[prev in list] [next in list] [prev in thread] [next in thread] 

List:       security-jobs
Subject:    CISSP Seeking Employment in the NVA,DC,MD Area
From:       Robert Craig <rjcraig () erols ! com>
Date:       2000-05-24 12:13:33
[Download RAW message or body]

Available for Interviews after 5/29/2000


Robert J. Craig, CISSP
1516 Northern Neck Drive #102
Vienna, VA 22182
Home Phone:  703-749-0468
E-mail: rjcraig@erols.com

Department of Defense Security Clearance: TS/SCI
Clearance active as a Naval Reservist at Navy Reserve Security
Group (NRSECGRUWASH-Ft. Meade, MD)
Cryptologic Technician, Technical, Chief Petty Officer (CTTC)

Objective
To develop layered information protection strategies that provides a
high level of assurance for network operations, as well as policy guidance
and security life-cycle management.  Additionally, to support the
Information Operations communities within specified Federal Agencies
or business units of corporations with similar IO needs.

Education
UNIVERSITY OF MARYLAND, EUROPEAN DIVISION
Bachelor in Science, Management Studies, May 1994

NORTHERN VIRGINIA COMMUNITY COLLEGE
Associate in Science, Computer Science, May 1990
Who's Who honoree, American Community & Junior Colleges (1990)
Phi Theta Kappa - Tau Nu Chapter, President (1990), Secretary (1989)

Courses and Certifications
* Completed an 80 hour refresher course on Total Quality Management.  Topics
included process improvement, change management, and statistical tools
utilization, April, 2000.
* Certified Information Systems Security Professional (CISSP), November 14,
1999.
* "26th Annual Computer Security Conference and Exhibition", hosted by
Computer
Security Institute (CSI), 11/15/99-11/17/99, Courses attended: Return On
Investment
on Emerging Security Technologies, Prerequisites for PKI-Building the
Foundations,
Attack Trees: Modeling Actual Attack Threats, "Take Our Program, Please"-
How to Present Security Awareness Training, Combining Cryptography and
Trust,
Introduction to Single Sign-On, Artificial Intelligence Powered Hacking,
Integrating PKI, Introduction to PKI and Certificate Authorities,
and Microsoft Security Configuration Manager, 17.5 CPE Credits.
Post Conference Two Day Seminar, 11/18/99-11/19/99, Intrusion Techniques and
Countermeasures
* Introduction to the CISSP Exam, Computer Security Institute,
8 CPE Credits, NetSec '99, June 13, 1999
* "NetSec '99", hosted by Computer Security Institute (CSI),
06/14/99-06/16/99,
Courses attended:  Intrusion Detection and Network Forensics,
Protect Your Web Site Against Attack, The Deception Toolkit (DTK),
Intrusion Detection, Extreme Hacking: The Art of Attack and Penetration,
Tools and Techniques of Information Warfare, Scanning Networks,
Hacker's Tools - Demonstration, 17 CPE Credits.
* Attended Cisco Certified Network Associate (CCNA) course 06/01/99-06/05/99
taught by Todd Lammle
* Microsoft Certified Professional (MCP):
* Implementing and Supporting Microsoft Windows NT Server 4.0, May, 1999
* Implementing and Supporting Microsoft Windows NT Workstation 4.0, March,
1999
* International Who's Who of Information Technology, Award of Excellence,
1998
* Completed Mathematics for Signals Intelligence, 1998
* Management Training - Completed 80 hours of Total Quality Management
Courses
(Introduction to TQM, Team Skills, Methods for Managing Quality)-1993,
UofMd: MGST 310 Managerial Leadership, MGST 398 Japanese Management,
ENGL 393 Advanced Technical Writing
* National Cryptologic School (NCS) Courses Completed (1995-1997) - CT-111
Essentials of Windows NT,
CT-112 Architecture of Windows NT, MP-214 LAN Management Overview
* 3COM certificates - 3+ Terminal Server (Feb. 1992),
3+ LAN Install., Admin.,& Communication. (Sept. 1991), London, UK.

