Information Assurance Specialist Resume Samples

Description :

1. Provided expert consultant services on IT and office automation operational support services to federal managers and senior officials.
2. Identified and proposed solutions to management problems which are ranked by depth, importance, and severity.
3. Identified IT program shortcomings and security performance gaps, provides guidance, and suggests changes to the agency's IT policies that help the organization reach strategic goals.
4. Conducted audits to ensure IT policy requirements are met.
5. Responded to audit requests from GAO and OIG.
6. Gathered applicable information, conducts research, develops talking points, coordinates with team members, and leads audit finding meetings to find program weaknesses, wasteful IT spending, outdated IT policies, and duplicity in IT efforts.
7. Reviewed all information and creates high-quality reports/briefings that summarize findings to support proposed changes in IT policy and aid in the decision making process by upper-level management.
8. Applied knowledge of risk management principles, identifies material weaknesses and vulnerabilities makes recommendations to form a corrective plan of action.
9. Experienced interpreting and applying information from written, technical documentation (i.e., technical materials, charts, graphs, or tables) in order to present estimates of the significance of IT systems risks, required corrective actions, and security countermeasures.

Experience

5-7 Years

Level

Executive

Education

BS in Animal Science

Description :

1. Interpreted, decomposed, and allocated IA/IS requirements as well as designing IA/IS system and subsystem solutions.
2. Assessed and mitigating security threats and risks and evaluating IA/are operational concepts.
3. Responsible for the DoD Risk Management Framework formerly known as the Information Assurance Certification and Accreditation Process (DIACAP) in order to obtain an ATO for 40 systems throughout the region the IAW DODI 8500s, 8500.2 8510s.
4. Ensured processes for the United States Department of Defense are followed also ensures that risk management is applied on all information systems (IS).
5. Developed policies and procedures to ensure information systems reliability and accessibility and to prevent and defend against unauthorized access to systems, networks, and data.
6. Conducted risk and vulnerability assessments of planned and installed information systems in order to identify vulnerabilities, risks, and protection needed.
7. Provided information regarding intrusion events, security incidents, and other threat indications and warning information to the client.

Experience

7-10 Years

Level

Management

Education

Associates in Applied Science

Description :

1. Developed a team process for organizing and developing test cases, scripts, and execution records for security/risk assessment categorizing them into the area of the interview, inspection, and test (both manual and automated).
2. Developed testing in an Agile IA environment standardized procedures in support of the Veterans Benefits Management System (VBMS) project.
3. Assisted with test events that occur in a virtual environment/virtual box.
4. Developed a test guide tutorial manual for the IA Team.
5. Developed test scenarios using the NIST 800-53A objectives, Terremark Cloud security guidelines, and agency published policies and procedures.
6. Trained the entire IA team on Rational suite and test case development.
7. Assisted with network connectivity and setup of Testing & Evaluation (T&E) architectures involving the Agile Integrated Development Environment.
8. Installed and assisted with the setup of SpringSource Tool Suite on all IA workstations/laptops.

Experience

7-10 Years

Level

Management

Education

BS in Computer Science System Information Technology

Description :

1. Oversaw all information security for a Metropolitan Area Network, compiling data for certification and accreditation packages.
2. Emissions Security Inspections for the classified network.
3. Assisted in managing classified information.
4. Managed over 300 personnel security information as a Unit Security Manager.
5. Maintained Internet Security Scanner and System Management servers.
6. Network Security Technician Fairchild AFB WA Responsible for the Base Information Protection Suite protecting an over 30 Million dollar MAN.
7. Operated and maintained firewalls, routers, and proxy servers.
8. Used Intruder alert tools; Enterprise Security Manager, Intruder Alert, and Symantec Anti-virus software.

Experience

7-10 Years

Level

Management

Education

BS in Business Of Information Systems Management

Description :

1. Monitored and analyzed network traffic and alerts.
2. Investigated intrusion attempts and perform an in-depth analysis of exploits.
3. Provided network intrusion detection expertise to support timely and effective decision making of when to declare an incident.
4. Conduct proactive threat research.
5. Reviewed security events that are populated in a Security Information and Event Management (SIEM) system.
6. Analyzed a variety of network and host-based security appliance logs (Firewalls, NIDS, HIDS, Sys Logs, etc.) to determine the correct remediation actions and escalation paths for each incident Independently follow procedures to contain analysis and eradicate malicious activity.
7. Documented all activities during an incident and provide leadership with status updates during the life cycle of the incident.

