Profiles search

Andrew H.

IT CyberSecurity Assessment Manager at AOUSC
Washington D.C., DC, United States

Details

Education: Bachelor's degree

Information Technology

George Mason University

2002 : 2007

Bachlor of Science

IT Information Technology with a focus of Information Security and Network Administration

George Mason University

2002 : 2006
Experience: - Managing vulnerability assessments of court-units throughout the United States.

- Make recommendations on reducing risk at local court-units, and providing guidance towards industry best practices and a more secure operating IT environment.

2017 : Present

Administrative Office of the United States Courts

IT CyberSecurity Assessment Manager

- Conducting IT Security Assessments based on NIST 800-53 framework.

- Conducting Vulnerability Scans using Nessus, and making remediation recommendations.

- Providing consulting to reduce risk and vulnerabilities in the Enterprise.

2015 : 2016

ManTech International Corporation

IT Security Engineer

• Vulnerability Management Team Lead, overseeing a team of 5 FTEs for the Security Support Contract of a major Civilian Financial Government Agency.

• Established process improvements in Vulnerability Management; implemented many new reports focused on actionable results which have been successful, efforts have shown measurable results.

o Over 60% of vulnerability instances were reduced in the past year

• Conducting Operating System image security assessments for risks and vulnerabilities. Recommended controls and configuration for a hardened secure baseline for the enterprise

• Conducted wireless war walks across the enterprise for discovery and report on unauthorized Access Points. Established several process improvement procedures that led to quicker response to shutting down unauthorized Access Points

• Performed root cause analysis to identify problems in patch deployment processes and operations. Identified issues and solutions that led to a large reduction of vulnerabilities.

• Conducting vulnerability scanning and analysis across the enterprise for clients. Created reports and analysis summarizing the state of vulnerabilities and progress of the vulnerability management program

• Prioritizing risk from weaknesses within the Organization, including utilizing the Common Vulnerability Scoring System (CVSS) framework for scoring risk from identified vulnerabilities.

• Assisted in conducting penetration tests against findings from vulnerability scans.

• Performed Internal Controls Review audits utilizing FISMA and NIST SP 800-53 framework related controls against client regional sites. Made improvements to existing processes and procedures, and updated the documentation.

2010 : 2015

Blue Canopy

Associate / Manager

- Lead role in Security Operations :

- Responsible for response to IDS alerts, such as unauthorized vulnerability scans or possible worm infections

- Manage resources in the Security Operations Center

- Research and response to daily information security threats, issue tasks and/or recommendations to mitigate risks and immediate threats

- Oversee a team of three including a Security Engineer, Security Analyst, and Security Operations Center Lead

- Conduct regular vulnerability scans against agency’s workstations and servers

- Serve as incident response lead in performing incident handling activities

- Research and make recommendations of new security tools and products

- Created and leading Vulnerability Management Program. Established to mitigate and reduce the number of vulnerabilities at FERC

- Successfully and significantly decreased overall number of vulnerabilities

- Identify vulnerabilities in the enterprise, determine which are high risks, and prioritize mitigation.

- Run bi-weekly status meetings

- Lead several project initiatives at FERC. Projects include but not limited to :

- Enterprise wide deployment of vulnerability scanning tool used at FERC

- Deployment and operations of a log management framework assisting in incident response, forensics, and data correlation

- Implementation of IT Security VLAN test lab, used for security and IT Operations testing purposes

2008 : 2010

Federal Energy Regulatory Commission

IT Security Specialist
Company: Administrative Office of the United States Courts
Years of Experience: 15

Skills

Active TS/SCI Clearance, CISSP, Computer Forensics, Computer Security, FISMA, GCIH, Incident Response, Information Assurance, Information Security, Information Security Management, Information Technology, Network Security, NIST, Penetration Testing, Risk Assessment, Risk Management, Security, Security Architecture Design, Security Tools, Servers, U.S. Federal Information Security Management Act (FISMA), VMware, Vulnerability Assessment, Vulnerability Management, Vulnerability Scanning, Web Application Security

About

Experience in both the public and private sector. Technical with hands on experience in Information technology. Current focus is information security. Currently conducting vulnerability and compliance scans using various IT security tools, handling agency audits, and have some knowledge of NIST 800-53. Excellent writing and explanatory skills, able to convey technical concepts to multiple audiences in an understandable manner. Full understanding and experience in running a Vulnerability Management Program. Able to identify vulnerabilities in the Enterprise, assigning risk to vulnerabilities, and prioritizing vulnerabilility remediation in the Enterprise. Also possesses the soft skills necessary to influence culture change and convey the importance of proactive vulnerability remediation in an organization.



Specialties: Information Security, IT Networking, Vulnerability Scans, using Security tools.