Goal-oriented IT professional with significant success in planning, analyzing and implementing of security plans and initiatives. Excel in developing comprehensive, secure network designs and systems.
. Advise Information System Owner (ISO) of security impact levels for Confidentiality, Integrity and Availability (CIA) in accordance with FIPS 199 & NIST SP 800-60 and providing support and guidance through the phases of FISMA C&A, including monitoring annual self-assessment (NIST SP 800-53A guidelines).
. Prepare audit reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions.
. Assist the A&A of the DoS environment in identification of vulnerabilities across relevant system operators and ensuring the proper logging, management and reporting of all security events and exceptions.
. Work with system owners to address POA&M (Plan of Action and Milestone) and continual system security evaluation processes and finding.
. Maintain proper artifact collection and illustrate to clients artifacts that satisfy assessment standards.
. Test the evidence of the technical controls and document the tests in our assessment results systems of record.
. Providing Information Assurance support to the organization's client.
. Support the development of security documentation including System Security Plans (SSP) and Security Controls in accordance with NIST publications and the Risk Management Framework leading to system Authorization to Operate (ATO).
. Conduct security testing and security control assessments on the organization's applications and general support systems to ensure compliance with the NIST SP 800-53 Rev. 4, NIST 800-37 Rev.5, and agency-specific requirements.
. Review and compile the security control implementations, test results, Security Assessment Reports (SARs), Plan of Action and Milestones (POA&M), risk acceptance recommendations, and risk mitigation strategies to support the recommendation for client risk acceptance authorization decisions.
. Technically assess both major application and general support system security configurations and implementation.
. Manages, maintains and reviews Certifications and Accreditation documents for supported Automated Information Systems to ensure compliance with the organization and Intelligence Community Risk Management Framework (RMF) standards.
. Performed system categorization and selects security controls using FIPS 199/200 and NIST SP 800-60/ NIST SP 800-53 for clients Systems.
. Develop and review Security Assessment Report (SAR), Risk Assessment Report (RAR), System Security Plan (SSP), Plan of Action and Milestones (POA&M), and Security Control Traceability Matrix (SCTM).
. Test, assess, and document clients' IT systems for Assessment and Authorization (A&A) in accordance with NIST Special Publication 800-53A.
. Gathered data to complete Security Test & Evaluation (ST&E) required managing risks and threats in systems.
Resumes, and other information uploaded or provided by the user, are considered User Content governed by our Terms & Conditions. As such, it is not owned by us, and it is the user who retains ownership over such content.
Many factors go into creating a strong resume. Here are a few tweaks that could improve the score of this resume:
Job Titles Held: