Charles W. Glover, III
CISSP, ITIL, CCNP, RHCE, PMP
Address: APO/AE Kaiserslautern, Germany
SECURITY CLEARANCE
Cleared for TOP SECRET Information and Granted Access to Sensitive Compartmented Information by the
Defense Department based on a Single Scope Background Investigation (SSBI). Re-investigation
completed 27 July 2016, also cleared for NATO SECRET.
TECHNICAL SUMMARY
Currently registered in the Defense Manpower Data Center’s Defense Workforce Certification
Application (DWCA) and Army Training and Certification Tracking System (ATCTS) at IAT Level II,
qualified up to DoD 8570.01-M IAT III, IAM III, IASAE II, and CND-SP.
20 Years Information Technology Experience, with progressive advancement from help desk to project
management on small to large projects ranging from software implementation to regional networks.
17 Years Project Management/Engineering Experience, working onsite and remotely with clients and
stakeholders to meet project requirements and scope, in both prime and sub-contractor roles.
14 Years Cybersecurity / Information Assurance Experience, creating, deploying, and managing
Accredited Information Security Solutions including regulatory compliance for FISMA and DoD RMF and
DIACAP.
10 Years Simulation and Training Experience, providing System Engineering support of Live, Virtual,
and Constructive Simulations both stand alone and federated in support of small unit to Corp level
exercises.
10 Years Government Contracting Experience, working with diverse ranges of stakeholders with
competing requirements within and across government contracts in both prime and sub-contractor roles.
SKILL SET
Information Security: ACAS, HBSS, Network and System STIG and IAVAM, COOP and Disaster
Recovery Planning and Testing, IDS, IPS, IA Policy Development to meet Business and Project Security
Requirements, Regulatory Compliance for RMF, DIACAP, NIST 800 series, DoD 8500 series, FISMA,
Firewall Management
Management: Onsite and Remote Project Management, Managing Stakeholders, Project Planning,
Scheduling, Project Budgeting, Resource Allocation, Project Scoping, Requirements Building,
Development of Policy and Procedures for Fielding/Implementation
Networking: Cisco Routers/Switches IOS, UNIX/Linux NFS, NIS, SSH, DNS, NTP and LDAP, Windows
Active Directory, DNS, DHCP, WINS, and Domain Management, LAN/WAN Design, CAT 5e/6 Cabling,
Wi-Fi, TCP/IP
Simulation/C4IR: JLVC, JLCCTC-ERF and JLCCTC-MRF Admin/E2E, WARSIM Admin/Tech Control,
JCATS Admin/DB/Operator, MC/C4I to Simulation Integration, DIS and HLA Protocol Support
Hardware: Dell PowerEdge, HP ProLiant, Army CHP Hardware, IBM RS6000 pSeries, Cisco
Software: VMWare vSphere, Microsoft Windows Server and Desktop, Red Hat Enterprise Linux, HP-UX,
AIX, Solaris, MySQL, MS SQL, Sybase, Oracle, MS Exchange, Symantec Corporate Antivirus/Client
Security/Ghost
E-mail: chuck.glover.3@gmail.com
Charles W. Glover III
Page 2
CERTIFICATIONS
Certified Authorization Professional, CAP (Certification #: 331856)
Certified Ethical Hacker, CEH (ECC #: ECC964372)
Certified Hacking Forensic Investigator, CHFI (ECC #: ECC964372)
Certified Information Systems Security Professional, CISSP (Certification #: 331856)
Certified Network Defense Architect, CNDA (ECC #: ECC964372)
Certified Modeling and Simulation Professional, CMSP (CMSP #: C00407)
Cisco Certified Network Professional - Security, CCNP-Security (CISCO ID: CSCO10088934)
Cisco Certified Network Professional, CCNP (CISCO ID: CSCO10088934)
CompTIA Security+, A+, Network+, Server+ Certifications (Career ID: COMP001000505535)
Hewlett Packard Accredited Integration Specialist: Network Infrastructure, AIS (ID: PL71813886)
ITIL Foundations Certification in IT Service Management, ITIL (Registration #: 5157977.20318827)
Microsoft Certified IT Professional: Windows Server 2008 Administrator, MCITP (MCP ID: 1302405)
Microsoft Certified Solutions Associate: Windows Server 2008, MCSA (MCP ID: 1302405)
Microsoft Certified Systems Engineer: Windows NT, Windows 2003, MCSE (MCP ID: 1302405)
PMI Project Management Professional, PMP (PMP #: 1265783)
Red Hat Certified Engineer, RHCE RHEL 6 and 4 (Certification ID: 120-010-343)
VMWare Certified Professional 5 and 6 - Data Center Virtualization, VCP6-DCV, VCP5-DCV (VM ID:
VMW-01518600S-00486295)
EDUCATION & TRAINING
Western Governors University, Salt Lake City, UT
MS, Information Security and Assurance
University of Central Florida, Orlando, FL
BS, Information Systems Technology
MA, Education: (Research Area: Computer Applications in Education and Training)
BA, Psychology
Department of Defense
DISA ACAS 4.8 Operator and Supervisor Course
