collaborated with IT teams to develop and enforce security policies and procedures.
4. Assisted in incident response activities, documenting incidents and coordinating remediation efforts.
5. Monitored security alerts and logs to identify potential threats and vulnerabilities.
6. Participated in security assessments and risk analysis to enhance protection measures.
7. Provided training and guidance to staff on security best practices and policies.

Experience

5-7 Years

Level

Management

Education

B.S. Info Sec

Description :

1. Oversaw the implementation of security protocols for major application support systems, ensuring compliance with organizational standards.
2. Coordinated the development and testing of a comprehensive Contingency Plan, enhancing incident response capabilities.
3. Ensured compliance with security requirements for critical systems, reducing vulnerabilities.
4. Implemented physical security measures to protect against potential threats, enhancing overall security posture.
5. Managed documentation updates in the Xacta system, improving tracking of security controls.
6. Conducted continuous monitoring of assigned systems, ensuring compliance with regulatory requirements.
7. Provided ongoing authorization assessments in accordance with established protocols.

Experience

7-10 Years

Level

Management

Education

M.S. Cybersecurity

Description :

1. Conducted thorough investigations of security violations and breaches, providing actionable recommendations to enhance security protocols.
2. Generated detailed reports on security incidents, delivering analysis summaries to management for strategic decision-making.
3. Provided expert guidance in Enterprise Security Engineering and Information Systems Security throughout the system development lifecycle.
4. Developed and implemented comprehensive security policies aligning with legal and regulatory requirements, ensuring robust technical baselines.
5. Refined Standard Operating Procedures (SOPs) to enhance the effectiveness of security operations within the technical environment.
6. Exercised Information Assurance (IA) control over system configuration changes to align with security policies.
7. Managed remediation of Plans of Action and Milestones (POA&Ms) to ensure timely resolution of security vulnerabilities.

Experience

2-5 Years

Level

Consultant

Education

B.S. InfoSec

Description :

1. Executed Certification and Accreditation activities, transitioning systems from development to Continuous Monitoring via the RMF security authorization process.
2. Managed security authorization documentation with the Xacta IA Manager tool, ensuring compliance with federal standards.
3. Assisted in creating unified guidelines for system evaluations of federal information systems, including TSA’s critical infrastructure.
4. Developed and presented highly technical information to diverse audiences, enhancing understanding of cybersecurity measures.
5. Ensured IT systems met all security controls in accordance with NIST 800-53A, maintaining operational integrity.
6. Reported on FISMA compliance, effectively communicating findings to stakeholders.
7. Managed ISVM alerts and patches, ensuring prompt response to vulnerabilities in systems and applications.

Experience

10+ Years

Level

Executive

Education

M.S. Cybersecurity

Description :

1. Conducted FISMA audit reviews and assessments in line with NIST 800-37 standards.
2. Developed and updated IT security policies to align with federal regulations and departmental requirements.
3. Collaborated with IT Operations and Network Engineers to remediate vulnerabilities in critical systems.
4. Performed comprehensive risk assessments and supported internal audits of security processes.
5. Evaluated emerging threats, risks, and vulnerabilities to formulate strategic responses.
6. Reviewed security reports to identify and address potential vulnerabilities.
7. Assisted in selecting and implementing NIST security controls to enhance system protections.

Experience

5-7 Years

Level

Management

Education

B.S. Cybersecurity

Description :

1. Conducted weekly audits of information systems to identify and mitigate potential security risks.
2. Maintained up-to-date antivirus definitions across all networked workstations, reducing vulnerability risks.
3. Reviewed system maintenance logs to ensure compliance with security policies and protocols.
4. Managed user agreements and ensured proper documentation for system access.
5. Updated System Security Plans (SSPs) to reflect necessary changes and enhancements.
6. Provided guidance to users for reporting security incidents, assisting in investigations as needed.
7. Performed compliance audits of network configurations to align with regulatory standards.

Experience

0-2 Years

Level

Entry Level

Education

B.S. InfoSec

Description :

1. Provided security guidance to professionals, enhancing overall security compliance.
2. Maintained a comprehensive repository for system accreditation documentation.
3. Facilitated secure data transfers across varying classification levels.
4. Coordinated security inspections and vulnerability assessments for information systems.
5. Archived records of data transactions to ensure traceability and accountability.
6. Assisted in preparing documentation for newly installed systems to ensure compliance.
7. Investigated unauthorized information uploads to safeguard sensitive data.

Experience

0-2 Years

Level

Entry Level

Education

B.S. Cybersecurity

Description :

1. Develop and implement security policies to protect sensitive information.
2. Performed system audits and investigated questionable audit trails to ensure compliance with security standards.
3. Implemented a yearly upgrade budget to reduce repair costs and minimize system downtime.
4. Developed a comprehensive database to maintain system accreditation and accountability.
5. Conduct risk assessments to identify vulnerabilities in systems.
6. Trained personnel on insider threat mitigation strategies, enhancing organizational security posture.
7. Collaborated with cross-functional teams to address security vulnerabilities and improve overall system resilience.

Experience

2-5 Years

Level

Consultant

Education

BSc IT

Description :

1. Researched and evaluated new hardware and software to ensure compliance with security standards.
2. Maintained certification and accreditation of classified information systems to meet regulatory requirements.
3. Identified security weaknesses in classified systems and implemented mitigation strategies.
4. Documented compliance efforts in accordance with Defense Security Services and NISPOM guidelines.
5. Educated end-users on security protocols and their responsibilities in using classified information.
6. Enforced security policies to protect sensitive data from unauthorized access.
7. Responded to customer requests efficiently, ensuring timely service delivery.

Experience

0-2 Years

Level

Junior

Education

B.S. Cybersecurity

Description :

1. Performed weekly security audits, reviewing audit logs and network traffic for anomalies.
2. Coordinated quarterly information assurance training, enhancing staff awareness on cybersecurity best practices.
3. Oversaw system security configurations, ensuring adherence to security policies.
4. Managed timely security updates and patch management across systems.
5. Reviewed group and user profile settings on Windows and Unix servers to maintain secure access control.
6. Ensured compliance with Intelligence Community Directives through rigorous policy enforcement.
7. Redrafted system security plans for two classified networks, improving clarity and compliance.

Experience

2-5 Years

Level

Consultant

Education

B.S. Cybersecurity