The Most Visited Job Board for Women
- Featured in the Wall Street Journal
Status: Logged Off
- Featured in the Wall Street Journal
Status: Logged Off
Search All Resumes | Submit Your Resume | Search Jobs
Marilyn
US-Florida
C&A Team Security Auditor - Information Assurance Security Engineer
* Over 20 years of progressive technical and supervisory experience with diversified experience in military and civilian projects. Looking for a position in Florida.
* Demonstrated briefing skills, strong organizational and interpersonal skills. Highly motivated, totally goal-oriented team player with strong work ethics to bring tasks to completion while delivering a high quality product.
* Combined, documented US Air Force active duty, Department of Defense (DoD) and Federal Government contracting and commercial world experience. Background in LAN, WAN, Telephony and Security to include: Information Assurance, network and systems engineering with Cisco routers and switches, plans and programming of network architectures.
Marilyn Sousa
5455 Marabou Way
Colorado Springs, CO 80911
(719) 650-3161
e-mail: sousamk@gmail.com
CAREER PROFILE:
* Over 20 years of progressive technical and supervisory experience with diversified experience in military and civilian projects. Looking for a position in Florida.
* Demonstrated briefing skills, strong organizational and interpersonal skills. Highly motivated, totally goal-oriented team player with strong work ethics to bring tasks to completion while delivering a high quality product.
* Combined, documented US Air Force active duty, Department of Defense (DoD) and Federal Government contracting and commercial world experience. Background in LAN, WAN, Telephony and Security to include: Information Assurance, network and systems engineering with Cisco routers and switches, plans and programming of network architectures.
CLEARANCE: Active Top Secret clearance
PROFESSIONAL EXPERIENCE:
C&A Team Security Auditor
G&B Solutions, Inc.
Dept of Interior - National Business Center, Lakewood, CO
December 2008 – Present
* Provides the Department of Interior’s (DOI) National Business Center Division (NBC) with auditing, assessment and INFOSEC direction by identifying unique system characteristics, interviewing key organizational personnel (technical, administrative, and executive), working with consulting team to compose requisite documentation (security categorizations, risk assessments, contingency planning, etc.), and mapping complex technical requirements, functionality, and capabilities to prescribed security controls, policies, and practices.
* Support the Federal Government in security requirements of FIPS 199, FISMA and NIST security standards to include NIST Risk Management.
* Development of System Security Plans (SSP), Risk Assessments (RA), and Asset Valuations. Proficient in information security concepts and application security “best practices”. Responsibilities include preparing highly confidential documentation and ensuring compliance with security standards and procedures.
* Conduct in-depth technical reviews of new and existing IT systems in order to identify the appropriate mitigation strategies required to bring these systems into compliance with established policy and industry guidelines during Certification and Accreditation (C&A) security test and evaluations for the Department of the Interior (DOI) and the Department of Transportation (DOT). Perform FIPS 199 and NIST security standards-compliant statistical security analysis on a multi-tiered system according to vulnerability, risk, security features, and technical areas.
* Responsible for planning, developing, finalizing, and reviewing key deliverables (SSP, RA, POA&M) in each stage of the certification and accreditation process.
Sr. Systems Security Engineer
Boecore, Schriever AFB, CO
December 2007 – December 2008
* Provide technical expertise in Information Assurance (IA) for the Joint National Integration Center (JNIC) and Missile Defense Agency (MDA) for systems security compliance support associated with classified and unclassified systems.
* Responsibilities include but are not limited to providing technical security engineering support for complex software, hardware, network systems; design, develop, and execute security tests and evaluations (ST&E), vulnerability assessments and audits; risk mitigation and analysis of security threats.
* Very familiar with DOD Information Assurance Certification and Accreditation Program (DIACAP); Control Validation Tests (CVT) and insider threat auditing. Perform evaluation, risk identification, and definition of mitigation strategies for the DoD Federal Information Security Management Act (FISMA) requirements. Maintain integrity and confidentiality of client information by ensuring appropriate standards are in compliance with department standards and procedures.
