Profiles search
Dan Kube, PMP, CISSP
Chief Information Security Officer - Leidos
Rockville, MD, United States
Details
Experience:
• Management of Federal IT systems security lifecycle (FISMA-compliance) and security teams on contracts for the NRC (Nuclear Regulatory Commission).
• Responsible for maintaining the confidentiality, integrity, and availability of large scale systems through a vibrant continuous monitoring program.
• Managed a team designing FedRAMP-compliant AWS and Azure cloud deployment strategies and architectures that mitigate risk while meeting infrastructure, customer and budgetary needs.
• Interfaced with Information System Security Officers (ISSO’s), Computer Security Office representatives, intelligence community organizations, and other government agencies.
• Managed a team of system admins in successfully implementing the DHS Continuous Diagnostics and Mitigation (CDM) components in the ISMP hosted environment.
• Work with development and operational support project managers, developers, and quality team members to ensure complete system development lifecycle information assurance.
• Partner with customers, independent system security auditors, user acceptance teams, independent verification and validation teams, and environment change control boards.
• Oversee all NRC-mandated security training for the program.
2016 : Present
Leidos
Chief Information Security Officer - NRC Contracts
• Managed an infrastructure team performing a successful physical-to-virtual datacenter migration leaving the systems “Cloud-ready”.
• Managed successful ST&E (Security Test and Evaluation), C&A (Certification and Accreditation), CP (Contingency Plan Test), SIA (Security Impact Assessment), ASC-VT (Annual Security Controls and Vulnerability Tests), PSCA (Periodic System Cybersecurity Assessment), IR (Incident Response) tests, and ATO (Authority to Operate) initiatives.
• Project management infrastructure lead for hosted production systems that included 24x7x365 NOC monitoring support.
• Management of the IT systems security lifecycle and security teams on contracts for the NRC.
• Responsible for maintaining the confidentiality, integrity, and availability of large scale systems through a vibrant continuous monitoring program.
• Interfaced with ISSO’s, Computer Security Office representatives, intelligence community organizations, and other government agencies.
• Partnered with customers, independent system security auditors, user acceptance teams, independent verification and validation teams, and environment change control boards.
• Managed the POA&M’s (Plan of Action and Milestones) and DR’s (Deviation Requests) for program.
• Oversaw all NRC-mandated security training for the program, and established periodic lunch-n-learn training sessions for team members.
2013 : 2016
Lockheed Martin
Cyber Intel Analyst Manager – NRC contracts
• Managed a team of IT professionals (security analysts and system admins) supporting the NRC program.
• Managed all physical and operational security systems, stressing a defense-in-depth approach.
• Assisted in developing program security policies, including non-disclosure agreements, rules of behavior, contingency plans, incident response plans, system security plans, operation support guides.
• Participated on a BCP/DRP (business continuity planning/disaster recovery planning) board, which involved security risk assessments, site recovery and reconstitution.
• Continuous monitoring of hosted critical applications, maintaining FISMA compliance.
• Periodic vulnerability, cybersecurity, and risk assessments.
• Worked with independent system security auditors, user acceptance teams, and environment change control boards.
• Partner closely with customers, ensuring complete satisfaction with project budgets, fulfilling requirements, managing resources, with an emphasis on security and quality assurance.
• Spear-headed three separate site expansion projects, building out the facility to accommodate new contracts and expanded workforce. These expansions included complete data center build-outs, HVAC system installations, redundant power supply and storage systems, complete security system installations. These projects were all completed on time, with strict budget adherence.
• Hardware/software system procurements, and extensive management of all program assets (hardware, software, licensing, warranties, and inventories).
2006 : 2013
Force 3
IT Systems Security Manager
• Assist program in every phase of the SDLC (system development life cycle) – RUP (Rational Unified Process, PMM (Project Management Methodology).
• Participated in the one year effort to attain CMMI level 3 for the NRC program.
• Spear-headed the migration of program systems in the Central CM Library to Rational ClearCase.
• Maintenance and administration of the ClearCase database and server system.
• Assisted in producing the required documentation (SOP) for the new CM processes.
• Administrate Windows and Red Hat Enterprise Linux Servers and workstations.
• Complete Windows/Linux server hardening and lockdowns according to agency standards.
• Maintain router and switch hardware, patch panel, and UPS units.
• Documentation regarding network diagrams, site floor plans, user provisioning.
• Hardware and software end user support services and asset management for the environment.
• Maintain a SW testing lab consisting of PC/workstations, network devices, and Client Server machines.
• Technical writing of procedures documents and SOW’s for all phases of applicable work.
2001 : 2006
Force 3
IT Systems Administration / Configuration Management
• Member of a contract team that provided tier-two application helpdesk assistance to users in over 200 applications in use at the NRC.
• Provided database distribution and support. Operated and maintained a number of database update procedures that append data files and reports to db systems.
• Responsible for test plan design and implementation testing for various database systems.
• Provide support for all software installations; testing and user indoctrination; system restoration, configuration management, and referring system-related problems to programmers.
• Configuration management; the tracking and control of software development and its activities.
• Problem solving within Local Area Networks and communications systems.
• Computer programmer in Oracle 8 (SQL, PL/SQL, Forms and Reports).
