Information Assurance Analyst Resume

Candidate Pitch:

Active DoD clearance. To gain a position as an Information Assurance Analyst, Business Analyst, or Change Management Analyst * Obtained Authorization to Operate (ATO) for Risk Management Framework Security package for a client software enclave to allow the client to continue to serve its customers while migrating to a new hosting environment. * Performed Information Assurance for client on multiple projects simultaneously by gathering and providing necessary information to create the security package for Authorizing Official review and approval. * Performed Security Technical Installation Guide (STIG) evaluations for software implementation to ensure vulnerabilities are mitigated and don’t allow a way for adversaries to attack the applications. * Created a STIG tracker to monitor progress on mitigating numerous software application vulnerabilities. This allowed management to evaluate progress of mitigating vulnerabilities across all applications. * Created a STIG Comparison tool to determine if similar answers to STIGs exist across multiple applications. This tool allowed applications to be consistent in their answers to remediate STIGs and reduce time in addressing STIGs, if another team already had a solution. * Created a tool to assist developers in addressing STIGs by focusing on consolidated data from multiple sources (scans and STIG checklists) that can be easily filtered. Developers used this tool to review code and determine if a specific vulnerability was fully resolved. * Updated the Test Result Export and Implementation Plan files to create the System Security Plan and assist in documenting compliance of NIST controls. The Test Results and Implementation Plan are used to determine if vulnerabilities were addressed and to build the security package for review and approval. * Met with multiple developer teams to discuss and assist in mitigating hurdles by providing an overarching view of progress and shared solutions on multiple applications. * Led the Information Assurance (IA) weekly status meetings to provide Project Leads with updates to the progress accomplished in meeting the IA Risk Management Framework (RMF) goals. * Served as the JIRA Administrator on a single project, which creates and tracks the project status using a Kanban board and Plans to report progress to upper management. * Created Plan of Action and Mitigation (POAM) tracker to ensure all applications have addressed open POAMs before determining NIST control requirements have been resolved. * Conducted the twice a week configuration control board to provide a way for all team leads to communicate with requesters to determine if requested changes can be made to the system and provided an opportunity for communication of how changes are made to the system. * Lead the Blanket Purchase Agreement review meeting to ensure purchase documents were accurate, assisted in resolving any issues and processed outstanding purchase requests. * Effectively managed the Remedy system to support a massive (5000 ) user community in fulfilling requests to make changes to the system, obtain necessary hardware and software through efficient time management and priority balancing. * Assisted the Software Asset Management team in troubleshooting requests and aided in determining how to process difficult requests. This troubleshooting allowed requests to be processed efficiently while not causing any additional delay or end-user confusion. * Participated as an active member of the process team that developed documentation in Architecture Framework. This documentation was used to consistently make future changes to the system. * Developed updates to the Standard Operating Procedures for use as a point of reference on how processes are performed and assist in onboarding any new staff. * Performed beta testing of software installations to ensure known issues were resolved and reported any outstanding issues prior to distribution to the whole 5000 user community. This process minimized the chance of introducing an unexpected outcome to the network. * Established Processing procedures and created a Remedy User Guide to assist users in becoming more self-sufficient by being able to open requests with required documentation and check the status of their requests. The User Guide reduced the number of open requests from hundreds to having all requests processed efficiently and we were able to maintain the queue with fewer than 100 open requests at any given time. BA Management Information Systems Loyola University of Maryland * American Society of Quality TECHNICAL SKILLS * Risk Management Framework (RMF) * National Institute of Standards and Technology (NIST) Requirements * Security Technical Implementation Guides (STIG) * STIG Viewer * eMASS * Information Assurance * AS9100 * Capability Maturity Model Integrated (CMMI) for Development and Services * Common Information Model (CIM) * Department of Defense Architecture Framework (DoDAF) * Earned Value Management * E-Commerce (Java, JavaScript, XML, Oracle, Perl, CGI) * HTML * Information Technology Infrastructure Library (ITIL) * ISO 9001:2000 * KONFIG * Microsoft Office Suite * Microsoft Project * Photoshop * Productivity Management * Rational ClearCase * SharePoint * Software Configuration Management * Stress Management * Team Foundation Server (TFS) * UNIX * Version Manager * Excellent verbal and written skills Akylade Certified Cyber Resilience Fundamentals (A/CCRF) Cert No: 3B9ACA36 03/2024 – 03/2027