Profiles search
Abel Jacob, CISSP, PMP
Chief Engineer/Cybersecurity SME at Raytheon
Gaithersburg, MD, United States
Details
Experience:
Worked as Chief Engineer, Lead Systems Engineer, Cybersecurity Architect and Subject Matter Expert to lead/manage efforts on system design, architecting and solutions implementation. Provided Systems Engineering expertise and leadership in support of large cybersecurity systems. Interfaced directly with the Customer, stakeholders, and end-users regarding capability architectures, requirements, use cases, decision analysis and resolutions, stories to derive, develop and decompose next-cycle updates and specifications.
• Provided technical/management leadership on major tasks and technology assignments. Established goals and plans that met project objective. Designed, built, and ran elastic, cost-effective, resilient, robust, and secure architectures in the cloud using modern approaches like service-mesh and loosely coupled design.
• Designed containerized solutions for relational/non-relational databases, data auditing, caching, and performance.
• Researched emerging security trends and technologies, identified business and technical requirements, performed technical evaluation and supported deployment of global security solutions through agile execution in the following areas : cloud security, mobile device security, application security, security operations, and incident response.
• Lead and owned efforts to determine improvements to Cybersecurity products and system capabilities and delivery processes including hardware, software, architecture, automated deployments, and Cybersecurity training.
• Worked with vendors to improve the designs of Cybersecurity products, tools and systems to ensure functionality and usability for cybersecurity solutions for security monitoring, auditing, malware analysis, security assessment, penetration testing, forensics analysis, and security training.
• Supported development of overall Cybersecurity framework, policies and training adhering to requirements. Developed and supported the Cybersecurity portfolio planning process
2019 : Present
Raytheon
Chief Engineer/Cybersecurity SME
Lead DevOps and Security Operations teams. Lead/manager efforts on Cybersecurity governance, risk management and compliance for new and existing systems in the cloud and on premise, cloud architecting, cloud security solutions and service delivery offerings, and cyber security operations center management
• Led incident response team, created processes and procedures for incident response for on-prem and cloud assets using tools for endpoint security, data loss and email security protection, system monitoring, monitoring and security cloud assets and protecting assets from insider threat and other vulnerabilities.
• Developed and delivered configuration and deployment automation required for improving the functionality, availability, and manageability of enterprise SaaS micro services. Managed infrastructure services in a development and production environments to ensure high availability and reliability.
• Monitored PaaS platform infrastructure including network systems logs on daily basis to ensure the entire system was operating at an optimum level, Identified technology gaps/risks early and established mitigation plan. Interfaced with engineering and other cloud-focused teams across the organization in order to establish and enforce best practices and standards. Developed and supported CI/CD pipeline solutioning, tools integrations - CI/CD, Artifactory repository, and automated testing tools.
• Built and managed a relationship team to oversee convergence and strategic partnering across all divisions/business functions, including with executive and senior leadership.
• Served as client's point of contact and day-to-day leader in the management and execution of projects and workstreams involving DecSecOps, Security Tools, Governance and Compliance
• Assisted clients with the evaluation, selection/design of the appropriate technology/solution to meet specific project objectives and serve costs.
2015 : 2019
IBM
Sr Cyber Security Architect
Lead the Information Assurance, Incident Response and SOC operations teams.
• Responsible for the security monitoring, vulnerability management, incident response and day-to-day operations of the security operations center (SOC)
• Responsible for the installations, configurations, upgrades, and maintenance of the tools for security assessment, vulnerability management, incident response and the security information event management (SIEM)
• Responsible developing metrics and for providing status updates to upper management.
• Provided technical and business guidance to the organization on cloud migrations.
• Performed risk analysis and provided recommendations for risk acceptance or rejection for both on-prem and cloud hosted systems. Identified and proposed solutions to resolve security deficiencies. Refined and proposed modifications to security requirements and specifications. Presented findings and recommendations to senior government officials
• Led decision analysis and resolutions on centralized monitoring solution for client’s on-prem and cloud infrastructures and applications. Evaluated, recommended, configured and implemented security tools for security operations center (SOC), security information and events management (SIEM), Incident Response, change management, vulnerability management, asset management and security assessment.
