92-127 Puliko Pl, Kapolei, Hawaii 96707

Phone: (808) 499-1039 Cell: (808) 265-8689 Email: mpnajmulski@gmail.com

Michael Paul Najmulski

Summary of Qualifications:

  · 20 years of experience in information systems security and management. Implemented and managed

several programs and procedures relating to the awareness, training, and enforcement for both

physical and IS security.

  · Ensures the rigorous application of IA policies, principles, and practices in the delivery of all

information technology (IT) and IA services. Guides the implementation of appropriate operational

structures and processes to ensure an effective IA security program including boundary defense,

incident detection and response protection and sustainment.

  · Experience working with DoD provided enterprise IA tools and applications to include ArcSight

SIEM, Sourcefire IDS, Arbor DDoS, Centaur and Wireshark. Has a working knowledge of policy,

guidance and evaluation criteria of the DoD Critical Infrastructure Program.

  · Distinguished management career in the U.S. Navy spanning 26 years, leading the planning, staffing,

technology, and operations of organizations throughout the U.S. and abroad. Expert in crossfunctional

team building and leadership; multi-cultural communications; change management;

organization development; and quality/performance improvement. Traveled, lived, and/or worked in

more than 15 countries worldwide.

PROFESSIONAL EXPERIENCE

Lockheed Martin, IS&GS Defense - Network Assurance Site Manager

July 2013 – Present

Responsibilities/Achievements:

  · Leads and manages a team of 25 analysts consisting of both contract and government personnel as

part of the DISA PAC Theater NetOps Center (TNC) Net Assurance (NA) Tier II CND Service

Provider, IAP Global and Pacific Boundary Defense, FVEY Coalition and APAN Mission Space

Defense, and PAC DCO Mission collaboration.

  · Responsible for the DoD services provided or subscribed to by owners of DoD information systems to

provide situational awareness; implement protective measures; detect and analyze unauthorized

activity to characterize events or incidents; and implement internal response actions to mitigate or

eliminate vulnerabilities.

  · Responsible for the performance of CND in support of JIE Enterprise Operation Center (EOC)

mission, to include fusion, forensic, malware analysis, oerations analysis and countermeasures

capabilities that support the Cyber Kill Chain framework.

  · Established and staffed a Protection Operations team the maintains the integrity, confidentiality, and

availability of over 50 Sourcefire ECOS sensors and open-source Snort detection engines (NGS) used

to capture data on the NIPR (Unclassified) and SIPR (Classified) network systems in the Pacific

AOR. Provides support for the development, implementation, integration, and sustainment of sensor

and sensor support technologies.

  · Updates current and/or generates new Theater NetOps Center - Pacific (TNC-P) Net Assurance

policies and procedures to maintain compliance and cover all Computer Network Defense Service

Provider (CNDSP) requirements. Primary review and/or release authority of all incident reports

generated by the Theater NetOps Center - Pacific (TNC-P) Net Assurance.

  · Possesses in-depth knowledge and aptitude of the DoD 8530.1 Series, Evaluators Scoring Metrics,

utilized to achieve the CNDSP Certification performed by the DoD Certification Authority.

Participated in the DISA re-certification process conducted by DIA and was instrumental with DISA

being awarded a Level 3 CNDSP rating.

  · Developed and implemented an Intel Fusion Cell capability within the DISA-PAC Net Assurance

group. Provides a cyber intelligence based and indicator driven “Hunt” capability in order to detect

and mitigate adversary activity.

  · Redefined the analytical process for the identification, capturing, and cataloging of adverse activity

affecting both DISA CNDSP customers as well as peer CND services in the Pacific region.

  · Built collaborative relationships with CND partners, service components, Intel and LE/CI

communities that allow for the effective communication and information sharing; meeting the rapidly

developing and evolving CNE and CNA threats to the DoD Information Network (DoDIN).

  · Developed, staffed, and implemented the Mission Integration team; evaluates emerging technologies,

promotes capability improvements and technical pilots, in addition to knowledge management and

metrics generation.

Computer Sciences Corporation - Network Assurance Site Manager

March 2011 – July 2013

Responsibilities/Achievements:

  · Leads and manages a team of 20 analysts consisting of both contract and government personnel as

part of the DISA PAC Theater NetOps Center (TNC) Net Assurance (NA).

  · Analyzes information on IA incidents in the region and reports to DISA HQ and PACOM the data

pertaining to these events. Also provides IA support to regional customers to address their IA issues.

  · Primary System Administrator for all TNC-NA assets within the Vulnerability Management System

under the Information Assurance Vulnerability Management (IAVM) program.

