Veteran-owned, small business, seeking Cyber Security, Data Management, and Networking Solutions opportunities.

DOD Expertise: Cyber Security Expert, DIACAP, RMF, DCID 6/3, FISMA, FIPS 140-2, NISPOM, NIST, C4ISR, DODAF, IPS/IDS, RDT&E Firewall (U/CTNP), PPS CAL, Whitelist policies, CDS, SABI/TSABI, Risk Assessment/Validation, and Audit Compliance. DOD CSWF: IAM Level3, IASAE Level3, CNDSP Level2. NOTE: Information Assurance (IA) = Cyber Security.

Enterprise Solution Services: Critical Infrastructure Security, Web Services Security, AWS Solutions, Data Center Solutions & Virtualization, Secure Network Solutions, Penetration Testing, IT Project Management, & Cyber Warfare Training.

Clearance: TOP SECRET (Active)

CISSP, CISM, ISSAP, CRISC, ITIL, ACAS, FQNV

Possesses a combination of the best in the industry IT certifications and years of enterprise-wide expertise in the design, installation, implementation, and sustainment of a compliant and secure IT environment. One of a very few experts who can effectively apply the DOD Security Standards to any commercial, private, or academic system.

EDUCATION & other CERTIFICATIONS

·               PhD (c) Louisiana Baptist University

·               MBA in Real Estate & Finance, National U

·               BS Computer Science, UCSD/National U

·               ORACLE 8/8i Master Class, Oracle University.

·               MCSE Certificate, SDSU.

·               Computer Forensics & UNIX Admin, UCSD

·               ITIL(f) v2, EDS

·               Raytheon 6Sigma Blackbelt

·               Past: CFE, CCNA, CCIE(wr), MCSE+I, NSA-IAM

·               Licensed CA Real Estate Broker

Over 20 years highlights

1.           XYBRTEX. LLC, CTO/President:

§ CAGE:  79VS4; DUNS:  079625116;  NAICS: 541330, 541519, 541512;  SAM.gov Registered.

‒  Program Manager, VENCORE, Inc.: Consultant for a proposal orals, preparation, and presentation for an IDIQ, MAC contract supporting CyberSpace Operations Program for the SPAWAR Chief Engineer.

‒  Subject Matter Expert/Cyber Security Consultant: Installed Office 365, migrated Access Management to MS Ideentity and Access Mgmt, inserted MS Forefront technology, secured a SCADA system, installed a secured wireless solution.

2.           SPAWAR Systems Center (SSC) Pacific, Program Manager:

§  CAMEO and RIC systems for V-22 (Osprey) aircraft – IA SME, Amazon Web Services (AWS), IaaS deployment.

§  Joint: AMF JTRS [IA SME]. DSS Liaison for eight (8) Classified Contractor Sites.

§  Coalition: CWIX, CDEP, and CIAV Events [IA Lead].

§  C5ISR: E2C [IA SME] for all housed/connected E2E and SoS Testing (CANES, new ADNS, JSF-ALIS, ISNS, CADI, etc.)

§  NWSCP: Distributed Engineering Plant ([IA SME]. Project Manager of several IPTs; including, DIIAC Transition.

§  DOD Cyber Security: DIACAP, RMF, HBSS, ACAS, WSUS, DCID 6/3, and Private Cloud. Authored the DIACAP Handbook for RDT&E environment.

§  IPS/IDS, RDT&E Firewall (U/CTNP), PPS CAL, Whitelist policies.

§  CDS, SABI, Secret Releasable, and TSABI Implementations.

§  Network/Enclaves: SIPr, NIPr, CFBLNet, DISA, HPCMO, NAVIntel, Joint, and others.

3.           Life Technologies, Inc: (Invitrogen & Applied BioSystems merger), Enterprise Network Consultant:

§  Global IT Systems and Networks merger and standardization. Network protocol and last mile network provisioning architecture and Technical Support consolidation.

4.           Navy Marine Corps Intranet (NMCI), Enterprise Information Assurance Manager:

§  Managed the prototype build and installation of Classified and Unclassified Datacenters.

§  Enterprise Information Assurance (IA), Enterprise C&A Process Architect, IA Sr. Project Manager.

§  Designed and established the Information Assurance Certification process and technology insertion project management workflow for whole enterprise.

§  Senior Project Manager of key Navy Marine Corps Intranet (NMCI) projects - Intellectual Property, Firewall Architecture, PKI Design and Deployment, Classified Network Management, Server-Based Computing, Host/Network Intrusion Prevention, and Server Farm Virtualization. 

5.           F-18E/F Engine and Aircraft Maintenance System, Design and Technical Adaptability Architect:

§  Designed a distributed database Asset Management System used by F18-E/F for ECAMS replacement, Y2K compliance, and visual-based Logistics and Aircraft Maintenance Management system. Network Architect.

6.           University of Phoenix (UOP), Adjunct Faculty: inactive.

PROFESSIONAL EXPERIENCE

vencore, inc – apr2016 - present

Consulting Program Manager – 1 of 5 Proposal Orals Key Person – team includes the company CTO and prior USN Deputy CIO.  Orals for the management of an IDIQ, MAC contributing in the proposal strategy, preparation, and presentation to facilitate quality execution supporting Cyber Space Operations Program for the SPAWAR Chief Engineer, covering the infrastructure, enclave, projects, customer requirements.

xybrtex, llc nov2014 – present

Chief Technical Officer (CTO)/Cyber Security Expert – leverage personal expertise, with a desire to keep up and be directly involve in executing technical solutions to fit customer’s goal - benefitting client’s bottom line.

Client list includes:

·   Kaiser Permanente, San Diego, Nov2014-Apr2015 – Implemented the Risk Management Framework (RMF) Model in the installation, configuration, and network security in the migration and replacement of enterprise password vault (CyberArk) with MS Identity and Access Management system connected with MS Forefront-Threat Management Gateway (TMG).  Extending services and architecture to all networked devices, tablet access, Bring Your Own Device (BYOD), and wireless users. Developed an Acceptable Use Policy to support; which, included wireless and mobile devices and users.

·   Southern California Dental, Jan-Jun2015 – Designed a secured wireless architecture.  Implemented mobile zones, access control management, continuous monitoring, and HIPAA compliance on six (6) distributed and interconnected clinics. Deployed integrated iPAD Dental Point of Care application. (DENTSIO).  Facilitated MS 360 subscription.

·   CoGentrix (Supervisory Control and Data Acquisition), San Diego, Jan-Jul2015 – securing CITECT system on five (5) remotely connected and controlled power generating electric plants’ control room. Implemented oWASP defenses and NIST security compliance and standards.

Competency and services offered includes:

·   DOD Cyber Security: Standards, Implementation, Sustainment using DIACAP, RMF, NIST, NISPOM, FISMA, CDS, CND, DCID 6/3, DODAF, STIGs, PIT, ACAS, HBSS, WSUS, IPS/IDS, (U) RDT&E Firewall, PPS CAL, and Whitelist policies. 

·   Commercial Cyber Security: leverages the more stringent National Security standards, developed a cost cutting Governance, Risk Management, Compliance (GRC) model, and streamlines SIEM architecture.

·   Network Solutions: Wireless, Mobile, VoIP, IPv6, and network systems integration analysis and design.

·   Data Center and Storage: Consolidation, Transformation, Virtualization, Design, and Disaster Recovery.

·   Cloud Solutions: “as a service” solutions provisioning of Email, Software, Infrastructure, and Platform suited for small and mid-size businesses.

·   Internal Control Audit: SOX, PCI-DSS, HIPAA, GLBA, COBIT.

SAIC/Volt workforce solutions – SEp2015- May2016

Cyber Security SME – Subject Matter Expert for V-22 (Osprey) aircraft systems and components of the joint implemented Comprehensive Automated Maintenance Environment - Optimized (CAMEO) Asset Management Solutions and Readiness Integration Center (RIC):

·   Led and validated the Certification and Accreditation (C&A) of the USMC and USAF packages, resulting in separate three (3) year Accreditation Decision approvals with the entire process completed within a record holding - 3 months.

·   Established Information Assurance (IA) Assessments process, methodology, and tools within cognizant systems – resulting in a comprehensive, consistent, and accurate PPSM, IAVM, and C&A assessments.

·   SME for the installation and deployment of Pilot RIC (PA, Impact Level 4 approved) in AWS – coordinated approval of the GOVCloud, FEDRAMP, CSP, CAP/CND (DISA), RMF, and Authorizing Officer requirements. Optimized usage and cost of AWS technology and system accreditation boundary involving EC2, EBS, S3, AMI, and VPC together with hardware VPN external link.

AUSGAR Technologies INC, San Diego, CA aug 2009 – NOv 2014

Cyber Security Subject Matter Expert (SME), for Distributed Engineering Plant (DEP, now DIIAC (Distributed Integration & Interoperability Assessment Capability)); Enterprise Engineering and Certification (E2C); Airborne, Maritime, Fixed Station Joint Tactical Radio System (AMF JTRS); and CWIX, CIAV, and Coalition Test & Evaluation Environment (CTE2) projects.

