Lan Caohuy-Rifkin

Education: Bachelor of Science

Informaion System Management

University of Maryland Global Campus

1993 : 1998

Configuration Management Subject Matter Expert

Computer and Information Sciences and Support Services

CMPIC - University of Houston

2016 : 2016

Master's Certification in Enterprise Configuration Management

Enterprise Configuration Management

CMPIC-University of Houston

2013 : 2015

Business Management

Project Management

Anne Arundel Community College



CMPIC

Experience: 2021 : Present

U.S. Department of Justice

Cybersecurity IT Specialist-US Government

Manage and oversight a group of Business Analyst, Software Developers and Technical Writers to develop, implement and maintain various projects supporting Enterprise Security Section. Oversee the creation, implementation, and maintenance of User Guide Handbook/Procedures/Policy, Infosec service catalogs website, online form requests, online status reports, develop user guides, process and procedures and more to support Enterprise Information Security Section.

2019 :

US Government

Program Manager-TS/SCI

Lead the FBI Enterprise FISMA Compliance Office.

Provide insight and oversight FISMA security requirements, FISMA Security policy, process and procedures for the FBI OCIO Assurance Office.

Primary Duties :

• Collect, assess, evaluate and audit security core controls to ensure IT program/projects in the Bureau meet and compliance with FISMA requirements.

• Provide training to system owners, security officers on FISMA requirements to ensure quality controls affective for IT programs/projects.

• Collect measurement metrics and report FISMA compliance to management leadership

• Continue monitoring and measuring the configuration management, contingency and incident respond activities and progress for all IT programs/projects.

2012 : 2018

US Government

FISMA Audit and Compliance Lead-TS/SCI

•Provide expert-level support to PAAC configuration management and data management tasks.

•Maintains expert knowledge of required compliance documentation including Goddard Procedures and Guidelines.

•Perform technical oversight on all staff and act in lead role on complex assignments

•Develop and maintain CM plan and procedures

•Design and implement efficient CM systems and databases

•Review, evaluate, recommend and implement new technology/enhancements to the Configuration Management System

•Prepare for CCR, prepare CCR package, collect review comments, track CCR action items, coordinate CCB meeting

•Identify and collect data associated with the configuration management system and maintain the database

•Monitor contractor’s configuration management systems and perform audits to ensure ISO compliance

•Coordinate, record and document activities of the Configuration Control Board (CCB)

•Track implementation of approved Configuration Control Requests (CCR) and update and report CCR status

•Prepare presentation charts and reports and participate in reviews

•Support the administration of Project requirements, configuration change control and configuration management as required

•Participate in major reviews such as SRR, PDR, CDR, and PSR

•Perform Functional Configuration Audit and Physical Configuration Audit

•Develop training material and conduct training classes as required

2010 : 2012

ASRC Aerospace

NASA - Configuration Manager Specialist, CMPIC

Project : Foreign Intelligence Surveillance Act Management System (FISAMS), Quality Assurance and Configuration Manager

Provide insight and oversight software development activities for HPTi to support the DoJ in Washington DC.

Primary duties include software quality assurance control/testing, and software configuration/requirement managing. Duties Included :

• Monitor quality of deliverables with weekly work product and process audits

• Monitor and participate the quality of the application with full system functional integration, regression and user acceptance testing

• Monitor and control the project with performance measures and analysis daily.

• Summarize, evaluate, and present audit findings data to project manager for review and corrective action. Assist software engineers with root causes and corrective actions associated with process improvement CMMI Level III.

• Manage project requirements from development to verification. Conduct release baseline audits. Coordinate stakeholders weekly CCB to review change request and new requirements. Conduct lessons learned after each release.

• Generate Requirement Management Plan, System Requirement Specification Documents, System Description Document, Quality Assurance Plan, Advanced Search test script, CCB Charter to support the FISAMS project.

Member of the organization Process Improvement Committee (PIC) team and Quality Assurance Working Group (QAWG) team.

2008 : 2010

High Performance Technologies, Inc

Software Quality Assurance Manager

Company: U.S. Department of Justice

Years of Experience: 38

Spoken Language: Vietnamese