Profiles search
Keenan Rhines
Information Security Analyst at CGI
Fort Washington Forest, MD, United States
Details
Education:
Master of Business Administration - MBA
Business Administration and Management, General
Strayer University
2015 : 2016
Master's degree
Management Information Systems, General
Strayer University
2014 : 2015
Master's degree
Education
Strayer University
2012 : 2013
Bachelor's degree
Cybersecurity
University of Maryland University College
2009 : 2011
Associate's degree
Computer and Information Systems Security/Information Assurance
University of Maryland University College
2009 : 2010
Business Administration and Management, General
Strayer University
2015 : 2016
Master's degree
Management Information Systems, General
Strayer University
2014 : 2015
Master's degree
Education
Strayer University
2012 : 2013
Bachelor's degree
Cybersecurity
University of Maryland University College
2009 : 2011
Associate's degree
Computer and Information Systems Security/Information Assurance
University of Maryland University College
2009 : 2010
Experience:
Provide the following support to the DISA JFW program :
• Review security controls in accordance with NIST SP-800-53A, CNSSI 1253, DOD8500.1, and DOD
8510.01.
• Performing PIA (Privacy Impact Assessments), security assessments, and risk assessments.
• Performing compliance scanning and vulnerability scanning.
• Performing vulnerability assessments and compliance assessments.
• Performed STIG reviews.
• Use of ACAS, SCAP compliance checker, and Fortify.
• Conduct Risk Assessments for both site and type accreditations.
• Provide and review documentation and report all Plan of Action and Milestones (POA&M) items, as
required for an accreditation under the Risk Management Framework (RMF) to achieve an ATO.
• Drafting, reviewing, editing, and recommending guidance for Standard Operating Procedures (SOP),
Tactics, Techniques, & Procedures (
2018 : Present
CGI
Information Security Analyst
Providing leadership and project support to the Navy's ongoing mission. Responsibilities include :
• Overseeing between 10 and 20 projects simultaneously; managed full life cycle of projects from inception through
completion.
• Provide guidance and expertise to subordinates to ensure responsibilities and task are completed.
• Working to meet Risk Management Framework (RMF), DIACAP, STIGs, Certification and Accreditation (C&A), and
Assessment and Authoration (A&A) standards.
• Successfully built highly flexible, diligent, collaborative problem solving teams from every department within the
Navy's enterprise.
• Provided weekly detailed reports to Senior Management on the status of the top issues.
• Ensure that the project team understands all aspects of the mission relating to their respective responsibilities,
and demonstrate a thorough understanding of the
2008 :
US Navy Reserve
Information Technology And Services Professional
Providing cybersecurity support and information assurance to USACE and AGC :
• Working knowledge of the FEDRAMP certification process.
• Familiarity with USACE and ACE-IT.
• Review security controls in accordance with NIST SP-800-53A, CNSSI 1253, DOD8500.1, and DOD
8510.01.
• Use of RMF process to obtain system accreditation and ATO.
• Performing PIA (Privacy Impact Assessments), security assessments, and risk assessments.
• Expertise in Microsoft Project
• Performing risk assessments and risk analysis
• Performing compliance scanning and vulnerability scanning.
• Working knowledge of and daily use of eMASS, VRAM, ACAS, SCAP,
and HBSS
• Performing vulnerability assessments and compliance assessments.
• Manage financials for each project, including obtaining approvals for initial and final budgets, release
of purchase orders, tracking of existing and expected commitments, and timely approval of invoices
• Maintain a filing system that documents all project activities
• Performed STIG reviews.
• Use of ACAS, SCAP compliance checker, and Fortify.
• Conduct Risk Assessments for both site and type accreditations.
• Provide and review documentation and report all Plan of Action and Milestones (POA&M) items, as
required for an accreditation under the Risk Management Framework (RMF) to achieve an ATO.
• Work closely with and report current and future security concerns to senior management.
• Assisting system owners with the drafting of system documentation.
