Profiles search
Gary Rietmann
Cybersecurity Cyber Specialist Team Lead at Naval Air Systems Command (NAVAIR)
New York, NY, United States
Details
Education:
Technical Programming
Computer Programming, Specific Applications
Brick Computer Science
1994 : 1996
Computer Science
Bergen Community College
1988 : 1990
Paramus high
1987
Cybersecuity
Georgia Institute of Technology
Computer Programming, Specific Applications
Brick Computer Science
1994 : 1996
Computer Science
Bergen Community College
1988 : 1990
Paramus high
1987
Cybersecuity
Georgia Institute of Technology
Experience:
2013 : Present
Naval Air Systems Command (NAVAIR)
Cybersecurity Cyber Specialist Team Lead
• Responsible for Department of the Navy (DON) Research and Development (RDT&E) Systems. Leads the team in the design, development, test and evaluation (T&E), integration, operations and maintenance (O&M), and configuration management (CM) of all RDT&E hardware and software elements. Provides technical guidance and objectives for implementation teams and interfaces with VSYSCOM administrators and core users on lab systems design and integration.
• Provide technical leadership to the enterprise for the information security program. Mentor and train others in information security in addition to training for other technical groups. Install and maintain security infrastructure, including IPS, IDS, log management, and security assessment systems. Assess threats, risks, and vulnerabilities from emerging security issues. Draft enterprise security standards and guidelines for system configuration. Managed process and acted in the lead role for computer security incident response team. Perform and create procedures for system security audits, penetration-tests, and vulnerability assessments. Develop scripts to maintain and backup key security systems.
• Analyze and compile vulnerability findings and report to Information Systems Security Manager (ISSM) and Information Systems Security Officer (ISSO). This includes security and audit results, recommendations to changes in operations and activities.
• Directed and implemented new Altiris Server for 300 customer systems. Coordinated with 4.8 Aircraft Launch and Recovery Engineering leadership, System Administrators, and Information Assurance Officers to ensure proper configuration. Initiative reduced workload by 20 man-hours weekly by automating the Windows Update process.
• Support various customers across NAVAIR. Fix security issues, software, hardware and operating system problems. This can include anything from a bad driver install, hardware failure or a complete system rebuild due to a software encryption failure
2015 : 2020
Naval Air Systems Command (NAVAIR)
Lead Information Technology Specialist
• Function as the technical expert on Altiris, Scripting, Windows Operating Systems, SQL, Networking, and all Information Technology Projects.
• SQL DBA for Integrated Support Environment (ISE) Data Mining Team. Day to Day operations of SQL Servers. Create customs T-SQL to automate backup and restores between database servers. Work with ISE DM Team to automate manual processes. Analyze SSIS and SQL code to find performance bottlenecks and make appropriate changes
• Directed and implemented various applications to support customer requirements. Coordinated initiative with 4.8 Aircraft Launch and Recovery Engineering leadership and Information Assurance personnel to ensure compliance with DISA Information Assurance Directives, Security Polices, Security Technical Implementation Guides (STIG) and Communication Tasking Orders. Examples include :
o FeedServerApp – A data collection application which aggregates, compresses, transfers and uploads required data to a central Storage/SQL Server for Data Analysis. This application can be configured numerous ways depending on the requirements of the data feed.
o NON-GIG-Connected - A collection of various Scripts, Custom Applications and COTS Software to Automate the Navy’s Microsoft Windows NON-GIG Connected System Configuration Standards Checklist, not only to cut down on the amount of time spent on each computer but also to reduce the risk of errors by using a manual process
o Windows Compliance Checker - An automated tool to validate the “Microsoft Windows NON-GIG Connected System Standards Checklist”. This Script has been used on NON-GIG Connected Assets and automates all the manual configuration changes. Minimizes the risk of missing a step in the checklist process. Custom configuration files can be used to validate different configurations. You can also create custom configurations to support multiple checks depending on your requirements and security posture. Example : Office 2007 STIG Check, Office 2010 STIG
2013 : 2015
KeThink sfs
Senior Software Engineer/System Administrator
• System Engineer and System Administrator (SA) for (H.A.L.L.E.) High Performance IBM p575 eight node cluster and related hardware. Responsible for redesign and configuration of system so that it was able to run OneSAF to support the Experiments conducted by PD C4ISR Net Mod. Application of DISA security scripts to support ATO. Worked with SAIC to port OneSAF from Intel X86 32 bit to IBM 64 bit Power architecture. Made changes to the Java network code of OneSAF to support running multiple Simulation Cores and binding then to individual network interface cards to increase network performance. H.A.L.L.E has been retired and replaced by three CRAY CX1 Deskside Supercomputers running Microsoft Windows HPC 2008 R2 Server and SQL Server 2008 R2. Systems are being used to speed up Data Reduction and Analysis efforts. Tuned operating system and SQL Server to improve performance. I was able to reduce Data Reduction and Reporting’s times from five hours to four and a half minutes. This enabled us to run all required daily reports overnight to identify network issues and make required configuration changes to the satellite and radio networks to improve data flow to the various vehicles and nodes.
• Perform bi-weekly assessment scans on all systems connected to the Tactical Network using eEye Retina Security Scanner to ensure IAVA (Information Assurance & Vulnerability Assessment) security compliance. If vulnerabilities are found, systems must be updated with latest security patches or hot fixes.
• Responsible for supporting requests from the data analysis team to retrieve various data products collected during experiments and develop SQL Server Stored Procedures and SQL Commands to help facilitate data reduction and analysis.
• Responsible for development of various applications which support seamless integration of various test bed activities.
2003 : 2012
CSC
System Engineer Principal Leader
• Systems engineering and Integration of various DOD Modeling and Simulation systems, Army Battle Command Systems (ABCS) and Technology Partners into the C4ISR System of Systems architecture. This includes installation, configuration, testing and security reviews of the systems. Systems used are the Night Vision Sensor Suite, One Semi-Automated Forces (OneSAF), SEAMS (Precursor to DCGS-A), Distributed Common Ground Systems-Army (DCGS-A), Maneuver Control System (MCS), FBCB2, FBCB2 JCR, AFATDS, DDS, C2R and various other ABCS Systems.
• Responsible for creation, management and dissemination of various terrain and map products. This includes creating custom map catalogs using ArcGis and Military Analyst, converting to different formats depending on system and technology requirements. Common formats may include CIB, CADRG, Esri Shape and DTED
• Responsible for the configuration, installation, connectivity, maintenance and security of all the computers on the PD C4ISR Net Mod Tactical Network at various physical locations. These include computers at the LVC at APG (85 Dell Workstations, 26 Rack Mount Servers and 20 Development/Data Analysis Laptops), all of the computers at Range 1, Fort Dix (80 Dell Workstations and 30 Servers), all vehicle mounted computers (100 Rack Mount workstations). These computers run a variety of different Operating Systems : Windows XP, Windows Vista, Windows 7, Windows 2003 and 2008 Server, Red Hat Enterprise, Fedora Core and CentOS. All Windows systems are built using the AGM (Army Gold Master) install.
• System Administrator for (H.A.L.L.E.) High Performance IBM p575 eight node cluster and related hardware. Responsible for redesign and configuration of system so that it was able to run OneSAF to support the Experiments conducted by PD C4ISR Net Mod. Application of DISA security scripts to support ATO. Worked with SAIC to port OneSAF from Intel X86 32 bit to IBM 64 bit Power architecture.
2003 : 2012
PM C4ISR OTM
Senior Systems Engineer, Systems Administrator and IASO (Information Assurance Security Officer)
Naval Air Systems Command (NAVAIR)
Cybersecurity Cyber Specialist Team Lead
• Responsible for Department of the Navy (DON) Research and Development (RDT&E) Systems. Leads the team in the design, development, test and evaluation (T&E), integration, operations and maintenance (O&M), and configuration management (CM) of all RDT&E hardware and software elements. Provides technical guidance and objectives for implementation teams and interfaces with VSYSCOM administrators and core users on lab systems design and integration.
