James Crutchfield
Details
Texas Tech University
1993 : 1997
Network Systems Engineering and Administration Industry Certifications
Computer Network Engineering
Southern Methodist University
1999 : 2001
Modern Standard Arabic
Defense Language Institute
2008 : 2009
Geo-Spatial Metadata Analysis
National Security Agency
2008 : 2008
Information Management Officer
Information Security and Management
United States Army
2008 : 2008
• Validate and automate compliance assessments, create and tailor Tenable Nessus configuration audits, and deepen enterprise insight using Splunk data enrichment and custom device fingerprinting.
2023 : Present
Deloitte
Manager, Cybersecurity Engineering
United States Navy, NAVAIR : MQ-9B SeaGuardian UAS
• Quick-turnaround engagement to develop and submit an RMF Cybersecurity accreditation package for General Atomics Aeronautical Systems, Inc. (GA-ASI) MQ-9B SeaGuardian Unmanned Aerial System.
2022 : 2023
Deloitte
Manager, Risk Management Framework
United States Department of the Treasury, Financial Crimes Enforcement Network.
• Led a team in a challenging environment to restore, upgrade, and optimize Cybersecurity strategy and tools.
• Redesigned AWS GovCloud Cybersecurity tools and processes to automate resource provisioning, evidence collection, risk modeling, and threat detection - achieved goal of Provisional ATO.
2021 : 2022
Deloitte
Manager, Continuous Diagnostics and Mitigation (CDM)
United States Census Bureau, Office of Information Security
• Led Cybersecurity Automation and Scanning teams, and the Secure Configuration Work Group, to run Continuous Diagnostics and Mitigation tools, write and track POA&Ms, and guide secure software baseline workflows.
• Tenure included experience as the SME for database and cloud compliance scanning, developing automated evidence collection methods (Nessus custom audits), and onboarding new application security event ingestion and data enrichment for Splunk.
2018 : 2021
Deloitte
Manager, Cybersecurity Automation & Tools
Department of Defense, Defense Manpower Data Center, IT Operations Division
• Apply Risk Management Framework and Cybersecurity principles to the DMDC enterprise.
• Secure, certify, and maintain system, application, and enclave boundaries in a large and diverse environment using eMASS, Tenable.sc (ACAS), and other tools.
• Perform routine and special audits to demonstrate regulatory compliance, lead and prioritize patch management activities. Guide secure data center operations.
2016 : 2018
DirectViz Solutions, LLC
Senior Information Assurance SME
Skills
Assured Compliance Assessment Solution (ACAS), AWS Security, Baselines, CDM, CEH, CISSP, Command, Computer Security, Configuration Management, DISA, Disaster Recovery, DoD, Electronic Intelligence , eMASS, Emergency Medical Services (EMS), Endpoint Security, Firewalls, Geospatial Intelligence, Information Assurance, Information Security, Information Security Engineering, Information Security Management, Integration, Military, National Security, Networking, Network Security, NIST 800-53, Penetration Testing, POA&Ms, Risk Management Framework, Security, Security Audits, Security Clearance, Signals Intelligence, Splunk Enterprise, STIG, System Administration, Tenable.sc, Tenable Nessus, Troubleshooting, U.S. Department of Defense, U.S. Department of Defense Information Assurance Certification and Accreditation Process (DIACAP), UAV, Vulnerability Assessment, Vulnerability Management
About
A military veteran with more than two decades of proven success as a Cybersecurity and Information Technology project manager and professional. Holds CISSP, MCSE, and A+ certifications, and an active security clearance and polygraph. Resides near Augusta, Georgia.
Profile Photo
