Michael O'Brien, CISSP, GPEN

Experience

• 

  USS McInerney (FFG-8)

  Jan 2005 - Jul 2009

  IT Systems Analyst/Technician

  Conducted vulnerability scans of network devices and maintained proper reporting procedures for all IAVA compliance operational directives. Acted as Second Tier in Incident Response and reportable practices dangerous to securityEnsured Confidentiality, Integrity, and Availability were maintained in daily operations through established procedures, operations security, and detailed analysis of events. Developed standard operating procedures (SOP) to detail the proper configuration of all IT systems. Managed cryptographic material system and maintained all proper documentation from production to destruction. Circuit management efforts resulted in scores of 87%, 93%, and 97% in consecutive years of IT Comprehensive Communications Assessments. Show less

• 

  NCTS Bahrain

  Aug 2009 - Aug 2010

  IT Systems Analyst/Technician

  Led the application of secure end-to-end telecommunication systems for the troubleshooting of all LAN and WAN connectivity issues as well as tracking/auditing of outages and restores for all Central Command subscribers. Identified, documented, and reported security incidents such as electronic spillage, improper usage of IT assets, improperly protected classified information, and active/passive attacks on Navy Data/Voice Systems. Trained and mentored technicians in LAN Administration and circuit management. Directly supervised 8 personnel during daily watch rotations and established a team oriented environment which supported smart solutions to repair outages, mitigate challenges, and overall minimize downtimeConfigured and maintained all IT equipment on the watch floor to include: Routers, Switches (L2/3), Transceivers, Bulk encryption devices, Bridges, Repeaters, Server, and Workstations. Managed 32 personnel in the department maintenance program and employed operational insight to schedule outages on high priority circuits when required for repairs or routine preventative maintenance. Maintained a 100 percent maintenance accomplishment rate and passed all executive audits.Maintained a $250,000 budget and ensured a 100 percent fulfillment of logistical and material requirements. Show less

• 

  United States Navy

  Oct 2010 - May 2013

  IT "A" School Instructor

  -Managed the classroom environment to facilitate a safe and effective learning process for 22 students per class. -Trained personnel on the required skills to effectively pass the Microsoft 70-680 (Windows 7 configuring exam), the basics of Cisco Networking (CCNA 1), and the required knowledge to obtain the CompTIA A+ certification. -Explained the role of Domain Security Policy and demonstrated the use of Group Policy Objects to implement Security Technical Implementation Guides (STIGS)-Provided instruction on general security practices in an IT environment and taught concepts such as multifactor authentication, defense in depth, least privileged, need-to-know, etc. -Demonstrated the creation of Domain Controllers and the configuration of all major services such as DNS, DHCP, Proxy, and Internet Information Services (IIS) Show less

• 

  Honeywell Technology Solutions, Inc.

  May 2013 - Apr 2015

  Systems Security Analyst

  -Coordinated security implementations with sub-contractors and communicated requirements and compliancy expectations while assisting in minimizing operational impact. -Recorded, tracked, and responded to security incidents such as data leakage, improper usage of IT assets, detection of malicious software, and unprotected personal information, etc. -Utilized DOD classified Operational Direction reporting system to report compliance on DOD mandated action items. -Employ network scanning products such as Retina, Nessus, LAN Sweeper, etc. to conduct vulnerability assessments on customer IT assets to include: Workstations, Servers, Routers, Switches, Wireless Access Points, Intrusion Detection Devices, and Linux assets. -Evaluate efficiency and cost effectiveness of protective measures. Recommend correction actions which most appropriately balanced security with compatibility and cost effectiveness. -Assist in configuration management to ensure integrity of critical functions in security-related hardware and software of customer information systems. -Provide analysis, evaluation, and recommendations designed to promote economy, efficiency, and effectiveness, in customer’s security program. -Assist external customers in developing, implementing, and assessing a security program based upon the customer’s requirements. -Participate in independent and objective evaluations and audits of the security policy implementation.-Maintained the confidentiality, integrity, and availability of sensitive customer information in a compartmentalized network environment classified at secret. -Established procedures for routine war-driving assessments to ensure enforcement of wireless usage policy. -Received Bravo award for validation efforts during IPRIME certification and accreditation. Show less

• 

  VyStar Credit Union

  Apr 2015 - Jul 2020

  • Senior Security Analyst

    Apr 2018 - Jul 2020

  • Information Systems Security Analyst (Red Team)

    Apr 2015 - Apr 2018
• 

  Community First Credit Union

  Jul 2020 - now

  Information Security Officer