Profiles search
Jacob McKinley CISSP
Executive Vice President at Bull Bear Defense Solutions an IT modernization, Cloud, GRC focused ISBEE | EDWOSB | WOSB | consulting firm to government and commercial clients
Dayton, OH, United States
Details
Experience:
Jake McKinley serves as the EVP for Bull Bear Defense Solutions. Since inception, Jake has directly supported the business growth of Bull Bear Defense and works with the President supporting our government and commercial clients. As an experienced CISSP Cybersecurity SME, Jake brings the technical knowledge and business acumen to make Bull Bear Defense Solutions a successful IT and Cybersecurity company.
Jake's experience with on premise, off-premise, government and commercial cloud delivery brings a broad understanding of what it takes to deploy successful IT projects for government and commercial projects. Additionally, Jake brings in depth hands on experience with governance, risk and compliance (GRC) for commercial and government clients.
As a strategic business leader for Bull Bear Defense, Jake is responsible for operations, partnerships and business growth. Jake brings 15 years working as a Department of Defense (DoD) contractor supporting a wide range of complex IT systems for the USAF and DoD. Jake continues to deliver on complex Cyber and IT projects for the DoD.
2023 : Present
Bull Bear Defense Solutions, LLC
Executive Vice President (EVP)
Responsible for all ATO requirements for two major Enterprise USAF IT systems
Responsible for managing Cybersecurity posture and testing requirements for IT releases within acceptable levels of risk to senior leadership
This responsibility includes effective management of the following tasks :
-Cloud One Dev/Int, Test, Prod Bastion Host and VM management
-Azure IL4 Cybersecurity and ATO management for the Mission Owner
-Cloud security management
-Implementation of NIST 800 series, DoD 8500, AF 17 series implementation
-Cradle to Grave Cybersecurity (requirements to decomissioning)
-NIST 800-53, 800-37 RMF validation against CSP documentation and assessment
-Cloud IaaS/PaaS service testing, validation and documenting risks for the SCA/AO
-Baseline management - HW/SW inventory and vulnerability management
-Checkmarx and ACAS scanning IAW Continuous Monitoring plan
-Low Code Platform On-Premise deployments : Pega and Appian
-Led Cybersecurity team for Pega and Appian Production deployments
-Engineered Cybersecurity testing requirements for the Pega and Appian LCNC platforms to gain AO
approval of Pega and Appian platforms for the USAF
-Led tasks for deployment including STIG testing, Application Security testing, RBAC, account
management, least privilege, audit logging, PKI SSO/SAML integration, source code scanning and
mitigation
2021 :
Bull Bear Defense Solutions, LLC
Senior Cybersecurity Analyst
Lead ISSM for USAF Logistics
2015 : 2021
TACG, LLC
Lead Information System Security Manager
Served as a DoD Validator for DISA in support of Cloud Service Provider (CSP) 3PAO Cybersecurity assessment. Duties include direct reporting to senior leadership and DISA Security Controls Assessor (SCA) to support CSP preparation for DSAWG Cloud approval. Responsibilities include :
-NIST 800-53, 800-37 RMF validation against CSP documentation and assessment
-Reviewed and provided in depth analysis of System Security Plan (SSP), System Assessment Plan (SAP), Readiness Assessment Review (RAR), SSP addendum, POA&M and associated artifacts
-Provided subject matter expertise on NIST 800-53 RMF, Cloud SRG, FIPS 199, NIST 800-37 to DISA
-Thorough Cybersecurity analysis of authorization boundary and associated compelling evidence
2018 : 2018
TACG, LLC
DoD Cloud Cybersecurity Validator and Assessor for DISA
Served as the Technical Lead for the NIST 800-171 and DFARS 252.204-7012 and FAR 52.204-21 lead for TACG. Led the company to NIST 800-171 compliance and met the deadline of 31 DEC 17. Provided IT technical subject matter expertise and authored required security documentation to meet compliance.
2016 : 2018
TACG, LLC
NIST 800-171 Technical Lead
Jake's experience with on premise, off-premise, government and commercial cloud delivery brings a broad understanding of what it takes to deploy successful IT projects for government and commercial projects. Additionally, Jake brings in depth hands on experience with governance, risk and compliance (GRC) for commercial and government clients.
