James Gillham's Resume (Last updated August 30th 2008)

Identify security related gaps/deficiencies and to formulate and present sound recommendations for remediation. Perform Security Audits, Penetration Testing and Vulnerability Scanning. Identify and quantify skills, process, and tools gaps. Document gaps and define recommendations for gap closures. Provide proactive care and maintenance, change control and device tuning. Policy and Planning - develop, implement, and ensure compliance with plans, policies, standards, infrastructures, and architectures that establish the framework for the management of all IT programs. Security - plan, develop, implement, and maintain programs, polices, and procedures to protect the integrity and confidentiality of systems, networks, and data. Systems Analysis - consult with customers to refine functional requirements and translate functional requirements into technical specifications. Network Services - test, install, configure, and maintain networks including hardware (servers, switches, and routers) and software that permit the sharing and transmission of information. Install, maintain and monitor complex security software and hardware to provide LAN and WAN security services. Implement, troubleshoot, analyze, and maintain existing network to include risk assessment, patch management, disaster recovery, log auditing and documentation.

Key achievements:
Manage and support network for the Army's National Training Center which provides tough, realistic, joint and combined arms training in a controlled simulation. Daily maintenance and problem resolution for 7 Windows 2000 based servers, 7 intrusion detection systems, 4 firewalls, 4 routers, and numerous switches. Provide 24X7 network monitoring. Successfully passed accreditation reviews.

Assist with review of all IA C&A support documentation packages and system fielding, operations, or upgrades requirements to ensure accuracy; completeness, and acceptance standards (full risk assessment). Help conduct/document a program of audits, inspections, assessments, tests, corrective action reports (CARS), and program reviews. Assist IAM with audits and documents whether personnel are updating system patches, virus scans, and SOC performance monitoring the network. Help review all systems within the C&A, their documentation, modifications, version control, and life-cycle management of GOTS, COTS, and/or non-developmental items (NDIs). Support all ISs processes within the tactical enterprise to insure properly certified and accredited in accordance with DIACAP; CM policies and practices before operating or authorizing the use of hardware and software on an IS or network. Help ensure OPS GRP and its employees comply with all DoD and Army IA regulations and guidelines, to include IA training requirements. Provide IAM with feedback to help ensure the use of Army approved procedures for clearing, purging, reusing, and releasing system memory, media, output, and devices. Interfaces with the installation IAM to provide policy guidance to all IAMs and assists the Installation IAM as required. Support technical/security training requirements for OPS GRP and other IASOs. Performs for OPS GRP the investigation of security violations and reports incidents to the servicing RCERT. Help assemble documentation of semi-annual reviews of all ISs and networks reviewing security changes that invalidate the C&A. Maintain training / certification records for IA personnel. Support all audits and then document all IA personnel are maintaining and auditing access and log data. Assist the IAM with validation of IA resource requirements and management controls. Support quality/ISO, security and training programs.

Key achievements:
Daily maintenance and problem resolution for 7 Windows 2000 based servers, 7 intrusion detection systems, 4 firewalls, 4 routers, and numerous switches. Provide 24X7 network monitoring. Successfully passed accreditation reviews.

Gather data pertaining to customer needs, and use the information to identify, predict, interpret, and evaluate system and network requirements. Maintain record of daily data communication transactions, problems and remedial action taken, and installation activities. Monitor network to ensure network availability to all system users and perform necessary maintenance to support network availability in order to maintain network performance. Internet - provide services that permit the publication and transmission of information about agency programs to internal and external audiences using the Internet. Systems Administration - install, configure, troubleshoot, and maintain hardware and software to ensure the availability and functionality of systems. Customer Support - provide technical support to customers who need advice, assistance, and training in applying hardware and software systems. Operating Systems - install, configure, and maintain the operating systems environment including systems servers and operating systems software on which applications programs run. Data Management - develop and administer databases used to store and retrieve data and develop standards for the handling of data. Network Services - test, install, configure, and maintain networks including hardware (servers, switches, and routers) and software that permit the sharing and transmission of information. Working knowledge of internet and remote access technologies.

Key achievements:
Planned, designed and built (from the ground up) 2 networks consisting of over 200 computers. Manage a third party civilian contractor company (NMCI) during the transition of network responsibilities to include being a liaison between both parties. Supervise and manage 14 Individuals. Supervise other network support and client server specialists and plan, coordinate, and implement network security. Develop training materials and procedures to lecture/instruct in a classroom environment. Provide help desk/technical assistance to over 800 computer system users concerning the use of computer hardware and software, including printing, installation, word processing, electronic mail, and operating systems and answer questions or resolve computer problems for clients in person, via telephone or from remote location. Performs general administrative security duties including changes to Active Directory, file access rights and assigning new users. Administered and maintained SIPR (secret) and NIPR (unclassified) networks to include 450 NIPR and 150 SIPR user accounts and mailboxes. Transitioned more than 680 exchange accounts, spanning 217 computers from 9 different units while deployed to Iraq. Maintained data communication across 10,200 square miles in a combat zone while providing the network with 24X7x365 network monitoring. Successfully past accreditation testing.

Current Security clearance granted September 2003, Level: Secret (Active)
Career Level: 5+ years, US Citizen
Will relocate to: Colorado, North Carolina, South Carolina, Tennessee or Georgia

Areas of expertise:

 Network and Systems Security
 Enterprise level of 1000+ node network
 Research and Development
 Document network configuration, installation and administrative procedures
 Data Integrity/Disaster Recovery
 Risk Assessment/Impact Analysis
 Patch Management
 Team and project Leadership
 Customer Service-Expert
 Written/Oral communication-Expert


Technical Proficiencies ______________________

Platforms:
Expert/5 years- Microsoft 98/NT/2000/XP
Entry Level/1 year- Unix, Linux, Sun Microsystems, Solaris

Networking:
Expert/5 years-TCP/IP, Microsoft Windows Server 2003, Cisco Routers, Cisco Switches, VPN, VLAN, Trunks
Intermediate/2 years- Active Directory, Microsoft Exchange Server

Protocols:
Expert/5 years-TCP/IP, Ethernet, Fast Ethernet, Telnet, DHCP, OSPF, BGP, RIP, EIGRP
Intermediate/2 years-SMTP/POP3/IMAP, FTP, SNMP, DNS
Entry level/1 year- VoIP

Tools: ISS RealSecure, Retina, Nessus, STAT, Symantec Gateway Security Firewalls, Norton Ghost, Symantec Network Security Intrusion Detection Systems, Symantec Antivirus Corporate Edition 10 (Server and Client), Symantec System Center, Symantec Endpoint Protection, Kiwi Syslog Daemon, EPLRS, Cisco IOS software 11.5/11.6/11.7/11.8/11.9/12.0/12.1/12.2/12.3/12.4, MS Visio

network engineer administrator security specialist NOC SOC secret security clearance military symantec training CCNA Cisco routers switches MS Microsoft Active Directory TCP/IP LAN/WAN LAN WAN DNS enterprise node server ethernet DHCP OSPF BGP RIP EIGRP RF SMTP FTP SNMP Firewalls user accounts instruct proposal IOS MS Visio risk assessment team leadership customer service written oral communication disaster recovery installation configuration entry level expert experience North Carolina South Carolina Colorado Georgia Tennessee