• Provide technical leadership to the enterprise for the information security program. Mentor and train others in information security in addition to training for other technical groups. Install and maintain security infrastructure, including IPS, IDS, log management, and security assessment systems. Assess threats, risks, and vulnerabilities from emerging security issues. Draft enterprise security standards and guidelines for system configuration. Managed process and acted in the lead role for computer security incident response team. Perform and create procedures for system security audits, penetration-tests, and vulnerability assessments. Develop scripts to maintain and backup key security systems.
• Analyze and compile vulnerability findings and report to Information Systems Security Manager (ISSM) and Information Systems Security Officer (ISSO). This includes security and audit results, recommendations to changes in operations and activities.
• Directed and implemented new Altiris Server for 300 customer systems. Coordinated with 4.8 Aircraft Launch and Recovery Engineering leadership, System Administrators, and Information Assurance Officers to ensure proper configuration. Initiative reduced workload by 20 man-hours weekly by automating the Windows Update process.
• Support various customers across NAVAIR. Fix security issues, software, hardware and operating system problems. This can include anything from a bad driver install, hardware failure or a complete system rebuild due to a software encryption failure
2015 : 2020
Naval Air Systems Command (NAVAIR)
Lead Information Technology Specialist
• Function as the technical expert on Altiris, Scripting, Windows Operating Systems, SQL, Networking, and all Information Technology Projects.
• SQL DBA for Integrated Support Environment (ISE) Data Mining Team. Day to Day operations of SQL Servers. Create customs T-SQL to automate backup and restores between database servers. Work with ISE DM Team to automate manual processes. Analyze SSIS and SQL code to find performance bottlenecks and make appropriate changes
• Directed and implemented various applications to support customer requirements. Coordinated initiative with 4.8 Aircraft Launch and Recovery Engineering leadership and Information Assurance personnel to ensure compliance with DISA Information Assurance Directives, Security Polices, Security Technical Implementation Guides (STIG) and Communication Tasking Orders. Examples include :
o FeedServerApp – A data collection application which aggregates, compresses, transfers and uploads required data to a central Storage/SQL Server for Data Analysis. This application can be configured numerous ways depending on the requirements of the data feed.
o NON-GIG-Connected - A collection of various Scripts, Custom Applications and COTS Software to Automate the Navy’s Microsoft Windows NON-GIG Connected System Configuration Standards Checklist, not only to cut down on the amount of time spent on each computer but also to reduce the risk of errors by using a manual process
o Windows Compliance Checker - An automated tool to validate the “Microsoft Windows NON-GIG Connected System Standards Checklist”. This Script has been used on NON-GIG Connected Assets and automates all the manual configuration changes. Minimizes the risk of missing a step in the checklist process. Custom configuration files can be used to validate different configurations. You can also create custom configurations to support multiple checks depending on your requirements and security posture. Example : Office 2007 STIG Check, Office 2010 STIG
2013 : 2015
KeThink sfs
Senior Software Engineer/System Administrator
• System Engineer and System Administrator (SA) for (H.A.L.L.E.) High Performance IBM p575 eight node cluster and related hardware. Responsible for redesign and configuration of system so that it was able to run OneSAF to support the Experiments conducted by PD C4ISR Net Mod. Application of DISA security scripts to support ATO. Worked with SAIC to port OneSAF from Intel X86 32 bit to IBM 64 bit Power architecture. Made changes to the Java network code of OneSAF to support running multiple Simulation Cores and binding then to individual network interface cards to increase network performance. H.A.L.L.E has been retired and replaced by three CRAY CX1 Deskside Supercomputers running Microsoft Windows HPC 2008 R2 Server and SQL Server 2008 R2. Systems are being used to speed up Data Reduction and Analysis efforts. Tuned operating system and SQL Server to improve performance. I was able to reduce Data Reduction and Reporting’s times from five hours to four and a half minutes. This enabled us to run all required daily reports overnight to identify network issues and make required configuration changes to the satellite and radio networks to improve data flow to the various vehicles and nodes.
