Sep 2016 – Jan 2019 · 2 yrs 4 mos · El Segundo, California

• Managed the planning and execution of the $1.1M contract to provide Enterprise Cybersecurity Risk Management oversight, recommendations and guidance to the GPS program office
• Developed the GPS Enterprise Cybersecurity Integrated Product Team (IPT) charter, developed the scope of influence for the Cyber IPT and provided information transfer presentation that improved leadership’s ability to positively impact resource allocation and security posture
• Planned and lead the implementation of the NIST Cybersecurity Framework (CsF) to assess the GPS Enterprise current and desired cybersecurity profiles, developed the cybersecurity roadmap for assessment and risk mitigation activities to which provided organization, resource management and consistent and actionable risk intelligence to organizational leadership
• Developed the GPS Enterprise Cybersecurity Management Strategy and lead the development and continuous improvement of enterprise level processes and governance
• Coordinated, developed and evaluated the security programs for the GPS enterprise and provided recommendations to improve the organization’s threat intelligence processes which improved their cyber defense agility and sustainability
• Supported customers with coordination at the C suite level in the development and implementation of cyber doctrine and policies
• Coordinated with the AT&T Chief Security Office to develop a Threat Intelligence capability, conducted customer demonstration and recommended implementation activities for monitoring systems to detect threats proactively and integrate with the Security Operations Center to implement risk mitigation activities according to risk prioritization and operational policies
• Conducted business development activities to include expert PWS review, past performance analysis and development, and partner briefings on AT&T capabilities and offerings

Feb 2016 – Sep 2016 · 7 mos · Gardena, Ca

• As the principal security officer for the enterprise, I am responsible for driving the security strategy and implementing security practices that reduce risk to the information systems that power the firm's state of the art voice and collaboration services. My team adds value to the business by achieving security certification and authorization that validates our commitment to providing a secure product which provides customers with peace of mind and added value. Our strategic implementation of a cybersecurity defense in depth security approach aligns with industry and federal standards such as the NIST SP 800-37 and SP 800-53 Rev. 4 and Center for Internet Security (CIS) standards. As both a leader and contributor, I support business goals by ensuring product quality and sustainability through continuous assessment and change management processes.
• Responsibilities Include:
• Develop Security Authorization deliverables including the System Security Plan, Security Assessment Plan and Report, Annual Assessment Plans, Vulnerability Assessments
• Develop and improve existing Policies and Procedures that align with the NIST SP 800-53 Rev. 4 security control families
• Direct strategy, plan and implement technical security tools to reduce risk
• Facilitate security audits
• Execute budget
• Direct all Security Incident Response, Disaster Recovery and Continuity of Operations Planning (DR/COOP)
• Drive the completion of Security projects

Aug 2015 – Feb 2016 · 6 mos · Glendale, CA

• Direct the security program to improve security operations and company wide security posture through proper planning and implementation of security processes and technical solutions.
• Responsible for the proper configuration of the firm's layered network defenses.
• Strategic planning increased security programs and solutions to protect business and customer facing products
• Facilitate Security Audits to include NIST SP 800-53 Rev. 4 controls, SANS Top 20 Critical Security Controls, OWASP Top 10, and Service Operations Controls (SOC).
• SIEM, IDS/IPS, HIDS, malware analysis and protection, content filtering, logical access controls, identity and access management, and data loss prevention, content filtering technologies, application firewalls, vulnerability scanners, forensics software,
• Security incident response, Disaster Recovery and Continuity of Operations Planning (DR/COOP)
• Properly budget for annual security audits and solutions
• Manage security projects from initiation to close-out

Sep 2011 – Jul 2015 · 3 yrs 10 mos · El Segundo, California

• Provided Subject Matter Expert advisement on acquisition and contracting efforts, to include RFQ and SOW requirements review and revision for a new Earned Value Management system of tracking project performance based on Estimate to Completion, Estimate at Completion and other Financial and Project Management metrics
• Reviewed and interpreted all changes to Air Force, DoD, and Federal policies, instructions, and regulations to ensure that local information systems and processes were compliant
• Interpreted Information Assurance policy, maintain Certification & Accreditation packages, responded to and resolved Classified Message Incidents (CMI)
• Developed rapport with multiple business units to become their Go To Guy for information security questions, which led to increased cooperation and security planning in the Initiation phase of all new projects
• Worked with all communications division departments to ensure compliance with applicable regulations and guidance to include security implementation, contracting, acquisition of new systems, program development, budget execution, asset management, and strategic planning for secure intelligence communication systems
• Successfully managed the network security boundary modification request process, which includes request analysis, risk assessment, approval recommendation and execution coordination
• Actively engaged with system administrators and infrastructure team to identify threats or high risk practices and improve the local enclave security posture
• Developed and implemented a new software vulnerability evaluation and certification process which greatly reduced the risk of adding malicious software to the network
• Performed supervisory responsibilities over the Contractor Team responsible for Information Assurance, Information Management and provided direction of their the Knowledge Management operations

May 2009 – Oct 2011 · 2 yrs 5 mos · Missile Defense Agency Program Office in El Segundo, California

• I worked as a contractor for the Missile Defense Agency located at LA AFB, El Segundo. My role is to provide technical engineering, advise and assistance the STSS Program in order to ensure that their mission requirements are met. As a customer relationship engineer, I am applying my skills as a Project Management Professional to ensure timely planning, requirements gathering, and execution of information systems that support the program business functions. I interact with the MDA CIO office to ensure that my customers requirements are being addressed and that the MDA Program Manager can focus on mission essential tasks without having to be concerned about his command and control communications. My role reaches into every aspect of information technology, to include information assurance and security, network engineering, circuit establishment and trouble-shooting, as well as hardware and software management.

