Profiles search
Charles Ott, CISSP-ISSEP
Manager, Information Security Systems Engineer at L3Harris Technologies
Colorado Springs, CO, United States
Details
Education:
Master of Science - MS
Information Technology
Colorado Technical University
2019 : 2023
Bachelor's degree
Computer Networks and Cybersecurity
University of Maryland University College
2013 : 2017
U. S. Marine Corps
Riverton High
Information Technology
Colorado Technical University
2019 : 2023
Bachelor's degree
Computer Networks and Cybersecurity
University of Maryland University College
2013 : 2017
U. S. Marine Corps
Riverton High
Experience:
Leadership development program to grow high-performing/high-potential leaders within L3Harris
2023 : Present
L3Harris Technologies
Team 3 Leadership Development Program
- Assisted department in the matrix management of employees ensuring maximum utilization of resources across multiple projects
- Managed a team of up to 20 mid-level security compliance personnel in task assignments and assisted engineering staff in their personnel management (e.g., evaluations, promotions, career development)
- Completed the Lean Basics program and obtained the Advanced Lean Practitioner designation as a part of my continued dedication process improvement.
- Conducted multiple technical screenings via phone documenting a summary of my evaluation of the candidate, and making the recommendation on whether to interview the individual.
- Served as acting cognizant Engineering Manager (EM) for Space Systems and Space Superiority where I briefed staffing at the sector and division level, hosting EM for interviews, provided cybersecurity consulting for proposal activities, and reviewed and approved proposals.
- Served as Acting CMSS Chief Cyber Engineer providing leadership and guidance to the multiple programs and cyber engineering staff in the CMSS portfolio of programs.
- Participated in several interviews for potential ISSEs, System Administrators, and NPEs as a part of the technical panel to support the increasing personnel needs of the cyber engineering department.
- Provided mentorship, coaching, training, and guidance to multiple ISSEs of various levels, teaching them new skills and refining existing skills.
- Owned and managed departmental staffing requirements for my employees ensuring that my employees were fully utilized and any allocation modifications were quickly addressed.
- Advocated for my employees and demonstrated impactful leadership.
2019 :
L3Harris Technologies
Manager, Information Security Systems Engineer
- Derived A-Spec and B-Spec level security requirements to meet customer’s statement of work.
- Evaluated hardware and software for use in national security systems.
- Developed security assessment test plans and procedures and executed security testing and evaluation, validating the correct implementation of applicable security controls.
- Implemented administrative and technical security controls to manage the risk of information systems to acceptable levels to ensure the system was granted an authorization to operate.
- Configured and utilized ACAS (Assured Compliance Assessment Solution) to identify and assess information system vulnerabilities, analyzing the results, and provided recommendations for remediation of identified vulnerabilities.
- Generated custom reports within SecurityCenter, providing data and metrics on the security posture of the information system to management and the customer.
- Created and completed STIG checklists using STIG Viewer to document information systems security posture, identifying deviations, and tracking closure of issues.
- Created, updated, and maintained POA&Ms (plan of actions and milestones) for multiple accredited systems.
- Maintained RMF Body of Evidence documents to maintain system authorization.
- Experienced taking systems throughout the various steps of the Risk Management Framework
- Utilized the Joint Special Access Program (SAP) Implementation Guide (JSIG), based on NIST SP 800-53, Rev 4 and CNSSI 1253, to author and refine Risk Management Framework authorization packages.
- Experience authoring and developing authorization packages for systems under ICD 503 utilizing CNSSI 1253.
- Developed and maintained security documentation to include Security Control Traceability Matrix (SCTM), System Security Plans (SSP), Risk Assessment Report (RAR), Plan of Action and Milestones (POA&M), and security assessment plans and procedures.
2017 :
L3Harris Technologies
Lead, Information Security Systems Engineer
2023 : Present
L3Harris Technologies
Team 3 Leadership Development Program
- Assisted department in the matrix management of employees ensuring maximum utilization of resources across multiple projects
- Managed a team of up to 20 mid-level security compliance personnel in task assignments and assisted engineering staff in their personnel management (e.g., evaluations, promotions, career development)
- Completed the Lean Basics program and obtained the Advanced Lean Practitioner designation as a part of my continued dedication process improvement.