Experience

2-5 Years

Level

Junior

Education

MS in Information Systems/Cyber Security

Description :

1. Ensured that only approved users have access to the MNIS/CENTRIXS enclaves.
2. Performed a weekly review of who has local administrative accounts to the MNIS/CENTRIXS systems and update the access list if necessary.
3. Reminded users with local administrative accounts to change their password every 30 days.
4. Created, disabled, or deleted local administrative accounts per management request.
5. Frequently maintained and reviewed emergency accounts to ensure their accuracy.
6. Acquired WSUS update thru the Air Force Security Update Program Perform hourly checks on the AFSUP website to ensure that any incoming updates (IAVM'S) are applied to MNIS/CENTRIXS systems in a timely manner.
7. Ensured that the WSUS update deadline is not breached.

Experience

5-7 Years

Level

Executive

Education

AAS in Computer Science

Description :

1. Enabled the integration of information assurance solutions and technologies which helped streamline efforts to secure servers, PCs, and network systems.
2. Customized a Certification and Accreditation process in an effort to compliment the Air Force Office of Special Investigation's Defense Base Closure and Realignment Commission (BRAC) objectives.
3. Used the DODI 8500.2 and various DISA STIGs, I analyzed and provided guidance on security requirements for operational systems as well as systems under development.
4. Developed, engineer, and implement solutions that meet established security requirements.
5. Performed vulnerability and risk analyses of all AFOSI information systems and applications, during all phases of the system development life cycle.
6. Implemented the DITSCAP, FISMA, DISA STIGS, NIST, and DIACAP process and IA controls.
7. Conducted weekly vulnerability scans of NIPRNET, SIPRNET, and JWICs networks and identify vulnerabilities and the mitigation process at Andrews AF Base and Quantico Marine Base.

Experience

2-5 Years

Level

Junior

Education

BS

Description :

1. Performed DIACAP (DoD Information Assurance Certification and Accreditation Process) on government-owned contractor-operated information systems.
2. Prepared and delivered Information Assurance training packages to inform end-users of roles, responsibilities, and security threats associated with government information systems.
3. Performed information system hardening, system analysis, system baseline development, and system auditing.
4. Ensured systems are operating solely with approved software and hardware in accordance with DIACAP.
5. Ensured all Information systems have up to date and security update patches installed.
6. Performed alignments, modifications, and repair on signal generators, signal amplifiers, military radios, and other communication equipment; using state of the art troubleshooting equipment that includes system integrated fault identification software, signal generators, oscilloscopes, digital voltmeters, spectrum analyzers, and network analyzers.
7. Maintained, programmed, and operated advanced signal generation systems to effectively test Military Intelligence equipment.

Experience

5-7 Years

Level

Executive

Education

Communications

Description :

1. Responsible for maintaining the integrity and security of enterprise-wide cybersecurity, systems, storage, and networks.
2. Conducted organizational assessments to prioritize policies, security maturity level, and functional capabilities.
3. Employed advanced forensic tool techniques and performed dead system analysis and volatile data collection.
4. Supported HR/Legal/Ethics investigations as forensic subject matter expert.
5. Implemented PKI, Key Orchestration, and encryption support systems and tools to improve enterprise security.
6. Performed network traffic analysis utilizing raw packet data, net flow, IDS, and custom sensor output as it pertains to the cybersecurity of communications networks.
7. Reviewed threat data sources and developed signatures for Open Source IDS and detection capabilities.

Experience

2-5 Years

Level

Junior

Education

M.Tech in Professional Management

Description :

1. Supported the Joint Chief of Staff (JCS) major application systems and oversees the documentation, validation, and accreditation as well as authorization processes needed to assure systems meet IA and security requirements.
2. Assisted in restoring information systems by incorporating protection, detection, and reaction capabilities.
3. Provided Certification and Accreditation tasks support through Risk Management Framework for DoD Information Technology process as applicable.
4. Developed and documented information assurance system security plan, participated in reviews and produced tests based on government inquiries in order to obtain and maintain ATO for delivered applications in accordance with RMF process.
5. Documented secure baseline configurations for all identified operating systems, hardware, and software applications IAW NIST guidance using the DISA STIGs, CIS Security Benchmarks Checklists, or other acceptable security configuration checklists.
6. Developed, updated, and completed systems security plans based on the National Institute of Standards and Technology (NIST) Special Publications and FISMA regulation as well as conducted annual self-assessment.
7. Supported Systems Test and Evaluation (ST&E) efforts and other support to the Joint Chief of Staff (JCS) major application systems.

Experience

5-7 Years

Level

Executive

Education

BS in Chemistry