DoD Designated Approving Authority (DAA) Course
DISA HBSS 201 Admin Course
DISA HBSS 301 Advanced Course
DoD DIACAP
2014
2003
1995
1992
2016
2015
2015
2015
2008
Charles W. Glover III
Page 3
Department of the Army
Certified Authorization Professional (CAP-RMF/eMass)
CX-I AMN Security Technical Implementation Guides (STIG) Training
CX-I AMN IA Vulnerability Management Training
Information Assurance Security Officer (Management Level 1)
Army Specific Designated Approving Authority (DAA) Course
HQDA IAA Virtual Training Course
Army G3 Computer Security Training
Army Incident Handling Training
2016
2015
2015
2012
2008
2008
2008
2008
PROFESSIONAL EXPERIENCE
Cubic Applications Inc., Kaiserslautern, Germany
January 2014 to Present
Network Engineer/RMF Engineer
Provide Information System Security Engineering for the STS contract in support of RMF A&A process
for all 7ATC simulation centers. Provide network engineering design, implementation, and administration
for the Kaiserslautern Mission Training Complex (MTC) 7th Army Training Command (7ATC) and the
Baumholder Mission Training Complex (MTC) 7th Army Training Command (7ATC). Manage the KMTC
and BMTC Simulation Networks to include all network devices and network management systems.
• Responsible for the strategic Battlefield Simulations network and equipment.
• Responsible for development of a single unified STIG image for both Windows and Redhat Linux
for use across all 7ATC simulation centers throughout Europe.
• Responsible for monitoring, assessment, and application of security controls on KMTC and BMTC
system in compliance with RMF System Authorization Package.
• Provide end user IA support
applications.
• Monitoring systems for potential security violations to determine if
breached, assess the impact, and preserve evidence.
• Implement and monitor security controls for CE system(s)
Authorization Package and Plan of Action and Milestones (POA&M).
for all CE/NE or Enclave operating systems, peripherals, and
the systems have been
• Conduct tests of system security controls in accordance with NIST SP 800-53 and NIST SP 80053A
as established within the Security Assessment Plan.
in accordance RMF Security
• Responsible for the configuration and daily operation of encryption devices for secure data
transmission in support of distributed classified training events.
• Install and manage quality of service for telecommunications (Voice over Internet Protocol, VOIP)
for exercise and training events.
• Perform setup, monitoring, maintenance and troubleshooting of all
routed and switched
simulation network infrastructure component devices (routers, switches, WAN links, etc.)
designated to support JMSC simulations events and exercises.
• Develop and Implement Access Controls (ACL) on routers, firewalls, and other network devices
to comply with Security Authorization Package in accordance with RMF, Army, and FISMA
regulations.
• Responsible for preventive maintenance on all simulations network architecture components and
monitoring devices; making recommendations to address potential shortfalls and replacement
services/upgrades.
• Researches emerging technology for incorporation in the simulation network.
• Assist in the development of new Site Systems Accreditation Plans (SAP) for Automated Data
Processing systems and any simulations network devices fielded.
• Assist with updating and maintaining existing Accreditation Plans for all simulations Automated
Data Processing systems and networked.
• Monitoring and maintain network compliance with Site Accreditation Plan as well as Department
of Defense (DOD), Department of Army (DA), United States Army Europe (USAREUR) and Local
Installation Information Assurance Requirements.
Charles W. Glover III
Page 4
• Manage the WAN JTEN node and connect it to the simulation network.
Camber Corporation, Orlando, FL
throughout
March 2013 to January 2014
Information Assurance Engineer
Provide security engineering design and implementation in all aspects of Information Assurance and
Information Security Engineering for OneSAF Simulation System. Assess and mitigate system security
threats/risks
the software development life cycle (SDLC);
validate system security
requirements; establish system security designs, and implement security designs in hardware, software,
data, and procedures. Verify security requirements, perform system Certification and Accreditation (C&A)
planning and testing and liaison activities, and support secure systems operations and maintenance.
Conduct penetration tests, vulnerability identification, validation, and remediation activities.