  · Maintains the integrity, confidentiality, and availability of over 50 Joint Intrusion Detection Sensors

(JIDS) and Sourcefire ECOS sensors used to capture data on the NIPR (Unclassified) and SIPR

(Classified) network systems in the Pacific AOR.

  · As an ArcSight SIEM Manager he identifies and develops critical monitoring channels and

dashboards through the use of filters, content and annotation to more effectively manage IDS

detection and reporting.

  · Provides technical support for USPACOM TNCC in the accomplishment of the NetOps Mission.

Provides briefings to the Commander, DISA-PAC and the USPACOM/J6 representatives on incidents

of significant or serious nature. Evaluates reports received from other CERTS to identify potential

attacks in the Pacific.

  · Updates current and/or generates new Theater NetOps Center - Pacific (TNC-P) Net Assurance SOPs

to bring them in compliance and cover all Computer Network Defense Service Provider (CNDSP)

requirements. Primary review and/or release authority of all incident reports generated by the Theater

NetOps Center - Pacific (TNC-P) Net Assurance.

  · Possesses in-depth knowledge and aptitude of the DoD 8530.1 Series, Evaluators Scoring Metrics,

utilized to achieve the CNDSP Certification performed by the DoD Certification Authority.

Participated in the DISA re-certification process conducted by DIA and was instrumental with DISA

being awarded a Level 3 CNDSP rating.

  · Redefined the analytical process for the identification, capturing, and cataloging of adverse activity

affecting both DISA CNDSP customers as well as peer CND services in the Pacific region.

  · Instituted methods and procedures for the development and tracking of IDS signatures sets for the

advanced early warning of intrusion activity based solely on open-source research, fusion

documentation, traffic analysis, and CND collaboration.

  · Reached out to CND communities and established relationships that allow for the effective

communication and information sharing better meeting the rapidly developing and evolving CNE and

CNA threats to the DoD GIG.

Computer Sciences Corporation – Network Security Analyst

October 2008 – March 2011

Responsibilities/Achievements:

  · Provided Information Assurance (IA) support for the Defense Information Systems Agency, Pacific

(DISA-PAC), Theater NetOps Center Net Defense Pacific (TNC ND-PAC), for over 50 Joint

Intrusion Detection System (JIDS) sensors.

  · Analyzed network information and packet level data for potential IA incidents in the region and

prepared Incident Reports to US Cyber Command, PACOM, and associated Area of Responsibility

(AOR), pertaining to these events.

  · Monitored the day-to-day operation of the JIDS throughout DISA-PAC for current and up to date

information of possible intrusion on the NIPRNet (Unclassified) and SIPRNet (Classified) computer

systems. Provided first level analysis by reviewing data collected in the analysis logs, Sourcefire IDS,

NetWitness packet capture, Centaur flow data, and the ArcSight SIM for investigating possible

intrusions; identify probes and denial of services.

  · Performed in-depth analysis to determine the attack vector and effects of the attack, then prepared

initial reports on confirmed probes, attempted intrusions, denial of services, and intrusions. He

evaluated reports received from other Computer Net Defense (CND) services to identify potential

attacks in the Pacific.

  · As the Operations/NetOps Lead, generated policies and/or procedures as required to perform the tasks

in accordance with government tasking.

Computer Sciences Corporation - DMS Controller / Directory Specialist

Nov 2007 – Oct 2008

Responsibilities/Achievements:

  · Ensured the smooth flow of electronic military message traffic throughout the Pacific Theater via the

DMS System. Has knowledge of UNIX, NT, X.400 messaging protocols, X.500 directory services,

transmission, internet and system network architecture protocols and techniques to isolate,

troubleshoot, and restore the communications capabilities within the DMS communications

environment.

  · Provided first level troubleshooting, support, and service to DMS users/customers. Used provided

tools such as DTOOLS, DASHBOARD, PACMAN, and others to manage software components, and

message traffic, routing, and delivery confirmation (BMTA troubleshooting, connector tests, decoding

EA files, etc.) utilizing UNIX and Microsoft Windows based systems.

  · Initiated, updated, monitored, troubleshot, and escalated TMS Remedy trouble tickets. Responsible

for the management and maintenance of a large distributed X.500 directory used to support military

messaging requirements, and to coordinate with multiple headquarters and users, to include Local

Control Centers (LCC), and deployed tactical and mobile military units.

  · Performed real time system monitoring and control of the DISA managed DMS X.500 directories

located throughout the Pacific Area making or directing changes as required. Provided technical

assistance in resolving directory-related problems. Acted as POC with DMS LCCs and Service

Agencies to resolve directory problems, and work with NOC-C and NOC-E Directory Specialists on

inter-theater related problems.

