Information Assurance Manager Resume Samples

Description :

1. Managed all aspects of the First Army IA program including rewriting the NIPR/SIPR Tenant Security Plans (TSP) which are incorporated into the installation DIACAP to obtain network connectivity.
2. Provided all the IA support, Army Portfolio Management System (APMS) documentation, and coordination for a successful Agent of the Certification Authority (ACA) assessment team visit for our NIPR/SIPR SANS Systems.
3. Recommended result from the team was a full Authority To Operate (ATO).
4. Created a Nonsecure Internet Protocol Router Network (NIPRNet) TSP (along with my other duties) and negotiated approval with the local Network Enterprise Center.
5. Created and submitted a Secret Internet Protocol Router Network (SIPRNet) TSP which was approved.
6. Planned massive efforts that required to analyze and collect system and network data.
7. Required for large Government organizations to connect to the Government data networks.

Experience

2-5 Years

Level

Junior

Education

BS

Description :

1. Oversaw of 74 servers and over 1800 computer systems.
2. Prepared system accreditation documentation.
3. Generated all Security and Computer policies and procedures.
4. Performed duties as a System/Network administrator.
5. Served as the coordinator of the Configuration Control Board to review any recommended changes to the IT infrastructure.
6. Generated new network accounts utilizing Microsoft Exchange Server.
7. Assisted Government personnel on completing EPSQ (Electronic Personnel Security Questionnaire) for security clearance.
8. Served as the installation DOD Area Frequency Coordinator.
9. Repaired and replaced computer systems as necessary.

Experience

2-5 Years

Level

Junior

Education

Associates

Description :

1. Serves as Alternate Information Assurance Manager (IAM), Trusted Agent (TA), and Network Security Officer (NSO) for all Joint Interoperability Test Command (JITC) White Sands Missile Range testbed infrastructure IA accreditations.
2. Assists IAM with assessing and mitigating system security threats and risks throughout the program life cycle.
3. Reviews/address notices (i.e., vulnerability alerts, tasking orders, warning orders, and other DoD directives).
4. Applies security risk assessment methodologies to system development; assessing and auditing JITC networks.
5. Verifies and registers all systems in information management systems such as but not limited to Department of Defense (DoD) Information Technology (IT) Portfolio Repository (DITPR), Enterprise Mission Assurance Support System (eMASS), Secret Internet Protocol Router Network (SIPRNet), GIG Interconnection Approval Process (GIAP) System (SGS), and Assured Compliance Assessment Solutions (ACAS).
6. Maintains and tracks JITC personnel basic and privilege user agreements, IA training, and commercial certifications.
7. Administers Information Assurance Policy and Technology (IAP&T) and System Administrator exams. Conduct security assessments and produce reports with the results and findings.
8. Develops Plan of Action & Milestone (POA&M) process and implementation strategy.
9. Recommends improvements and identifies metrics for remediation of information security weakness.

Experience

10+ Years

Level

Senior

Education

Certificate

Description :

1. Provides expert consultation and technical services on all aspects of Information Assurance.
2. Responsible for developing and implementing security standards, procedures, and guidelines.
3. Investigates and recommends appropriate corrective actions for data security incidents.
4. Identifies security risks and ensures that appropriate data security procedures and products at a system and organizational level are implemented.
5. Maintains an awareness of security policies and government regulations pertaining to information assurance.
6. Identifies regulatory changes that will affect information assurance policy, standards, and procedures and recommend appropriate changes.
7. Performs new hire, refresher, and continual training briefings.

Experience

2-5 Years

Level

Junior

Education

Masters

Description :

1. Advised and supported all required security approvals regarding certification and accreditation processes.
2. Provided subject matter expert (SME) advisement on Certification and Accreditation (C & A) technical writing support in generating Systems Security Authorization Agreement (SSAA) using the DITSCAP and Certification and Accreditation packages in the DIACAP format.
3. Supported Certification and Accreditation approval processes for NIPRNET, SIPRNET, JWICS, and the Coalition network utilizing DoDD, AFI, DCID 6/3, and TEMPEST/EMSEC.
4. Worked closely with the Configuration Manager and provided guidance on IA compliance issues regarding software and hardware.
5. Utilized security tools (Retina, VMS, Cross Domain Solution) to assess the security posture of systems for certification and accreditation.
6. Assisted in firewall audits and compliance audits.
7. Provided support in security incident investigations and reporting.
8. Worked closely with the Intelligence Community in Certification and Accreditation efforts of DODIIS systems.

