Sep 2021 – Dec 2023 · 2 yrs 3 mos · Remote · Remote

• Sole developer and maintainer of team scripts to efficiently operate and manage Venafi. Team scripts include new cert owner folder creation, new cert/device/app object creation for automation, monitoring of automation status, weekly management reports, and a simple-to-use corporate tool to determine cert ownership based on thumbprint, serial number, common name or subject alternative name
• Developed ServiceNow (SNOW) integrations to solve specific team challenges
• Developed and maintained enterprise-scale Venafi adaptable framework drivers
• Developed and maintained numerous Venafi sysadmin automation scripts. Primary Venafi sysadmin
• Enterprise SME for Venafi CodeSign Protect
• Re-factored existing corporate codebase from API Key to OAuth
• Manage data-in-motion security exception requests
• Consult on devops certificate automation
• Developed Powershell functions of Venafi API endpoints for corporate devops users
• Responsible for training junior members on team Processes, Procedures and Tools
• Keywords: Venafi, API, PowerShell, X.509, PKI, Public Key Infrastructure, PKI, System Administration, Information Security

Apr 2019 – Sep 2021 · 2 yrs 5 mos · Pensacola, Florida Area

• Enterprise X.509 certificate / asymmetric encryption SME
• Significantly reduced unplanned outages due to certificate expiration
• Revised and modernized corporate X.509 certificate policy. Re-wrote to RFC 3647 CP / CPS standards
• Sole corporate PKI certificate automator via Venafi API
• Automated ITSM / ServiceNow integration with Venafi API and PowerShell
• Architected, championed, developed and implemented Venafi API cert automation solution to corporate ATMs
• Architected, championed, developed and implemented Venafi API cert automation solution to IoT devices
• Architected, championed, developed and implemented Venafi API cert automation solution to Dell iDRACs
• Developed DevSecOps interfaces with Venafi Trust Protection Platform
• Venafi System Administrator
• Established a training curriculum for junior team members regarding Venafi and general RFC 5280 knowledge
• Keywords: Venafi, API, PowerShell, X.509, PKI, Public Key Infrastructure, PKI, System Administration, Information Security

Oct 2016 – Apr 2019 · 2 yrs 6 mos · Telecommute

• Information Protection Manager for Cigna Health Insurance. Supporting Cigna Information Protection, Public Key Infrastructure department. Automate, streamline, and improve the efficiency of Cigna’s PKI certificate management. Currently developing Application Programming Interface (API), designing automation architecture, selecting appropriate technology stacks, conducting Use Case analyses, and building project team infrastructure.
• Revamping global enterprise business process of requesting, installing, and managing PKI certificates. Develop microservices and API for internal developers to consume PKI services for their disparate endpoints.
• Keywords: PKI, Public Key Infrastructure, Automation, Information Security, Powershell, Microservices, API Development, Python, Jenkins, OpenSSL, X.509, 802.1X, Certificates, Venafi

Feb 2016 – Jul 2016 · 5 mos · Remote

• Assess information security of EMC products for delivery to Federal and commercial customers. Develop hardening guides for virtual data center products. Install, configure, and assess virtual appliances to verify conformance with DISA and NIST guidelines.
• Document security vulnerabilities and interact with engineering teams for remediation. Establish virtual lab for installation and configuration of virtual appliances.
• Keywords: NIST 800-53, PKI, Security Technical Implementation Guides (STIG), Data Domain, Remediation, Risk Assessment, ViPR SRM, ViPR Controller, VMware vApp, SAN, SDDC, SRG, DISA

Dec 2015 – Dec 2016 · 1 yr · Remote

• Contract Application Security Consultant / STIG Engineer for VMware. Supporting Federal Compliance Initiative for vRealize Automation (vRA) and vRealize Operations Center (vROps) product lines.
• Analyze product components, identify security issues, and create hardening checklists. Principle focus on web servers and web applications. Develop automation scripts, codes, and commands for for vendor security guidelines. Liaison with Defense Information Systems Agency (DISA) for development of Security Technical Implementation Guides (STIGs) and Open Vulnerability and Assessment Language (OVAL) content. Create security mitigation strategies.
• Keywords : Application Security Automation, STIG, SRG, Virtual Appliance, NIST, DISA, Web Server Hardening, SuSE Linux, Apache, Tomcat, TC Server, SDDC, Cloud / IaaS Security, OVAL, IIS

Aug 2015 – Dec 2015 · 4 mos · Newport News, VA

• Principle cyber security scripting & automation developer, Information Assurance Section, USAF AOCWS 10.2 Modernization Program.
• Product manager and primary developer / maintainer of software tool suite that has reduced vulnerability assessment labor requirements for a 200 mixed-host system-of-systems by 90%.
• The suite of tools provide end-to-end automation of the IA business process. Included are automated Security Technical Implementation Guide (STIG) compliance checks (85% automation of Windows, 75% automation of Linux), metadata referential integrity checks, vulnerability file aggregation, maintenance of current system vulnerability status, integration with SCAP data, version control for vulnerability updates from DISA, and reporting. Reporting of all types are supported; from ad hoc to USAF POA&M.
• IA Section business process developer. Re-defined business processes and re-aligned section resources to maximize IA productivity.
• Design, develop, and maintain Data Integrity systems and business practices.
• Keywords: PowerShell, Linux, Information Assurance, DIACAP, STIG, ACAS, POA&M, Business Model,SQL, RMF, Cyber Security, Automation, Scripter, Innovator

