Profiles search
Andrea Koch, CISM, PMP
Cybersecurity Lead Engineer
Orlando, FL, United States
Details
Experience:
2022 : Present
Cox Enterprises
Cybersecurity Lead Engineer
Primary Duties
• Acts as Information System Security Officer/Information System Security Engineer for assigned systems. Including the management of the A&A activities and maintenance of system data security controls. Subject Matter Expert (SME) with proficiency in DoDI 8510.01, Risk Management Framework (RMF) for DoD IT, and affiliated NIST security controls. Familiarity with Electronic Mission Assurance Support Service (eMASS).
• Monitors and manages IAVM and Operational Directive compliance reporting.
Major Responsibilities
• Conduct RMF assessments, including coordination, preparation, execution, and concluding documentation. Utilize DoD Information Assurance (IA) scanning tools and techniques (i.e., Nessus, SCAP, STIG Checker, etc.).
• Develops and or maintains Organizational Cybersecurity Policies and Procedures.
• Develops and or maintains artifacts necessary for ATO maintenance to include Plan of Actions & Milestones (POA&Ms).
• Demonstrate technical experience in identifying and mitigating and/or remediating vulnerabilities or misconfigurations.
• Participates in all aspects of Cybersecurity Program and takes lead role as necessary.
• Industry standard certification(s) in compliance with DoDI 8570 (at minimum Sec+).
• Demonstrable knowledge / experience in NIST RMF Authorization and Assessment process and continuous monitoring.
• Demonstrable knowledge / experience with maintaining an information secure environment (e.g., vulnerability / risk assessments, access/provisioning management, usage monitoring for attempted intrusions or unauthorized activity, and applicable information security event incident management).
• Develop and maintain the necessary technical documentation and standard operating procedures (SOPs).
2017 : 2022
Naval Air Warfare Center Training Systems Division (NAWCTSD)
ISSO
• Responsible for the support of virtual course delivery models, to include setup, and maintenance of templates, updates and maintenance of live course sections and telephone and email application support for faculty teaching classes via Embry-Riddle’s Learning Management System (fully online or enhanced), EagleVision or hybrid combinations of the virtual classroom modalities.
• Provide assistance and support for academic Quality Managers, course production coordinators, and software training initiatives for academic technologies.
• Managed and created MyMathLab courses for each term while preforming quality control checks weekly. Work with Pearson Vendor to establish administrative accounts and integrations within multiple Learning Management Systems.
• Provide fixes to HTML coding for over 600 course, modify changes in Blackboard and Canvas, Learning Management System, PeopleSoft Applications, Oracle eBuisness Suite.
• Managed several projects for new technology initiatives. Integrated publisher content within Online Courses. Configured LTI External Tools, and troubleshooted issues.
2014 : 2017
Embry-Riddle Aeronautical University
Elearning Support Specialist II
• Maintain WW Faculty and Staff with Software Updates and Technical Issues
• Researched, Edited and developed Knowledge based Articles
• Provide application support and software installation by telephone, email or web conferencing.
• 24/7 EagleVision support, modifying and creating EagleVision Events
• Maintain the Learning Management System, Blackboard
2012 : 2014
Embry-Riddle Aeronautical University
IT Specialist
• Maintain Classified equipment as well as accountability for the State of Florida
• Provide support for the implementation and enforcing of IS security policies, overseeing all System Administrators (SAs) to ensure they follow established information security policies and procedures.
• Searched for, found and reported all security violations through the appropriate channels
• Ensure the development of system certification documentation by reviewing and endorsing the documentation and recommending action by the Designated Approving Authority (DAA).
• Approve procedures in place for clearing, purging, declassifying, and releasing system memory, media, and output.
2012 : 2015
Florida Army National Guard
Cryptologic Technician
Cox Enterprises
Cybersecurity Lead Engineer
Primary Duties
• Acts as Information System Security Officer/Information System Security Engineer for assigned systems. Including the management of the A&A activities and maintenance of system data security controls. Subject Matter Expert (SME) with proficiency in DoDI 8510.01, Risk Management Framework (RMF) for DoD IT, and affiliated NIST security controls. Familiarity with Electronic Mission Assurance Support Service (eMASS).
• Monitors and manages IAVM and Operational Directive compliance reporting.
Major Responsibilities
• Conduct RMF assessments, including coordination, preparation, execution, and concluding documentation. Utilize DoD Information Assurance (IA) scanning tools and techniques (i.e., Nessus, SCAP, STIG Checker, etc.).
• Develops and or maintains Organizational Cybersecurity Policies and Procedures.
• Develops and or maintains artifacts necessary for ATO maintenance to include Plan of Actions & Milestones (POA&Ms).
• Demonstrate technical experience in identifying and mitigating and/or remediating vulnerabilities or misconfigurations.
• Participates in all aspects of Cybersecurity Program and takes lead role as necessary.
• Industry standard certification(s) in compliance with DoDI 8570 (at minimum Sec+).
• Demonstrable knowledge / experience in NIST RMF Authorization and Assessment process and continuous monitoring.
• Demonstrable knowledge / experience with maintaining an information secure environment (e.g., vulnerability / risk assessments, access/provisioning management, usage monitoring for attempted intrusions or unauthorized activity, and applicable information security event incident management).
• Develop and maintain the necessary technical documentation and standard operating procedures (SOPs).
2017 : 2022
Naval Air Warfare Center Training Systems Division (NAWCTSD)
ISSO
• Responsible for the support of virtual course delivery models, to include setup, and maintenance of templates, updates and maintenance of live course sections and telephone and email application support for faculty teaching classes via Embry-Riddle’s Learning Management System (fully online or enhanced), EagleVision or hybrid combinations of the virtual classroom modalities.
• Provide assistance and support for academic Quality Managers, course production coordinators, and software training initiatives for academic technologies.
• Managed and created MyMathLab courses for each term while preforming quality control checks weekly. Work with Pearson Vendor to establish administrative accounts and integrations within multiple Learning Management Systems.
• Provide fixes to HTML coding for over 600 course, modify changes in Blackboard and Canvas, Learning Management System, PeopleSoft Applications, Oracle eBuisness Suite.
• Managed several projects for new technology initiatives. Integrated publisher content within Online Courses. Configured LTI External Tools, and troubleshooted issues.
2014 : 2017
Embry-Riddle Aeronautical University
Elearning Support Specialist II
• Maintain WW Faculty and Staff with Software Updates and Technical Issues
• Researched, Edited and developed Knowledge based Articles
• Provide application support and software installation by telephone, email or web conferencing.
• 24/7 EagleVision support, modifying and creating EagleVision Events
• Maintain the Learning Management System, Blackboard
2012 : 2014
Embry-Riddle Aeronautical University
IT Specialist
• Maintain Classified equipment as well as accountability for the State of Florida
• Provide support for the implementation and enforcing of IS security policies, overseeing all System Administrators (SAs) to ensure they follow established information security policies and procedures.
• Searched for, found and reported all security violations through the appropriate channels
• Ensure the development of system certification documentation by reviewing and endorsing the documentation and recommending action by the Designated Approving Authority (DAA).
• Approve procedures in place for clearing, purging, declassifying, and releasing system memory, media, and output.
2012 : 2015
Florida Army National Guard
Cryptologic Technician
Company:
Cox Enterprises
About
Skilled in Linux System Administration, Computer Forensics, CompTIA Network+, Security +, HTML, and C#. Strong information technology professional with a CDFAE focused in Cyber/Computer Forensics from Daytona State College.
RMF, ACAS, A&A documentation, eMass, Stig viewer , HBSS, etc.
Profile Photo
