Markus Smith

Experience

• 

  CACI International Inc

  May 2022 - Sept 2022

  Information System Security Officer

  • Managed the initiation and resolution processes for Plans of Action and Milestones (POAMs).• Managed FISMA system assets, overseeing their lifecycle and ensuring proper security controls.• Applied NIST 800-53 and NIST 800-37 frameworks to identify and apply relevant security controls to assigned systems.• Drafted comprehensive System Security Plans (SSPs) for internal and independent assessment teams, contributing to robust security documentation.• Protected and secured FISMA systems by meticulously following the Risk Management Framework (RMF) process, ensuring a resilient security posture.•Analyzed and managed system security scans, application requests, and change requests, contributing to the continuous improvement of system security. Show less

• 

  Total Cyber Solutions

  Sept 2022 - Dec 2022

  Cybersecurity Intern

  • Monitored SIEM, IPS, and DLP tools, resulting in 100% uptime of these applications.• Recorded and tracked security incidents, including but not limited to compromised accounts, e-mail threats, and abuse reports from various sources.• Assisted in configuring and implementing SIEMs for intrusion detection, security monitoring, and log management.• Performed compliance audits against institutionally accepted security controls.• Provided first-level compliance monitoring and investigations, including analyzing network traffic, identifying anomalous and suspicious activity, and interpreting andreporting metrics.• Assisted with vulnerability assessments and penetration testing for specific applications, services, networks, and servers. Show less

• 

  Solvitur Systems LLC

  Jan 2023 - May 2023

  Cybersecurity Analyst
• 

  CACI International Inc

  May 2023 - Aug 2023

  Cybersecurity Intern

  • Documented all relevant NIST 800-53 and DHS 4300A Security Controls and/or applicable departmental policies for assigned systems.• Acknowledged and tracked ISVMs in accordance with DHS policies.• Reviewed, approved, and provided advisement on all proposed change requests on assigned systems pertaining to any change to the existing security posture.• Generated Plans of Actions & Milestones (POA&Ms) for each non-compliant control for each assigned system; managed all applicable POA&Ms throughout the lifecycleof the assigned systems.• Worked closely with System Owners, Information System Security Manager (ISSM), and System Engineers to address system risks and coordinated remediation tomaintain a secure system posture.• Worked with components to assist with data center migration and related security updates. Show less

• 

  U.S. Department of Homeland Security

  Jul 2023 - now

  Software/Cyber Engineer

  • Manage end-to-end certificate issuance process, ensuring compliance with security policies.• Oversee key pair generation, distribution, and revocation to maintain a secure PKI environment.• Enforce and contributed to the development of security policies for certificate management.• Spearheaded research initiatives on cloud technologies for seamless data center migration, optimizing operational efficiency and enhancing security measures.• Provide insights and recommendations to stakeholders, contributing to the development of a forward-looking, cloud-centric infrastructure.• Designed and implemented automated solutions for monitoring and analyzing network metrics using Power BI and UiPath. Show less