• Analyzed staffing needs for project coverage and proactively adjusted when necessary. Measured staff’s performance through deliverables, annual performance appraisals and recommended training for continuous improvement. Provided mentorship, coaching, guidance and on-the-job training to improve staff performances.
2012 : 2015
GBTI Solutions
Sr Security Advisor/Project Manager
Managed the A&A/DICAP processes, Authority to Operate (ATO), POAMs, and findings for
more than 80 unclassified and 45 classified systems. Automated most of the RMF and DICAP
processes for DISA and geared the organization towards continuous monitoring.
• Lead IA security risk assessments and serves as the internal auditor for information security processes including risk identification, risk mitigation, and documentation
• Managed the A&A/DICAP processes, Authority to Operate (ATO), POAMs, and findings for more than 85 unclassified and 45 classified systems
• Responsible for ensuring DoD and security best practices and standards were maintained
• Responsible for development and maintenance of metadata environment utilized to update STIG Checklists with comments and documentation closure states to support ATO.
• Responsible for managing the Plans of Action and Milestone (POA&M).
• Responsible for developing and addressing ATO Conditions for all the systems
• Worked with engineers and vendors of automate the assessment and accreditation processes.
• Worked with the FSO, DAA and CIO to ensure that accreditation to labs, systems/programs were obtained and maintained.
• Managed IA team. Managed, mentored and overviewed job performed by the IA team.
• Managed a team of network engineers, system administrators and SOC operators. Network design, network and cyber security, analyzes and management. Network topologies, HBSS, ACLs, DNS, DNSSEC, DMZ, IDS, Domain Controllers, servers/routers/switches configurations, monitoring, system administration and management.
• Lead IA security risk assessments and serves as the internal auditor for information security processes including risk identification, risk mitigation, and documentation.
• Technical presentations (project status, design and test reports, business models, technical concepts, trainings, periodic meetings) to customers, clients, management and other stakeholders.
2009 : 2012
TASC
Information Assurance Engineer/Manager
• Performed roles in Security Engineering, Security Assessments, Systems, Performance, Test and Integration, Software, Quality and Hardware Engineering within Lockheed Martin.
• Performed proof of concept, wrote concept of operations (CONOPS), systems architecture and requirements documents. Owned and led efforts for the development and deployment of solutions in air traffic management including conflict probe, surveillance and flight data processing.
• Performed research and responded to RFIs on Future Communication System (FCS), identified potential technologies, based upon their ability to meet a subset of the criteria contained in the EUROCONTROL / FAA Communications Operating Concept and Requirements (COCR) document
• Performed spectrum analysis, radio plan and investigations on the VHF, L-Band and C-Band to determine available frequency slots for UAT, and or the LDACS. Performed designed and testing on in-band and out of band interferences on DME and future communications systems
• Frequency planning to accommodate Distance Measuring Equipment (DME), UAT, TCAS, Joint Tactical Information Distribution System (JTIDS), Global Navigation Satellite System (GNSS), and the L-Band Digital Aeronautical Communication Systems (LDACS)
• ERAM – Lead ERAM SE and I&T Site support. Collected and analyzed system data, resolved site issues using collected and analyzed system data. Worked with program office to ensure site issues are promptly resolved and managed. Performed hardware and software installations, configuration, patching and maintenance of servers, routers, switches, COTS and proprietary software.
• Created, maintained and managed user accounts. Developed and presented on-the-job training to FAA customer at customer site. Configured and administered ERAM Cisco routers, switches, processors including the P-Series.
2003 : 2009
Lockheed Martin
Lead Systems Engineer
• Provided technical/management leadership on major tasks and technology assignments. Established goals and plans that met project objective. Designed, built, and ran elastic, cost-effective, resilient, robust, and secure architectures in the cloud using modern approaches like service-mesh and loosely coupled design.
• Designed containerized solutions for relational/non-relational databases, data auditing, caching, and performance.