• Technical Lead on Site Accreditation for OneSAF/IDE facility. Develop requirements,
assessment, and project plans.
risk
• Review and update IA Information Security Plan (ISP) for current versions OneSAF Simulation
System for Annual FISMA reviews.
• Develop, implement and document ISP, Plan of Action and Milestones (POA&M), Continuity of
Operation Plan (COOP), and other documentation to meet and support for DIACAP Certification
and Accreditation (C&A), FISMA, and Certificate of Networthiness requirements for new versions
of OneSAF.
• Member of IS risk assessment during the Certification and Accreditation C&A process.
• Develop security requirements for hardware, software, and services acquisitions specific to SDLC
of the OneSAF Simulation System.
• Ensure that all Information Assurance Management review items are tracked and reported to
government IASO, IAM, and DAA.
• Identify alternative functional IA security strategies to address security concerns.
• Ensure that IA inspections, tests, and reviews are coordinated for OneSAF SDLC.
• Review the selected security safeguards to determine that security concerns identified in the
approved ISP have been fully addressed.
• Evaluate the presence and adequacy of security measures proposed or provided in response to
contractual requirements, and documents.
• Advise the IAM/DAA of any changes affecting IA posture of OneSAF Simulation System.
• Ensure that compliance monitoring occurs, and review results of such monitoring across SDLC.
AEgis Technologies, Orlando, FL
January 2007 to March 2013
Senior Systems Engineer
Provide Project Management, Technical Management, Information Assurance and Field Engineering
support and training to US Army simulation centers, Mission Command Training Centers (MCTC)
previously known as Battle Command Training Centers (BCTC), and the Mission Command Training
Program (MCTP) previously known as Battle Command and Training Program (BCTP). Design, install
and support network infrastructure to support SIM/STIM networks. Provide system administration, E2E
and operator support for JLCCTC-ERF and JLCCTC-MRF to C2/MC/C4I systems. AEgis Technologies
was prime on JLCCTC Fielding Contract and is now sub-contractor on larger CTS contract consolidating
implementation with hardware procurement.
• Security Engineer for MRF and ERF Implementation and New Equipment Training Events to SCIF
environments. Work with site to meet G2/DIACAP/FISMA regulatory compliance. Assisting site
personnel with audits, vulnerability testing, and risk analysis for the development of POA&M for
IATO and eventual ATO for software in SCIF. Train site personnel on risk analysis, vulnerability
testing and period site review for regulatory compliance audits.
• Lead Engineer for testing and validation of JLCCTC-ERF 4.0 simulation systems on Red Hat
Linux to meet current DIACAP compliance.
• Technical Lead for team providing technical representation for the Material Developer supporting
the Combat Developer with setup and technical requirements for the VV&A of JLCCTC-ERF 4.1
– 5.X. Manage the implementation of JLCCTC-ERF for VV&A and assist the Combat Developers
Technical Team with setup and evaluation for both secure and unclassified installations. Provide
Security Engineering support to Combat Developer Technical Team during VV&A events.
Charles W. Glover III
Page 5
• Working directly with both government and contractor management representing both the
Combat and Material Developers.
• Technical Lead of ADVON Team and Assistant Project Team Lead for JLCCTC-ERF 4.1 – 5.X
and JLCCTC-MRF 6.X installation projects. Manage the Advance Party Team for implementation
of JLCCTC Suites for multiple sites. Working directly with both government and contractor
management and overseeing all technical requirements associated with implementation and New
Equipment Training (NET).
• Project Manager, Fielding Lead for the JLCCTC-ERF installation projects for Fort Lewis,
Washington and Fort
Irwin, California. Developed project scope, schedule, and resource
allocation plans. Managed the 15-person team implementing constructive simulation suite and
providing NET training for both Fort Lewis and Fort Irwin. Worked directly with both government
and contractor stakeholders to meet all project requirements and staying within scope.
• Project Manager, Fielding Lead for the JLCCTC-ERF installation projects for Fort Richardson,
Anchorage Alaska, and Fort Wainwright, Fairbanks, Alaska. Managed the 20-person team
implementing constructive simulation suite and providing New Equipment Training (NET) to both
sites. Worked directly with government and contractor stakeholders to meet all project
requirements and staying within scope.
• Provided End-to-End (E2E) support for US Army Chaplain School, Fort Jackson SC. Project
Lead expanding digital capabilities to include greater C2/MC/C4I support for Chaplains Simulation
Center, and development of the COP for advanced operational training.
General Dynamics Information Technology, Orlando, FL
August 2004 to January 2007
Senior Network Engineer
Provided network and E2E support and training to US Army simulation centers, digital schoolhouses, and
MCTC/BCTCs. Designed, installed and supported network infrastructure to support SIM/STIM networks.