·   Cyber Security Compliance Management implementation and compliance based from FISMA, NIST, Risk Management Framework, automated scanning, and resolution solutions:

‒         Identity and Access Management.

‒         Privacy Impact Assessment (PIA).

‒         Application and Web Security Testing and Certification.

‒         Anti Virus/SpyWare solutions.

‒         Assured Compliance Assessment Solutions (ACAS) by Tenable.

‒         Microsoft Windows Server Update Services (WSUS)

·   Designed and deployed an enterprise wide Host Based Security System (HBSS) architecture with:

‒         ePolicy Orchestrator (ePO) and Agent

‒         Asset Baseline Monitor

‒         Policy Auditor

‒         Host Intrusion Prevention System

‒         Rogue System Detection

·   Information Assurance Expert and Network Security Lead – SPAWAR System Center (SSC), on all DIACAP and infrastructure security policy, standards and requirement related to the accreditation of operational and RDT&E projects. Developed the DIACAP Handbook for covering all RDT&E test scenarios.

·   Project Manager – managed the CDEP (with CDS) installation; DTEN Circuit Installation; DIAAC Transition; DSS Certification of 4 Classified Contactor Sites – completed within timeframe and funding allocation.

·   Network Design and Security Validation– secured and validated VPN+IPSEC, CDS Guard and certification, Juniper M7i (translates Broad, Multi, and Uni-Casting), Cisco 4950, Cisco 3750x, Cisco LMS, Network Observer, etc.

·   Engineering and Technology Lead – leads the infrastructure transition to Secure Defense Research and Engineering Network (SDREN) – implementing a best of industry network security and design.  Key Contributor in Shipboard and Combat Systems certification: ADNS (Transport & Thinline), CADI, CANES (Unit, Force, & Amphibious), CVNx, DCGS-N, JSF-ALIS, SSDS, ACDS, etc.

Program Manager/Team Lead –Led a 10 member team of Cyber Security, Compliance, Cloud Computing, and Network Engineering for the an scalable enterprise infrastructure of 250 – 4700 users.

·   DOD Standards Implementation, Sustainment using DIACAP, RMF, NIST, NISPOM, FISMA, CDS, DCID 6/3, DODAF, STIGs, PIT, ACAS, HBSS, WSUS, etc.  Projects managed:

‒  C5ISR [IA SME]: E2C for all housed/connected E2E and SoS Testing (i.e. CANES (U & F level), new ADNS, JSF-ALIS, ISNS, CADI, etc.)

‒  Coalition [IA Lead]: CWIX, CDEP, and CIAV Events.

‒  Joint [Project Lead]: AMF JTRS for six (6) military nodes and DSS for Contractor Sites.

‒  NWSCP [Project Manager]: DEP Combat Systems testing and of several IPTs; including, DIIAC Transition.

‒  Trident Warrior (TW) IA SME/FQNV

§    (TW13) Pilot Test of data exchange of Overlays, Pimtracks, Link-Tracks, Over the Horizon Gold (OTH-G) Message Format, and Tracks between Global Command and Control System (GCCS) systems.

§    (TW10) –AMF-JTRS using Cisco VoIP as Proof of Concept for all point to point and netted voice, data, and video.

§    Operational Readiness Test System Tech Assist Remote Support (ORTSTARS), Baselines 6/7

‒  Authored the DIACAP Handbook for RDT&E environment.

‒  Network/Enclaves: SIPr, NIPr, CFBLNet, DISA, HPCMO, NAVIntel, Joint, and others.

·   Designed and implemented IPS/IDS, Unclassified RDT&E Firewall, PPS CAL, Whitelist policies, CDS, SABI/TSABI Implementation.

·   Member of the DON CIO Initiative implementation Commercial-Off-the-Shelf (COTS) applications and technology in the DOD environment and all IA-enabled device specifications and procurement.

·   Led a cross-discipline information security and networking experts in designing an integrated, scalable, commercially procured infrastructure providing general IT services/solutions for commands of 250- 4,700 users (with embarkables) with secure email, unclassified wireless access, land & afloat web access, secure combat systems track data transmission and communication. Managed the System Development Life Cycle (SDLC) for all IT assets, maintenance, license, and support resources.

·   Managed a security compliance team/program in support of the Naval Warfare Systems Certification Policy (NWSCP) and Command, Control, Communications, Computers, Combat Systems, Intelligence, Surveillance, and Reconnaissance (C5ISR) projects.

·   Member of the DOD CIO in developing the Risk Management Framework (RMF) and Cyber Vulnerability Evaluation (CVE) Technical Action Group supporting to the in developing strategy in patch implementation, workarounds for zero day vulnerabilities, and vulnerability mitigations. 

·   Well versed in the use of Risk Assessment tools and systems: Tenable (Nessus) ACAS certified, Gold Disk and Remediation, eEye Retina Scanner, SCAP Compliance Checker (SCC) and benchmarks, Vulnerator, HBSS Policy Auditor, STIG manual compliance, and STIG Viewer.

·   Project deliverables and tasks includes:

‒  Implementation of Enterprise wide Information Protection policies, standards, and procedures; including Acceptable Use policy for all users.

‒  Deployed a scalable and secured Privileged Session Manager (PSP) using Microsoft Identity Integration Server 2003, LDAP Directory validator, and RSA SecureID token over browser SSL interface, solutions includes:

In4security partnered with Skillstorm, INC nov 2008 - aug 2009

Principal Consultant - integrated the Global WAN infrastructure, Architecture, and Programs of two merged Biotech companies (Invitrogen and Applied BioSystems merging to become Life Technologies).  Standardized and rationalized the ‘merged’ infrastructure and establishing programs, projects, and processes to support the integration - using applicable disciplines and compliance listed below:

·         Information Assurance

·         Risk Management

·         Infrastructure Optimization

·         Emerging Technologies

·         IT Infrastructure Library (ITIL)

·         Technical Support Integration

Electronic Data systems (eds), an HP Company San Diego, CA, Jul 2006 – NOv 2008

Senior Program Manager - of “emerging” Next Generation Enterprise Network (NGEN) technologies upgrades:

‒         Firewalls and DMZs

‒         Classified Access & Network

‒         Server-Based Computing

‒         Intrusion Prevention System

‒         Data Center Virtualization

‒         Host Based Security

§    Managed the Intellectual Property (IP) enterprise survey of all technologies, processes, documentations, and assets with associated legal holdings and value estimation.

Certification and Accreditation Government Liaison – coordinated over 600 technical solutions leading to government accreditation, cutting over 110,000 revenue producing seats.

Raytheon Systems Company, Nov1998 – Jul2006

Senior Program Manager, key player on several revenue impacting contract awards, directly contributing to the ‘inception to sustainment’ life cycle planning and execution:

§ Managed the construction of a prototype Network Operations and Command Center for NMCI.

§ Technical Contributor to the $132M, Common Aviation Command and Control System (CAC2S) proposal, USMC’s first mobile Tactical Data Communication System.

§ Chief Architect, $21M, Oracle Distributed Database Asset Tracking system for the U.S Navy’s F18 E/F aircraft. 

§ Managed the validation of the largest DoD Public Key Infrastructure (PKI) and Common Access Card (CAC) implementation; including identity verification, challenge/response authentication, and encryption certificates.

Network Centric Systems (NCS), St. Petersburg, FL., Nov 2000 – Jul2006

§ Enterprise Information Assurance.  Managed the NMCI enterprise C & A compliance and security issue resolution, maintaining a consistent high standard security posture.  Instituted an innovative approach to Risk Management by involving the customer expectation, realistic risk assessment, formulating a consistent mitigation solutions, reducing vulnerability exposure time by 90%. 

§ NOC Information Assurance Manager.  Managed the construction, design, DoD compliance, and operational requirements of the prototype NOC for NMCI.  Includes a 75,000 user Regional Server Farm, and two Integration Test Labs.  Implemented ‘best practice’ standard conforming to TEMPEST, Protective Device DS, secure cabling, upgraded HVAC, Fire standard, back-up power, etc.  Supervised a staff of 44 IA Engineers involved in the development, customization, testing, deployment, monitoring, and maintenance of a state-of-the-art security architecture.

Integrated Defense systems (IDS), San Diego, CA, Oct 1999 – Jan 2000

§ Secure Network Design Developer of the modular Data Communication and Network Security architecture Proposal for the Mobile Tactical Air Command Center, a component of the $132M, 5 year, Common Aviation command and Control System (CAC2S) project for the U.S. Marine Corps.

Raytheon Training and Services Company (RTSC), Long Beach, CA., Nov 1998 – Oct 2000

Chief Architect (managed six (6) Network Engineers and 2 Oracle DBAs) deployed a Distributed Database architecture connecting 97 remote sites, across 6 countries and 5 major military WAN systems, including US Navy carriers.  Instrumental in the design and implementation of a Y2K critical and ‘must meet’ F18 E/F deployment timeline.

§ Oracle 8 Design/DBA: Designed, tested, implemented, and administered an Oracle 8i Distributed 14TB database.