• Provided helpdesk support troubleshooting and diagnosing hardware and software problems.
1999 : 2001
CSC
IT Environment Administrator
• Responsible for maintaining the confidentiality, integrity, and availability of large scale systems through a vibrant continuous monitoring program.
• Managed a team designing FedRAMP-compliant AWS and Azure cloud deployment strategies and architectures that mitigate risk while meeting infrastructure, customer and budgetary needs.
• Interfaced with Information System Security Officers (ISSO’s), Computer Security Office representatives, intelligence community organizations, and other government agencies.
• Managed a team of system admins in successfully implementing the DHS Continuous Diagnostics and Mitigation (CDM) components in the ISMP hosted environment.
• Work with development and operational support project managers, developers, and quality team members to ensure complete system development lifecycle information assurance.
• Partner with customers, independent system security auditors, user acceptance teams, independent verification and validation teams, and environment change control boards.
• Oversee all NRC-mandated security training for the program.
2016 : Present
Leidos
Chief Information Security Officer - NRC Contracts
• Managed an infrastructure team performing a successful physical-to-virtual datacenter migration leaving the systems “Cloud-ready”.
• Managed successful ST&E (Security Test and Evaluation), C&A (Certification and Accreditation), CP (Contingency Plan Test), SIA (Security Impact Assessment), ASC-VT (Annual Security Controls and Vulnerability Tests), PSCA (Periodic System Cybersecurity Assessment), IR (Incident Response) tests, and ATO (Authority to Operate) initiatives.
• Project management infrastructure lead for hosted production systems that included 24x7x365 NOC monitoring support.
• Management of the IT systems security lifecycle and security teams on contracts for the NRC.
• Responsible for maintaining the confidentiality, integrity, and availability of large scale systems through a vibrant continuous monitoring program.
• Interfaced with ISSO’s, Computer Security Office representatives, intelligence community organizations, and other government agencies.
• Partnered with customers, independent system security auditors, user acceptance teams, independent verification and validation teams, and environment change control boards.
• Managed the POA&M’s (Plan of Action and Milestones) and DR’s (Deviation Requests) for program.
• Oversaw all NRC-mandated security training for the program, and established periodic lunch-n-learn training sessions for team members.
2013 : 2016
Lockheed Martin
Cyber Intel Analyst Manager – NRC contracts
• Managed a team of IT professionals (security analysts and system admins) supporting the NRC program.
• Managed all physical and operational security systems, stressing a defense-in-depth approach.
• Assisted in developing program security policies, including non-disclosure agreements, rules of behavior, contingency plans, incident response plans, system security plans, operation support guides.
• Participated on a BCP/DRP (business continuity planning/disaster recovery planning) board, which involved security risk assessments, site recovery and reconstitution.
• Continuous monitoring of hosted critical applications, maintaining FISMA compliance.
• Periodic vulnerability, cybersecurity, and risk assessments.
• Worked with independent system security auditors, user acceptance teams, and environment change control boards.
• Partner closely with customers, ensuring complete satisfaction with project budgets, fulfilling requirements, managing resources, with an emphasis on security and quality assurance.
• Spear-headed three separate site expansion projects, building out the facility to accommodate new contracts and expanded workforce. These expansions included complete data center build-outs, HVAC system installations, redundant power supply and storage systems, complete security system installations. These projects were all completed on time, with strict budget adherence.
• Hardware/software system procurements, and extensive management of all program assets (hardware, software, licensing, warranties, and inventories).
2006 : 2013
Force 3
IT Systems Security Manager
• Assist program in every phase of the SDLC (system development life cycle) – RUP (Rational Unified Process, PMM (Project Management Methodology).
• Participated in the one year effort to attain CMMI level 3 for the NRC program.
• Spear-headed the migration of program systems in the Central CM Library to Rational ClearCase.
• Maintenance and administration of the ClearCase database and server system.
• Assisted in producing the required documentation (SOP) for the new CM processes.
• Administrate Windows and Red Hat Enterprise Linux Servers and workstations.
• Complete Windows/Linux server hardening and lockdowns according to agency standards.
• Maintain router and switch hardware, patch panel, and UPS units.
• Documentation regarding network diagrams, site floor plans, user provisioning.
• Hardware and software end user support services and asset management for the environment.
• Maintain a SW testing lab consisting of PC/workstations, network devices, and Client Server machines.
• Technical writing of procedures documents and SOW’s for all phases of applicable work.
2001 : 2006
Force 3
IT Systems Administration / Configuration Management
• Member of a contract team that provided tier-two application helpdesk assistance to users in over 200 applications in use at the NRC.
• Provided database distribution and support. Operated and maintained a number of database update procedures that append data files and reports to db systems.
• Responsible for test plan design and implementation testing for various database systems.
• Provide support for all software installations; testing and user indoctrination; system restoration, configuration management, and referring system-related problems to programmers.
• Configuration management; the tracking and control of software development and its activities.
• Problem solving within Local Area Networks and communications systems.
• Computer programmer in Oracle 8 (SQL, PL/SQL, Forms and Reports).
• Provided helpdesk support troubleshooting and diagnosing hardware and software problems.
1999 : 2001
CSC
IT Environment Administrator
Company:
Leidos
Spoken Language:
Spanish
Profile Photo
