Functional Skills
Project Management
Disaster Recovery
Risk Management
Regulatory Compliance
AI Risk Management
Cybersecurity
Communications
Information Security Management
Software Skills
AWS
Active Directory
Network monitoring
Intrusion Prevention Systems (IPS)
Firewall
DDOS
Configuration management
Cloud computing
Cisco networking
Automated tests
Certifications
CISSPCertified Information Systems Security Professional
CSSLPCertified Secure Software Lifecycle Professional
SSCPSystems Security Certified Practitioner
Sector Experience
Business Services
Social & Public Sector
Technology
Languages
English
Notable Clients
Booz Allen Hamilton
Department of Justice
Internal Revenue Service
Experience
SecurityPoint
Information Technology
Security Principle / Cybersecurity SME / Independent Consultant
11/2016 - Present
Security Principle, U.S. Department of Treasury, Internal Revenue Service (IRS) Spearheading security strategy and implementation for one of the largest federal IT modernization initiatives - the IRS Enterprise Data Platform (EDP). As Security Portfolio Lead, I direct multiple critical workstreams for vulnerability management/cyber hygiene, security compliance, and user access. Driving security between cross-functional teams for a transformative platform that delivers secure enterprise-wide data access across the Internal Revenue Service.
Rolling Bay
Information Technology
Vulnerability Program Manager
2/2014 - 11/2016
U.S. Department of Justice (DOJ), Bureau of Alcohol, Tobacco, Firearms and Explosives (ATF) managed the ATF vulnerability management program, ensuring the protection of agency infrastructure from threats and vulnerabilities. Tracked daily progress of vulnerability and agency cybersecurity initiative, providing daily reports to senior management. Chaired the vulnerability management working group, overseeing teams throughout the agency. Led recurring and ad-hoc vulnerability meetings, including those with auditors. Monitored dashboards and scorecards to ensure agency compliance with goals and targets, providing necessary updates and assessing for anomalies while offering recommendations for remediation. Conducted preliminary security impact assessments for ad-hoc and requests related to change control and configuration management.
Networking Institute of Technology
Operations
IT Security Analyst
3/2011 - 2/2014
IT security analyst conducAng mulAple short-term engagements to include the below projects:
● U.S. Department of Justice (DOJ), JusAce Management Division (JMD) Managed security independently, assessed security controls using CSAM security tool and addressed vulnerabilities. Collaborated on audits, documented findings, and provided recommendations for public reports. Assisted with security assessments and security policy updates.
U.S. Security and Exchange Commission Office of Inspector General (SEC OIG) collaborated with auditors on 5 Congress-bound audit projects. Assessed findings, documented causes, and recommended remedies for public and congressional reports. Ensured accurate, timely, and compliant delivery of audit outcomes.
● Federal Housing and Finance Administration Office of Inspector General (FHFA OIG) conducted 2 full NIST-based security assessments for general support systems and 1 pre-audit assessment.
● U.S. Department of Justice (DOJ), JusAce Management Division (JMD) Managed security independently, assessed security controls using CSAM security tool and addressed vulnerabilities. Collaborated on audits, documented findings, and provided recommendations for public reports. Assisted with security assessments and security policy updates.
U.S. Security and Exchange Commission Office of Inspector General (SEC OIG) collaborated with auditors on 5 Congress-bound audit projects. Assessed findings, documented causes, and recommended remedies for public and congressional reports. Ensured accurate, timely, and compliant delivery of audit outcomes.
● Federal Housing and Finance Administration Office of Inspector General (FHFA OIG) conducted 2 full NIST-based security assessments for general support systems and 1 pre-audit assessment.
Baltimore Multimedia
Information Technology
IT Operations Technician
1/2007 - 3/2009
Installed and configured internet and network systems for commercial and residential use. Provided technical support, using analytical skills to diagnose and resolve connectivity issues, ensured telecommunication availability, and repaired hardware/software. Applied anti-malware software, security patches, and enhanced operating system security.