Donovan James Schulteis
Total Page:16
File Type:pdf, Size:1020Kb
Donovan James Schulteis, CISSP 4920 W. 107th Loop Westminster, CO 80031 (303) 904-6424 (303) 350-8767 (cell) [email protected] Capabilities:
• Held Top Secret Clearance for 10+ years, currently working under an active Secret DoD and DOJ 6c/T1 Clearances • Telecommunications and Information Systems Security Management and Administration – MSM / CISSP • Technical Training, Risk Analysis/Assessment, C&A, Quality Assurance, Software Testing and Technical Writing • Windows 9x/NT/2000/XP / Sun Solaris 2.6/7/8/9 / HP-UX / BeOS/BeIA / Linux / FreeBSD / QNX RtOS Operating Systems • Software Development with C++, LabView, PHP, Java, JSP, perl, and Visual Basic • Networking and Communications • Satellite Networks • Encryption Systems • Digital / Analog Switching and Integration • RF / Wireless Systems • IBM PC / Sun Sparc Hardware Platforms Educational Highlights:
2005 - CISSP – Certification Number 77115, Issued Aug 05, 2005. 2005 - Master's of Science, Management, Information Systems Security Management, Colorado Technical University. 2000 - Bachelor's of Science Computer Science, Hawaii Pacific University. Epsilon Delta Pi Honor Society, Magna Cum Laude Honors, 3.83 Final GPA. Recent Professional History :
• Senior Security Analyst, ICE, Dept. of Homeland Security, SAIC / Northrop Grumman, Lafayette, Colorado (Dec 2003 - Present)
Current role of Operational Lead of the Infrastructure Defense Group, which is responsible for the upkeep and maintenance of all security related systems and workstation/server security compliance and vulnerability management.
Responsible for the management and supervision of operations, resources, assets and shift personnel in implementing Information Systems Security, Analysis and Incident Response of security event data in the Security Operations Center (SOC) and Computer Security Incident Response Center (CSIRC) for the Department of Homeland Security (DHS) and Immigration and Customs Enforcement (ICE) networks, containing over 1500 individual sites and over 53,000 active hosts. Conduct configuration management, personnel scheduling, and oversee monitoring of Intrusion Detection Systems and Encryption Devices in a 24x7 environment. Perform vulnerability scanning, analysis and reporting, security incident detection and response, customer security remediation support, morning status briefings and periodic reports to upper management, and incident and vulnerability tracking and management programs. Conduct Incident Response, Network Forensics and Audit Trail Analysis of computer and network security incidents.
Perform and document Certification and Accreditation (C&A) activities using FISMA guidelines, FIPS and NIST Publications, and DHS/Immigration and Customs Enforcement guidelines for the SOC platform, and assist remote sites with C&A activities. Responsible for designing, implementing and maintaining all security related Policies and Procedures (created or completely rewrote approximately 60% of required documents), including Risk Assessments, Vulnerability Assessment Management, Security Self Assessments, Security Testing and Evaluation, Contingency Planning and Business Continuity, and other federally mandated security documentation.
Perform and oversee management of systems administration and security patching procedures of multiple operating systems and platforms on the global ICE network. Assist site personnel in security incident and vulnerability remediation efforts. Supervise SOC shift personnel in the operations and maintenance of a variety of security application services, including Intrusion Detection Systems (IDS), Anti-Virus (McAfee ePO), WSUS Patch Management, Vulnerability Assessment Assets (Scanners), MySQL and Oracle databases, and Apache web servers.
• IT Security Instructor, Westwood Technical College, Denver, Colorado (Oct 2005 – Mar 2007, Currently in Substitute Status)
Adjunct instructor for Bachelor’s Degree program in Information Systems Security at Westwood Technical College. Courses taught include Securing Business Applications, Network/LAN Security, and Internet Security.
• GPS Systems Engineer, CDI Corporation / CSC / Boeing, Colorado Springs, Colorado (Jun 2002 – Dec 2003)
Performed classified data storage and retrieval of the Global Positioning System (GPS) satellite constellation telemetry for the Integrated Mission Operation Support Center (IMOSC) team. Responsible for the development, integration and operations maintenance of COTS and custom satellite analysis and trending applications, as well as operations, maintenance and systems performance of data storage and retrieval systems in a secure network environment. Maintained vital systems availability and integrity requirements supporting a classified, mission essential, operational environment. Provided off-hour availability and assistance during satellite and systems anomaly situations. Performed problem resolution and developed enhancements and improvements to satellite telemetry analysis applications written in the LabView graphical programming language. Ported several applications from the UNIX/Solaris platform to the Windows NT/2000 platform. Authored and executed test procedure documentation. Conducted Quality Assurance Testing and Validation of hardware and software configuration changes to ensure critical data integrity, availability and confidentiality.
