Backgroung

Signed in as:

filler@godaddy.com

Account

Work History

Introduction

Hi !!!

My name is Alvaro Sanchez, Owner of WhiteHat Auditors LLC. I wanted to share part of my work/partnership history with you.

Please let us know if there is any that we can help you and your business with.

Information Assurance & Vulnerability Specialist

Responsabilities as IA;

Verify that all ISs within the scope of responsibility are properly certified and accredited in accordance with RMF and CM policies and practices before operating or authorizing the use of hardware and software on an IS or network.
Identifies IA weaknesses and provide recommendations for improvement.
Ensures appropriate administrative, physical, and technical safeguards are incorporated into all new IT resources through certification and accreditation.
Prepare DIACAP paperwork and/or translates security requirements into network configurations/security settings.
Estimate work efforts for Input into project plans.
Track development timelines, provide best efforts to meet estimates, and notify Program Manager If estimates can't be met.
Participated in information security audits to proactively minimize and eliminate information security vulnerabilities.
Notify Program Manager of any issues that may jeopardize producing quality output for the customer.
Assess DOD 8500.2 Information Assurance (IA) controls against system baselines and mitigate any vulnerabilities.
Analyze an organizations internal and external IA processes and identify areas for improvement.
Author official IA correspondence, IA guides, and plan of action and milestone (POA&M).

Information System Security Officer (ISSO)

Responsibilities as ISSO:

Worked with the ISSM, SO, Contractors and Facility Security Officer (FSO) to ensure the highest level of security.
Assisted in maintaining the Information Systems (IS) security program and policies for assigned area of responsibility.
Assisted in the oversight of operational IS security implementation policy and guidelines.
Assisted with periodic testing to evaluate the security posture of the Information Systems (IS).
Assisted in ensuring approved procedures are used for sanitizing and releasing system components and media.
Assisted with the development and implementation of an effective IS security education, training, and awareness program.
Maintain a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
Helped ensure user activity monitoring data is analyzed, stored, and protected in accordance with the policies and procedures.
Inventory and organize resources for contracts.

Vulnerability Analyst/Scanner

Responsibilities as vulnerability analyst:

Recommend security and mitigating controls to reduce technical and business risk.
Enhance the Vulnerability Management Lifecycle Program for all environments.
Research and gather security related information across multiple electronic, computer and development environments.
Participated in information security audits to proactively minimize and eliminate information security vulnerabilities.
Help coordinate, coach, develop, and lead the team responsible for risk assessments, inventory and remediation planning Develop and maintain data collection configurations for vulnerability and compliance management.
Monitor and report on remediation and/or mitigation progress to leadership team

HelpDesk Associate

Responsabilities as Helpdesk: