Nicholas Boucher
Education:
Master of Science (M.S)
Computer and Information Systems Security/Information Assurance
University of Denver
2017 : 2022
Bachelor of Science (BS)
Computer and Information Systems Security/Information Assurance
American Military University
2015 : 2016
Associate of Arts (A.A.)
General Studies
American Military University
2014 : 2015
Experience:
2021 : Present
Facebook
Data Center Engineer - Information Security
2019 : 2021
Boeing
Information System Security Manager
-Managed documentation related to several classified information systems (Secret, Top Secret)
-Established the Risk Management Framework at Albuquerque site
-Performed Risk Assessments for new systems to ensure that compliance and security can be achieved
-Performed routine audits of systems to ensure that STIGs, OVAL and RMF controls were implemented and maintained
-Created plans and timelines for accreditation of information systems with Program Managers and customer requirements
-Created and conducted various training for users of classified systems ranging from Assured File Transfers and General User Training for Classified Systems
-Created and established mobility plans for systems that required to used offsite in various locations.
-Created, managed and maintained documentation for various SAP information systems
-Built and maintained CSSOPs, Hardware/Software Maintenance Logs, System Security Plans, POAMs, and other various required documents for systems
-Provided instruction and guidance to programs and employees of cybersecurity requirements during contract and program meetings with senior management and customers
-Utilized NIST, DISA, DoDI and other government policies and guidance to ensure cybersecurity compliance is maintained.
-Worked with various package building/accreditation software such as eBinder, OBMS, and eMASS
2018 : 2019
Raytheon
Information System Security Manager
• Ensuring the implementation of DOE and NNSA cyber security policies and procedures for designated information systems
• Conducting the Assessment and Authorization (A&A) activities for designated systems
• Documenting the implementation of protection measures within the security plan for the systems
• Ensuring the appropriate access is provisioned for users of designated systems
• Identifying, assessing, and documenting threats and risks to designated systems
• Capturing and maintaining information system security artifacts
• Conducting cyber security tests and assessments and providing results of these activities to the ISSM
• Evaluating the security impact and recommending implementation strategies for security significant changes to the assigned information systems
• Identifying cyber security training needs in terms of job responsibilities or roles
• Conducting information system risk assessments
• Responding to and reporting of incidents related to their assigned information systems
• Development of security processes and procedures to support the ISSM’s Cyber Security Program
• Creating and maintaining disaster recovery and incident response plans and participating in associated training
• Formally and informally presents information in group and individual settings
• Work with NIST SP 800-53, FISMA, DODI 8500.2, FedRAMP, and DISA STIGs
• Work with various Microsoft products such as Word, Excel, Power Point, etc.
2017 : 2018
Planet Technologies
Information Systems Security Officer
• Created a RMF cybersecurity policy for organization in accordance to DoD 8510.01, DoD 8500.01, NIST SP 800, and CNSSI 1253, FIPS 200.
• Coordinated and worked revalidation process for Cross Domain Solution and created new CDS packages for other missions
• Attended mission briefings to provide cybersecurity insight and processes to higher ranking leadership, both Air Force and DoD Civilian
• Examined policies and administrative document for any weaknesses and provided remediation.
• Modified and reviewed C&A and A&A documentation for both RMF and DIACAP
• Conducted research into policies, procedures, standards, and guidance, and apply under specific conditions for the protection of information and information systems.
• Coordinated information from ISSEs to be provided to ISSO.
• Coordinated and ran Cybersecurity IPTs presenting current tasking, milestones and future work.
• Created charts and graphs such as SV-10c to chart data flows and SV-2s showing IA boundaries for systems.
• Responsible for network and system security architecture design, review, implementation and validation
• Develop methods and procedures on new assignments and provide cybersecurity guidance to team members for project engineering and management.
• Records Custodian for Cybersecurity Share Point and V : Drive.
• Reviewed STIGs and vulnerability assessments/compliance scans
2014 : 2017
SAIC
Cyber Security Analyst
Company: Facebook
Years of Experience: 10
Spoken Language: English