Description
HIGHLIGHTS OF QUALIFICATIONS 36 years of Systems Engineering experience working a variety of platforms in a number of environments, including compartmented/special access required programs. 25 year career emphasis on risk acceptable, cost effective Systems Security Engineering (SSE) advanced planning, design, development and verification of complex software and hardware integration for Automated Information Systems (AISs) and products on a variety of AF, Army, Navy and intelligence based systems. Strengths include Program Protection, Anti-tamper and Cyber Security/Information Assurance (IA) policy, directives, instructions, controls/requirements, guidance (DoD/ICD/NIST) planning, preparation, documentation, conduct, execution and reporting of required DITSCAP/DIACAP/NIST/CNSSI/ICD 503 certification and accreditation tasks and activities including Critical Program Information (CPI) identification, threat determination and vulnerability analysis. AND ACCOMPLISHMENTS Experienced with Type 1 Cryptographic Controlled Items (CCI) on a variety of tactical systems to include secure communications radios (ARC 190/210), GPS receivers, IFF, TACLANE and STEs. Also experienced with CRYPTO handling and loading using various Data Transfer Devices (DTDs). * Conducted, researched and performed trade studies (most recent was net-centric/GIG) requested by customers outlining options and providing recommendations on various integration tasks and security architectures including MLS/MILS design alternatives. * Gained expertise with high assurance operating systems (Trusted Solaris, Integrity, AE Secure/Vx Works), cross domain solutions (SNS, eXMeritus, Radiant Mercury), trusted products (firewalls, intrusion detection and penetration testing) and the NSA NIAP certification process. * Familiar with software, hardware and interface applications including Gold Disk/ODAA/SCAP/WASP/SECSCN/STIGS, PKI/PKE identification and authentication rules set, modes of operation and net worthiness determination. * Led the coordination that spanned all program IPTs and customer/user representatives with Security Engineering development, architecture analysis, requirement definition and achieving security team consensus for security management plans, DIP, and SIP policy/requirement documents, System Security Authorization Agreements (SSAAs), C&A plans and procedures, finding reports, contingency/disaster plans, IATT/IATO/ATO DAA approval on numerous classified systems. * Timely, accurate and formal presentation of technical and non-technical security solutions associated with architecture design options (internal and external to the accreditation boundary), travel product identification, risk analysis, security requirement definition and implementation, CPI/CT (crown jewels) identification, anti-tamper (AT) plans including an industry leading CPI/CT identification tool which is still in use today. * Southern California leadership role in the Boeing SSE Functional Skill Team (FST). Active in the monthly cyber security technical interchange and membership in numerous enterprise, DoD and intelligence SSE workshops, seminars and conferences.
Accomplishments
Highlights:
Keywords
