Steve C.

Details

About

Information System Security Manager (ISSM)/IT security professional with comprehensive knowledge and skills in security compliance and assessment. Over 15 years of technical project management experience, working closely with the ISSO and Agile development teams to ensure compliance with the Risk Management Framework, managing IT security assessment teams, developing IT security policy and supporting procedures, conducting information assurance activities, performing risk assessments and continuous monitoring of internal controls, assessment and authorization (A&A), and information assurance (IA). Knowledge, skills, and abilities include in-depth knowledge of the Federal Information Security Management Act (FISMA) and National Institute of Standards and Technology (NIST) guidelines, FedRAMP, and project management best practices, including earned value management. Expert knowledge of security architecture, commonly implemented security processes, and control implementation principles.



Certifications include CISSP, CAP, and PMP.