Yyyyyy x. yyyyyy

Job Posting: JOB POSITION

Address: 0000 xxxxxx xxxx , xxxx , xxxxx 00000                       

Phone: (xxx-xxx-xxxx

Email: abc@xyz.com
Citizenship: COUNTRY

Social Security Number: XXX-XX-XXXX

 

 

Core Qualifications

 

Information Systems Security

Risk Management

Strategic Planning

Physical and Logical Security Assessment/Analysis

Performance Optimization

Presentation & Documentation

Security Requirements Subject Matter Expert

Crisis Management

Productivity/Efficiency Improvement

Proposal Review & Drafting

Decision-Making

DHS Environment Knowledge

Certification and Accreditation Subject Matter Expert

Federal Information Security Management Act (FISMA) Reporting and Implementation Specialist

Federal Acquisitions and Procurements

 

 

Professional Experience

 

MITRE CORPORATION - MITRE Corporation

0000 xxxxxx xxxx , xxxx , xxxxx 00000; 8/2005-Present

Supervisor:  May Contact - John Braden xxx-xxx-xxxx                                 Starting Salary: $XXX,XXX/yr

Hours:  40-50 per Week                                                                                  Ending Salary: $125,000/yr

 

Lead Information Security (INFOSEC) Engineer, Department of Homeland Security (DHS) Chief Information Security Officer (CISO) Support; 8/2005-Present

 

Actively collaborate with the DHS Chief Information Security Officer (CISO) in all information security matters, exhibiting strong communication and interpersonal relation skills.  Conduct comprehensive policy reviews and recommendations, FISMA coordination and remediation, acquisition/procurement reviews and recommendation, certification and accreditation training/assistance and DHS Security Conference coordination.  Effectively plan, coordinate and host DHS Security Activities Working group (SAWG) meetings to promote team building and collaboration to achieve operational goals and timelines.

 

Relied upon to lend information security expertise in reviewing and evaluating proposals for DHS contract awards for future projects.  Applying detail orientation and advanced writing skills, serve as contributing author to the following MITRE documents to the CISO: MITRE project statement of work, IT security remediation CONOPS, DHS Certification and Accreditation process, DHS CISO Newsletter, SAWG meeting notes, and DHS Service Level Metrics guide.  Proficiently prepare and deliver information security presentations at the yearly DHS Security Conference.

 

 

 

 

 

 

 

page 1 of 4

Yyyyyy x. yyyyyy

Job Posting: JOB POSITION

Social Security Number: XXX-XX-XXXX                                                                                  page 2 of 4

 

 

Conduct detailed review and analysis of DHS component plan of actions and milestone (POA&M) issues in order to identify and recommend effective solutions.  Train and motivate ISSOs and system owners on the proper use of Trusted Agent FISMA (TAF) and Risk Management System tools to complete C&A documentation and report on status, playing an instrumental role in their education and development.  Proactively support DHS Component ISSOs in completing C&A documentation in a timely manner and assist in writing TAF Change Control process.

 

 

SCIENCE APPLICATIONS INTERNATIONAL CORP. (SAIC)

0000 xxxxxx xxxx , xxxx , xxxxx 00000; 8/1993-8/2005

Supervisor:  May Contact - Patrick Berkebile, 202-261-9000                         Starting Salary: $XXX,XXX/yr

Hours:  40-50 per Week                                                                                  Ending Salary: $106,000/yr

 

RISK Manager, Immigration Naturalization Service (INS)/Department of Homeland Security (DHS) Service Technology Alliance Resources (STARS) Program; 6/2001-8/2005

 

Contributed dynamic leadership skills in managing a team of security analysts and engineers to identify computer security risks and develop documentation and procedures necessary for Site security certification and accreditation (C&A).  Illustrated sharp analytical and organizational abilities in preparing diverse documentation including: risk assessment (RA) reports, security test and evaluation (ST&E) reports, security features user's guides (SFUGs), sensitive system security plans (SSSPs), contingency/disaster recovery (CP/DR) plans and Plan of Actions and Milestones (POAMs).

 

Ensured INS/DHS computer system security officers (ISSOs) and program managers were properly educated on C&A documentation development by teaching comprehensive courses and trainings.  Tracked project activities and status in Microsoft Project 2000, integral to achieving goals and timelines.  Proactively attended and participated in numerous seminars and security conferences to maintain up to date on current industry trends; presented new information to senior management to ensure they are properly informed on new security concepts and products.  Appointed and served as Master User in carrying out PKI duties.  Contributed to business development by using proactive prospecting techniques to generate new customers and applying industry expertise and strong communication skills to effectively market information security services.

 

 

Project Manager, United States Peace Corps; 9/2001-3/2003 

 

Built and established key relationships and liaised effectively with Peace Corps Computer Security Program Manager and Computer Security Program Director to market SAIC s capabilities.  Successfully managed all aspects of the proposal-writing process to win a $400,000 contract.  Provided deliverables (Peace Corps Server configuration guide, systems security guide and NT overseas guide) on time and within budget by strategically allocating resources and directly leading a team of engineers and a technical writer.