* Assist with computer security engineering for classified and unclassified networks and support the government in preparation of certification and accreditation documentation (C&A); planning and implementation by reviewing and developing program documentation, run RETINA scans and DISA Gold Disk for certifications; recommending computer security requirements, supporting development of local area network and wide area networks.
* Maintain an Audit Policy with procedures; perform computer system security audits of network users to determine system usage and misuse; provide a report addressing audit findings and concerns; and recommended fix actions. Proactively audited to prevent, detect, contain and recover from internally originated information security breaches.
Sr. Systems Security Engineer
HireReturn, Inc.
Dept of Interior - National Business Center, Lakewood, CO
June 2007 – December 2007
* Contracted to G&B Solutions to provide the Department of Interior’s (DOI) National Business Center Division (NBC) with auditing, assessment and INFOSEC direction.
* Support the Federal Government in security requirements of FIPS 199 and NIST security standards to include NIST Risk Management.
* Development of System Security Plans (SSPs), Risk Assessments, and Asset Valuations. Proficient in information security concepts and application security “best practices”. Responsibilities include preparing highly confidential documentation and ensuring compliance with security standards and procedures.
* Development and execution of C&A, ST&E and SSP documentation along with vulnerability testing. Exercises excellent judgment in structuring and organizing work, setting priorities, balancing the interests of clients and readily adjusting priorities to respond to customer demands. Conducts Certification and Accreditation (C&A) security test and evaluations for the Department of the Interior (DOI) holding the results of over 200 highly specific security tests for DOI systems handling personal information. Perform FIPS 199 and NIST security standards-compliant statistical security analysis on a multi-tiered system according to vulnerability, risk, security features, and technical areas.
* Knowledge of functional and technical requirements for identification, authorization, access control, integrity, and service reliability components.
Sr. Systems Security Engineer / Assistant Lead
Northrop Grumman Mission Systems, Schriever AFB, CO
March 2004 – June 2007
* Responsible for several systems/security engineering related projects and tasks. Provide technical expertise in Information Assurance (IA) for the Joint National Integration Center (JNIC) and Missile Defense Agency (MDA) for systems security compliance support associated with classified and unclassified systems and cross domain information solutions for networks.
* Responsibilities include but are not limited to providing technical security engineering support for complex software, hardware, network systems; design, develop, and execute security tests and evaluations (ST&E), vulnerability assessments and audits; risk mitigation, analysis of security threats, and current trends; familiar with DOD Information Assurance Certification and Accreditation Program (DIACAP); develop System Security Authorization Agreements (SSAAs) in accordance with DITSCAP and later DIACAP; Cross-Domain Solutions (CDS / SABI), Control Validation Tests (CVT) and TEMPEST checks.
* Perform and conduct system-level designs reviews and risk management assessments. Assisted with computer security engineering for classified and unclassified networks and support the government in preparation of certification and accreditation documentation (C&A); planning and implementation by reviewing and developing program documentation, run Internet Security Scanner (ISS) and RETINA scans for certifications; recommending computer security requirements, supporting development of local area network and wide area networks. Implementing security policy to protect internal network against unauthorized access.
* Analytical support includes research for conducting Proof of Concepts in the IA laboratory by performing tests of new software and hardware products providing feedback, recommendations, verification, and report findings in technical briefs. Briefed upper management on findings and recommendations to meet DoD Standards for Common Criteria. Maintains integrity and confidentiality of client information by ensuring appropriate standards are in compliance for hardware and software utilization.
* Developed an Audit Policy with procedures; perform computer system security audits monthly of privileged network users to determine system usage and misuse; provide a monthly report addressing audit findings and concerns; responsible for the Quarterly Risk Assessment Report detailing the current network security configurations and recommended fix actions.
* Provided extensive technical and supervisory expertise, direction, support and guidance within the group and to other services. Ability to function in multiple roles; assists management with daily/weekly functions, as needed.
Network Engineer
Innovative Inc, Peterson AFB, CO, 6-month contract
September 2003 – March 2004
* Contracted to SAIC to provide engineering and network support for the government enterprise-wide client-server network operating on their classified network (SIPRNET and RELCAN) environments utilizing Cisco and Enterasys (Cabletron) products.