Provided system administration, E2E and operator support for JLCCTC-ERF and MC/C4I systems.
• Provided End-to-End (E2E) support for security hardening of server software and networking
devices for DITSCAP (now DIACAP) compliance. Responsible for scanning and hardening of
networking devices and provided senior engineering support for non-Windows based servers.
• Project Manager on the design and implementation of a portable simulation center for CFLCC at
Camp Buehring, Kuwait. 32-node JCATS/SIMPLE suite, with 64-node ASTi Radio System.
• Network Engineering Lead on the network design and implementation of the Battle Command
Training Center, Fort Indiantown Gap PA. 125+ node SIM/STIM networks.
• Project Manager on the design and implementation of a simulation center for the US Army
Chaplain School, Fort Jackson SC. 60+ node SIM/STIM network.
• Technical Manager on the design and implementation of a FBCB2, MCS-L stimulation network
for the US Army Simulation Center, Fort Benning GA.
• Ported FBCB2 3.5.5.1/6.4.X and ASAS-L 6.3.X to alternate hardware platforms for expanded
training capacities.
• Provided End-to-End (E2E) support for Fort Wainwright, AK Warfighter exercise.
• End-to-End (E2E) Engineer for the Fort Polk, Fort Stewart, and Schofield Barracks BCTC
installation and new equipment training.
• Technical Lead in the testing and validation of JANUS driven stimulation of C4I systems for the
US Army National Guard.
London Bridge Phoenix Software, Heathrow, FL
January 1999 to August 2004
System Engineer
Provided IT consulting for engineering services for commercial and retail banking. Provided design and
technical management assistance on IT Infrastructure.
Provided technical services and advanced
support for clients’ in house IT staff. Assisted with business continuity planning, maintaining regulatory
compliance, and annual federal audits.
Installed and supported of LAN/WAN, and core RDBMS.
• Provided Technical Expertise to clients in evaluating infrastructure and recovery plans to meet IA
requirements of the GLB Act.
• Conducted over 100 disaster recovery tests for clients and developed guidelines for testing to
meet IA requirements of the GLB Act.
Charles W. Glover III
Page 6
• Designed, implemented and supported a 150 node Cisco based remote access network for client
support.
• Upgraded 87 “live” client servers, onsite and remotely, from Sybase 11 to Sybase 12 while
maintaining all SLAs for uptime.
• Designed and implemented Cisco based network infrastructure for new Application Service
Center supporting retail banking clients nationally.
• Migrated “live” clients from Sybase 11 to Microsoft SQL 2000.
Orange County Comptroller’s Office, Orlando, FL
June 1998 to January 1999
Network Engineer
Managed the Comptroller Office’s LAN/WAN. Duties included redesigning of the TCP/IP network for fully
switched VLAN environment to meet comptroller’s business requirements. Provided primary support and
management for the network, servers, and data communication.
• Project Lead on developing technical requirements for IA and network security requirements of
end user workstations and group policies for domain users.
• Project Lead on implementation of new Microsoft Domain from mixed Novell/NT design
• Project Lead on migration project for the Comptroller’s Office from Novell Groupware to MS
Exchange.
Multimedia Medical Systems, Maitland, FL
Project Engineer
Project management and support
March 1997 to May 1998
for client/server medical video teleconferencing (VTC) and record
management system. Duties included system design and team lead for installation teams on sites.
Primary contracts were unclassified medical projects for joint services.
• Project Manager for Project Seahawk, a medical grade Video Teleconferencing system and
medical records network using ATM, Ethernet and analog networks for joint military and civilian
sites across the Puget Sound, WA. Area.
• Project Manager for Region 9 project, a medical grade Video Teleconferencing system and
medical records network using ISDN and Ethernet network for joint military bases across
Southern California.
• Project Manager for Adams County project, a medical grade Video Teleconferencing system and
medical records network for Adams County Medical Services in rural Ohio.
CONSULTING & CONTRACT WORK
January 1995 to May 2005
SunGard Data Systems Corporation, Lake Mary, FL
Recovery Specialist
Contracted to assist SunGard clients with the COOP, Disaster Recovery and Recovery Planning to
meet regulatory requirements related to Business Continuity Planning and Testing. Provided technical
support
for PC LAN, WAN connections, UNIX, Linux and x86 servers at local recovery site and
interface with clients and staff at remote sites.
Entex, Orlando, FL
Network/PC Support Technician
Contracted for corporate network migration at Universal Studios, Florida. Responsible for new PC
installation, migration of user base to Microsoft Windows Active Directory, configuration of Microsoft
Exchange accounts, and troubleshooting end user problems.