Certification & Accreditation of systems, programs, technologies
- Performed C&A reviews, audits, and support for FISMA/NIST-based systems for Federal Civilian departments
- Performed DIACAP-related C&A for several DOD/Military Service organizations
- Developed detailed “gap” analysis process and procedures for C&A Status reviews and audits
- Documented successful C&A support for Systems to obtain “Authority to Operate” (ATO)
- Conducted Independent Verification & Validation (IV&V) reviews
|
Computer Security Engineering
- Threat/Vulnerability Assessments for applications, networks, systems
- Security Policy Development as necessary to ensure Security
- Strategic Security Planning and Compliance Assessments
- Disaster Recovery/ Continuity of Operations development, implementation and sustainment
- Perform Security Engineering integration with Business Projects, especially focused on Military Network projects
- Conducted Operational Evaluations of Applications and Networks for Military and Civilian customers
- Configuration Management and Change Control support
|
Forensics & Incident Response Activities
- Performed Forensics investigations for private organizations
- Teach Forensics Management and Incident Response
- Recognized national authority on Forensics Team Management and Incident Response Team Management
- Conducted Auditing of investigators & investigations
- Developed and conducted Incident Response team events since late 1990's
- Principal is past Vice-Chairman of International Information Systems Forensics Association
|
Information Assurance – Computer Security
- Security Program Management – correlating the “5 P's” to security architectures through implementing Security Architecture for the Federal Enterprise (S.A.F.E.)
- Security Management P rogram
- Security P olicy
- Security P lan
- Security P rocedures
- Security P rocesses
- Certified IS Auditors, Security Managers, IA Engineers, IS Specialists, Disaster Recovery/Business Continuity Specialists, Enterprise Architects & Security Officers on staff
- Performed Security Reviews & FISMA Audits for multiple federal and commercial clients
- Performed Wireless audits, feasibility studies and acceptance testing for public and private organizations
- Advised governmental, public and private entities on all aspects of computer security
|
Modeling & Simulation
- Award winning and proven Network & Communications M&S IA Subject Matter Expert
- Training Development: M&S SME for US Army Signal Corps Telecommunications Officer Course for 2 years
- Consultation: Conducted Home Land Defense/First Responder M&S Experiments
- LandWarNet: Conducted Architecture Driven Military Network Evaluations
- Conducted Operational Evaluations of Applications and Networks for Military and Civilian customers
- Developed, researched, and conducted M&S test evaluations for US Army CIO on Best of Breed Collaboration tools
|
Training & Development of security functions, personnel, processes
- Proven & Certified Technical Instructors on staff
- Taught Certified Information Security Manager (CISM), Security + & Certified Information Systems Security Professional (CISSP) courses
- Only licensed instructor in US for Certified Information Forensics Investigator (CIFI) and Certified Information Forensics Manager (CIFM) courses
- Licensed to teach Certified Anti-Terrorism Specialist (CAS) course
|
|
|
|
