Profiles search
Daina Stevens
Cybersecurity Engineer | TS/SCI | CISSP | CySA+ | Sec+ | A+
Los Angeles, CA, United States
Details
Education:
Bachelor of Business Administration - BBA
American Military University
2018 : 2021
Associate in Applied Science
Technical Studies (Computer Technology)
Excelsior University
2014 : 2015
American Military University
2018 : 2021
Associate in Applied Science
Technical Studies (Computer Technology)
Excelsior University
2014 : 2015
Experience:
• Support the DoD and U.S. Air Force/Space Force (SSC) in the RMF Assess & Authorize (A&A) process.
• Manage RMF packages using eMASS for on-premise and cloud-based, unclassified and classified systems.
• Serve as lead Information Systems Security Engineer (ISSE), coordinating security-related activities with government security stakeholders (i.e. Program Manager (PM), Information Systems Security Officer (ISSO), and Information Systems Security Manager (ISSM)).
• Provide support for Legacy Systems undergoing modernization as well as cloud migration.
• Assess security control compliance for RMF packages prior to submitting and obtaining approvals (i.e. IATT, ATO/ATO renewal) from the Authorizing Official (AO).
• Develop RMF documentation (i.e. System Security Plans (SSPs), Security Categorization Memos, Plan of Action and Milestones (POA&Ms), Ports Protocols and Services Matrices (PPSMs), and Risk Assessment Reports (RARs)).
• Maintain knowledge of regulations to include, but not limited to, CNSSI 1253, NIST 800-53, NIST 800-37, and DoDI 8510.01.
• Determine applicable security controls and document implementation in Security Control Traceability Matrix (SCTM).
• Assess system compliance against DoD security requirements via DISA STIGs, SRGs, and SCAP compliance checker.
• Participate in regular status meetings with government and contract personnel to facilitate progress and address potential issues of RMF efforts.
• Write in-depth cybersecurity policies and procedures covering each NIST SP 800-53 security control family, utilized force wide, for compliance.
2020 : Present
SSC
Cybersecurity Engineer II
• Troubleshot, on average, 50 incoming calls daily, relating to customer concerns of internet services.
• Established the issue and quickly determined the best path to resolution.
• Walked customers through installation in setting up and registering new equipment.
• Troubleshot internet issues-to include the inability to connect, intermittency, slow speeds, streaming
TV, antivirus and email related issues.
• Troubleshooting steps included checking signal levels, provisioning, equipment hierarchy, rebooting equipment, changing and customizing equipment internal settings, sending HITS & refresh signals, and performing factory resets.
• Scheduled field technicians when all troubleshooting steps had been exhausted and issue could not be resolved over the phone.
• Recorded equipment issue, troubleshooting steps taken, and resolution for every call.
2019 : 2019
Charter Communications
Internet Repair Agent
• Supervised and led a team of 5 Information Systems Technicians and 4 civilians in the day-to-day operation and maintenance of more than 200 DISA/Navy tactical network communication circuits.
• Performed core and specialty functions of communications operations, message processing, network administration and cybersecurity.
• Operated and maintained local and wide area networks, mainframe, mini and microcomputer systems and associated peripheral devices.
• Utilized Data Transfer Devices (DTDs) for secure receipt, storing, and transferring of data.
• Ensured proper security, handling, accounting, reporting, and control of Communications Security (COMSEC) materials, systems, and equipment.
• Handled, inventoried, and destroyed COMSEC material as prescribed or directed via Electronic Key Management System (EKMS) standards.
• Consistently monitored for abnormalities and conducted weekly system scans and backups of information systems data.
• Briefed/provided written reports to the chain of command covering information systems status and significant events.
• Drafted Situational Reports (SITREPs) noting system issues and outages.
• Created, reviewed, and revised over 80 Standard Operating Procedures (SOPs) and 8 Junior Qualification Requirements (JQRs), increasing division operational readiness by 40%.
2013 : 2018
US Navy
Information Systems Technician
• Manage RMF packages using eMASS for on-premise and cloud-based, unclassified and classified systems.