  · Coordinated closely with DMS Analyst Group and Wide Area IP Router Controllers to jointly solve

problems. Coordinated with DISA Global Managers and NSA when required. Was responsible for

the integrity, accessibility, structure, and distribution of the X.500 directory and shadowing

agreements among the DSAs located in the Pacific AOR.

  · Notified the DMS Security Officer of any actual or attempted violation of DMS security policies.

Assisted with the preparation and submission of DMS reports and statistics.

Engineering Support Personnel - Flight Simulator Technician (Tech III)

Jan 2006 - Nov 2007

Responsibilities/Achievements:

  · Performed corrective and preventive maintenance on the P-3C Flight Simulator (2F87 Level D), and

tactical training devices (2F140 and 2F179). Debugged and troubleshot both hardware and software

problems originating in both the flight training devices and facility.

  · Responded to customers’ training needs in a courteous and timely manner in order to ensure that the

required reliability and availability of all flight training equipment is met. Duties included working

with LINUX, Windows NT, 2000 and Win XP, including MS Office products and Graphic Modeling

Systems.

  · Implemented and administered ESP’s Local Area Network.

  · Troubleshot and repaired electrical circuits, CCA and VME cards with the use of schematics, multimeters,

and other applicable equipment.

  · The sole Information Assurance experienced technician on staff; responsible for the management and

control of security access to sensitive areas for both command personnel and foreign military visitors.

Ensured that updates to the authorized security access list were implemented and tracked.

Patrol Squadron NINE, USN - ADP Department Manager

April 2003 - June 2006

Responsibilities/Achievements:

  · Responsible for the installation, configuration, and monitoring of local networks, hardware, and

software. Provided network services such as NIPRNet/SIPRNet access, DMS x.400 and SMTP email

accounts, message traffic, security, and troubleshooting for over 400 personnel.

  · Managed a staff consisting of information systems specialists and operational security personnel

responsible for supporting over 400 personnel and over 160 Classified/Unclassified computers.

  · Successfully implemented several IT projects to include organization information systems security

awareness training and equipment allocation, maintenance, inventory and distribution.

  · Designated as a Public Key Infrastructure (PKI) Trusted Agent; coordinated with the Local

Registration Authority (LRA) on all matters pertaining to the control and administration of DoD PKI

software certifications for command personnel.

  · Command Web Master; implemented and maintained the squadron web site providing an invaluable

tool for incoming personnel and military dependents.

Commander Patrol and Reconnaissance Forces Pacific, USN - Information Systems Security Officer

April 1999- March 2003

Responsibilities/Achievements:

  · Responsible on all matters concerning physical and software Departmental AIS security for 15

personnel and 17 workstations.

  · Ensured all computer security incidents or violations were reported, documented, and investigated.

  · Ensured departmental information systems were operated, used, maintained, and disposed of in accordance

with Command Information Systems Security Program (ISSP) policies.

Antarctic Development Squadron SIX, USN - LAN Administrator

May 1996 – March 1999

Responsibilities/Achievements:

  · Performed management and support of 135 workstations running DOS and Windows 95/98. Provided

end user support for Microsoft Office 97, Outlook 98 and other POP/IMAP e-mail clients.

  · Responsible for the annual LAN integration with Antarctic National Science Foundation WAN,

ensuring that DoD systems security guidelines and policies were implemented and enforced.

  · Performed numerous component repairs and replacement of motherboards, CPU’s (Socket 7 and Pentium II), hard

drives, memory, SCSI devices, and associated plug and play peripherals.

Multiple Duty Stations ONCONUS and Overseas, USN - P-3C Orion Flight Engineer

Sep 1980 – May 1996

Responsibilities/Achievements:

  · Rresponsible for the troubleshooting, diagnostics, and repair of critical aircraft systems to include

electrical distribution systems, hydraulic power and controls systems, and electronic propeller control

systems.

  · Qualified as operator/instructor on the 2F-87 Operational Flight Trainer for 3 years.

  · Completed over 2900 hours of total flight time with no incidents conducting patrol and

reconnaissance both overland and water in peacetime and in conflict.

EDUCATION:

Completed 39 credit hours towards Computer Science, Hawaii Pacific University, 2000 – 2002

Associates of Arts Degree in Credit Recognition, University of Phoenix, 2004 – 2006

CERTIFICATIONS:

CompTia Security+ Certification, September 2008.

GCIA Certification, June 2009

CISSP, 18 March 2011

CISM, 20 March 2012

HIPPA, Jan 2012

CEH, 15 Sept 2014

CLEARANCE:

Top Secret/SCI (Active)