Profiles search

Raquel Leone

Information Security Officer
San Antonio, TX, United States

Details

Education: Bachelor's of Science

Computer Information Systems

Strayer University

1998 : 2000

Associate of Arts (A.A.)

Computer Studies

University of Maryland University College

1996 : 1998
Experience: 2018 : Present

Administrative Offices of the United States Courts

Information Security Officer

2015 : 2018

Department of State

Assessment and Authorization Bureau Coordinator

DISA Test and Evaluation Management Center Falls Church, VA (TEMC) Warfighter Capabilities Integration Laboratory (WICL)

Responsible for all cyber assurance activities (assessment and authorization (A&A), independent verification and validation (IV&V) procedures, vulnerability management, circuit authorization management, network and communications security, security systems engineering, auditing, incident response, DoD Cyber Assurance Workforce management) required to properly secure all application and communication support systems for the Fort George G. Meade, MD testbed datacenter Led staff of technical subject matter experts (5 government and 3 contract personnel). Contracting Officer Representative (COR). Branch Information Systems Security Manager. Oversaw the planning, implementation, and management of federal, DoD, and DISA policies and directives to ensure maximum compliance. Managed budget of 1M.

In December 2014, assigned additional duty as Chief, Fort George G. Meade Testbed Operations Branch. Managed execution of daily data center operations for the Fort George G. Meade Testbed (70K sq. ft. of raised floor space, 7 network circuits; 73 DISA testing programs; and over 1200 information systems (IS) and network devices.) Scope of responsibility covered basic operations (network cable plant management, electrical, HVAC, rack management), system administration (server management, vulnerability patching, audit, server backups/restores), network management (circuit management, network device management, vulnerability patching, audit, ports and protocols management) and configuration management (CM) (Configuration Control Board, associated CM processes, and CM documentation management). Supervised staff of technical subject matter experts (15 government, 7 military, and 21 contract personnel). Managed testbed operating budget of 5.2M.

2009 : 2015

DISA

Chief, Information Assurance Branch

DISA Test Environment and Engineering (TEE) Falls Church, VA Division

Oversaw, implemented, and reported compliance with security plans on all TEE's information stores, systems and networks. Maintained and managed proposed changes to the TEE Information System Security Program to include process, technical, administrative, configuration management, and total life- cycle support including managing DISA circuit packages, performing IV&V for compliance with security policies. Managed all organizational A&A activities. Responsible for reviewing, coordinating, and approving change requests to system accreditations. Wrote, coordinated, and reviewed System Security Plans (SSPs). Ensured that A&A activities remained on schedule consistent with the mission objectives of the organization. Monitored, identified, reported and investigated security violations. Worked with system owners to close vulnerabilities and to manage vulnerability POA&Ms. Performed system audits on a weekly basis. Prepared weekly audit report on findings and anomalies. Coordinated and resolved all information assurance related trouble tickets. Collaborated with security assessors to conduct in-depth compliance audits and penetration testing. Performed decommissioning activities for end of lifecycle systems. Primary point of contact and coordinator for Computer Network Defense- Service Provider (CND SP) incidents. Responsible for FISMA reporting and compliance.

2005 : 2009

DISA

Information Assurance Manager

DISA Center for Integration, Product Support Division

Served as a senior systems administrator in support of the Global Command and Control System (GCCS) and Defense Information Infrastructure Common Operating Environment (DIICOE) programs. Interfaced with management and system test analysts to develop technical requirements. Developed action plans and schedules to implement these requirements. Performed analyses and evaluations of technical architecture and open system issues impacting plans and processes. Performed system, network, security and database administration using UNIX, Windows OS, and Oracle RDBMS software. Task lead on efforts performed by commercial contractors performing such duties as providing technical direction, delineating scope, defining and interpreting tasks, and reviewing interim and final product acceptability. Evaluated products to include version releases of existing system products and new hardware and software products required for customer efforts or laboratory operation enhancement.

1999 : 2005

DISA

Senior Unix System Administrator
Company: Administrative Offices of the United States Courts
Years of Experience: 36

Skills

Active Directory, Business Process Improvement, Certified Data Center Professional, Certified Ethical Hacker (CEH), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Cloud Computing, Computer Hacking Forensic Investigator, Computer Security, Contract Management, Incident Response, Information Assurance, Information Security, Information Technology, Integration, Internet Protocol Suite (TCP/IP), ITIL Certified, IT Management, Leadership Development, Network Security, NIST, Program Management, Project Management, Risk Management, Security, STIG, Supervisory Skills, U.S. Department of Defense, Unix Administration, Vulnerability Assessment, Windows System Administration

About

Insightful, results-driven information technology (IT) professional with notable success directing a broad range of cybersecurity initiatives. Over 25 years experience in the IT field. Excels at leading and supervising a diverse team of IT security professionals to provide secure network design, systems analysis, and full life cycle project management. Comprehensive knowledge of federal information security methods and practices required to ensure the effective implementation of required laws and policies for organizational information systems and information. Outstanding project manager that is able to coordinate and direct all phases of project-based efforts while managing, motivating, and guiding teams.

Areas of Expertise:

• Assessment and Authorization (A&A)

• Independent Verification and Validation (IV&V)

• Network and Information Systems Security

• Policy/Planning Implementation

• Cost Benefit Analysis

• Stakeholder Management

• Risk Assessment/Management

• Contingency Planning

• Continuous Process Improvement

• Project Management