Employment and Skills

Net-Centric Consulting Group, LLC - Manager E-Secure Services / Lead-Capital
Launch Team
January 2000 - Present
Wrote a white-paper on Distributed Denial of Service attacks.  Established
criteria
for developing an end-to-end E-Secure Services sector with skills assessment
for
sub-sectors staffing.  Developed contacts with Venture Capital Groups for
pursuit
of Early Stage financing.  Assisted in the development of multiple business
plans.
Performed reviews of resumes and potential new-hire interviews.  Developed
procedures
for the selection of prospective Internet Incubation clients.  Represented
security
service offerings at pre-sales meetings.


Science Applications International Corporation (SAIC) Information Services
Sector,
Network Systems Security Engineer, July 1999 - January 2000
(NOTE:  SAIC purchased BIS in July 1999)
Boeing Information Services, Inc. (BIS), Network Systems Security Engineer
October 1998 - July 1999

Analyzed security features for Windows NT Workstation and Server in
accordance
with AR 380-19, Department of the Army, Information Systems Security
Regulation.
Tested implementation of IPSec on Cisco 2500 routers.  Regularly attended
National
Institute of Standards and Technology (NIST) meetings for discussion on
implementations
of Public Key Infrastructure (PKI).  Developed testing scripts for
performing security
analysis of delivery systems products.  Provided training to US Army Reserve
personnel
on Windows NT 4.0 Dial-Up Networking/Remote Access Services (RAS) utilizing
AT&T Secure Data Devices (SDD) for encrypted communications.


CEXEC Inc., LAN Engineer / Senior NT Network Analyst
June 1997 - October 1998

Developed deployment and management plans, and standards for Windows NT
Workstation
for the Nuclear Regulatory Commission's enterprise network (approx. 3900
workstations).
Designed network directory structure for NT Domains coexistence with
Novell's "NDS for NT".
Created marketing presentations for enterprise-wide desktop management plan.
Developed implementation and rollout schedules in MS-Project for various
scenarios
utilizing Microsoft's Systems Management Server (SMS) for deployment and
management.
Team Lead for Windows NT group, managing four network analysts including
Tier 3 Help Desk Support functions.  Integrated MS-Project 95 with
Microsoft's Team Manager 97 for managing project development schedules and
resource
management.  Developed methods and provided technical solutions for
integrating NT
into the NRC's Novell Netware environment.  Managed development of Windows
NT
across-the-network Automated Installation scripts.  Conducted introductory
NT training
for 6 regional LAN administrators.  Prepared corporate briefing on NT
Operating System
deployment issues for Regional Network Management personnel.  Supervised
research and
resolution process for application integration problems.

National Security Agency (NSA), Naval Security Group Activity, Ft. Meade,
Maryland
Network Manager / Network Engineer / LAN System Administrator
October 1994 - June 1997

* Managed over 100 personnel ensuring minimal scheduling conflicts and that
personnel
were trained to perform assignments.  Projected future manning requirements,
ensured
requests for additional personnel were submitted in advance of actual needs,
approved
scheduling changes, coordinated emergency replacements when necessary, and
continually
kept personnel informed of changes and additional requirements.  Drafted
annual
employee evaluations and performed performance reviews.

* Developed and implemented a network restructuring plan providing for a
smooth
migration from multiple Windows NT 3.51 to a Windows NT 4.0 Server using
RAID, and
implemented NT 4.0's Internet Information Web Server for Intranet home page
services.

* Implemented and monitored security and auditing features on Win NT and SUN
workstations.
Complete responsibility for planning organizational relocations,
integration, and
installation of 60+ Windows NT 3.51 workstations using fiber optic and
Ethernet
multiport transceivers for connectivity.

* Administered UNIX / Domain Name Service (DNS) SUN server and 125 user
accounts,
MS-Exchange 4.0 E-mail Server, and Windows Internet Name service (WINS).
Managed TCP / IP addressing of network nodes.


Naval Security Group Activity, Edzell, Scotland, United Kingdom
Information Systems (IS) Manager - Engineer / UNIX system administrator
Computer Equipment Special Security Officer (CESSO)
Part-time Student:  University of Maryland, European Division

October 1990 - October 1994

* Developed plan for re-engineering division management, based on TQM, from
a hierarchical
structure to team-based cells concentrated on specialty positions which
drastically
reduced layers of management and improved organizational efficiency.