* Actively involved in solving network outages such as router connectivity, troubleshooting switches and IP troubleshooting.
* Tasks include performing network operation, maintenance; upgrade implementations, version upgrades, Security Test & Evaluations (ST&E) checklists for new installs and documentation of existing networks.
C4 Systems Engineer
Space Mark International / Arrowhead Global Solutions, Schriever AFB
January 2002 – September 2003
* Contracted to provide network engineering, architecture support and guidance to the government on current and future technologies in the C4 Systems Engineering (SCX) section to include planning, defining, technical analysis, reviewing trades and studies, price quotes, risk assessment and assisting with implementing of the final product for the DoD customer both military and civilian.
* Provided documented technical network and systems solutions for the base and tenant organizations. Procured the equipment, installed the rack and communication equipment and ensured the cabling was installed, terminated and tested. Responsible for reviewing the technical packages (consisting of network drawings, conceptual risk assessments, system configuration documents, etc) to ensure compliance with the base standards.
* Researched industry technology and recommended for purchase network, system, computer and IT equipment to improve the quality of the technology that supports the governments command, control, communications and computer (C4) systems. Providing secure architectural & engineering solutions to support future growth and services.
ADDITIONAL EXPERIENCE Includes: (1979 – 2002)
Sr. Network Engineer
Vanion, Inc., Colorado Springs, CO
* Engineered / Designed ATM voice and data circuits using T1’s and DSL connections via network management tools (GUI and UNIX based applications). Maintained network engineering documentation for provisioning and managed all IP address space. Created a database to document IP allocations of CIDR and Supernet for Class B and C addresses.
Systems Engineer
IC&C (formerly RMI & INCC), Denver, CO
* Dedicated to specific clients to design, build, configure and maintain their networks. Provided remote and on-site support for customers, including Tier-III support for key account of all sizes. Reviewed, recommended and configured 3Comm and Cisco equipment.
Sr. Telephony Engineer
M2 Technologies, Inc., Colorado Springs, CO, 6-month contract
* Contracted to MCI to provide fourth level engineer support to MCI’s unique telephony platform, Next Generation Service Node (NGSN) 800 service. Researched, documented and disseminated fault analysis reports to all support levels to ensure minimal loss of service in future events.
Sr. Network Analyst / Infrastructure Supervisor
Ocean Spray Cranberries, Inc., Lakeville, MA
* Responsible for the Infrastructure integrity of the Local Area Network (LAN); supporting the daily requirements of the Siemens Switch and internal wiring, to include Polycom VTC. Provided guidance and assistance to the Network Management, Telephony and WAN / LAN groups. Set-up HP Openview and CiscoWorks to monitor the network.
WAN Installation Supervisor
SunGard Brokerage, Boston, MA
* Coordinated and executed hardware and network installation, cabling and configuration of Cisco routers and switches, CSUs/DSUs, and other associated equipment. Set equipment configurations up in a test environment before deploying to the customers. Provided technical support for real-time securities.
Installation Supervisor / Communications Technician
BayBank, Inc., Waltham, MA (Merged with Bank of Boston, this is now FleetBoston)
* Key contact to coordinate and assist with the installation and testing of DTE, DCE, and T3/T1/DS0 connections. Monitored, performed fault isolation for a network of over 1300 ATM’s and 250 bank branches on their Tandem / client server systems.
Telecommunications Computer Systems Technician – Tech Controller
United States Air Force – Enlisted (Top Secret SCI)
* Directed technicians as a Supervisor. Developed and implemented training as a Training Manager. Served as a Technical Advisor for off-site Weather and Satellite facilities. Fault isolated and troubleshot services for T1, T3, DDS, Fiber Optic, X.25 Virtual circuits, video (teleconferencing), and voice circuits over landline, microwave and satellite media.
