Profiles search
Gene Spiers
Information Assurance Engineer
Hereford, AZ, United States
Details
Experience:
• Strategize, develop and implement RMF Body of Evidence (BoE) artifacts supporting both the Interim Authorization to Test (IATT) and the Authorization to Operate (ATO) efforts.
• Work closely with fellow teammates (Developers, Testers, Quality Assurance and System Engineer) to address and develop processes, procedures and documentation used for both the RMF BoE and contractual deliverable efforts.
• Identify policies and procedure documents necessary for both the RMF and system sustainment efforts; Assist customer in creating, developing and approving required documents.
• Provide Configuration Management expertise in developing, creating and maintaining baseline deliverables for development, system accreditation, and future system sustainment efforts.
2018 : Present
Zapata Technology
Senior CyberSecurity Engineer
• Identify, develop and maintain artifacts for system RMF accreditation effort acquiring both an IATT and ATO covering multiple system baselines across two different security domains.
• Review documentation, research and provide recommendations for improvement and validate applicability to individual RMF Control Correlation Identifier (CCI). Upload and associate CCIs and begin the Self-Assessment within eMASS for continuing system accreditation effort
• Maintain system security posture and continuing development and accreditation efforts :
o Acquire, apply and review Security Technical Implementation Guides (STIGs) quarterly.
o Monitor system scans, STIG quarterly updates and baseline changes to validate and submit Plan of Action and Milestones (POA&M) updates monthly.
o Conduct on demand NESSUS (Security Center) scans, report findings and research solutions.
o Aid Information Assurance Vulnerability Management (IAVM) lead in identifying applicable IAVMs, acquire/apply fixes and document all actions.
o Create Tactics, Techniques and Procedures (TTP), Standard Operating Procedure (SOP), and White Papers to explain/define current processes and future recommended courses of action.
• Develop a Configuration Management (CM) repository structure for use in both developmental and operational sustainment environments.
2015 : 2017
Archimedes Global Inc
Information Assurance
• Configuration Management (CM) Lead directing diverse team of engineers and analyst in maintaining the integrity of the Distributed Common Ground System - Army (DCGS-A) family of systems, work closely with government project leads to ensure their mission needs are met.
• Work closely with customer to ensure system configurations meet standards set forth in standardized agreements. Conduct audits, evaluate results and prepare written reports documenting shortcoming and recommending corrective actions.
• CM lead duties included :
o Assist in the creation, documentation and implementation of CM policies.
o Develop and document standards and statuses to include creating CM Plan (CMP), Version Description Document (VDD), Software Version Description (SVD), Load Directives, and Audit Reports applicable to all DCGS-A Family of systems.
o Create monthly DCGS-A Configuration Control Board (CCB) agenda, administer the CCB meeting, record/document CCB decisions and distribute decisions to responsible DCGS-A Program Managers and Project Leads for resolution.
2011 : 2015
Millennium Corporation
Configuration Management, Lead
• Site Lead for the DCGS-A Fixed Base (DFB) tasking. Interface with local customers to set priorities and identify deliverables - assign and monitor work assignments to team members nationwide ensuring deliverables were met.
• Review, develop and assist in creating Concept of Operations, White Papers, and briefings.
• Configuration Manager (CM) created policies and procedures applicable to DFB; Utilize SharePoint, Subversion and Forge.mil tools to ensure all items are placed under proper CM control.
• Assign and monitor progress of Software Problem Report (SPR) engineering efforts to local team; evaluate recommended engineering actions before closure of all SPR trouble tickets.
2010 : 2011
ManTech International Corp.
Systems Engineer, Executive
• Contractor Team Lead for Area Processing Center (APC) Architecture initiative – set work assignments and ensure team met stated goals and deadlines.
• Create, review and validate :
o Proposed APC cost estimates; create/review documentation and provide accurate appraisals of current APC initiative status relative to the architecture, engineering and IA disciplines.
o Review, develop and assist in creating functional requirements documents, CONOPs, White Papers, and briefings for global Army Enterprise Systems.
• Division representative in meetings and working groups for enterprise level initiatives, create and assist team members as necessary in creating documentation as assigned during these meetings.
• Senior Information Assurance Engineer :
o Test, design, evaluate, validate and recommend necessary information security actions and requirements to assist program managers in acquiring proper system DIACAP certification.
o Evaluate site information security posture; analyze and provide accurate findings/inputs/IA posture recommendations for inclusion into DIACAP Scorecard.
o Create Site Test & Evaluation (ST&E) procedures.