* Led a 5 person Automated Information Systems (AIS) team managing over 100
user accounts
and 65 workstations.  Provided support functions: hardware maintenance,
installation,
upgrade; security; purchasing; troubleshooting; software installation.

* Installed 50-node 3COM 3+Share network with bridges and routers for
interconnection
with a 15-node SPARC network.

* Administered, developed scripts with awk, and 'C' programs for a SUN SPARC
performing
as an Electronic Collateral Support Subsystem (ELCSS); a message traffic
communications
system designed by TRW using Fast Data Finder (FDF) boards.

* Hands-on hardware experience:  Installed and configured the following
devices:
SCSI /  IDE hard drives and controllers , memory - SIMMs (32 & 72 pin), VGA
cards,
tape backup units, NICs - Ethernet cards (SMC, Intel, 3COM), processors (486
& pentiums),
motherboards, & power supplies.  Setup external devices such as scanners,
CDROM writers,
and JAZZ drives.

Related courses completed at UofMd:
CMIS 315 Programming in 'C': Enumeration types, list processing and
operating system
interface.  Application of C data structuring features such as unions and
self-referential structures.

CMIS 325 UNIX Operating System: Time-sharing operating system kernel, shell
commands
and scripts, text processing and system administration.

IFSM 430 Information Systems and Security: Establishment and maintenance of
an information
security program.  Security implications of databases, telecommunication
systems and
software and risk assessment and abuse discovery techniques.

CAPP 100J Security and Viruses: Examines physical and software security and
types of
computer viruses.  Discusses the nature of antivirual software tools to
protect, detect
and recover from viral attacks.

CAPP 320 Office Automation: Management information systems, decision support
systems,
distributed data processing, analysis of office automation needs and the
design and
acquisition of appropriate systems.

CAPP 340 Computer Applications in Management: Concerns of data integrity,
security and privacy.

Enlisted Education Advancement Program (EEAP); September 1988 - August 1990
Northern Virginia Community College (NVCC), Alexandria, VA; George Mason
University

Related courses completed at NVCC:
CSC 205 Computer Organization:  Binary numbers & codes, digital circuits
(boolean algebra),
combinational systems, sequential logic, registers and counters, memory &
programmable logic,
register transfer and computer operations, and control logic design.

CSC 206 Assembly Language:  8088 Macro Assembler programming - data types
and numbering
conventions, binary operations, registers, flags, addressing modes,
instruction set,
assembler operations, pseudo-operations, external procedures and data, BIOS
and DOS services,
macros, hybrid programming, text and graphics, and linking to Pascal
programs.

CSC 201 Comp. Sci. I: Data structures, strings, stacks, recursion, queues,
linked lists,
searching, sorting, & binary trees.

CSC 202 Comp. Sci. II: Basic problem solving techniques, programming
methodology,
interactive programs, program design, character and file processing, simple
arrays,
program logic, linear data types, program testing.

GMU CS 468 Computer Operating Systems Programming: Assemblers, compilers,
system structures,
operating systems, software engineering concepts, system specifications,
data flow diagrams,
modular design, system testing strategies, and machine architecture.


Space & Naval Warfare Systems Command (SPAWAR), Naval Research Laboratory,
Washington, DC
Mission Operations Support Center (MOSC)
Control Data Processing Operator - Software Testing
October 1987 - September 1988

Conducted operational testing and evaluation of computer software and
hardware destined for
operational field sites.  Executed operational test procedures and
documented anomalous
software and database conditions.


Naval Security Group Activity (NSGA), Adak, Alaska; NAVCAMS, Guam
Control Data Processing (CDP) Operator
December 1984 - October 1987

Performed extensive preprocessing routines; initialized and operated complex
computers
and peripherals; monitored processor status outputs and prepared analytic
reports.
Drafted operational log entries and performed limited editing of system
databases.

Glen Burnie (MD) / Rogers (RI) High-School
Student, 1980-1983

Developed programs using flowcharting in Cobol, Fortran, and RPG-II, on IBM
keypunch cards.

[prev in list] [next in list] [prev in thread] [next in thread]