• Serve as lead Information Systems Security Engineer (ISSE), coordinating security-related activities with government security stakeholders (i.e. Program Manager (PM), Information Systems Security Officer (ISSO), and Information Systems Security Manager (ISSM)).
• Provide support for Legacy Systems undergoing modernization as well as cloud migration.
• Assess security control compliance for RMF packages prior to submitting and obtaining approvals (i.e. IATT, ATO/ATO renewal) from the Authorizing Official (AO).
• Develop RMF documentation (i.e. System Security Plans (SSPs), Security Categorization Memos, Plan of Action and Milestones (POA&Ms), Ports Protocols and Services Matrices (PPSMs), and Risk Assessment Reports (RARs)).
• Maintain knowledge of regulations to include, but not limited to, CNSSI 1253, NIST 800-53, NIST 800-37, and DoDI 8510.01.
• Determine applicable security controls and document implementation in Security Control Traceability Matrix (SCTM).
• Assess system compliance against DoD security requirements via DISA STIGs, SRGs, and SCAP compliance checker.
• Participate in regular status meetings with government and contract personnel to facilitate progress and address potential issues of RMF efforts.
• Write in-depth cybersecurity policies and procedures covering each NIST SP 800-53 security control family, utilized force wide, for compliance.
2020 : Present
SSC
Cybersecurity Engineer II
• Troubleshot, on average, 50 incoming calls daily, relating to customer concerns of internet services.
• Established the issue and quickly determined the best path to resolution.
• Walked customers through installation in setting up and registering new equipment.
• Troubleshot internet issues-to include the inability to connect, intermittency, slow speeds, streaming
TV, antivirus and email related issues.
• Troubleshooting steps included checking signal levels, provisioning, equipment hierarchy, rebooting equipment, changing and customizing equipment internal settings, sending HITS & refresh signals, and performing factory resets.
• Scheduled field technicians when all troubleshooting steps had been exhausted and issue could not be resolved over the phone.
• Recorded equipment issue, troubleshooting steps taken, and resolution for every call.
2019 : 2019
Charter Communications
Internet Repair Agent
• Supervised and led a team of 5 Information Systems Technicians and 4 civilians in the day-to-day operation and maintenance of more than 200 DISA/Navy tactical network communication circuits.
• Performed core and specialty functions of communications operations, message processing, network administration and cybersecurity.
• Operated and maintained local and wide area networks, mainframe, mini and microcomputer systems and associated peripheral devices.
• Utilized Data Transfer Devices (DTDs) for secure receipt, storing, and transferring of data.
• Ensured proper security, handling, accounting, reporting, and control of Communications Security (COMSEC) materials, systems, and equipment.
• Handled, inventoried, and destroyed COMSEC material as prescribed or directed via Electronic Key Management System (EKMS) standards.
• Consistently monitored for abnormalities and conducted weekly system scans and backups of information systems data.
• Briefed/provided written reports to the chain of command covering information systems status and significant events.
• Drafted Situational Reports (SITREPs) noting system issues and outages.
• Created, reviewed, and revised over 80 Standard Operating Procedures (SOPs) and 8 Junior Qualification Requirements (JQRs), increasing division operational readiness by 40%.
2013 : 2018
US Navy
Information Systems Technician
Company:
SSC
Years of Experience:
10
Skills
Assessment and Authorization (A&A), Authorization to Operate (ATO), Communication Security (COMSEC), Computer Hardware Troubleshooting, Customer Support, Cybersecurity, Electronic Key Management System (EKMS), Enterprise Mission Assurance Support Service (eMASS), Governance, Risk management, Compliance (GRC), Information Security, Information Technology, NIST 800-53, Office 365, Policies & Procedures, Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), Software Troubleshooting, Vulnerability Assessment, Windows OS
About
Hard charging, detail-oriented cybersecurity individual with experience in Security Assessment and Authorization (A&A), Risk Management Framework (RMF), Systems Development Lifecycle (SDLC) and vulnerability management IAW FISMA and NIST standards. Looking for an opportunity to grow in the cybersecurity field.
Profile Photo