• Researched emerging security trends and technologies, identified business and technical requirements, performed technical evaluation and supported deployment of global security solutions through agile execution in the following areas : cloud security, mobile device security, application security, security operations, and incident response.
• Lead and owned efforts to determine improvements to Cybersecurity products and system capabilities and delivery processes including hardware, software, architecture, automated deployments, and Cybersecurity training.
• Worked with vendors to improve the designs of Cybersecurity products, tools and systems to ensure functionality and usability for cybersecurity solutions for security monitoring, auditing, malware analysis, security assessment, penetration testing, forensics analysis, and security training.
• Supported development of overall Cybersecurity framework, policies and training adhering to requirements. Developed and supported the Cybersecurity portfolio planning process
2019 : Present
Raytheon
Chief Engineer/Cybersecurity SME
Lead DevOps and Security Operations teams. Lead/manager efforts on Cybersecurity governance, risk management and compliance for new and existing systems in the cloud and on premise, cloud architecting, cloud security solutions and service delivery offerings, and cyber security operations center management
• Led incident response team, created processes and procedures for incident response for on-prem and cloud assets using tools for endpoint security, data loss and email security protection, system monitoring, monitoring and security cloud assets and protecting assets from insider threat and other vulnerabilities.
• Developed and delivered configuration and deployment automation required for improving the functionality, availability, and manageability of enterprise SaaS micro services. Managed infrastructure services in a development and production environments to ensure high availability and reliability.
• Monitored PaaS platform infrastructure including network systems logs on daily basis to ensure the entire system was operating at an optimum level, Identified technology gaps/risks early and established mitigation plan. Interfaced with engineering and other cloud-focused teams across the organization in order to establish and enforce best practices and standards. Developed and supported CI/CD pipeline solutioning, tools integrations - CI/CD, Artifactory repository, and automated testing tools.
• Built and managed a relationship team to oversee convergence and strategic partnering across all divisions/business functions, including with executive and senior leadership.
• Served as client's point of contact and day-to-day leader in the management and execution of projects and workstreams involving DecSecOps, Security Tools, Governance and Compliance
• Assisted clients with the evaluation, selection/design of the appropriate technology/solution to meet specific project objectives and serve costs.
2015 : 2019
IBM
Sr Cyber Security Architect
Lead the Information Assurance, Incident Response and SOC operations teams.
• Responsible for the security monitoring, vulnerability management, incident response and day-to-day operations of the security operations center (SOC)
• Responsible for the installations, configurations, upgrades, and maintenance of the tools for security assessment, vulnerability management, incident response and the security information event management (SIEM)
• Responsible developing metrics and for providing status updates to upper management.
• Provided technical and business guidance to the organization on cloud migrations.
• Performed risk analysis and provided recommendations for risk acceptance or rejection for both on-prem and cloud hosted systems. Identified and proposed solutions to resolve security deficiencies. Refined and proposed modifications to security requirements and specifications. Presented findings and recommendations to senior government officials
• Led decision analysis and resolutions on centralized monitoring solution for client’s on-prem and cloud infrastructures and applications. Evaluated, recommended, configured and implemented security tools for security operations center (SOC), security information and events management (SIEM), Incident Response, change management, vulnerability management, asset management and security assessment.
• Analyzed staffing needs for project coverage and proactively adjusted when necessary. Measured staff’s performance through deliverables, annual performance appraisals and recommended training for continuous improvement. Provided mentorship, coaching, guidance and on-the-job training to improve staff performances.
2012 : 2015
GBTI Solutions
Sr Security Advisor/Project Manager
Managed the A&A/DICAP processes, Authority to Operate (ATO), POAMs, and findings for
more than 80 unclassified and 45 classified systems. Automated most of the RMF and DICAP
processes for DISA and geared the organization towards continuous monitoring.
• Lead IA security risk assessments and serves as the internal auditor for information security processes including risk identification, risk mitigation, and documentation
• Managed the A&A/DICAP processes, Authority to Operate (ATO), POAMs, and findings for more than 85 unclassified and 45 classified systems
• Responsible for ensuring DoD and security best practices and standards were maintained
• Responsible for development and maintenance of metadata environment utilized to update STIG Checklists with comments and documentation closure states to support ATO.