2016 : 2018
Chenega Corporation
Information Assurance Officer
Providing project support and information assurance to DIA and its staff. Responsibilities include :
• Working to meet Risk Management Framework (RMF), DIACAP, STIGs, Certification and Accreditation
(C&A), and Assessment and Authorization (A&A) standards.
• Review security controls in accordance with NIST SP-800-53A, CNSSI 1253, DOD8500.1, and DOD
8510.01.
• Performing compliance scanning and vulnerability scanning.
• Performing vulnerability assessments and compliance assessments.
• Performing risk assessments and risk analysis
• Performing compliance scanning and vulnerability scanning.
• Performing PIA (Privacy Impact Assessments), security assessments, and risk assessments.
• System management that that involved verifying the integrity and availability of computer resources.
• Acting certification authority for PKI distribution and CAC management.
• Conducting interviews and assisting in the hiring process.
• Reporting to senior management the status of projects and conducting meetings
• Oversight of policy management which involves configuring group policies, users, and computers
through use of Windows Server 2012.
• System management that that involved verifying the integrity and availability of computer resources
with use of ACAS, XACTA, and STIGs.
• Develop and update the information systems security documentation (Security Plan, Contingency
Plan, Contingency Plan Test, Business Impact Analysis, FIPS-199, eAuthentication, Privacy Threshold
Analysis, etc.)
2016 : 2016
BAE Systems
Information Assurance Analyst
Providing IA support and information assurance to NGA and its staff. Responsibilities include :
• Working to meet Risk Management Framework (RMF), DIACAP, STIGs, Certification and Accreditation
(C&A), and Assessment and Authorization (A&A) standards.
• Assisting system owners with the drafting and review of required documentation.
• Review security controls in accordance with NIST SP-800-53A, CNSSI 1253, DOD8500.1, and DOD
8510.01.
• System management that that involved verifying the integrity and availability of computer resources
with use of ACAS, XACTA, and EMASS.
• Operational and project management that included the development and maintenance
of Standard Operating Procedures (SOPs).
• Use of ACAS, SCAP compliance checker, and Fortify.
• Patching, upgrading, and maintaining server operating system platforms
• Overseeing vulnerability assessments penetrations testing, and port scanning to increase security on
DOD networks, generating audit reports for classified and unclassified systems.
• Coordinate the remediation of Plan of Action and Milestones (POA&M)
2012 : 2016
General Dynamics Information Technology
Information System Security Officer
• Review security controls in accordance with NIST SP-800-53A, CNSSI 1253, DOD8500.1, and DOD
8510.01.
• Performing PIA (Privacy Impact Assessments), security assessments, and risk assessments.
• Performing compliance scanning and vulnerability scanning.
• Performing vulnerability assessments and compliance assessments.
• Performed STIG reviews.
• Use of ACAS, SCAP compliance checker, and Fortify.
• Conduct Risk Assessments for both site and type accreditations.
• Provide and review documentation and report all Plan of Action and Milestones (POA&M) items, as
required for an accreditation under the Risk Management Framework (RMF) to achieve an ATO.
• Drafting, reviewing, editing, and recommending guidance for Standard Operating Procedures (SOP),
Tactics, Techniques, & Procedures (
2018 : Present
CGI
Information Security Analyst
Providing leadership and project support to the Navy's ongoing mission. Responsibilities include :
• Overseeing between 10 and 20 projects simultaneously; managed full life cycle of projects from inception through
completion.
• Provide guidance and expertise to subordinates to ensure responsibilities and task are completed.
• Working to meet Risk Management Framework (RMF), DIACAP, STIGs, Certification and Accreditation (C&A), and
Assessment and Authoration (A&A) standards.
• Successfully built highly flexible, diligent, collaborative problem solving teams from every department within the
Navy's enterprise.
• Provided weekly detailed reports to Senior Management on the status of the top issues.