- Conducted multiple technical screenings via phone documenting a summary of my evaluation of the candidate, and making the recommendation on whether to interview the individual.
- Served as acting cognizant Engineering Manager (EM) for Space Systems and Space Superiority where I briefed staffing at the sector and division level, hosting EM for interviews, provided cybersecurity consulting for proposal activities, and reviewed and approved proposals.
- Served as Acting CMSS Chief Cyber Engineer providing leadership and guidance to the multiple programs and cyber engineering staff in the CMSS portfolio of programs.
- Participated in several interviews for potential ISSEs, System Administrators, and NPEs as a part of the technical panel to support the increasing personnel needs of the cyber engineering department.
- Provided mentorship, coaching, training, and guidance to multiple ISSEs of various levels, teaching them new skills and refining existing skills.
- Owned and managed departmental staffing requirements for my employees ensuring that my employees were fully utilized and any allocation modifications were quickly addressed.
- Advocated for my employees and demonstrated impactful leadership.
2019 :
L3Harris Technologies
Manager, Information Security Systems Engineer
- Derived A-Spec and B-Spec level security requirements to meet customer’s statement of work.
- Evaluated hardware and software for use in national security systems.
- Developed security assessment test plans and procedures and executed security testing and evaluation, validating the correct implementation of applicable security controls.
- Implemented administrative and technical security controls to manage the risk of information systems to acceptable levels to ensure the system was granted an authorization to operate.
- Configured and utilized ACAS (Assured Compliance Assessment Solution) to identify and assess information system vulnerabilities, analyzing the results, and provided recommendations for remediation of identified vulnerabilities.
- Generated custom reports within SecurityCenter, providing data and metrics on the security posture of the information system to management and the customer.
- Created and completed STIG checklists using STIG Viewer to document information systems security posture, identifying deviations, and tracking closure of issues.
- Created, updated, and maintained POA&Ms (plan of actions and milestones) for multiple accredited systems.
- Maintained RMF Body of Evidence documents to maintain system authorization.
- Experienced taking systems throughout the various steps of the Risk Management Framework
- Utilized the Joint Special Access Program (SAP) Implementation Guide (JSIG), based on NIST SP 800-53, Rev 4 and CNSSI 1253, to author and refine Risk Management Framework authorization packages.
- Experience authoring and developing authorization packages for systems under ICD 503 utilizing CNSSI 1253.
- Developed and maintained security documentation to include Security Control Traceability Matrix (SCTM), System Security Plans (SSP), Risk Assessment Report (RAR), Plan of Action and Milestones (POA&M), and security assessment plans and procedures.
2017 :
L3Harris Technologies
Lead, Information Security Systems Engineer
Company:
L3Harris Technologies
Years of Experience:
7
Spoken Language:
English
Skills
Active Directory, Assessment & Authorization, CEH, Certified Ethical Hacker, Cisco Systems Products, CompTIA A+, CompTIA Network+, CompTIA Network+ Certified, Computer Information Systems, Customer Satisfaction, Cyber-security, Cybersecurity, DNS Server, Information Assurance, Information Security, Information Security Awareness, Information Technology, Intelligence, IT Hardware Support, ITIL Certified, IT Management, LAN-WAN, Leadership, Linux, Management, Microsoft Office, Military, Network Administration, Networking, Personnel Leadership, Print Servers, Remote Desktop, Remote Troubleshooting, Remote User Support, Risk Management Framework (RMF), Satellite Communications (SATCOM), Security, Storage Area Network (SAN), Strategic Leadership, System Administration, Training, Voice over IP (VoIP)
About
Experienced cybersecurity engineer with background in Agile development throughout the System Development Lifecycle (SDLC), cybersecurity risk management frameworks (RMF), assessment and authorization (A&A), vulnerability management, and risk mitigation.
Profile Photo