2008 : 2010
NCI, Inc.
Senior Systems Engineer and Architect
• Work closely with fellow teammates (Developers, Testers, Quality Assurance and System Engineer) to address and develop processes, procedures and documentation used for both the RMF BoE and contractual deliverable efforts.
• Identify policies and procedure documents necessary for both the RMF and system sustainment efforts; Assist customer in creating, developing and approving required documents.
• Provide Configuration Management expertise in developing, creating and maintaining baseline deliverables for development, system accreditation, and future system sustainment efforts.
2018 : Present
Zapata Technology
Senior CyberSecurity Engineer
• Identify, develop and maintain artifacts for system RMF accreditation effort acquiring both an IATT and ATO covering multiple system baselines across two different security domains.
• Review documentation, research and provide recommendations for improvement and validate applicability to individual RMF Control Correlation Identifier (CCI). Upload and associate CCIs and begin the Self-Assessment within eMASS for continuing system accreditation effort
• Maintain system security posture and continuing development and accreditation efforts :
o Acquire, apply and review Security Technical Implementation Guides (STIGs) quarterly.
o Monitor system scans, STIG quarterly updates and baseline changes to validate and submit Plan of Action and Milestones (POA&M) updates monthly.
o Conduct on demand NESSUS (Security Center) scans, report findings and research solutions.
o Aid Information Assurance Vulnerability Management (IAVM) lead in identifying applicable IAVMs, acquire/apply fixes and document all actions.
o Create Tactics, Techniques and Procedures (TTP), Standard Operating Procedure (SOP), and White Papers to explain/define current processes and future recommended courses of action.
• Develop a Configuration Management (CM) repository structure for use in both developmental and operational sustainment environments.
2015 : 2017
Archimedes Global Inc
Information Assurance
• Configuration Management (CM) Lead directing diverse team of engineers and analyst in maintaining the integrity of the Distributed Common Ground System - Army (DCGS-A) family of systems, work closely with government project leads to ensure their mission needs are met.
• Work closely with customer to ensure system configurations meet standards set forth in standardized agreements. Conduct audits, evaluate results and prepare written reports documenting shortcoming and recommending corrective actions.
• CM lead duties included :
o Assist in the creation, documentation and implementation of CM policies.
o Develop and document standards and statuses to include creating CM Plan (CMP), Version Description Document (VDD), Software Version Description (SVD), Load Directives, and Audit Reports applicable to all DCGS-A Family of systems.
o Create monthly DCGS-A Configuration Control Board (CCB) agenda, administer the CCB meeting, record/document CCB decisions and distribute decisions to responsible DCGS-A Program Managers and Project Leads for resolution.
2011 : 2015
Millennium Corporation
Configuration Management, Lead
• Site Lead for the DCGS-A Fixed Base (DFB) tasking. Interface with local customers to set priorities and identify deliverables - assign and monitor work assignments to team members nationwide ensuring deliverables were met.
• Review, develop and assist in creating Concept of Operations, White Papers, and briefings.
• Configuration Manager (CM) created policies and procedures applicable to DFB; Utilize SharePoint, Subversion and Forge.mil tools to ensure all items are placed under proper CM control.
• Assign and monitor progress of Software Problem Report (SPR) engineering efforts to local team; evaluate recommended engineering actions before closure of all SPR trouble tickets.
2010 : 2011
ManTech International Corp.
Systems Engineer, Executive
• Contractor Team Lead for Area Processing Center (APC) Architecture initiative – set work assignments and ensure team met stated goals and deadlines.
• Create, review and validate :
o Proposed APC cost estimates; create/review documentation and provide accurate appraisals of current APC initiative status relative to the architecture, engineering and IA disciplines.
o Review, develop and assist in creating functional requirements documents, CONOPs, White Papers, and briefings for global Army Enterprise Systems.
• Division representative in meetings and working groups for enterprise level initiatives, create and assist team members as necessary in creating documentation as assigned during these meetings.
• Senior Information Assurance Engineer :
o Test, design, evaluate, validate and recommend necessary information security actions and requirements to assist program managers in acquiring proper system DIACAP certification.
o Evaluate site information security posture; analyze and provide accurate findings/inputs/IA posture recommendations for inclusion into DIACAP Scorecard.
o Create Site Test & Evaluation (ST&E) procedures.
2008 : 2010
NCI, Inc.
Senior Systems Engineer and Architect
Company:
Zapata Technology
Profile Photo
