Profiles search

Nicholas Boucher

Data Center Engineer - Information Security at Facebook
Albuquerque, NM, United States
Details

Education: Master of Science (M.S)

Computer and Information Systems Security/Information Assurance

University of Denver

2017 : 2022

Bachelor of Science (BS)

Computer and Information Systems Security/Information Assurance

American Military University

2015 : 2016

Associate of Arts (A.A.)

General Studies

American Military University

2014 : 2015

Experience: 2021 : Present

Facebook

Data Center Engineer - Information Security

2019 : 2021

Boeing

Information System Security Manager

-Managed documentation related to several classified information systems (Secret, Top Secret)

-Established the Risk Management Framework at Albuquerque site

-Performed Risk Assessments for new systems to ensure that compliance and security can be achieved

-Performed routine audits of systems to ensure that STIGs, OVAL and RMF controls were implemented and maintained

-Created plans and timelines for accreditation of information systems with Program Managers and customer requirements

-Created and conducted various training for users of classified systems ranging from Assured File Transfers and General User Training for Classified Systems

-Created and established mobility plans for systems that required to used offsite in various locations.

-Created, managed and maintained documentation for various SAP information systems

-Built and maintained CSSOPs, Hardware/Software Maintenance Logs, System Security Plans, POAMs, and other various required documents for systems

-Provided instruction and guidance to programs and employees of cybersecurity requirements during contract and program meetings with senior management and customers

-Utilized NIST, DISA, DoDI and other government policies and guidance to ensure cybersecurity compliance is maintained.

-Worked with various package building/accreditation software such as eBinder, OBMS, and eMASS

2018 : 2019

Raytheon

Information System Security Manager

• Ensuring the implementation of DOE and NNSA cyber security policies and procedures for designated information systems

• Conducting the Assessment and Authorization (A&A) activities for designated systems

• Documenting the implementation of protection measures within the security plan for the systems

• Ensuring the appropriate access is provisioned for users of designated systems

• Identifying, assessing, and documenting threats and risks to designated systems

• Capturing and maintaining information system security artifacts

• Conducting cyber security tests and assessments and providing results of these activities to the ISSM

• Evaluating the security impact and recommending implementation strategies for security significant changes to the assigned information systems

• Identifying cyber security training needs in terms of job responsibilities or roles

• Conducting information system risk assessments

• Responding to and reporting of incidents related to their assigned information systems

• Development of security processes and procedures to support the ISSM’s Cyber Security Program

• Creating and maintaining disaster recovery and incident response plans and participating in associated training

• Formally and informally presents information in group and individual settings

• Work with NIST SP 800-53, FISMA, DODI 8500.2, FedRAMP, and DISA STIGs

• Work with various Microsoft products such as Word, Excel, Power Point, etc.

2017 : 2018

Planet Technologies

Information Systems Security Officer

• Created a RMF cybersecurity policy for organization in accordance to DoD 8510.01, DoD 8500.01, NIST SP 800, and CNSSI 1253, FIPS 200.

• Coordinated and worked revalidation process for Cross Domain Solution and created new CDS packages for other missions

• Attended mission briefings to provide cybersecurity insight and processes to higher ranking leadership, both Air Force and DoD Civilian

• Examined policies and administrative document for any weaknesses and provided remediation.

• Modified and reviewed C&A and A&A documentation for both RMF and DIACAP

• Conducted research into policies, procedures, standards, and guidance, and apply under specific conditions for the protection of information and information systems.

• Coordinated information from ISSEs to be provided to ISSO.

• Coordinated and ran Cybersecurity IPTs presenting current tasking, milestones and future work.

• Created charts and graphs such as SV-10c to chart data flows and SV-2s showing IA boundaries for systems.

• Responsible for network and system security architecture design, review, implementation and validation

• Develop methods and procedures on new assignments and provide cybersecurity guidance to team members for project engineering and management.

• Records Custodian for Cybersecurity Share Point and V : Drive.

• Reviewed STIGs and vulnerability assessments/compliance scans

2014 : 2017

SAIC

Cyber Security Analyst

Company: Facebook

Years of Experience: 10

Spoken Language: English

Skills Cyber-security, Information Assurance, Information Security Management, Information Technology, Microsoft Operating Systems, Nist, NIST 800-53, Risk Frameworks, Risk Management Framework, Rmf, STIG
About I am a US Navy Veteran. I have worked in both the IT World and Information Security field for the last 15 years.