• Perform bi-weekly assessment scans on all systems connected to the Tactical Network using eEye Retina Security Scanner to ensure IAVA (Information Assurance & Vulnerability Assessment) security compliance. If vulnerabilities are found, systems must be updated with latest security patches or hot fixes.
• Responsible for supporting requests from the data analysis team to retrieve various data products collected during experiments and develop SQL Server Stored Procedures and SQL Commands to help facilitate data reduction and analysis.
• Responsible for development of various applications which support seamless integration of various test bed activities.
2003 : 2012
CSC
System Engineer Principal Leader
• Systems engineering and Integration of various DOD Modeling and Simulation systems, Army Battle Command Systems (ABCS) and Technology Partners into the C4ISR System of Systems architecture. This includes installation, configuration, testing and security reviews of the systems. Systems used are the Night Vision Sensor Suite, One Semi-Automated Forces (OneSAF), SEAMS (Precursor to DCGS-A), Distributed Common Ground Systems-Army (DCGS-A), Maneuver Control System (MCS), FBCB2, FBCB2 JCR, AFATDS, DDS, C2R and various other ABCS Systems.
• Responsible for creation, management and dissemination of various terrain and map products. This includes creating custom map catalogs using ArcGis and Military Analyst, converting to different formats depending on system and technology requirements. Common formats may include CIB, CADRG, Esri Shape and DTED
• Responsible for the configuration, installation, connectivity, maintenance and security of all the computers on the PD C4ISR Net Mod Tactical Network at various physical locations. These include computers at the LVC at APG (85 Dell Workstations, 26 Rack Mount Servers and 20 Development/Data Analysis Laptops), all of the computers at Range 1, Fort Dix (80 Dell Workstations and 30 Servers), all vehicle mounted computers (100 Rack Mount workstations). These computers run a variety of different Operating Systems : Windows XP, Windows Vista, Windows 7, Windows 2003 and 2008 Server, Red Hat Enterprise, Fedora Core and CentOS. All Windows systems are built using the AGM (Army Gold Master) install.
• System Administrator for (H.A.L.L.E.) High Performance IBM p575 eight node cluster and related hardware. Responsible for redesign and configuration of system so that it was able to run OneSAF to support the Experiments conducted by PD C4ISR Net Mod. Application of DISA security scripts to support ATO. Worked with SAIC to port OneSAF from Intel X86 32 bit to IBM 64 bit Power architecture.
2003 : 2012
PM C4ISR OTM
Senior Systems Engineer, Systems Administrator and IASO (Information Assurance Security Officer)
Company:
Naval Air Systems Command (NAVAIR)
Years of Experience:
40
Skills
.NET, Access, Active Directory, C, C#, Computer Security, Database Design, Databases, Disaster Recovery, Distributed Systems, DoD, DoD Top Secret Clearance, Enterprise Architecture, Firewalls, Hardware, Information Assurance, Information Security, Integration, Linux, Microsoft Exchange, Microsoft SQL Server, Network Administration, Networking, Network Security, Operating Systems, Program Management, Requirements Analysis, Servers, Shell Scripting, Software Design, Software Development, Software Engineering, SQL, System Architecture, System Deployment, Systems Engineering, TCP/IP, Technical Support, Testing, Unix, VB.NET, Visio, Visual Basic, Visual Studio, VMware, VoIP, Windows, Windows 7, Windows Server, XP, NET
About
Experienced Senior Software Engineer with a demonstrated history of working in the information technology and services industry. Skilled in Databases, System Deployment, Information Assurance, C#, and Visual Studio. Strong information technology professional with a Technical Programming focused in Computer Programming and Specific Applications
Profile Photo
