Profiles search
Dylan Levesque
Senior Systems Security Engineer | Instructor | Security + | CSM | NIST 800-53 Lead Implementer
Bristol, RI, United States
Details
Experience:
• Oversee & Lead a team of System Security Engineers responsible for security control implementation and vulnerability management
• Leading and executing Program Increment planning and reviews in a scaled Agile framework environment
• Plan and guide Systems Security Engineering implementations in customer systems
• Providing Cyber/Anti-Tamper Systems Engineering support to the Missile Defense Agency, DoD, and NAVSEA
• Engineer/Build/Deploy/Maintain Secure Host Baseline virtual environments using vSphere ESXi, Windows, Linux, Splunk, and ACAS
• Supporting the development of RMF documents and controls validation testing for Authority to Operate (ATO) accreditations
• Interact with customer to define SSE requirements, solutions, implementation, system impacts, and effectiveness
• Design, develop and implement Verification and Validation Event Plans and procedures in order to demonstrate achievement of performance/capability requirements
2023 : Present
Raytheon Missiles & Defense
Senior Systems Security Engineer
Universities & Institutions : NYU, NJIT, NCSU, UCF, UMICH
• Instruct students on installation, maintenance, troubleshooting, features, and management of
all Windows and Linux operating systems with hands-on custom lab environments.
• Instruct students with hands-on labs for Red Team methods through ethical hacking and
penetration testing with Kali Linux including NMap and Metasploit along with vulnerability
assessments
2022 :
New York University
Adjunct Cybersecurity Instructor
• Performing Static & Dynamic Application Security Testing (SAST) & (DAST) to identify potential vulnerabilities in the application code and infrastructure for CMS's major tracking, analysis, and data repository for Medicare and Medicaid, IQIES.
• Ensure compliance with the CMS Technical Reference Architecture (TRA) and Acceptable Risk Safeguards (ARS) 5.1 so that risk is reduced to acceptable levels for CMS.
• Lead Table-Top Tests and Contingency Plan Tests with Government stakeholders and key personnel
• Assist and lead security incident response
• Ensure security systems are up to date and create documentation and planning for all security related information, including incident response and disaster recovery plans
• Work with DevOps teams to securely harden Linux based machines and cloud infrastructure using IAM methodologies
2023 : 2023
ICF
Application Cloud Security Engineer
• Security control validation and DoD information assurance, including CNSSI 1253 baseline,
FIPS, RMF analysis and accreditation, and NIST.
• Working RMF Authorization to Operate (ATO) or Interim Authorization to Test (IATT) packages for major DoD space programs.
• Reviews and maintains the Plan of Action and Milestones (POA&M) and support remediation activities
• Lead sprints as Scrum Master
• Experience providing Cyber Systems Engineering support to the AirForce for their AWACS aircraft
• Experience with hardening Windows servers, Linux servers, and VMware using DoD STIGs
• Performs Continuous Monitoring of security controls for ATO systems managed via eMASS
portal to ensure they are implemented correctly
2022 : 2023
Booz Allen Hamilton
Associate Cybersecurity Engineer
• Led a 4-member team to Engineer/Build/Deploy/Maintain Virtual Environments using vSphere ESXi, Windows, Linux, Splunk, and ACAS
• Providing Cyber/Anti-Tamper Systems Engineering support to the Missile Defense Agency, DoD, and NAVSEA for radars, mine-hunting sonar, UUV's, and more.
• Implementing and working with Defense Information System Agency STIGS (Security Technical Implementation Guides), SCAP (Security Content Automation Protocol) & RAPID (RMF Assistance & Preliminary Identification)
• Supporting the development of RMF documents and controls validation testing for Authority to Operate (ATO) accreditations.