• Information Systems Security Engineer, TekSystems / NCI, Scott AFB, Illinois (Nov 2001 - Jun 2002)
Responsible for implementing Information Systems Security on both unclassified and classified networks for US Transportation Command (USTRANSCOM), Air Mobility Command and Military Sealift Command (MSC) headquarters in the Security Operations Center (SOC). Performed systems administration and security patching on various platforms running a variety of applications including MySQL and Oracle databases and Apache web servers. Conducted firewall configuration and monitoring, intrusion detection, vulnerability analysis and reporting, virus definitions update/maintenance, incident response, and web application development. Managed scheduling for night shift personnel, acting as the overall night shift supervisor. Donovan James Schulteis
• Software Engineer, Qubit Technology Inc., Golden, Colorado (Aug 2000 - Mar 2001)
Responsible for the installation, maintenance and administration of multiple platforms. Installed, tested and evaluated various Internet service applications for content delivery and data confidentiality to determine whether the applications fit the needs of the company's objectives and requirements. Developed dynamic, online content in HTML, JSP, PHP, Perl and C++, connecting to Oracle databases and other server application services, as well as GUI C++ utility applications, for the Home Security Center (ADT project) and Internet Appliance projects on BeIA/BeOS and QNX platforms. US Navy Experience (Oct 1989 - May 2000):
• Information Systems Security Officer / Manager / Systems Engineer, Tactical Support Center, Hawaii (Oct 1995 - May 2000)
Duty Manager of the Tactical Support Center Network Operations Center (NOC), responsible for the supervision of up to 5 personnel in the setup, operations and maintenance of classified, mission critical telecommunications and information systems to support a Hawaii-wide military customer base for tactical and anti-submarine warfare operations in the Hawaiian operations area. Collateral duties included Information Systems Security Officer, Communications Security (COMSEC) Material File Clerk and User, HP-UX communications server and Windows NT systems administrator, Y2K/Business Continuity/Contingency Planning Team Lead, and database administrator.
Sole administrator and manager of 2 HP-UX communications servers connecting voice and data circuits worldwide over satellite and terrestrial classified communications networks. Responsible for user administration, circuit/network/hardware configuration, database administration, backup/recovery procedures, documentation and security. On the Windows NT unclassified network, managed user administration, help desk support, configuration changes, information security, virus protection, and remote connectivity issues through a Cisco 1600 Series router to a larger, island-wide WAN of over 300 PCs.
Information Systems Security Officer designated by Commander Computer and Telecommunications Command Pacific Area to enforce site Security Policies and Standards, and conduct security audits for both operational security and certification and accreditation in accordance with NIST and US Navy standards at the local site level.
Responsible as a systems, network and facilities engineer for relocating a classified, government telecommunications facility from Barbers Point to Kaneohe Bay Hawaii, including the planning, removal, replacement, restoration, testing and sign-off of the site's equipment and wiring, including over 150 items of communications equipment and computer workstations, as well as designing and implementing the physical security requirements of the facility. Equipment configurations consisted of: T1 landline equipment, Cisco routers, ethernet hubs, digital and analog voice/data switches, Fiber and ethernet cabling, modems, converters, multiplexers, Firebird and tone generator test equipment, satellite and ground wave transmitters and receivers, encryption systems, and other telecommunications, networking and computer systems.
• Technical Control Duty Manager, Technical Control Facility, USS Blue Ridge, Japan (Dec 1993 - Jul 1995)
Directly responsible as a manager and technician aboard USS Blue Ridge in the supervision of up to 6 personnel in the proper setup, operations and maintenance of 11 voice, 73 data and 2 video-teleconferencing classified, mission critical circuits and networks operating globally over a variety of media, including satellite communications networks. During Joint Military and Multi-National Allied exercises, responsible for over 150 voice, data and video circuits and networks, often under vigorous and highly-visible operating conditions.
Training Manager responsible for the training of 35 division personnel. Managed and conducted the technical and non-technical training of all division personnel. Conducted and coordinated training sessions and managed training records. Rewrote the Job Qualification Requirements packages for all site operations.
Qualified Communications Watch Officer, Divisional Materials, Maintenance and Management Officer, Divisional Safety Petty Officer, and Cryptographic Material Security (CMS) User.
• Information Systems Duty Manager, Joint Command Message Center, USS Blue Ridge, Japan (Jul 1993 - Dec 1993)
Responsible as manager and operator of information systems distributing classified and unclassified message traffic to embarked customers and commands. Supervised up to 12 personnel in the performance of those duties and conducted periodic performance evaluations on those personnel in a secure facility environment. Collateral duties included database administrator, Xerox and PC Repair technician, and General Message File Clerk.
During the Oct 1989-Jun 1993 period, official titles of US Navy duties included Traffic Analysis Supervisor and Telecommunications Operator. Other Professional Highlights:
• Published Writer Published two technical articles in BeMagazine, a magazine focusing on the Be Operating System, published by SSC, Inc. (publishers of Linux Journal).
• Computer Technician Consulted to small business in Honolulu (1996) and Denver (2001), upgrading and repairing IBM PC and LAN Equipment. Certified Electronics Technician certifications in both Computers and Telecommunications until Jul 2000. Other Educational Highlights:
2003 - Implementing and Administering Microsoft Active Directory, MS Certified Course 2154 1998 - Administering Microsoft Windows NT 4.0, Microsoft Certified Course 803. 1997 - Windows NT and UNIX Systems Administration Course 1995 - Tactical Support Center Communications Operator Course. Honor Graduate. 1995 - US Navy Shipboard Instructor Course
References available upon request.