 

Spearheaded diverse managerial activities ranging from hiring and training to salary negotiations and performance evaluation.  Demonstrated exceptional interpersonal relation skills in serving as the primary point of contact with the Peace Corps Project Manager and Contracting Officer (COTR) to discuss management, timeline and budget issues.

 

Designed and developed bi-weekly status reports and held bi-weekly meetings with Peace Corps Project Manager and staff to report on project status and brief SAIC senior staff on project status and staff performance.  Facilitated quality assurance and critical compliance by comprehensively reviewing and approving all deliverables in accordance with NT and mainframe security policy/procedure for submittal to clients.

page 2 of 4

 

Yyyyyy x. yyyyyy

Job Posting: JOB POSITION

Social Security Number: XXX-XX-XXXX                                                                                  page 3 of 4

 

 

IT Security Analyst, Immigration Naturalization Service (INS) Service Technology Alliance Resources (STARS) Program; 5/2000-6/2001   

 

Collaborated with and supported CSSOs in developing C&A documentation for 30+ systems in the INS Management portfolio.  Effectively prepared and developed documents including: risk assessment reports, security test and evaluation reports, security features user s guides, sensitive system security plans, and contingency/disaster recovery plans, with strong focus on optimizing productivity and efficiency.

 

 

IT Security Analyst, Internal Revenue Service (IRS) Service Center Mainframe Consolidation (SCMC) Project; 9/1997-5/2000 

 

Successfully supported IRS in achieving security certification and accreditation for all IRS systems that process sensitive but unclassified (SBU) data by effectively performing security activities.  Applying strong attention to detail, conducted site visits to determine IRS compliance with the Treasury Department s baseline security requirements.  Conducted comprehensive risk assessments to proactively identify security threats and vulnerabilities and recommend risk mitigation strategies. 

 

Instrumental member in SAIC s IT security engineering team, with full accountability for developing the various IRS security reports and documents including: standard C&A documentation, security design documents (SDD), trusted facility manuals (TFM), privacy impact assessments, and configuration management plans.  Educated team members on diverse security concepts and issues through afternoon seminars, exhibiting strong leadership and industry knowledge.  Steered the evaluation and recommendation of security products (access control tools, firewall and VPN products) for the IRS. 

 

 

Systems Analyst, U.S. Patent and Trademark (US PTO) Biotechnology and Electronic Filing Projects; 3/1995-9/1997

 

Innovatively designed and developed statistical models to explain future growth of sequence-bearing patent applications.  Performed vendors UNIX-based system reviews and testing to effectively determine feasibility of use in the PTO s Biotechnology Department. 

 

Conducted technical research and analysis and strategically defined enterprise-wide hardware and software standards instrumental to boosting productivity, efficiency and quality.  Drafted documents identifying and recommending alternatives to the agency s existing hardware and software platforms.  Independently developed and prepared the PTO s Electronic Filing Implementation Guide (IG).  Prepared numerous comprehensive documents and provided recommendations on the viability and operation of: electronic data interchange (EDI), value added networks (VANs), and electronic filing security including digital signature and data encryption.  In addition, documented interchange standards in an electronic filing environment.

 

 

Systems Analyst, Department of Energy (DOE) Environmental Management Systems Project (EMS); 9/1993-3/1995

 

Successfully supported the structuring, development and implementation of executive-level management systems on the U.S. Department of Energy s internal LAN (Novell 3.11), substantially improving performance.  Maintained full accountability for the documentation, training and support for all 30 LAN database systems; identified and addressed existing and potential issues and created proactive upgrades and enhancements for optimal results.

 

page 3 of 4

 

Yyyyyy x. yyyyyy

Job Posting: JOB POSITION

Social Security Number: XXX-XX-XXXX                                                                                  page 4 of 4

 

 

Supervised the development of an on-line bulletin board system to assist the U.S. Department of Energy in educating the public and disseminating key information, emphasizing efficiency and accuracy.  Proficiently oversaw and administered a FoxPro client-server application on a remote Novell NetWare Access Server, further illustrating strong technological skills.

 

 

Education

 

Masters of Science in Management Information Systems (MIS) - University of Maryland University College, Graduate School of Management & Technology (College Park, MD), 2001

Bachelor of Arts in Communications - State University of New York at Albany (Albany, NY), 1986; Cum Laude

 

 

Certifications

 

Project Management Professional (PMP) - Project Management Institute (PMI) PMP material through MITRE study group, 2006

Certified Information Systems Security Professional (CISSP) - ISC2 material through SAIC Study Group, 2004 

Certified Novell Engineer (CNE), Professional Certificate in Data Communications & LAN Administration - New York University & SOMA Network Center (New York, NY), 1993, 1996, 1997, 1998

Certified Novell Administrator (CNA)

Training

 

NIST Risk Management Framework Training, 2008
PMP training, MITRE Corporation, 2006
Trusted Agent FISMA (TAF) training, 2005
SecureInfo Risk Management System (RMS) C&A Tool training, 2005
Certified Information System Security Professional (CISSP), 2004
Public Key Infrastructure (PKI) Computer-Based Training, 2003
Technical Writing Course, McLean, VA, 1995
Novell Netware 4.1, U.S. Connect Novell Training Center, McLean, VA, 1995

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Page 4 of 4