Feb 2015 – Jul 2015 · 5 mos · Newport News, VA

• Responsible for developing scripts that improve Information Management and data integrity for the Information Assurance team of the Northrop Grumman Air Operations Center Weapon System (AOCWS) 10.2 development project.
• Developed Windows STIG-compliance automation program (OSCR). Combining PowerShell, .NET, XML parsing, XCCDF, Linux bash, VMWare, PuTTY, SQL, SCAP, STIG Viewer, and other DISA tools, the tool has significantly reduced IA labor requirements and improved project data integrity.
• Developed procedures for enhancing communication, coordination, and collaboration among IA team members to continuously improve data integrity metrics.
• Developed PowerShell utility (PARVATI) for automated Business Rule compliance. PARVATI monitors IA information flow to ensure external and internal data consistency with overall project metadata.
• Developed UNIX / Linux STIG-compliance companion (SONAR) to OSCR. SONAR is a bash script adjunct that automates manual compliance checks for Linux machines.
• Revamped and improved information management process of IA department. Northrop Grumman units external to AOCWS; e.g., Joint Stars, GCCS-J, etc.; have requested briefings on the combination of scripts, programs, and procedures that have dramatically improved AOCWS IA data management.
• Supervision of Scripting and Automation team members for project IA section.
• Northrop Grumman Cyber Division exercised hiring clause in temp-to-hire contract.
• Keywords : PowerShell, Linux, bash, Information Assurance, Cyber Security, SQL, Business Model, PuTTY, SSH, CompTIA Sec+ (CE)

Nov 2014 – Dec 2014 · 1 mo · USMCR HQ, New Orleans, LA

• Designed and implemented Sharepoint access control security policies and procedures in advance of HQMC C4I Cyber Command Readiness Inspection (CCRI). The new policies enforce least privilege and implicit denial doctrinal guidelines in accordance with DoDI 8500.01, March 14, 2014. Created training materials to monitor and evaluate compliance.
• Reviewed system configurations to ensure compliance with security requirements and compliance with SECNAV INST 5211.5E, Department of the Navy (DON) Privacy Program.
• Compliance review of established standards, guidelines, policies, and procedures. Provided recommendations to senior leadership to mitigate Information Security risks in accordance with DoDI 8510.01, Risk Management Framework (RMF) for DoD Information Technology (IT), March 12, 2014.
• Key Terms: Sharepoint Development, Cyber Security, Information Assurance, Personally identifiable information (PII), Compliance, DoD, SaaS, Entrepreneur

Jun 2006 – Jun 2015 · 9 yrs · Pensacola, Florida Area

• Founded, grew, and sold SaaS business.
• Designed, developed, marketed, and sold proprietary CRM SaaS. CRM integrates with Payments Gateway, GMail / GCal, referral program, help desk system, and multiple leads sources. Responsible for ensuring PCI compliance.
• Consultant to DoD Prime contractors on Aviation Command and Control software. Responsible for SME interviews, UML, BPEL, and BPMN documentation of software requirements. Developed web surveys and conducted workshops to gather requirements. Designed User Experience, dashboards, and optimization algorithms for workflows.
• Key Terms: CRM, Marketing Automation, SaaS, DoD, Command & Control

Jan 2003 – Jul 2014 · 11 yrs 6 mos · Greater New Orleans Area

• 10+ years experience in all aspects of security, information assurance, data architecture, quality assurance, and configuration management for IT solutions across an enterprise. Responsible for IT procedure development and policy auditing. Member of Configuration Management Control Board. Successful implementations of secure macro- and micro-scale data portals and visualizations to facilitate seamless information collaboration across institutional and functional boundaries.
• Information Management Officer for MFR, 4th MAW, 3rd MAW.
• Developed, implemented, and maintained a three-tier Marine Corps Reserve scheduling, reporting, and payment system. Ensured compliance with DISA STIGs for web application security.
• Led DIACAP Certification and Accreditation process for in-house developed web applications.
• Developed and maintained Flash Reporting system.
• Managed IT department.
• Key Terms: Sharepoint, web development, SQL, jQuery, SSIS, SSRS, AJAX, SPServices, JavaScript, HTML, CSS, Information Assurance, Cyber Security, XSS, XSRF, Session Hijacking, Cross-Site Scripting, Cross-Site Request Forgery

Oct 1998 – Sep 2006 · 7 yrs 11 mos · Pensacola, Florida Area

• Conducted engineering simulation, modeling, and optimizations to solve chemical process bottlenecks in the company. Provided corporate-level functional expertise in Computational Fluid Dynamics. System administrator for UNIX supercomputer.
• Automate and optimized model runs via extensive UNIX and proprietary scripting.
• Presented modeling successes to national and international engineering simulation/modeling conferences. Presented data visualization best-practices to R&D department scientists.
• Conceptualized, developed, and implemented web services that enabled front-line engineers to use a corporate supercomputer to solve and visualize ad hoc engineering problems.
• Key Terms: Modeling and simulation, Professional Engineer, Computational Fluid Dynamics, CFD, Finite Element Analysis, FEA, R&D, UNIX, System Administrator, bash scripting, Data Visualization

Jan 1992 – Oct 1998 · 6 yrs 9 mos · Lake Charles, Louisiana Area

• Provided subject matter expertise for custody transfer measurement systems for refining, pipeline, and crude oil gathering operations.
• Represented Conoco on the American Petroleum Institute’s Committee on Liquid Measurement.
• Project manager for pipeline and refinery projects.
• Led and championed improvements to accounting systems and techniques for custody transfer business processes.
• Key Terms: Project Engineer, Metrology, Project Manager

Jul 1980 – Dec 1991 · 11 yrs 5 mos · Various

• Squadron pilot. Desert Shield / Storm. Embarkation officer. Prior enlisted.