• Create and Present technical out-briefs to Technical Leadership
• Conducting cybersecurity audits to ensure appropriate implementation and compliance of the security posture
• Troubleshoot and resolve issues with various servers and operating systems (ESXi, SUSE Linux, Windows, Red Hat Enterprise)
2020 : 2022
Raytheon
Systems Security Engineer I
• Leading and executing Program Increment planning and reviews in a scaled Agile framework environment
• Plan and guide Systems Security Engineering implementations in customer systems
• Providing Cyber/Anti-Tamper Systems Engineering support to the Missile Defense Agency, DoD, and NAVSEA
• Engineer/Build/Deploy/Maintain Secure Host Baseline virtual environments using vSphere ESXi, Windows, Linux, Splunk, and ACAS
• Supporting the development of RMF documents and controls validation testing for Authority to Operate (ATO) accreditations
• Interact with customer to define SSE requirements, solutions, implementation, system impacts, and effectiveness
• Design, develop and implement Verification and Validation Event Plans and procedures in order to demonstrate achievement of performance/capability requirements
2023 : Present
Raytheon Missiles & Defense
Senior Systems Security Engineer
Universities & Institutions : NYU, NJIT, NCSU, UCF, UMICH
• Instruct students on installation, maintenance, troubleshooting, features, and management of
all Windows and Linux operating systems with hands-on custom lab environments.
• Instruct students with hands-on labs for Red Team methods through ethical hacking and
penetration testing with Kali Linux including NMap and Metasploit along with vulnerability
assessments
2022 :
New York University
Adjunct Cybersecurity Instructor
• Performing Static & Dynamic Application Security Testing (SAST) & (DAST) to identify potential vulnerabilities in the application code and infrastructure for CMS's major tracking, analysis, and data repository for Medicare and Medicaid, IQIES.
• Ensure compliance with the CMS Technical Reference Architecture (TRA) and Acceptable Risk Safeguards (ARS) 5.1 so that risk is reduced to acceptable levels for CMS.
• Lead Table-Top Tests and Contingency Plan Tests with Government stakeholders and key personnel
• Assist and lead security incident response
• Ensure security systems are up to date and create documentation and planning for all security related information, including incident response and disaster recovery plans
• Work with DevOps teams to securely harden Linux based machines and cloud infrastructure using IAM methodologies
2023 : 2023
ICF
Application Cloud Security Engineer
• Security control validation and DoD information assurance, including CNSSI 1253 baseline,
FIPS, RMF analysis and accreditation, and NIST.
• Working RMF Authorization to Operate (ATO) or Interim Authorization to Test (IATT) packages for major DoD space programs.
• Reviews and maintains the Plan of Action and Milestones (POA&M) and support remediation activities
• Lead sprints as Scrum Master
• Experience providing Cyber Systems Engineering support to the AirForce for their AWACS aircraft
• Experience with hardening Windows servers, Linux servers, and VMware using DoD STIGs
• Performs Continuous Monitoring of security controls for ATO systems managed via eMASS
portal to ensure they are implemented correctly
2022 : 2023
Booz Allen Hamilton
Associate Cybersecurity Engineer
• Led a 4-member team to Engineer/Build/Deploy/Maintain Virtual Environments using vSphere ESXi, Windows, Linux, Splunk, and ACAS
• Providing Cyber/Anti-Tamper Systems Engineering support to the Missile Defense Agency, DoD, and NAVSEA for radars, mine-hunting sonar, UUV's, and more.
• Implementing and working with Defense Information System Agency STIGS (Security Technical Implementation Guides), SCAP (Security Content Automation Protocol) & RAPID (RMF Assistance & Preliminary Identification)
• Supporting the development of RMF documents and controls validation testing for Authority to Operate (ATO) accreditations.
• Create and Present technical out-briefs to Technical Leadership
• Conducting cybersecurity audits to ensure appropriate implementation and compliance of the security posture
• Troubleshoot and resolve issues with various servers and operating systems (ESXi, SUSE Linux, Windows, Red Hat Enterprise)
2020 : 2022
Raytheon
Systems Security Engineer I
Company:
Raytheon Missiles & Defense
Spoken Language:
English
About
•Active DoD Secret Clearance•
A Senior Systems Security Engineer with 6+ years of experience. Experience as a Scrum Master. A demonstrated history of working with government organizations, and defense contractors. I bring a wealth of experience in NIST RMF, third party risk management, and IT governance to the table. A deep understanding of NIST publications and POAM management. Excels at identifying and remediating issues and implementing security controls IAW DISA STIGS & NIST 800-53 security controls.
My proficiency in RMF Government Security Compliance and Vulnerability/Risk Management allows me to develop comprehensive security strategies that mitigate risk and ensure compliance with industry standards. I am passionate about using my knowledge and skills to create secure environments that enable businesses to achieve their goals and protect their assets.
Profile Photo