Experience

5-7 Years

Level

Executive

Education

MS

Description :

1. Supports the Modeling, Simulation, and Instrumentation Systems (MS&I).
2. Conducts countermeasure tactics utilizing digital forensics tools against cyber threats while mitigating threats against the Government Information Grid (GIG) utilizing protocol analyzers and scanners such as Retina and Paraben Forensics Toolkit.
3. Responsible for addressing the disposition of system data and objects on the Government Information Grid (GIG) through extensive system audits.
4. Establishes work priorities by the severity of incident using risk matrices and impact on business operations.
5. Assists and Guides subordinate organizations in performing tailored assessments during phase II of the (C&A) process to ensure that major systems and applications were ready for certification.
6. Recommends Certification and Accreditation decisions based on severity and impact codes utilizing risk management techniques recommended by the (FISMA) Federal Information Security Management Act.
7. Reviews Information Assurance (IA) controls for reaccreditation of existing Department of Defense Information Systems to ensure National Institute of Standards and Technology (NIST) compliance.

Experience

7-10 Years

Level

Management

Education

Masters

Description :

1. Developed plans to safeguard computer assets and files against accidental or unauthorized modification and destruction.
2. Trained over 400 users and promoted security awareness ensuring system security and improving server and network efficiency.
3. Scanned more than five million web pages and 600 laptops for network violations and viruses.
4. Managed day to day operations of 170 IT assets with an ADP budget of over $100,000.
5. Managed the implementation of computer system plans between the command and various vendors.
6. Led the memory upgrade and installation of 102 NMCI Unclassified and Classified Networks for a PC tech refresh, ensuring uninterrupted access to vital computer-based training and management systems.
7. Created and managed over 5,000 network and e-mail accounts.

Experience

2-5 Years

Level

Junior

Education

Bachelors

Description :

1. Supported the IA mission of Marine Forces South Area of Focus (AOF).
2. Developed, recommended, implemented, and enforced command unique IA policies over existing Information Technology (IT) resources in the geographical area of operation.
3. Provided comprehensive knowledge of multiple security disciplines to include automation, physical and information security as well as a practical knowledge and understanding of information technology hardware, software and capabilities of information systems throughout the Area of Focus (AOF).
4. Represented Marine Forces South at meetings and brief senior military and government officials on impact of IA on the regional network for both current and future operations.
5. Communicates with the operations department, Regional Computer Emergency Response Team and Theater Network Operations Security Center resolving IA issues or concerns.
6. Frequently briefed project management updates to the Communications Chief, Communications Officer, or Chief of Staff (COS).
7. Recommended enforcement of the Department of Defense (DoD) and command IA policies for the development and introduction of new IT systems.
8. Identified diverse network intrusion threats and develop appropriate IA security architectures, network oversight policies, and program planning countermeasures.

Experience

5-7 Years

Level

Executive

Education

MS

Description :

1. Responsible for Incident Handling of Security Incidents to the Army's CERT.
2. Performs electronic sanitization for Discharge of Classified Information (DCI) spillages.
3. Prepares weekly and monthly Information Assurance Metrics and briefs security posture to Senior Management.
4. Implements updates to the Master Block List (MBL) for the tactical network's Bluecoat Proxy Server.
5. Tracks and ensures HBSS CAG rule set updates are applied to allow new subnets belonging to tactical assemblages to operate on the network.
6. Performs administration and approval authority function for Data Loss Prevention (DLP) exception to policy requests, Firewall rule modification requests, Web Proxy modification requests, and user access to enterprise Cross Domain Solutions (CDS).
7. Consults and offers assistance with other Information Assurance Analysts assigned to specialized systems or Program Managed systems for Intel, Medical, Air Operations, and other specialized C4ISR needs.

Experience

10+ Years

Level

Senior

Education

Bachelor's

Description :

1. Served as the Command Information Assurance manager (IAM).
2. Served as the alternate Command Information Assurance Program Manager (IAPM).
3. Provided advice and guidance concerning Information Assurance Security matters to Information Assurance Security Officers (IASO) of installations supported by the U.S.
4. Responsible for Army Criminal Investigation Command.
5. Developed plans, policies, and practices for the implementation of an Information Assurance Security Program necessary to provide guidance and assistance for the security of both computer operations and software development/maintenance activities.
6. Reviewed validation procedures under DoD Information Assurance Certification and Accreditation Process (DIACAP), ensuring compliance per system mission assurance category (MAC) is identified.
7. Complied, maintained and coordinated the preparation of the system artifacts for which is used in determining the overall accreditation status of the system.
8. Continuously reviewed and evaluated the security impact of new systems, or system changes, to include existing or proposed interfaces with other computerized systems.

Experience

7-10 Years

Level

Consultant

Education

Management