Aug 2006 – May 2009 · 2 yrs 9 mos · Irvine, CA

• Directed the Information Systems support of over 18000 end users and 5000 systems in over 300 geographically separated locations
• Initiated and managed the project to develop Thin Client technology for use as Point of Sale and Intranet systems that yielded over $500,000 a year profit ROI through savings in hardware procurement, energy consumption and maintenance as well as improved the user experience. Gained executive approval where others failed, through benefit to cost analysis and a structured approach to testing and deployment.
• Successfully analyzed IT and business processes such as; Accounts Payable, Asset Management and Logistics, IT asset deployment for new and replacement service requests and initiated projects that improved IT and business process efficiency
• Conducted meetings with the security team to plan, coordinate and implement information assurance controls to protect the business information systems in order to maximize their Integrity, Confidentiality, and Availability
• Participated in a Purchase Card Industry (PCI) audit and worked with the auditor and staff to remedy identified vulnerabilities
• Directly managed the planning and execution of over 60 new sites and a complete corporate office relocation.
• Managed various occupational specialty teams, which included the IT Help Desk, Advanced Support, and Application Development Quality Assurance Professionals in an Agile SDLC environment, and Telecommunications provisioning, PBX and VOIP support.
• Analyzed costs associated with supporting the IS equipment at the sites and implemented process controls and change in order to minimize cost.
• Briefed the CIO and Executives of Information Systems challenges and shortfalls, recommended changes in equipment, policies, and procedures and implemented approved changes

Aug 2004 – Sep 2006 · 2 yrs 1 mo · Marine Corps Logistics Base, Barstow, California

• Manage the budget for the Telecomm services, manage customer requirements and determine the most efficient contract vehicle.
• Plan and implement projects to accomplish information assurance/security compliance tasks, i.e. vulnerability scans and remediation, Communication Tasking Orders, Disaster Recovery Plans, and system documentation.
• Direct the operations of the Marine Corps legacy network systems to include MS Exchange servers and file servers, Defense Message System, Secret Internet Protocol Router Network and the Global Command and Control System node.
• Direct and manage all Cellular and Telephone Communications operations, procurements, and acquisitions. Manage the Nortel PBX suite, maintain the hardware and software updates, e911 services, circuit provisioning, and billing.
• Published Information Security policy and procedures. Implement and manage project resources, budgets and stakeholder expectations; tracking and reporting the status of each project to improve the communications infrastructure, customer service, and operations of the logistics base’s radio, data, and telecommunications services.
• Director of Communications Staff
• Directly worked with and managed the information assurance team to comply the Marine Corps Network Operations and Security Center to implement the controls and procedures required for the classified and unclassified systems.
• Participated in quarterly Information Assurance meetings to discuss Continuity of Operations Planning and Disaster Recovery in addition to ensuring that the all of the systems documentation was maintained appropriately
• Site Transition Manager for matters pertaining to the NMCI contract for installation. Approval authority for contract milestones. Led performance metrics discussion meetings with the contractor and provided feedback to their qualitative (based on customer surveys) and quantitative scores.

Oct 2002 – Aug 2004 · 1 yr 10 mos

Sep 2001 – Oct 2002 · 1 yr 1 mo

• Direct the network planning, engineering, installation, and maintenance of the 3d Marine Division staff's tactical Command and Control data network and ensured the confidentiality, availability, and integrity of mission essential data.
• Manage the deployment projects to include resource allocation, Work Breakdown Structure, timelines/schedule, stakeholder expectations, goals and objectives.
• Direct the operations of the tactical command and control network systems to include satellite communication bridges, network interconnection devices, MS Exchange servers and file servers, Defense Message System, Secret Internet Protocol Router Network and the Global Command and Control System network.
• Integrated a tactical encrypted wireless LAN equipment (EPLRS) with the command and control Cisco based Secure Internet Protocol Router Network to provide data connectivity and situational awareness while in transport.
• Ensured proper configuration of communications equipment to enable senior staff members to send/receive email traffic, map overlays, mission plans, and correspondence to effectively manage and command subordinate units.
• Accountable for the security, operations, and maintenance of over two million dollars worth of data communications and Communications Security equipment.
• Successfully managed an Electronic Key Management System (EKMS) account of over 30 cryptographic and communications security items.

Jun 1997 – Jun 2000 · 3 yrs

• Operated the Tropo-scatter and Line-of-Site multi-channel microwave radio communications for data and voice network transport for the communications squadron.