• Responsible for managing the Plans of Action and Milestone (POA&M).
• Responsible for developing and addressing ATO Conditions for all the systems
• Worked with engineers and vendors of automate the assessment and accreditation processes.
• Worked with the FSO, DAA and CIO to ensure that accreditation to labs, systems/programs were obtained and maintained.
• Managed IA team. Managed, mentored and overviewed job performed by the IA team.
• Managed a team of network engineers, system administrators and SOC operators. Network design, network and cyber security, analyzes and management. Network topologies, HBSS, ACLs, DNS, DNSSEC, DMZ, IDS, Domain Controllers, servers/routers/switches configurations, monitoring, system administration and management.
• Lead IA security risk assessments and serves as the internal auditor for information security processes including risk identification, risk mitigation, and documentation.
• Technical presentations (project status, design and test reports, business models, technical concepts, trainings, periodic meetings) to customers, clients, management and other stakeholders.
2009 : 2012
TASC
Information Assurance Engineer/Manager
• Performed roles in Security Engineering, Security Assessments, Systems, Performance, Test and Integration, Software, Quality and Hardware Engineering within Lockheed Martin.
• Performed proof of concept, wrote concept of operations (CONOPS), systems architecture and requirements documents. Owned and led efforts for the development and deployment of solutions in air traffic management including conflict probe, surveillance and flight data processing.
• Performed research and responded to RFIs on Future Communication System (FCS), identified potential technologies, based upon their ability to meet a subset of the criteria contained in the EUROCONTROL / FAA Communications Operating Concept and Requirements (COCR) document
• Performed spectrum analysis, radio plan and investigations on the VHF, L-Band and C-Band to determine available frequency slots for UAT, and or the LDACS. Performed designed and testing on in-band and out of band interferences on DME and future communications systems
• Frequency planning to accommodate Distance Measuring Equipment (DME), UAT, TCAS, Joint Tactical Information Distribution System (JTIDS), Global Navigation Satellite System (GNSS), and the L-Band Digital Aeronautical Communication Systems (LDACS)
• ERAM – Lead ERAM SE and I&T Site support. Collected and analyzed system data, resolved site issues using collected and analyzed system data. Worked with program office to ensure site issues are promptly resolved and managed. Performed hardware and software installations, configuration, patching and maintenance of servers, routers, switches, COTS and proprietary software.
• Created, maintained and managed user accounts. Developed and presented on-the-job training to FAA customer at customer site. Configured and administered ERAM Cisco routers, switches, processors including the P-Series.
2003 : 2009
Lockheed Martin
Lead Systems Engineer
Company:
Raytheon
About
Abel has 24+ years of systems and security engineering experiences with Raytheon, IBM, Department of Defense (DoD), GBTI, TASC, Lockheed Martin and Hughes Network Systems. He has worked in several government agencies including Health and Human Services (HHS), Library of Congress (LOC), Defense Information Security Agency (DISA), Federal Aviation Authority (FAA) and the Department of Homeland Security (DHS) representing some of the aforementioned companies. He possesses a unique blend of commercial, government corporate and technical experiences with a track record of utilizing the latest technology to provide innovative solutions that enhance overall business operations and optimize efficiency for organizations. He has contributed to the success of multimillion dollar projects from proposal, initiation, planning, and execution to commissioning, and has received many awards for excellent performance, timely delivery, cost savings and quality products.
Abel also has educational training that has prepared him to succeed in providing technical solutions to clients and customers. He has a Masters in Computer Science and Information Technology, Masters in Electrical Engineering (MSEE), Bachelors in Electrical Engineering (BSEE), as well as CISSP and PMP certifications. He is married with four children – two girls and two boys. He volunteers his time coaching youth soccer – a sport that he loves and played in his early years. He is also involved in community development and give-back programs involving feeding, clothing and accommodating the least privileged in his community.
Profile Photo