CERTIFICATIONS & EDUCATION:
* Studying for the CISM (Certified Information Security Manager)
* Certified Information Systems Auditor (CISA) 2008
* Security+ Certified 2007
* Auditing and Monitoring Windows 2003 Server 2006
* Certified Multimedia Design Networks Specialist 2000
* Certified Telecommunications Computer Systems Specialist - Tech Control 1979
* State-of-The Art Program – Frame Relay, Fast Packet and ATM & ISDN 1996
* A.A., General Studies 1992
* A.A.S., Electronic Systems Technology 1990
* Advanced Leadership/Management Course 1989
TECHNICAL TRAINING:
* Cyber Security Assessment Management Certification & Accreditation Washington, DC 2009
* ISC2 CISSP CBK Boot Camp Huntsville, AL 2006
* SANS System Forensics, Investigation & Response Course Denver, CO 2005
* eEye Retina REM Administrator CBT Course 2005
* SANS Intrusion Detection Course Denver, CO 2004
* Double-Take DTW124 & DTI324 Courses Colorado Springs, CO 2003
* Cisco CIM Voice Over IP (VoIP) 2001
* Cisco Aironet Wireless Site Survey Class Englewood, CO 2000
* Cisco AVVID IP Telephony Workshop Englewood, CO 2000
* Fluke Advanced LANMeter Networking Workshop Framingham, MA 1999
* Cabletron VLAN Fundamental Course Portsmouth, NH 1999
* Cabletron Spectrum Administration Course Portsmouth, NH 1999
* Computer / Telephony Integration (CTI) Workshop Boston, MA 1999
* Siemens 9751 CBX Automatic Call Director (ACD) San Jose, CA 1998
* Siemens 9751 System Administration Rolling Meadows, IL 1998
* Cisco Router Configuration (ICRC-GeoTrain Corp.) Worchester, MA 1998
* AT&T T1/DS0 Bandwidth Management & SONET Course Waltham, MA 1998
* Racal-Datacom Network Monitoring Systems 400/9000 Waltham, MA 1995
TECHNICAL SUMMARY
WAN Technologies:
DDS 56K/64K, T1/T3, OC-12/48, Fractional T-1, DS0, ISDN, X.25, Frame Relay, ATM, DSL, Switched 56K and POTS.
LAN Technologies:
Token Ring, FDDI, Ethernet 802.3, and Wireless 802.11x.
Network Equipment:
Various Modems, CSU/DSU, NT-1, Multiplexers, Encryption devices, Hubs, Switches, Nortel Shasta, Lucent Stinger, Cabletron, 3Com and Cisco Routers / Switches, one-way data devices (Owl Guard), associated LAN equipment to include printers and servers.
Network Analysis Tools:
Network Monitoring System (NMS) for Paradyne and Racal, NetX, CiscoWorks, HP Openview, Spel, Spectrum, Network General Sniffer, Fluke LANMeter and Fluke OptiView Integrated Network Analyzer.
Network Protocols:
SNA, HDLC, SDLC, EBCDIC, TCP/IP, SNMP, RIP, EIGRP, OSPF, IP/IPX, TN3270, RSC.
Physical Layer:
RS-232, V.35, RJ-11, RJ-45, CAT5e, Fiber Optic (multimode and single mode).
Computer Experience:
IBM, TANDEM, Client Server, UNIX, Oracle, Windows 95/98/2000/XP, Windows NT, Cobol, MS Word, Lotus 1-2-3, Excel, Access, PowerPoint, Visio, Internet Relay Chat (IRC) programs and various other applications.
Telephony:
Voice over IP (VoIP), DACS, Rolm Siemen Telephone Switch, DMS-100, SS7, and provisioning and documentation there of.
Security Analysis Tools:
DISA Gold Disk, BCWipe, NT ToolBox, WireShark, Internet Security Systems (ISS) Internet Scanner, SNORT, Ethereal, Retina Network Security Scanner.
A job posting is required to contact candidates.
Click here to post a job now.
Cox Business - Field Service Rep
Fiscal Officer/Grants Manager III
Assistant Professor of Allied Health-Full-Time, Tenure-Track-Medical Coding and
Assistant Professor, Business-Full-Time, Tenure-Track-Marple Campus
Online Data Entry & English Typing Work in night shift ( Indian Time)
Looking for something to do at home
Dogpile Web Search (COJ217264)
DES SPACE TRAVELS (COJID218106)