• Ensure that the project team understands all aspects of the mission relating to their respective responsibilities,
and demonstrate a thorough understanding of the
2008 :
US Navy Reserve
Information Technology And Services Professional
Providing cybersecurity support and information assurance to USACE and AGC :
• Working knowledge of the FEDRAMP certification process.
• Familiarity with USACE and ACE-IT.
• Review security controls in accordance with NIST SP-800-53A, CNSSI 1253, DOD8500.1, and DOD
8510.01.
• Use of RMF process to obtain system accreditation and ATO.
• Performing PIA (Privacy Impact Assessments), security assessments, and risk assessments.
• Expertise in Microsoft Project
• Performing risk assessments and risk analysis
• Performing compliance scanning and vulnerability scanning.
• Working knowledge of and daily use of eMASS, VRAM, ACAS, SCAP,
and HBSS
• Performing vulnerability assessments and compliance assessments.
• Manage financials for each project, including obtaining approvals for initial and final budgets, release
of purchase orders, tracking of existing and expected commitments, and timely approval of invoices
• Maintain a filing system that documents all project activities
• Performed STIG reviews.
• Use of ACAS, SCAP compliance checker, and Fortify.
• Conduct Risk Assessments for both site and type accreditations.
• Provide and review documentation and report all Plan of Action and Milestones (POA&M) items, as
required for an accreditation under the Risk Management Framework (RMF) to achieve an ATO.
• Work closely with and report current and future security concerns to senior management.
• Assisting system owners with the drafting of system documentation.
2016 : 2018
Chenega Corporation
Information Assurance Officer
Providing project support and information assurance to DIA and its staff. Responsibilities include :
• Working to meet Risk Management Framework (RMF), DIACAP, STIGs, Certification and Accreditation
(C&A), and Assessment and Authorization (A&A) standards.
• Review security controls in accordance with NIST SP-800-53A, CNSSI 1253, DOD8500.1, and DOD
8510.01.
• Performing compliance scanning and vulnerability scanning.
• Performing vulnerability assessments and compliance assessments.
• Performing risk assessments and risk analysis
• Performing compliance scanning and vulnerability scanning.
• Performing PIA (Privacy Impact Assessments), security assessments, and risk assessments.
• System management that that involved verifying the integrity and availability of computer resources.
• Acting certification authority for PKI distribution and CAC management.
• Conducting interviews and assisting in the hiring process.
• Reporting to senior management the status of projects and conducting meetings
• Oversight of policy management which involves configuring group policies, users, and computers
through use of Windows Server 2012.
• System management that that involved verifying the integrity and availability of computer resources
with use of ACAS, XACTA, and STIGs.
• Develop and update the information systems security documentation (Security Plan, Contingency
Plan, Contingency Plan Test, Business Impact Analysis, FIPS-199, eAuthentication, Privacy Threshold
Analysis, etc.)
2016 : 2016
BAE Systems
Information Assurance Analyst
Providing IA support and information assurance to NGA and its staff. Responsibilities include :
• Working to meet Risk Management Framework (RMF), DIACAP, STIGs, Certification and Accreditation
(C&A), and Assessment and Authorization (A&A) standards.
• Assisting system owners with the drafting and review of required documentation.
• Review security controls in accordance with NIST SP-800-53A, CNSSI 1253, DOD8500.1, and DOD
8510.01.
• System management that that involved verifying the integrity and availability of computer resources
with use of ACAS, XACTA, and EMASS.
• Operational and project management that included the development and maintenance
of Standard Operating Procedures (SOPs).
• Use of ACAS, SCAP compliance checker, and Fortify.
• Patching, upgrading, and maintaining server operating system platforms
• Overseeing vulnerability assessments penetrations testing, and port scanning to increase security on
DOD networks, generating audit reports for classified and unclassified systems.
• Coordinate the remediation of Plan of Action and Milestones (POA&M)
2012 : 2016
General Dynamics Information Technology
Information System Security Officer
Company:
CGI
Years of Experience:
16
Profile Photo