As a strategic business leader for Bull Bear Defense, Jake is responsible for operations, partnerships and business growth. Jake brings 15 years working as a Department of Defense (DoD) contractor supporting a wide range of complex IT systems for the USAF and DoD. Jake continues to deliver on complex Cyber and IT projects for the DoD.
2023 : Present
Bull Bear Defense Solutions, LLC
Executive Vice President (EVP)
Responsible for all ATO requirements for two major Enterprise USAF IT systems
Responsible for managing Cybersecurity posture and testing requirements for IT releases within acceptable levels of risk to senior leadership
This responsibility includes effective management of the following tasks :
-Cloud One Dev/Int, Test, Prod Bastion Host and VM management
-Azure IL4 Cybersecurity and ATO management for the Mission Owner
-Cloud security management
-Implementation of NIST 800 series, DoD 8500, AF 17 series implementation
-Cradle to Grave Cybersecurity (requirements to decomissioning)
-NIST 800-53, 800-37 RMF validation against CSP documentation and assessment
-Cloud IaaS/PaaS service testing, validation and documenting risks for the SCA/AO
-Baseline management - HW/SW inventory and vulnerability management
-Checkmarx and ACAS scanning IAW Continuous Monitoring plan
-Low Code Platform On-Premise deployments : Pega and Appian
-Led Cybersecurity team for Pega and Appian Production deployments
-Engineered Cybersecurity testing requirements for the Pega and Appian LCNC platforms to gain AO
approval of Pega and Appian platforms for the USAF
-Led tasks for deployment including STIG testing, Application Security testing, RBAC, account
management, least privilege, audit logging, PKI SSO/SAML integration, source code scanning and
mitigation
2021 :
Bull Bear Defense Solutions, LLC
Senior Cybersecurity Analyst
Lead ISSM for USAF Logistics
2015 : 2021
TACG, LLC
Lead Information System Security Manager
Served as a DoD Validator for DISA in support of Cloud Service Provider (CSP) 3PAO Cybersecurity assessment. Duties include direct reporting to senior leadership and DISA Security Controls Assessor (SCA) to support CSP preparation for DSAWG Cloud approval. Responsibilities include :
-NIST 800-53, 800-37 RMF validation against CSP documentation and assessment
-Reviewed and provided in depth analysis of System Security Plan (SSP), System Assessment Plan (SAP), Readiness Assessment Review (RAR), SSP addendum, POA&M and associated artifacts
-Provided subject matter expertise on NIST 800-53 RMF, Cloud SRG, FIPS 199, NIST 800-37 to DISA
-Thorough Cybersecurity analysis of authorization boundary and associated compelling evidence
2018 : 2018
TACG, LLC
DoD Cloud Cybersecurity Validator and Assessor for DISA
Served as the Technical Lead for the NIST 800-171 and DFARS 252.204-7012 and FAR 52.204-21 lead for TACG. Led the company to NIST 800-171 compliance and met the deadline of 31 DEC 17. Provided IT technical subject matter expertise and authored required security documentation to meet compliance.
2016 : 2018
TACG, LLC
NIST 800-171 Technical Lead
Company:
Bull Bear Defense Solutions, LLC
About
Mr. McKinley is an experienced executive leader with a technical background as an industry certified Cybersecurity professional. Jake is dedicated to the success of Bull Bear Defense Solutions by driving the company to excel in Governance, Risk and Compliance (GRC), IT Modernization and Cloud security. Mr. McKinley understands the complexity of Cloud security, IT systems and excels at leading teams in navigating complex compliant solutions.
Certifications:
ISC2 CISSP, Comptia A+ ce, Network+ ce, Security+ ce, MCP, MCTS Windows, 8570.01-m IAM III, IAT III
Skills: Cloud Modernization, RMF, eMASS, XACTA 360, ACAS, SonarQube, Checkmarx, Bitbucket, DI2E, SRR scripting, Firewall administration, Encryption tools, techniques and procedures, Azure, AWS, ADO, STIG hardening, compliance reporting, POA&M management, IT security risk management, SDC, FDCC, Cyber risk intelligence, IAVM/NVD vulnerability management, DHS CSET
Profile Photo
